Some Eclipse Foundation services are deprecated, or will be soon. Please ensure you've read this important communication.

Bug 414354

Summary: Mixed Content Warning in IE8 on SSL
Product: [RT] RAP Reporter: Arnaud MERGEY <a_mergey>
Component: RWTAssignee: Project Inbox <rap-inbox>
Status: RESOLVED FIXED QA Contact:
Severity: normal    
Priority: P2 CC: ivan, rsternberg, tbuschto
Version: 2.1   
Target Milestone: 2.2 M2   
Hardware: All   
OS: All   
Whiteboard: sr212
Attachments:
Description Flags
Warning popup screenshot none

Description Arnaud MERGEY CLA 2013-08-03 06:37:45 EDT 
Accessing my RAP application using https with IE8, I have the mixed content warning popup from IE.

I am able to reproduce with rapdemo 

This blog provide some possible cause for this:
http://blog.httpwatch.com/2009/09/17/even-more-problems-with-the-ie-8-mixed-content-warning/

Trying to investigate I record request sent from IE to server when accessing workbench demo, full result for the first page is above

If it can help to find the issue, the warning popup block page loading, 
until I choose Yes or No, so then the immediate request is
https://192.168.0.10:8443/rapdemo2_1/app?servicehandler=org.eclipse.rap.serverpush&cid=250f8559
the last request before the popup is 
the last request before the popup is 
https://192.168.0.10:8443/rapdemo2_1/rwt-resources/themes/images/4cdd7012.png

The warning is always displayed before the serverpush request.

00:00:00.000	It's tea-time									
+ 0.000				0.069	731	169	POST	200	json	https://192.168.0.10:8443/rapdemo2_1/app;jsessionid=E9A99051C4573BB80996C19529664065?cid=4f8c4f4d
+ 0.083		3		0.015	620	409	GET	200	png	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/themes/images/68b89865.png
+ 0.094				0.007	0	0	GET	(Aborted)		https://192.168.0.10:8443/rapdemo2_1/rwt-resources/generated/90970f9f.gif
+ 0.113				0.003	0	0	GET	(Aborted)		https://192.168.0.10:8443/rapdemo2_1/rwt-resources/generated/90970f9f.gif
+ 0.153				0.004	528	0	GET	(Aborted)		https://192.168.0.10:8443/rapdemo2_1/rwt-resources/generated/90970f9f.gif
+ 0.168				0.003	528	0	GET	(Aborted)		https://192.168.0.10:8443/rapdemo2_1/rwt-resources/generated/90970f9f.gif
+ 0.181				0.003	528	0	GET	(Aborted)		https://192.168.0.10:8443/rapdemo2_1/rwt-resources/generated/90970f9f.gif
+ 0.207		3		0.015	620	486	GET	200	png	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/themes/images/6edf2b8a.png
+ 0.211				0.052	0	0	GET	(Aborted)	png	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/themes/images/ba1d7000.png
+ 0.220				0.043	0	0	GET	(Aborted)	png	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/themes/images/3aee7904.png
+ 0.226				0.037	0	0	GET	(Aborted)	png	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/themes/images/fb90316c.png
+ 0.285				0.003	0	0	GET	(Aborted)		https://192.168.0.10:8443/rapdemo2_1/rwt-resources/generated/cb52ad0b.gif
+ 0.290				0.002	0	0	GET	(Aborted)		https://192.168.0.10:8443/rapdemo2_1/rwt-resources/generated/4e7aad48.gif
+ 0.297				0.002	0	0	GET	(Aborted)		https://192.168.0.10:8443/rapdemo2_1/rwt-resources/generated/4e7aad48.gif
+ 0.304				0.002	0	0	GET	(Aborted)		https://192.168.0.10:8443/rapdemo2_1/rwt-resources/generated/4e7aad48.gif
+ 0.353		1		0.181	0	0	GET	(Cache)	javascript	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/rap-client.js
+ 0.541				0.002	0	0	GET	(Cache)	javascript	https://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js
+ 0.544		2		0.005	0	0	GET	(Cache)	javascript	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/resources.js
		9		0.549	3555	1064	18 requests			
00:00:00.587	It's tea-time									
+ 0.000		1		0.033	444	3927	GET	200	html	https://192.168.0.10:8443/rapdemo2_1/app
+ 0.033		1		0.144	621	114	GET	304	png	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/themes/images/3c7d3330.png
+ 0.067		1		0.171	611	114	GET	304	javascript	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/rap-client.js
+ 0.069		1		0.393	490	161	GET	304	javascript	https://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js
+ 0.071		2		0.266	608	114	GET	304	javascript	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/resources.js
+ 0.473		1		0.004	0	0	GET	(Cache)	json	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/rap-rwt.theme.Fallback.json
+ 0.489		1		0.004	0	0	GET	(Cache)	json	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/rap-rwt.theme.Default.json
+ 0.600		2		0.272	931	44809	POST	200	json	https://192.168.0.10:8443/rapdemo2_1/app?cid=250f8559
+ 1.372		1		0.036	548	114	GET	304	png	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/themes/images/dd851a27.png
+ 1.380		1		0.029	548	114	GET	304	png	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/themes/images/bf671604.png
+ 1.406		1		0.002	0	0	GET	(Cache)	png	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/themes/images/60504cca.png
+ 1.413		1		0.002	0	0	GET	(Cache)	png	https://192.168.0.10:8443/rapdemo2_1/rwt-resources/themes/images/4cdd7012.png
		14		1.415	4801	49467	12 requests			
00:00:07.901	It's tea-time									
+ 0.000				0.004	597	233	GET	200		https://192.168.0.10:8443/rapdemo2_1/app?servicehandler=org.eclipse.rap.serverpush&cid=250f8559
+ 0.040				0.072	704	215	POST	200	json	https://192.168.0.10:8443/rapdemo2_1/app?cid=250f8559
+ 0.122				0.005	597	233	GET	200		https://192.168.0.10:8443/rapdemo2_1/app?servicehandler=org.eclipse.rap.serverpush&cid=250f8559
+ 0.159				0.067	704	263	POST	200	json	https://192.168.0.10:8443/rapdemo2_1/app?cid=250f8559
				0.226	2602	944	4 requests
Comment 1 Arnaud MERGEY CLA 2013-08-03 06:41:47 EDT 
Created attachment 234074 [details]
Warning popup screenshot
Comment 2 Ivan Furnadjiev CLA 2013-08-05 03:56:42 EDT 
In order to avoid "mixed content warning" we need absolute URLs for background images (see bug 289822 and bug 311694). Before this was done by Alias.js, which has been removed in RAP 2.0M2 (see bug 384157). We can consider this as a regression.
Comment 3 Ivan Furnadjiev CLA 2013-08-05 04:17:45 EDT 
... see also this bug 285815.
Comment 4 Tim Buschtoens CLA 2013-09-03 06:14:39 EDT 
As of commit 761b3ac34baac0ffc6255c3dd6c38134c59d913f URLs are re-written to absolute paths before a background-image is set (in old IE only). Waiting for confirmation that this fixes the issue before closing the bug.
Comment 5 Tim Buschtoens CLA 2013-09-03 08:53:05 EDT 
Widget.js#styleBackgroundImage and Text.js still use relative URLs...
Comment 6 Tim Buschtoens CLA 2013-09-03 09:36:50 EDT 
commit 175d958ed71fedbe3a0acc512eed39b830f1d87c takes care of those other two.
Comment 7 Ivan Furnadjiev CLA 2013-09-03 09:47:21 EDT 
I've tested both Controls and Workbench demo with SSL and IE8 and the mixed content warning is gone. Arnaud, can you confirm this?
Comment 8 Arnaud MERGEY CLA 2013-09-03 09:56:52 EDT 
I will check this ASAP.
Do you plan to fix it also for 2.1.1 ?
Comment 9 Ivan Furnadjiev CLA 2013-09-03 10:00:42 EDT 
For 2.1.1 is too late... but I think for 2.1.2 yes.
Comment 10 Arnaud MERGEY CLA 2013-09-05 05:22:02 EDT 
I confirm it seems fixed now, tested ok on my apps
Comment 11 Ralf Sternberg CLA 2014-01-27 11:38:25 EST 
+1 for backporting to 2.1.2.
Since this is not a trivial change, I think that unless we can use Gerrit for maintenance branches, we should have an a patch for 2.1.2 that aggregates both commits.
Comment 12 Ivan Furnadjiev CLA 2014-01-29 17:55:25 EST 
(In reply to comment #11)
> +1 for backporting to 2.1.2.
> Since this is not a trivial change, I think that unless we can use Gerrit for
> maintenance branches, we should have an a patch for 2.1.2 that aggregates both
> commits.
There is still problem with this fix - see bug 426958. I prefer not to backport this fix till bug 426958 is fixed.
Comment 13 Tim Buschtoens CLA 2014-01-31 06:35:22 EST 
Changes for RAP 2.1.2

https://git.eclipse.org/r/#/c/21380/

This includes the changes (including all tests) from
commit 761b3ac34baac0ffc6255c3dd6c38134c59d913f
commit 175d958ed71fedbe3a0acc512eed39b830f1d87c
commit 00ef0c690d22bdc4d20925ab41a7023880912460 (of Bug 426958)

JS Tests are OK in emulated IE8 and all current browser. I verified the URLs are rewritten in the DOM explorere and tested the missing images issue with "/" in the URL query string.
Comment 14 Ivan Furnadjiev CLA 2014-02-04 10:05:25 EST 
Backported to 2.1-maintenance branch with change https://git.eclipse.org/r/21380