- artevolveAsked on October 26, 2016 at 09:19 PM
I received an email when i completed a test submission that did not require a key to access the content. Please advisePage URL:
- artevolveAnswered on October 27, 2016 at 03:44 AMHi
Thank you for your reply and the information.
I'm a little confused by the information in the first link there is a paragraph that reads:
"Note: If you don't have a secure web server (i.e your website's address doesn't start with https) and you embed a secure form into the webpage, the end user's web browser will report the connection as not being entirely secure. in these instances, it may be better to provide a link to the form using its JotForm URL"
HOWEVER, There is an update at the top of the page in the same article on the same article that reads:
"UPDATE: We are happy to announce that by default, all form direct links and embed codes are now secured by default. You can learn more about this news on our blog post here."
My situation is this, I wish the data to be sent securely/ encrypted from a non httpS website to your servers, and then the submission data to be securely accessed by the key holder (in which case the submission data should not be received in the clients (unsecured) inbox) and the update quote above suggests this is possible.
Can you please clarify
Sent from Raj K Zaverys iPhone
- JotForm SupportcandyAnswered on October 27, 2016 at 04:34 AM
First of all, we are sorry for the confusion. As we have understood, you had created an encrypted form and then, you had received your notification email without encrypted.
We have tried your form on our side and we have got an encrypted notification email as the following:
In addition, we have checked your encrypted form and your form looks without encryption as the following screenshot:
It seems that you did not enable encrypt form data.
Please check and if you need further clarification do not hesitate to contact us.
- artevolveAnswered on October 27, 2016 at 07:44 PMHi
Can you please update me on this issue
- JotForm SupportJim_RAnswered on October 27, 2016 at 11:45 PM
Hello Raj, it's highly likely you missed the reply of my colleague. To view it, just click this link https://www.jotform.com/answers/972863#973060 to open your thread and view her reply.
I would also strongly recommend you read this very detailed guide about Encrypted Forms:
As a gentle reminder, there are a couple of things that you can't do with encryption enabled, all of which are mentioned on the link above.
- artevolveAnswered on October 28, 2016 at 04:44 AMHi Jim_r
Thank you for your reply. I have see. And read every response regarding this matter however the answer to my question doesn't appear to be addressed in any of them the one page that I thought had the answer was ambiguous - I pointed this out earlier. I feel I'm going in circles! Please help!
Ok so returning back to my question I simply want to know if embedding an encrypted form on a NON-ssl (NOT https) webpage will still confer the data in that submission security and encryption.
Perhaps you could copy and paste that part of the link page you think addresses this question.
Thank you for your support
Sent from Raj K Zaverys iPhone
- JotForm SupportChriistianAnswered on October 28, 2016 at 05:01 AM
I would like to inform you that it is indeed possible to embed an encrypted form on a non-ssl (not http) webpage. The submission that you receive from the form will remain encrypted.
Below is a relevant excerpt from this guide: Encrypted Forms and How to Use Them
"What is the difference between secure form and encrypted form?
The difference is that when you get the code for your secure form, you are getting the code (or link) for the form over HTTPS protocol. This means that there is a very strong encryption on it that creates a tunnel between our servers and the people filling out your jotforms.
As they submit the form, the form is also submitted over this same HTTPS (secure) protocol, so with just that, your forms are safe.
If you however send an email with the data clearly shown, it cancels the SSL - secure effect provided by the secure form.
Encrypted forms on the other hand will show the page over the plain protocol (HTTP), but will force the encryption to be made so that text can not be read by anyone other than you and anyone having your private key."
If you have further questions about the encrypted form, please let us know.
- artevolveAnswered on October 28, 2016 at 06:44 PMFANTASTIC! You guys are the best. So knowledgeable and professional. 10/10! You just won a paying custmer
- JotForm SupportJim_RAnswered on October 28, 2016 at 07:55 PM
Hello Raj, thank you for the warm feedback, we truly appreciate it.
Enjoy your weekend! :)