Nope it's not the javascript. Searching view-source for "http://" shows only DOCTYPE, xmlns, <!-- comments --> and links to other/external websites.<div><br></div><div>The session cookie does show as non-secure, so that's why we're thinking it's the main culprit.</div>
<div><br></div><div>Otherwise, is there a tool out there that helps discover what Explorer is griping about when it says "this page contains both secure and nonsecure items..."?</div><div><br></div><div><br><br>
<div class="gmail_quote">On Mon, Feb 21, 2011 at 12:08 AM, Jason Galea <span dir="ltr"><<a href="mailto:lists@eightdegrees.com.au">lists@eightdegrees.com.au</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
you're not using a non-ssl cdn for your javascript libraries? (had me<br>
searching once..)<br>
<div><div></div><div class="h5"><br>
On Mon, Feb 21, 2011 at 1:32 PM, will trillich<br>
<<a href="mailto:will.trillich@serensoft.com">will.trillich@serensoft.com</a>> wrote:<br>
> Catalyst::Plugin::Session::State::Cookie shows how to make a secure cookie,<br>
> which is great when you're rolling cookies by hand in your code.<br>
> But how do you set a secure cookie in the context of a myapp.conf setup?<br>
> <session><br>
> flash_to_stash = 1<br>
> dbic_class = MyApp::Session<br>
> expires = 3600<br>
> cookie_secure = 1 # just kidding<br>
> </session><br>
> That's not doing the trick. Which doc reveals the right mojo?<br>
> ===<br>
> This is in pursuit of stopping the Explorer error "This page contains both<br>
> secure and nonsecure items..." Other than the doctype and the <html<br>
> xmlns=""> attribute, we can't find any http:// references, even looking in<br>
> css @import and url() ... so the next culprit seems to be the nonsecure<br>
> cookie. Other guidance is more than welcome!<br>
><br>
> --<br>
> The first step towards getting somewhere is to decide that you are not going<br>
> to stay where you are. -- J.P.Morgan<br>
><br>
</div></div>> _______________________________________________<br>
> List: <a href="mailto:Catalyst@lists.scsys.co.uk">Catalyst@lists.scsys.co.uk</a><br>
> Listinfo: <a href="http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst" target="_blank">http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst</a><br>
> Searchable archive: <a href="http://www.mail-archive.com/catalyst@lists.scsys.co.uk/" target="_blank">http://www.mail-archive.com/catalyst@lists.scsys.co.uk/</a><br>
> Dev site: <a href="http://dev.catalyst.perl.org/" target="_blank">http://dev.catalyst.perl.org/</a><br>
><br>
><br>
<br>
<br>
<br>
--<br>
Jason Galea<br>
Web Developer<br>
<br>
Ph 07 40556926<br>
Mob 04 12345 534<br>
<a href="http://www.eightdegrees.com.au" target="_blank">www.eightdegrees.com.au</a><br>
<br>
_______________________________________________<br>
List: <a href="mailto:Catalyst@lists.scsys.co.uk">Catalyst@lists.scsys.co.uk</a><br>
Listinfo: <a href="http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst" target="_blank">http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst</a><br>
Searchable archive: <a href="http://www.mail-archive.com/catalyst@lists.scsys.co.uk/" target="_blank">http://www.mail-archive.com/catalyst@lists.scsys.co.uk/</a><br>
Dev site: <a href="http://dev.catalyst.perl.org/" target="_blank">http://dev.catalyst.perl.org/</a><br>
</blockquote></div><br><br clear="all"><br>-- <br>The first step towards getting somewhere is to decide that you are not going to stay where you are. -- J.P.Morgan<br>
</div>