search

google-code-export / svgweb

Automatically exported from code.google.com/p/svgweb
Other
1 stars 1 forks source link

sessions prevent <image> elements from displaying in IE over https #532

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
Drop the attached files into the root of a web server that serves pages over 
https. (The zip contains the version of svgweb I'm using.)

Navigate to svgImageTest.html over https in IE8 

What is expected: an image with a black background and red text that says "This 
should be visible".

What actually happens: nothing is displayed.

The expected result appears in Firefox, Chrome and Opera

Client details
--------------
svgweb version: r1115
OS: Windows 7
Browser: Internet Explorer 8
flash version: 10,0,45,2

Server details
--------------
OS: Ubuntu 9.10
Web server: Apache/2.2.12 (Ubuntu)
PHP: 5.2 - session.cookie_secure is On
Self signed SSL certificate

Original issue reported on code.google.com by matthew....@googlemail.com on 30 Jul 2010 at 5:18

GoogleCodeExporter commented 9 years ago 
[deleted comment]
GoogleCodeExporter commented 9 years ago 
the files

Original comment by matthew....@googlemail.com on 30 Jul 2010 at 5:19

Attachments:

GoogleCodeExporter commented 9 years ago 
I should mention that what causes the image to not be displayed is the fact 
that session_start() is called in the file that generates the jpeg. 

The generated jpeg works as expects outside the SVG, in IE8, over https.

Original comment by matthew....@googlemail.com on 30 Jul 2010 at 5:22

GoogleCodeExporter commented 9 years ago 
The expected result appears in Firefox, Chrome and Opera _With flash rendering 
forced_

Original comment by matthew....@googlemail.com on 30 Jul 2010 at 5:27

GoogleCodeExporter commented 9 years ago 
The problem is that the session_start() routine sets HTTP headers to turn of 
caching of the returned page.

The problem is a quirk with IE and https where the image is removed from the 
cache before flash has access to it.

If you set a different cache value (different than nocache) before calling 
start_session(), the problem should go away.

    session_cache_limiter('must-revalidate');
    session_start();

http://www.bigresource.com/FLASH-HTTPS-and-Flash-caching-problems-for-IE-specifi
cally-njqfIlciWM.html
http://www.php.cn/php/function.session-cache-limiter.html
http://www.webmasterkb.com/Uwe/Forum.aspx/flash/13048/IE-Browser-SSL-Problem

This is not a problem that can be addressed within SVG Web.

Original comment by grick23@gmail.com on 1 Aug 2010 at 11:49

GoogleCodeExporter commented 9 years ago 
Thanks for your time.

The fix you've suggested works perfectly.

Original comment by matthew....@googlemail.com on 2 Aug 2010 at 4:30