You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@senssoft.apache.org by "Alex Ford (JIRA)" <ji...@apache.org> on 2017/06/14 18:12:01 UTC

[jira] [Commented] (SENSSOFT-169) Browser Blocking Mixed Content

    [ https://issues.apache.org/jira/browse/SENSSOFT-169?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16049465#comment-16049465 ] 

Alex Ford commented on SENSSOFT-169:
------------------------------------

Users who utilize UserAle.js should do so by using servers which are all configured correctly. If users do not want to deal with security measures, then they should run everything on HTTP/80... for development purposes only!

The correct solution is for the user to properly configure their environment so they don't have one server talking https with another server talking http. This is where the problem arises. There is not much we can do about this, except to help the user with their configuration problem.

> Browser Blocking Mixed Content
> ------------------------------
>
>                 Key: SENSSOFT-169
>                 URL: https://issues.apache.org/jira/browse/SENSSOFT-169
>             Project: SensSoft
>          Issue Type: Bug
>          Components: UserALE.js
>            Reporter: Joshua Poore
>            Assignee: Alex Ford
>   Original Estimate: 2h
>  Remaining Estimate: 2h
>
> We need a way of transmitting logs from the browser and that does not require us to turn off security permissions on the browser for mixed-media.
> 1. Short term permissions
> 2. updating dockers to reclassify log data so that it is not "mixed content"
> 3. SSL-enabled server



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)