ICEfaces-EE
  1. ICEfaces-EE
  2. IPCK-451

<ice-cc:slider/> + SSL causes non-secure content to be loaded

    Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: EE-1.8.2.GA_P05
    • Fix Version/s: EE-1.8.2.GA_P07
    • Component/s: Facelet Components
    • Labels:
      None
    • Environment:
      IE9, SSL
    • Assignee Priority:
      P1
    • Salesforce Case Reference:

      Description

      The <ice-cc:slider/> composite component is implemented with the YUI library. The generated HTML includes JS from Yahoo CDN (yui.yahooapi.com). When viewed with IE9 + SSL, a security warning prompt appears indicating that non-secure content is being loaded.

      The icefaces-enterprise-comps-showcase.war can be used to reproduce the issue. Setting up SSL with Tomcat requires the following:

      1. $JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA

      This command will create a new file, in the home directory of the user under which you run it, named ".keystore". To specify a different location or filename, add the -keystore parameter, followed by the complete pathname to your keystore file, to the keytool command shown above.

      2. Uncomment the following in Tomcat's server.xml and also add the SSL specific attributes:

      <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
                     maxThreads="150" scheme="https" secure="true"
                     keystoreFile="/Users/apple/.keystore" keystorePass="changeit"
                     clientAuth="false" sslProtocol="TLS" />
      1. ipck-451-IE6.png
        20 kB
      2. ipck-451-IE7.png
        53 kB
      3. ipck-451-IE8.png
        106 kB

        Activity

          People

          • Assignee:
            Philip Breau
            Reporter:
            Tyler Johnson
          • Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: