Really noddy question...
Currently testing website for clientCo. For the past 2 months we've been logging issues around mixed content messages. IE8 is completely bust - none of the AJAX calls work unless you explicitly configure the browser to allow mixed content.
The developers (a well known offshore outfit) seem to be struggling with this - they've brought in consultants for what is known as "the IE8 issue" but been unable to resolve it. Other browsers (e.g firefox) show broken padlock but don't actually give a warning message.
The site is on apache and I understand the https is configured there. My background is IIS and we always set up https in the code, so my understanding of apache config is based on my good friend google.
I have no access to source, but looking at the html, the calls to js and many of the images are using relative paths.
When I use http watch to see what is being delivered, all the js and some of the images are showing as coming over http. The main page content is shown as https
Onshore rep of offshore company is telling me that apache steps in and delivers the content over https anyway. But http watch (and firebug and everything else!) shows http.
If http watch shows http does that mean it's http? Either there's a gap in my understanding, or they're missing the obvious. Don't want to escalate it if I'm gonna look stupid...
TIA
Currently testing website for clientCo. For the past 2 months we've been logging issues around mixed content messages. IE8 is completely bust - none of the AJAX calls work unless you explicitly configure the browser to allow mixed content.
The developers (a well known offshore outfit) seem to be struggling with this - they've brought in consultants for what is known as "the IE8 issue" but been unable to resolve it. Other browsers (e.g firefox) show broken padlock but don't actually give a warning message.
The site is on apache and I understand the https is configured there. My background is IIS and we always set up https in the code, so my understanding of apache config is based on my good friend google.
I have no access to source, but looking at the html, the calls to js and many of the images are using relative paths.
When I use http watch to see what is being delivered, all the js and some of the images are showing as coming over http. The main page content is shown as https
Onshore rep of offshore company is telling me that apache steps in and delivers the content over https anyway. But http watch (and firebug and everything else!) shows http.
If http watch shows http does that mean it's http? Either there's a gap in my understanding, or they're missing the obvious. Don't want to escalate it if I'm gonna look stupid...
TIA
Comment