Some Eclipse Foundation services are deprecated, or will be soon. Please ensure you've read this important communication.

Bug 301280

Summary: [upload] Upload widget causes a unsecure content warning in a session-based lb-scenario
Product: [RT] RAP Reporter: Stefan Röck <stefan.roeck>
Component: RWTAssignee: Stefan Röck <stefan.roeck>
Status: RESOLVED FIXED QA Contact:
Severity: normal    
Priority: P3    
Version: 1.3   
Target Milestone: 1.3 M6   
Hardware: All   
OS: All   
Whiteboard:
Attachments:
Description Flags
Patch proposal none

Description Stefan Röck CLA 2010-01-29 12:23:56 EST 
This can occur in a scenario with a session based loadbalancer which creates new request for distributing to their app servers. The protocol scheme (http or https) must not necessarily correspond to the original request's scheme. 
Tested with Firefox 3.6 and IE 8

In general service handlers should use relative urls if they're used internally only.
Comment 1 Stefan Röck CLA 2010-01-29 12:25:35 EST 
Created attachment 157647 [details]
Patch proposal

Tests are pending.
Comment 2 Stefan Röck CLA 2010-02-08 04:35:15 EST 
Applied patch to CVS head.