have you tried the forums at wordpress.org , I think I remember seeing one or two threads there about what you need to do to make cforms https compliant.

I nearly lost this post because 'the answer to the math question was incorrect' – I think the question changed on me. I almost didn't notice the warning but happened to double check to see if my post was there. Managed to retrieve it with the backbutton.

I've done some digging in the code and I believe the problem comes from the way cforms stores it's own version of the root directory. I made a change on line 95 of cforms.php:

$cforms_root = $cformsSettings['global']['cforms_root'];

first I changed it to:

$cforms_root   = get_bloginfo('wpurl') . "/wp-content/plugins/cforms";

However this did NOT work and I'm baffeled as to why because I expected the https-for-wordpress filter to turn the result of get_bloginfo('wpurl') into its https version. Maybe someone with more understanding can illuminate me.

So then I changed it to the relative path:

$cforms_root   = "/wp-content/plugins/cforms";

and this works for me. (only works if WP is in the root, if not in the root need to modify path accordingly)

So maybe in future release of cforms this can be addressed. Why does cforms need its own setting for cforms_root when it can be derived from wpurl? Howabout just using a relative path? One thing that bugs me a bit about WP in general is the heavy reliance on full paths in URLs instead of relative paths – it becomes a major pain when one needs to move a site and requires workarounds such as https-for-wordpress when working with https.

I am in the same boat as Aidin.  I would like for cforms to work with the HTTPS For WordPress plugin.

The solution provided by secure_man is the same I found on the WP forums, set the URL in the General Settning of WP to https://  However, this makes the whole site secure. 

I don't want that, I only have one page that needs to be secure a checkout page, which doen't even use cforms but falls victim to security error because of the cform .js links in the header.

It sounds like if cforms did use siteurl, wpurl or url it would work or at least that is what I am gleening from the HTTPS For WordPress plugin page;

http://wordpress.org/extend/pl…..-wordpress

Thanks!

p.s.

Oliver, if you can tell me how to make the change so I can implement it in my install of cforms 11 that would work too.  Unfortunatley, this not working has thrown a wrench in my project.

I'm having the same kind of problem posed by needing to use HTTPS calls on only one page (credit card update) of my membership blog.

cForms is using the http call and even though I'm not using cForms on the check out page, we all know that it puts it's javascript call on every page.

I love the plugin, it is fantastic, but there has to be a work-around.  Either to only call it conditionally on pages where you are using a form, or to ahve it call itself in a way that would allow for using HTTPS correctly.

Anyon find a solution?

I made a change on line 99 of cforms.php (Version: 11.3):

//$cforms_root = $cformsSettings['global']['cforms_root'];
$cforms_root   = WP_SITEURL . "/wp-content/plugins/cforms";

it runs on my Site.