We're currently using APE successfully in an internal site that is otherwise secure.
For this to work, we had to make the following concessions: 1) use JSONP for transport (to get around same-origin policy for SSL) 2) disable mixed-content blocking for this site in Firefox and Chrome (this setting isn't persistent) We aren't transmitting any secure content via APE currently, but we do transmit our inlinepush password "in the clear" and we have to tell the browser to stop blocking mixed content each time we start a new browser session. Currently, no browser has a site-specific white list for not blocking mixed content. How much work would it be to implement native SSL in APE server? Is this something I could help with? My C++ is poor, but between me and one of our other developers we may be able to help. Thanks, -Wes -- -- You received this message because you are subscribed to the Google Groups "APE Project" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/ape-project?hl=en --- APE Project (Ajax Push Engine) Official website : http://www.ape-project.org/ Git Hub : http://github.com/APE-Project/ --- You received this message because you are subscribed to the Google Groups "APE Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
