Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

HTTPS URL for media is saved as HTTP #17

Open
fsesterh opened this Issue Jan 30, 2018 · 1 comment

Comments

Projects
None yet
1 participant
@fsesterh
Copy link

fsesterh commented Jan 30, 2018

When inserting HTTPS media, for instance a HTTPS url from YouTube, the URL is saved as HTTP. This then leads to a "mixed content" error with modern browsers, because loading HTTP content within a HTTPS context is blocked.

You can easily check this by creating and saving a HTTPS encrypted media object. When editing a youtube video you will see that the iframe is pointing to a HTTP url, like this:

...iframe width="360" height="240" src="http://www.youtube.com/embed/YE7VzlLtp-4" frameborder=0></iframe...

Instead of

...iframe width="360" height="240" src="httpS://www.youtube.com/embed/YE7VzlLtp-4" frameborder=0></iframe...

Moodle: 3.3.4 (Build: 20180118)
Exabis Portfolio: 4.6.2 (Build: 2017121101)

Steps to reproduce

  • activate the exabis portfolio block in a course
  • create a new personal/custom view
  • insert a HTTPS URL, for instance: https://www.youtube.com/watch?v=YE7VzlLtp-4
  • save the media object
  • edit the media object
  • confirm that the URL for the iframe has been rewritten to unencrypted HTTP
@fsesterh

This comment has been minimized.

Copy link
Author

fsesterh commented Jan 30, 2018

Updated OP with version and build numbers for Moodle and Exabis Portfolio.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.