Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-25296

IE8 Security Warning (Mixed Mode Prompt) When Editing a Page in SSL

XMLWordPrintable

      NOTE: This bug report is for Confluence Server. Using Confluence Cloud? See the corresponding bug report.

      When Editing a Page in Confluence 4.2 (with SSL), the Mixed Mode Security Warning is Prompted:

      This behavior will appear when the following conditions are met:

      1. The page contains at least 1 macro
      2. The Confluence Instance is SSL'ed
      3. Server running Confluence 4.2 (4.1 and below are not affected by this)
      4. Browser: IE8 (IE9 is not affected)

      If the page contains no macros, then the prompt is not there.

      Steps to Reproduce

      1. Secure Confluence with SSL
      2. Navigate to Demonstration Space
      3. Edit the Home page of the Demonstration Space
      4. Alternatively, create a page with at least 1 macro (any macro, tested with Panel macro, Code macro, TOC macro, etc)
      5. Edit the page

      Workaround

      1. Disable the Mixed Mode prompt by going to (In IE) Tools >> Internet Options >> Security >> Custom Level (for the Internet/Intranet Zone), look for Display mixed content, and set it to Disabled.

        1. secure.jpg
          secure.jpg
          66 kB

            [CONFSERVER-25296] IE8 Security Warning (Mixed Mode Prompt) When Editing a Page in SSL

            Steve Haffenden (Inactive) added a comment -

            Hi denis.yaparov

            Thanks for getting in touch. Confluence no longer supports IE8 (see here: https://confluence.atlassian.com/display/DOC/Supported+Platforms) so I do not believe that this issue is relevant any longer.

            Regards
            Steve Haffenden
            Confluence Bugmaster
            Atlassian

            Steve Haffenden (Inactive) added a comment - Hi denis.yaparov Thanks for getting in touch. Confluence no longer supports IE8 (see here: https://confluence.atlassian.com/display/DOC/Supported+Platforms ) so I do not believe that this issue is relevant any longer. Regards Steve Haffenden Confluence Bugmaster Atlassian

            Denis Yaparov added a comment -

            The problem still occurs in Confluence 5.3.4, but in opening comment form:

            1. Switch Confluence to HTTPS
            2. Configure Base URL to use HTTPS scheme
            3. Open any page for view, even empty, it is OK here
            4. Click on "Write a comment..." form
            5. In the middle of loading editor for comment and before activating edit field, IE8 shows prompt for non-secure content.

            Using HttpWatch browser plugin I've figured out, that all resources, loaded after (and before) clicking on comment form, was loaded using HTTPS, so possible problem is in icons "data/image".
            Please, reopen this or create new defect.

            Denis Yaparov added a comment - The problem still occurs in Confluence 5.3.4, but in opening comment form: Switch Confluence to HTTPS Configure Base URL to use HTTPS scheme Open any page for view, even empty, it is OK here Click on "Write a comment..." form In the middle of loading editor for comment and before activating edit field, IE8 shows prompt for non-secure content. Using HttpWatch browser plugin I've figured out, that all resources, loaded after (and before) clicking on comment form, was loaded using HTTPS, so possible problem is in icons "data/image". Please, reopen this or create new defect.

            Sandro Herrmann [Communardo] added a comment -

            OK,

            we solved the issue for CF 4.2.13. Unfortunately, i am not permitted to attach any files to this issue. Maybe some others from the community need that fix, too.

            Sandro Herrmann [Communardo] added a comment - OK, we solved the issue for CF 4.2.13. Unfortunately, i am not permitted to attach any files to this issue. Maybe some others from the community need that fix, too.

            Sandro Herrmann [Communardo] added a comment -

            Hi,

            we need to get this bug fixed for a Confluence 4.2.13. One of our customer is facing this problem and they are unable to upgrade the Confluence system because of the implemented plugin features and the underlying database. Furthermore, it is not an option to use another browser or the "mixed mode" in IE8 as a workarround.

            We, as an atlassian expert now trying to fix this bug for CF 4.2.13. Is there a possibility to get a list of files which are involved in this fix. That would be awesome!

            Regards,
            Sandro

            Sandro Herrmann [Communardo] added a comment - Hi, we need to get this bug fixed for a Confluence 4.2.13. One of our customer is facing this problem and they are unable to upgrade the Confluence system because of the implemented plugin features and the underlying database. Furthermore, it is not an option to use another browser or the "mixed mode" in IE8 as a workarround. We, as an atlassian expert now trying to fix this bug for CF 4.2.13. Is there a possibility to get a list of files which are involved in this fix. That would be awesome! Regards, Sandro

            Steve Lancashire (Inactive) added a comment -

            Merged to stable already

            Steve Lancashire (Inactive) added a comment - Merged to stable already

            Steve Lancashire (Inactive) added a comment -

            Hi Satya,
            It is expected that this fix will be available in 4.3.4 of Confluence, this is not yet built, but will be made available in December.

            Steve Lancashire (Inactive) added a comment - Hi Satya, It is expected that this fix will be available in 4.3.4 of Confluence, this is not yet built, but will be made available in December.

            DES Tools added a comment -

            Hi Team,
            I can see the status of this issue as resolved. Could you please let us the confluence version in which this issue is fixed?

            Regards
            Satya

            DES Tools added a comment - Hi Team, I can see the status of this issue as resolved. Could you please let us the confluence version in which this issue is fixed? Regards Satya

            DES Tools added a comment -

            Hi,

            Hope this is being worked upon on top priority. Any updates would be helpful. Its blocking our Confluence upgrade.

            Regards,
            Amanpreet

            DES Tools added a comment - Hi, Hope this is being worked upon on top priority. Any updates would be helpful. Its blocking our Confluence upgrade. Regards, Amanpreet

            DES Tools added a comment -

            Hello,
            I am grateful that this is being worked upon. Just wanted to highlight that this is hampering a major upgrade at our end (including for other apps like Crowd, since we need apps to be compatible with each other). We are struggling to upgrade with these issues and with the current app out of support, we are living an unnecessary risk. Please kindly treat this at top priority.
            Regards
            Amaninder

            DES Tools added a comment - Hello, I am grateful that this is being worked upon. Just wanted to highlight that this is hampering a major upgrade at our end (including for other apps like Crowd, since we need apps to be compatible with each other). We are struggling to upgrade with these issues and with the current app out of support, we are living an unnecessary risk. Please kindly treat this at top priority. Regards Amaninder

            DES Tools added a comment -

            Can we please have an update on this? We need this bug to be addressed ASAP. It is seriously impacting our Confluence upgrade.

            DES Tools added a comment - Can we please have an update on this? We need this bug to be addressed ASAP. It is seriously impacting our Confluence upgrade.

              jhoarau Julien Michel Hoarau (Inactive)
              fsim Foo Sim (Inactive)
              Affected customers:
              12 This affects my team
              Watchers:
              12 Start watching this issue

                Created:
                Updated:
                Resolved: