+ Start a Discussion
osamanosaman 

Custom web address and cross domain scripting

Hi,

 

I have registered a custom domain on a force.com site. I am using Ajax using actionFunction on the main page to do some DML. However, when I access the page with the custom web address I am getting 

 

 

SCRIPT5: Access is denied.

3_3_3.Finalorg.ajax4jsf.javascript.AjaxScript?rel=1350937585000, line 90 character 338

 

It works with the website secure address. Seems to be a cross domain scripting issue. Any workarounds for that?

 

Thanks

osamanosaman

Ok here is an update. The problem was <apex:form> had forceSSL="true" but when I set to false it doesn't allow to Login into the customer portal using Site.Login() because the Organization settings are set to use HTTPS. 

 

But when I set Require HTTP to true in the Site settings I can login to the portal and access the sites but all the pages I access Post Login are on http which I dont want.

 

Any insights?