When running EditLive! in a secure environment (HTTPS) IE8 displays the following message
"Do you want to view only the webpage content that we delivered securely? This webpage contains content that will not be delivered using a secure HTTPS connection, which could compromise the security of the entire webpage."
When EditLive is placed onto a page, part of the HTML that is inserted includes a download URL for the Java Runtime Environment. This link is used so that the browser can offer to install the JRE if it is not available on that machine. Unfortunately, this url is HTTP, and IE is reporting this as mixed content.
We would prefer to provide this url as HTTPS, however Oracle has not provided a HTTPS download link with the correct certificate.
EditLive has a feature which allows you to host the JRE download on your local server, this would allow you to host a HTTPS copy of the JRE and mitigate the IE mixed content warning.
To implement the workaround:
- Download this file, and place it on the web server of the application:
editlive.setJREDownloadURL('https://(server base url)/jinstall-6u29-windows-i586.cab');