HTTPS «mixed content» error and solution

Tiny Tiny RSS Development
1

Hi everybody !

My ttrss server is over https and i have security error because images are loaded over http.

The solution is a plugin I have developed.

It can be dowloaded here : GitHub - asechaud/ttrss_plugin_http2https: A plugin to avoid « mixed content » when images are loaded over http and tt-rss is loaded over https

For the installation : Put the folder «http2https» with the two files «init.php» and «https.php» into plugins/ of ttrss. Go to Configuration, then Plugins and activate http2https. That’s all !

Alex.

2

Would it not be easier to configure the webserver in a proper way?

Mozilla Developer Network: CSP: Upgrade-insecure-requests

3

Or just use the already build in plugin af_zz_imgproxy
https://git.tt-rss.org/git/tt-rss/src/master/plugins/af_zz_imgproxy

BTW I think custom plugins should be put in plugins.local directory?

4

Thanks for the proposition.

The problem wasn’t my webserver : everything works with https.
The problem is that ttrss uses images from other webserver wich doesn’t have https (the links of the images are in the RSS) and I want these images without mixed content.

Alex

5

Thanks for the propostion.
I don’t know this plugin exists… but I think it was what I needed.
I tried to use it but my version of ttrss is maybe to old : it doesn’t work… I’ll try it later.

I don’t have this folder, but you’re right, it’s the best location.

Alex.

6

Just do a git pull?
You really should use the current git version if you aren’t right now.
https://tt-rss.org/oldforum/viewtopic.php?t=3262

7

This.

Building a plugin based on an older version of tt-rss does not seem like a good idea…

8

OK,

af_zz_imgproxy works very well so you should use it instead of my own.

9

Just in case someone stumbles on this. The plugin is now called af_proxy_http