Please upgrade here. These earlier versions are no longer being updated and have security issues.
HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.

<Embed> Vanilla Behind https:// [SSL]

edited October 2012 in Vanilla 2.0 - 2.8

Hi guys, when trying to embed Vanilla on a site that is using SSL it seems that the Forum wont show. Could anyone share some light here if they have faced the same challenge and found a solution.


  • Options

    No problem with it. Must be your server settings relating to SSL.

  • Options

    No, im sure there is a relation. When checking for errors in chrome you get the following:

    "[blocked] The page at https://www.[Remote Url to Forum] ran insecure content from http://[mydomain original none secure domain]/forum/plugins/embedvanilla/remote.js."

    So clearly there is an issue of some sort here.
    Strangely enough, this seems to only affect Chrome.

  • Options
    AnonymooseAnonymoose ✭✭
    edited October 2012

    Different browsers interact with SSL servers differently. Check your server's SSL setup, check your certificates. Self signed? Might give errors in certain cases. Vanilla itself doesn't deal with SSL, it is something that the server handles.

  • Options

    You're serving a page with "mixed content". The SSL certificate on the site in which Vanilla is being embedded doesn't match the embedded Vanilla site, and so Chrome is correctly warning you that the SSL certificate doesn't match all the page's content.

    This has absolutely nothing to do with Vanilla, and everything to do with the fact that you're embedding insecure, unverifiable (from the SSL connection's point of view) content inside a secure web page.

Sign In or Register to comment.