HTTPS blocks iframes

[maddyblue]

Feeds with iframes (commonly used for video) don't work by default after the switch to HTTPS. In Chrome, there's a little shield you can click to enable unsafe scripts, a setting which lasts until the tab is closed. It would be good to have these work again. It is unlikely that we can change the browser security settings, so perhaps allowing non-HTTPS connections is a decent solution. Needs thought.

[wdesmet]

I believe one trick the old google reader used to use was to parse out the youtube/vimeo links and paste them into the message. This opens up a whole new set of security issues of course.

[kasbah]

What would be really cool, is if they showed up just as images of the video player which link to the video site. Not sure on the feasibility of that though.