Subsonic Forum

forum.subsonic.org
http://forum.subsonic.org/forum/

Secure as many elements as possible

http://forum.subsonic.org/forum/viewtopic.php?f=3&t=16130

Page 1 of 1

Secure as many elements as possible

PostPosted: Sat Nov 14, 2015 6:51 pm
by GH0
Hello,

I love subsonic (though I mostly use it when I am not at home, otherwise I use foobar). However there is one thing that bothers me. Mainly that subsonic doesn't have all of their elements secure so that the page is totally viewable over https://

Mainly these (though I am sure there are others):

Image
Image

This causes me to have to load unsecure content on the site just to basically use the webapp.

It would be awesome if everything could have its communication secured so that this no longer is required to happen.

Re: Secure as many elements as possible

PostPosted: Thu Dec 10, 2015 1:10 pm
by DaveWut
Hi,

If Subsonic provides its pages through a proxy, this kind of error is normal. You must configure the back-end server (Jetty, Apache Tomcat, etc) to change the scheme to HTTPS. By example, mines runs under Apache Tomcat and using a connector attribute, I can force the scheme to be in HTTPS: https://tomcat.apache.org/tomcat-5.5-do ... /http.html.

Hope it helps!
Dave

Re: Secure as many elements as possible

PostPosted: Mon Dec 14, 2015 9:02 pm
by ericvonnine
Sorry, I am not even proficient in Java, much less Tomcat, so that didn't make any sense to me. Is there a setup that will allow me to run a Subsonic instance completely over https or were you pointing at code changes that are needed?
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
http://www.phpbb.com/