AccaliaDeElementia
commented
9 years ago Assigning @TwelveBaud to handle getting HTTPS set up on target site.
Closed TwelveBaud closed 9 years ago
AccaliaDeElementia
commented
9 years ago Assigning @TwelveBaud to handle getting HTTPS set up on target site.
Onyx47
commented
9 years ago Just got hit by this, but it didn't even render for me on my cloud9 instance over HTTPS.
Can we confirm this is cloud9 problem only?
TwelveBaud
commented
9 years ago I can't confirm or deny anything about cloud9 but I can confirm it still happens on the live site. (the four abarker avatars from the Discoparsing discodefinition)
Onyx47
commented
9 years ago But it does render there, yes?
On cloud9 they wouldn't load at all.
yamikuronue
commented
9 years ago Seems to be resolved by TDWTF going to https
When a DiscoDefinition includes an image, it's usually hosted on Discourse itself. Because The Daily WTF's installation does not support HTTPS and in any case does not use HTTPS by default, these images are loaded as mixed display content and a warning is logged in the console. For some crazy raisin, Google Chrome and Mozilla Firefox are deprecating this functionality and intend to remove it as soon as possible, so these images may disappear. In any case, they "break the lock" in the address bar.
Rewriting these URLs to use HTTPS is not possible since the server does not support HTTPS. We can proxy these images, but we don't currently plan to.
Short-term Solution: None. The images currently load and render in all current browsers; aside from a warning in the console, scary imagery in the address bar, and leaking information about which DiscoDefinition is being viewed, everything's working properly.
Long-term Solution: Contact Alex Papadimoulis at @apapadimoulis (on the forums) and help him get SSL set up.