In our site certain pages use SSL, most pages however don't (as they need to be crawled by web bots).
It pretty much boils down to any page where the user is logged in, with a few exceptions is under SSL,
But the user first has to login from a non https page (The login form is a form that drops from the top of the screen on any page).
So,
How can I force the requests over ajax to use SSL?
Is this even secure?
{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://img.manongdao.com/sparkler-677774__340.jpg', '推荐 放荡不羁爱自由 的文章《jQuery ajax and SSL?》','https://www.manongdao.com/article-75563.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}