You are viewing limited content. For full access, please sign in.

Question

Question

Insecure logo image

Forms Security
Updated October 22, 2019
asked on October 22, 2019

We are currently on Forms 10.3.1 and have published one form externally through DMZ server, the form is insecure due to mixed content. According to the console log, the logo generated by the form's theme is causing the issue. This logo has been uploaded through the form's Themes page by dropping the image file. When I copy the logo link and change it to https, it works fine; however, the auto-generated logo link is using http.  

The message looks following:

Mixed Content: The page at 'http://(public domain)/forms/(form name)' was loaded over HTTPS, but requested an insecure image 'http://(public  domain)/Forms/Handler/FileRouter.ashx?guid=ba4db77f-8d10-4f73-fb8f-3fO744682ceb'. This content should also be served over HTTPS.

I wonder if there is another way of uploading the logo image file or if this is a known issue. 

 

Thanks,

Olivia

0 0

Replies

replied on October 22, 2019

Do you have Forms set to use HTTPS in the FormsConfig page? The theme logos (uploaded in the same way as yours) on our public-facing are all loading via HTTPS on the forms.

We're on 10.4.1 now, but we had a DMZ instance as far back as 10.2.1 and I never encountered the issue you describe so it may just be the configuration.

 

1 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...