Re: [mezzanine-users] SSL difficulties
Thanks Iain, I should have mentioned it but this only happens when
SSL_FORCED_PREFIXES_ONLY is True (which is the default behavior). When
it's False things work great, but in the particular situation where I
encountered it this time setting that to False isn't a viable option; there
are pages that have non ssl iframes on them so they need to only be
accessed via an unsecured connection to avoid insecure content
warnings/errors in browsers.
Thanks!
On Mon, May 4, 2015 at 2:20 PM, Iain Mac Donald
wrote:
>
> I just deployed a 3.1.10 site and didn't encounter the problems you
> describe with SSL and TinyMCE.
>
> Here are the SSL related settings I used:
>
> SSL_ENABLED = True
> SSL_FORCED_PREFIXES_ONLY = False
> SSL_FORCE_URL_PREFIXES = ("/admin",)
> "mezzanine.core.middleware.SSLRedirectMiddleware",
>
> Have you tried this in more than one browser?
>
> Regards,
> Iain.
>
> --
> You received this message because you are subscribed to the Google Groups
> "Mezzanine Users" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to mezzanine-users+unsubscr...@googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
>
--
You received this message because you are subscribed to the Google Groups
"Mezzanine Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to mezzanine-users+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Re: [mezzanine-users] SSL difficulties
I just deployed a 3.1.10 site and didn't encounter the problems you
describe with SSL and TinyMCE.
Here are the SSL related settings I used:
SSL_ENABLED = True
SSL_FORCED_PREFIXES_ONLY = False
SSL_FORCE_URL_PREFIXES = ("/admin",)
"mezzanine.core.middleware.SSLRedirectMiddleware",
Have you tried this in more than one browser?
Regards,
Iain.
--
You received this message because you are subscribed to the Google Groups
"Mezzanine Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to mezzanine-users+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
[mezzanine-users] SSL difficulties
Let me preface this by saying I may be missing something obvious =)
In my experience turning on SSL breaks parts of TinyMCE in the backend.
Most (maybe all) of the TinyMCE popups, add link, edit html, etc..,
reference /asset_proxy/ which is not in the list of SSL prefixes. As a
result if the admin is served over SSL, the default behavior when ssl is
enabled, those popups no longer work.
An easy workaround is to add /asset_proxy/ to the SSL prefixes, but this
then breaks TinyMCE inline editing, via the editable tag, on any frontend
page that isn't served over SSL. On those pages /asset_proxy/ is initially
referenced without SSL but then redirected to the secure version, the
redirect breaks the popup.
My suggestion is that the Mezzanine SSLRedirectMiddleware also check a list
of prefixes that should be accessible securely or non securely, i.e. never
redirected. By default I think those would be:
('/asset_proxy/', '/displayable_links.js')
Am I missing something? If not and my suggestion sounds like a good idea I
will put together a pull request.
Thanks!
--
You received this message because you are subscribed to the Google Groups
"Mezzanine Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to mezzanine-users+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
