[Xerte] Re: Query about Xerte https access

Pat @ Pgogy xerte at pgogywebstuff.com
Wed Jul 24 18:00:35 BST 2013 

It'll be the site URL?

In chrome it goes spare

Saw it yesterday at SOAS

On 24 Jul 2013, at 17:28, "Smith, John" <J.J.Smith at gcu.ac.uk> wrote:

> Hi Jamie, we will definitely look into this for you and it shouldn't be that laborious to fix.
> 
> What would really help us though is having a public link to an offending learning object so that we can trace the source of the problem. There's a limit to how many different eventualities that we can test for during development.
> 
> If this is possible, either by making, an lo public or by giving us a temporary login to a secure site, then it will let us see the errors first hand.
> 
> You can keep these details off list by emailing when to Julian, Pat or myself and we'll try to patch it soon.
> 
> Regards
> 
> John Smith
> Learning Technologist
> School of Health and Life Sciences
> 
> Sent from Samsung Galaxy SII
> 
> 
> 
> Jamie Wood <jwood at lincoln.ac.uk> wrote:
> 
> 
> Hi,
> 
> We're running a Xerte project here at Lincoln and have come across a problem with Chrome (and other browsers) running Xerte over https. I've copied over a query from our Centre for Educational Research and Development below about this technical issue. Can anyone help with this and the questions in the paragraphs within the dotted lines below?
> 
> ------------
> The issue seems to be that Chrome has a problem with running Xerte securely over https. It says that although https is turned on on our server, some of the files are non-securely 'leaking' over http. It seems to be especially strict about this, compared to other browsers. If I turn off https altogether and, this is key, remove all cookies and browsing history from Chrome, then it performs perfectly OK over http.
> 
> The problem we have is that to use university logins, we need to run it over https, and if the tool is going to be used by 100+ people, this is by far the preferred method of login.
> 
> Jamie, please could you write to the mailing list, copying me in, reporting this problem and asking for advice? How are other institutions running it successfully over https? Why is Xerte serving certain files over http, when https is being requested? This seems like a bug and a security issue with Xerte to me.
> -------------------
> 
> 
> Bests
> Jamie
> 
> 
> Dr Jamie Wood
> Lecturer in History,
> School of Humanities,
> University of Lincoln,
> Brayford Pool,
> Lincoln LN6 7TS
> 
> Email: jwood at lincoln.ac.uk<mailto:jwood at lincoln.ac.uk>
> Tel.: +44(0)1522 837389
> Website: http://staff.lincoln.ac.uk/jwood
> Twitter: @woodjamie99<https://twitter.com/woodjamie99>
> 
> _______________________________________________
> Xerte mailing list
> Xerte at lists.nottingham.ac.uk
> http://lists.nottingham.ac.uk/mailman/listinfo/xerte
> This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please send it back to me, and immediately delete it.   Please do not use, copy or disclose the information contained in this message or in any attachment.  Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham.
> 
> This message has been checked for viruses but the contents of an attachment
> may still contain software viruses which could damage your computer system, you are advised to perform your own checks. Email communications with the University of Nottingham may be monitored as permitted by UK legislation.
> 
> 
> 
> 
> 
> Glasgow Caledonian University is a registered Scottish charity, number SC021474
> 
> Winner: Times Higher Education's Widening Participation Initiative of the Year 2009 and Herald Society's Education Initiative of the Year 2009.
> http://www.gcu.ac.uk/newsevents/news/bycategory/theuniversity/1/name,6219,en.html
> 
> Winner: Times Higher Education's Outstanding Support for Early Career Researchers of the Year 2010, GCU as a lead with Universities Scotland partners.
> http://www.gcu.ac.uk/newsevents/news/bycategory/theuniversity/1/name,15691,en.html
> 
> _______________________________________________
> Xerte mailing list
> Xerte at lists.nottingham.ac.uk
> http://lists.nottingham.ac.uk/mailman/listinfo/xerte
> This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please send it back to me, and immediately delete it.   Please do not use, copy or disclose the information contained in this message or in any attachment.  Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham.
> 
> This message has been checked for viruses but the contents of an attachment
> may still contain software viruses which could damage your computer system, you are advised to perform your own checks. Email communications with the University of Nottingham may be monitored as permitted by UK legislation.
> 
> 
> 
>

More information about the Xerte mailing list