#565: Always using HTTPS for logged-in users
--------------------------+----------------------------------
Reporter: skaplun | Owner:
Type: enhancement | Status: new
Priority: major | Milestone: v1.1
Component: WebSession | Version:
Resolution: | Keywords: HTTPS session cookie
--------------------------+----------------------------------
Comment (by jcaffaro):
It should not be forgotten that embedding for eg. images though http on an
https page would lead to a complain from the browser (IE seems to be quite
strict on that point). This is an issue for external images that cannot be
served trough https. For eg. the book cover at
http://cdsweb.cern.ch/record/1100851?of=HB
A (annoying) workaround would be to load the image via Javascript, so that
browser would (maybe) not complain.
--
Ticket URL: <http://invenio-software.org/ticket/565#comment:1>
Invenio <http://invenio-software.org>
