On 03/08/17 18:29, Christopher Schultz wrote: > All, > > If you use https://tomcat.apache.org you'll see a security warning in > various browsers due to mixed-content. > > The problem is that the "Support Apache" logo in the upper right-hand > corner of the page is served via HTTP instead of HTTPS. > > The other images on the page come from tomcat.apache.org, and are > referenced using relative paths, so they inherit the protocol from the > parent page. > > The Support Apache logo comes from www.apache.org and can't be a > relative link. > > I'd like to fix this issue, and there are two possible approaches: > > 1. Always use HTTPS: just change the link protocol to https:// > > 2. Use a protocol-relative link[1], whose use has been ... discouraged[2 > ] > > Does anyone care one way or the other?
Option 1 works for me. Mark --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
