[richfaces-issues] [JBoss JIRA] Updated: (RF-11344) rich:fileUpload causes a browser security warning in IE when using HTTPS

Brian Leathem (JIRA) jira-events at lists.jboss.org
Wed Aug 24 12:41:29 EDT 2011 

     [ https://issues.jboss.org/browse/RF-11344?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Brian Leathem updated RF-11344:
-------------------------------

         Labels: fileupload  (was: richfaces)
       Assignee:     (was: Mikhail Vitenkov)
    Description: 
I believe this is similar to previously fixed bug RF-4583

The Richfaces FileUpload is rendered using an IFrame without a source attribute.  When using Internet Explorer, this displays a security warning that you are about to view a secure page with unsecure elements.

I've fixed this locally by adding a simple src="javascript:false;" to the IFrame via JavaScript on page load.

  was:
I believe this is similar to previously fixed bug #4583 : https://issues.jboss.org/browse/RF-4583

The Richfaces FileUpload is rendered using an IFrame without a source attribute.  When using Internet Explorer, this displays a security warning that you are about to view a secure page with unsecure elements.

I've fixed this locally by adding a simple src="javascript:false;" to the IFrame via JavaScript on page load.



> rich:fileUpload causes a browser security warning in IE when using HTTPS
> ------------------------------------------------------------------------
>
>                 Key: RF-11344
>                 URL: https://issues.jboss.org/browse/RF-11344
>             Project: RichFaces
>          Issue Type: Bug
>      Security Level: Public(Everyone can see) 
>          Components: component-input
>    Affects Versions: 4.0.0.Final
>         Environment: IE7/Windows 7, HTTPS
>            Reporter: Lee Theobald
>            Priority: Minor
>              Labels: fileupload
>
> I believe this is similar to previously fixed bug RF-4583
> The Richfaces FileUpload is rendered using an IFrame without a source attribute.  When using Internet Explorer, this displays a security warning that you are about to view a secure page with unsecure elements.
> I've fixed this locally by adding a simple src="javascript:false;" to the IFrame via JavaScript on page load.

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the richfaces-issues mailing list