Plugin information is not visible when accessing Confluence with HTTPS

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

Plugin information is not visible when accessing Confluence with HTTPS

Marcin Zajączkowski
Hi,

Confluence on Codehaus can be accessed with HTTPS. Unfortunately the
Sonar plugin pages (like https://docs.codehaus.org/display/SONAR/Pitest)
reference plugin information from other server via HTTP (like
http://update.sonarsource.org/plugins/pitest-confluence.html). Firefox
and Chrome block that content by default and part of a page is empty.

It would be good to change the reference link also to HTTPS, but as I
checked that content (on update.sonarsource.org) is not available via
HTTPS. It forces users to use HTTP which (among others) jeopardizes
attacks with malicious content injection especially in public/shared
wifi networks.

Could you make update.sonarsource.org accessible with HTTPS and switch
the references in Confluence on Codehaus?

Marcin

--
http://blog.solidsoft.info/ - Working code is not enough


---------------------------------------------------------------------
To unsubscribe from this list, please visit:

    http://xircles.codehaus.org/manage_email