We have a standard Joomla Bamboo website (no SSL) where we want to use the wrapper feature to provide our users with access to another web page which is secure as their member log-in area. This secure area is hosted on another server which we do not manage. So, the question is,

1) are we OK using wrapper to link to the secure pages of another site?

2) would our joomla server be retaining any artifacts of information (log in, etc.) that might compromise the security of the other server?

Conceptually, our web users would be using our Joomla website for general and public information about our services and programs. From our site, if they wish to use them, we have wrapper links to their secure member information area -- it is a great branding and convenience advantage to be able to do this if we are within the realm of acceptable practices.

Hi Stanton,

It's fine to do that. Though the secure site is displayed on the unsecure site, all interaction with it is strictly on the secure server. It is merely being shown on your site, through a frame. The users are still logging in only to the secure site and all login information remains with that site, not yours.

It is akin to just opening the remote site in another browser tab, from a link on your site. That is as far as the interaction goes.