2012/2/10 William Muriithi <[email protected]>: > Morning > > When I user visit the self service tool, chrome gives a SSL warning an > (The https is in red and with cancelled symbol). The certificate is > fine, as this is what I get from the browser when I click on the > flagged https section. > > Your connection to ssp.example.com is encrypted with 256-bit > encryption. However, this page includes other resources which are not > secure. These resources can be viewed by others while in transit, and > can be modified by an attacker to change the behavior of the page. > > The Google Chrome console shows those kind of SSL errors below. What > would I need to modify inorder to make captcha calls through SSL and > hence make chrome happy? >
Hi, indeed, I just see that the recaptcha library allow the use of SSL : function recaptcha_get_html ($pubkey, $error = null, $use_ssl = false) So to correct the bug, we should add a configuration option, and use it in every recaptcha_get_html call. Clément. _______________________________________________ ltb-users mailing list [email protected] http://lists.ltb-project.org/listinfo/ltb-users
