Secure Iframe On Unsecure Page In A Different Domain
Our company is looking into allowing third party sites to use our online checkout system.
A client has stated that they would like to be able to use a lightbox style popup to display the checkout. And they would like this to be available on every page of the site, therefore mostly unsecure pages. Our checkout system and the client site are obviously on different domains.
I'm guessing that I could use a secure iframe (using https) to display our checkout system.
Would this iframe actually be secure?
Is the a sensible thing to do? (my gut says no, as how can the user tell the page is secure)
Are there any better ways to achieve this same functionality?
Have you seen how other similar checkout systems work? For example the paypal checkout on ebay? They take you trough the checkout process "full screen" and back to the original site when the transaction is complete.
- → Parse.com user management html iframe not displaying correctly on mobile
- → load website from the server
- → Can i use iframe to solve memory leak?
- → Call custom method on component when props update
- → submitting button without clicking on it
- → My YouTube video isn't proportional and won't center correctly in the div
- → PHP - Update iFrame When A New Message is Recieved
- → How do i get my picture link to open a other file in an iframe
- → Struggling to load Youtube player on-demand rather than traditional embed
- → Shopify After APP Installation in Store / Show Iframe to every Client without Login
- → iframe positioning on window not div
- → How to catch pagination element of shopify api with jquery
- → Dynamic pages with two selectboxes, iframe and jQuery (without PHP)