I considering switching my appengine app from the "old" google auth to federated login using openid.
I am using the new userservice api introduced in 1.3.4. I have a test app running at http://listshuffle.appspot.com/ (sorry for the terrible ui... and complete lack of functionality, it does show the problem though...). The problem I have is that in FireFox (tested on 3.6.3 on both OS X and windows) there is an ugly warning displayed just before the redirect back to my page from google, (after the user allows my app). This only happens in Firefox and only for google openid: yahoo and aol does not have the problem. In Safari and Chrome there is no warning. The Firefox warning message says: ================= Security Warning: Although this page is encrypted, the information you have entered is to be sent over an unencrypted connection and could easily be read by a third party. Are you sure you want to continue sending this information? ================= I am using: https://www.google.com/accounts/o8/id as my provider, setting it to null or http://www.google.com/accounts/o8/id (no https) does not help. Any ideas? Thanks! // Tomas -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en.
