Hello,
I have encountered the cross-site request problem when browsing gadgets in
security browsing mode (https), specially with gadgets using the opensocial
feature. After some investigations, I found that in container.js, it is
hardcoding the "http:" scheme in opensocial configuration (see below)
* "opensocial" : {*
* // Path to fetch opensocial data from*
* // Must be on the same domain as the gadget rendering server*
* "path" : "http://%host%${CONTEXT_ROOT}/rpc",*
* ...*
when I remove the "http:", it works fine on both http and https.
So I'm wondering if I can remove "http:", OR is there any way to make it
work in both http and https modes ?
Can somebody please give an advice for the problem ?
**
--
*Trong Tran*
*(+84) 983841909 | *[email protected]
Twitter: http://twitter.com/trongtt**
