[Bug 3151] New: Z30.50 Popup in cataloguing client creates non-ssl popup window
http://bugs.koha.org/cgi-bin/bugzilla3/show_bug.cgi?id=3151 Summary: Z30.50 Popup in cataloguing client creates non-ssl popup window Product: Koha Version: HEAD Platform: PC OS/Version: All Status: NEW Severity: normal Priority: P5 Component: Staff Client AssignedTo: oleonard@myacpl.org ReportedBy: rch@liblime.com Estimated Hours: 0.0 When using ssl interface, Z3950PopUp() uses window.open to create a popup window. The popup's window.location is non-ssl , which breaks the Import() function, giving the following in the javascript error console: permission denied to get property window.document -- Configure bugmail: http://bugs.koha.org/cgi-bin/bugzilla3/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching all bug changes.
http://bugs.koha.org/cgi-bin/bugzilla3/show_bug.cgi?id=3151 Ryan Higgins <rch@liblime.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|Z30.50 Popup in cataloguing |Javascript and SSL |client creates non-ssl popup| |window | --- Comment #1 from Ryan Higgins <rch@liblime.com> 2009-04-23 15:45:09 --- A similar security error exists for the Stage for Import button in cgi-bin/koha/tools/stage-marc-import.pl which generates a security error, cannot load content from http://--- with target https://--- -- Configure bugmail: http://bugs.koha.org/cgi-bin/bugzilla3/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching all bug changes.
http://bugs.koha.org/cgi-bin/bugzilla3/show_bug.cgi?id=3151 --- Comment #2 from Owen Leonard <oleonard@myacpl.org> 2009-04-23 15:49:59 --- Is this bug browser-specific? -- Configure bugmail: http://bugs.koha.org/cgi-bin/bugzilla3/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching all bug changes.
http://bugs.koha.org/cgi-bin/bugzilla3/show_bug.cgi?id=3151 Ryan Higgins <rch@liblime.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |INVALID --- Comment #3 from Ryan Higgins <rch@liblime.com> 2009-04-24 18:01:45 --- This in fact turns out to be implementation specific. For reference, the web server may need to send the header: X-Forwarded-Proto https In the case where ssl is unwrapped once beyond the load-balancing web server. Marking this invalid. -- Configure bugmail: http://bugs.koha.org/cgi-bin/bugzilla3/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching all bug changes.
participants (1)
-
bugzilla-daemon@liblime.com