Comments on: Mixed SSL Content Warning Secure Fixed

By: Parthasarathi

Parthasarathi — Thu, 03 Feb 2011 09:47:58 +0000

Hi, I need help.
My entire joomla site is running on https secured access.
One of my page is displaying weather forecast from third party website.

Since the third party weather forecast website is accessed by http - non secured, my web page is showing mixed content security warning on IE8 when I access this page, "Do you want to view only the web page content that was delivered securely?".

My question is, I still want to display the forecast data without showing the above mixed content warning. Can I achieve this using .htaccess file's RewriteRule concept? I don't understand much of its functionality as you explained. Can anyone help me please?

By: j-o-d-a

j-o-d-a — Sun, 04 Apr 2010 20:47:12 +0000

ah cool idea. But I wonder how long this "hack" works because the site still has mixed content in the end. I'd call it a "security" bug in the browsers mixed content detection. The browser can not detect the non-secure content right away because the secured webserver redirects to non secure content (later when accessing the subresources of the page).

By: Cd-MaN

Cd-MaN — Mon, 01 Jan 2007 20:36:34 +0000

From what I understand you imply that you can use mod_rewrite as mod_proxy. But from my experience this is not true (you can only rewrite to local URLs). Can you confirm / contradict this and eventually give some details (what extra configuration is needed, what version of Apache / mod_rewrite does this work with)?