Hello, guys. This issue is still important for our company. I've created issue in bug tracker #156<http://code.google.com/p/google-visualization-api-issues/issues/detail?id=156> As I inspected all Google APIs are loaded via HTTPS and mixed-content warning pop-ups only when I call *draw* function of visualization instance but NOT during loading.
So the problem is in drawing chart - viz API create IFRAME for every chart and those IFRAMEs doesn't have SRC attribute. Please try to add SRC attribute with some value, ie "javascript:false" it must work properly. I've attached simple example with my alerts to understand clearly where mixed-content warning pop-ups. Try to open attached example via HTTPS connection in IE 6 or 7. Warning pop-ups after "before draw" alert. Second attachment keeps headers log for that example in IE6. All received data came through HTTPS. Please look through this example. 5 февраля 2009 г. 17:03 пользователь Максим Барбул <[email protected]>написал: > Hello, google visualization API create IFRAME inside the container that you > pass into constructor when you create visualization. > And it doesn't have SRC tag. (i saw it in debuger) > > 2009/2/5 dubek <[email protected]> > > >> I just checked it with Pie Chart (using the example from >> >> http://code.google.com/apis/visualization/documentation/gallery/piechart.html >> ), and it causes the same warning (only in IE6 in HTTPS). >> >> Thanks, >> Dov. >> >> --~--~---------~--~----~------------~-------~--~----~ >> You received this message because you are subscribed to the Google Groups >> "Google Visualization API" group. >> To post to this group, send email to >> [email protected] >> To unsubscribe from this group, send email to >> [email protected]<google-visualization-api%[email protected]> >> For more options, visit this group at >> http://groups.google.com/group/google-visualization-api?hl=en >> -~----------~----~----~----~------~----~------~--~--- >> >> > > > -- > С уважением, > Максим Барбул > -- С уважением, Максим Барбул --- "Берегите время: это ткань, из которой соткана жизнь." Ричардсон С -- You received this message because you are subscribed to the Google Groups "Google Visualization API" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-visualization-api?hl=en.
GET /v40/wwwroot/https_pie.html HTTP/1.1 Accept: */* Accept-Language: en-us UA-CPU: x86 Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) Host: in101.ua3 Connection: Keep-Alive Cookie: secure_login=no; secure_connection=yes HTTP/1.0 200 OK Date: Wed, 30 Dec 2009 08:43:19 GMT Server: Apache/2.0.63 (FreeBSD) mod_ssl/2.0.63 OpenSSL/0.9.8e Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 755 Connection: close Content-Type: text/html; charset=utf-8 GET /jsapi HTTP/1.1 Accept: */* Referer: https://in101.ua3/v40/wwwroot/https_pie.html Accept-Language: en-us UA-CPU: x86 Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) Host: www.google.com Connection: Keep-Alive HTTP/1.1 200 OK Pragma: no-cache Expires: Fri, 01 Jan 1990 00:00:00 GMT Date: Wed, 30 Dec 2009 08:45:22 GMT Cache-Control: max-age=0, must-revalidate Content-Type: text/javascript; charset=utf-8 Content-Encoding: gzip X-Content-Type-Options: nosniff X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN Content-Length: 5230 Server: GFE/2.0 GET /uds/?file=visualization&v=1&packages=piechart HTTP/1.1 Accept: */* Referer: https://in101.ua3/v40/wwwroot/https_pie.html Accept-Language: en-us UA-CPU: x86 Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) Host: www.google.com Connection: Keep-Alive HTTP/1.1 200 OK Pragma: no-cache Expires: Fri, 01 Jan 1990 00:00:00 GMT Date: Wed, 30 Dec 2009 08:45:22 GMT Cache-Control: max-age=0, must-revalidate Content-Type: text/javascript; charset=utf-8 Content-Encoding: gzip X-Content-Type-Options: nosniff X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN Content-Length: 281 Server: GFE/2.0
