-
Notifications
You must be signed in to change notification settings - Fork 59
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Avoid mixed-content error with JSON-LD context in HTTPS #351
Comments
There is an equivalent issue at w3c/web-annotation#347 |
I'm going to mark this at-risk that we may also support HTTP |
I've added in a note about whether we would use http-only. I'm not sure of what the use-case is. @jasnell any ideas? can we just drop http: and use https: for everything? |
https for everything is fine but... that would affect the @context URLs. It would mean that all context URLs would need to use |
See also w3c/web-annotation#347 (comment) |
All the examples use the HTTPS URL now; it also resolves correctly. So I think this can be safely closed. |
Please Indicate One:
Please Describe the Issue:
If a document is loaded over HTTPS, JSON-LD libraries are subject to getting the mixed-content error in the browser if
@context
uses HTTP:https://www.w3.org/ns/activitystreams
Perhaps change (especially the examples) to use
https://www.w3.org/ns/activitystreams
to avoid this possibility altogether.The text was updated successfully, but these errors were encountered: