Early Bird Registration for DrupalCon Portland 2024 is open! Register by 23:59 PST on 31 March 2024, to get $100 off your ticket.
Similar to #1357044: Mollom Statistics Page Breaks SSL, but this seems to be a different issue.
The specific error is
The page at [URL] displayed insecure content from http://mollom.com/site-manager/feed?key=nnnnnnnnn.
Comment | File | Size | Author |
---|---|---|---|
#3 | mollom.protocol.3.patch | 495 bytes | eshta |
mollom_ssl.png | 182.9 KB | grendzy |
Comments
Comment #1
sunHm. The schema seems to be hard-coded in the .swf that is hosted on mollom.com; i.e., not part of the Mollom module.
I've reported this issue upstream. Will leave this issue open until the upstream issue is fixed.
Comment #2
eshta CreditAttribution: eshta commentedThi has been fixed now. The swf will pull data from http or https depending on the protocol of the calling page.
Please re-open if you continue to see any ssl errors.
Comment #3
eshta CreditAttribution: eshta commentedSpoke too soon. In order to enable this we also need to enable javascript access from the SWF in order to utilize scripting to read the protocol from the url. I'm attaching a patch that addresses this.
Comment #4
sunLooks good to me.
Comment #5
eshta CreditAttribution: eshta commentedThanks - but the more I think of it. This doesn't have to be necessary. The module includes the swf from a secure domain already, there really isn't a reason to load the data from an insecure protocol other than a minimal speed gain. Perhaps the url for the feed should just always be secure.
Comment #6
eshta CreditAttribution: eshta commentedThis should be fixed based on some work done to the statistics SWF itself and no longer needs the patch. Since all modules include the SWF from the secure domain, the data is just pulled from the secure domain as well. Therefore no changes are needed to Flash permissions, etc.