Http:// to Https:// to Http://
I have my cart.php page currently redirected to our https checkout.php page for checkout. The problem we're having is once it goes to checkout.php, it stays on the https domain until the user closes the window. Now if the user wants to change their order or add an item, they get a pop up window asking them if they want the non-secure data to also be transferred. What am I doing wrong?