Why not using https for payment related pages?

ciznx · May 2015

When I plan to pay and buy a license, I found that this purchase page is not a secure page powered by https.
And when I try to find your form action target via HTML source, there are no https connections found to your own server either.

Why don't you make it https? I want a secure payment environment.
Thanks.

nescafe · May 2015

"Pay with VISA or Mastercard" redirects to https://secure.worldpay.com/...
"Pay with Amex or PayPal" redirects to https://www.paypal.com/...

Thus, the actual payment ("payment environment") is secured by https.

The license registration process, where the registration name is accepted, is not secured. But your wish ("I want a secure payment environment.") is already granted by WorldPay / PayPal

Edit:
On a side note, the forum could also use some https, especially the logon portion... POST to http://forum.linqpad.net/entry/signin is currently unencrypted and password plain text-readable.

JoeAlbahari · May 2015

Good call about the forum. It's hosted, which makes it more complicated. I'll look into that.

ciznx · June 2015

Hi @nescafe, thanks for your reply.

I see, I understand your flow now, thanks.
Thank you for your wonderful LinqPad product, by the way.

Why not using https for payment related pages?

Comments