Subtext icon indicating copy to clipboard operation
Subtext copied to clipboard

Published 20 hours ago verified publisher icon haacked

Blog pages render without CSS when browsing to the site using HTTPS

Open jeremy-jameson opened this issue 13 years ago • 0 comments

Using HTTPS, browse to a Subtext blog page in which the skin specifies an absolute URL for the CSS file using HTTP (e.g. http://www.technologytoolbox.com/Themes/Theme-1.0/Theme-1.0.5.min.css). In this scenario, Firefox (6.0.2) renders the page as expected, but Internet Explorer 9 does not (it renders without CSS and displays a warning - "Only secure content is displayed" -- along with a button to "Show all content").

Ideally, the CSS file could be specifed using a server-relative URL (e.g. "/Themes/Theme-1.0/Theme-1.0.5.min.css") but this doesn't currently work in Subtext 2.5).

Workaround:

Specify an absolute URL for the CSS file using HTTPS (e.g. https://www.technologytoolbox.com/Themes/Theme-1.0/Theme-1.0.5.min.css).

jeremy-jameson avatar Jan 31 '12 19:01 jeremy-jameson