Use badge on a secure site

  • Idea
  • Updated 8 months ago
  • Under Consideration
Archived and Closed

This conversation is no longer open for comments or replies and is no longer visible to community members.

Hi! I would like to embed your badge on a secure site without getting any security errors/warnings. What is the best way to do it? I am now using the code generated from http://www.stumbleupon.com/badges/ --- however, I'm getting warnings (e.g. "The page at https://www.stumbleupon.com/badge/emb.... ran insecure content from http://cdn.stumble-upon.com/js/badge_....

BCDPH

  • 1 Post
  • 0 Likes

Posted 2 years ago

  • 8

Currin

  • 826 Posts
  • 59 Likes
Hi there,

Thanks for your note. Currently we do not support badges on secure sites. But we have taken your suggestion into account and hope to offer this in the future.

We're sorry for any inconvenience this might cause.

Octavian Chiorcea

  • 1 Post
  • 0 Likes
Hello,
There is a problem for the stumbleupon badge. I tried to add it on a site, it works fine on non-ssl, it works ok as well on ssl on IE/Opera/FF, but on google-chrome it doesn't load corectly. That is because google-chrome (default settings, latest version), prevents from loading some stuff because is loaded in non-ssl mode. Here is the error messages (extracted from chrome debuger)

[blocked] The page at https://www.stumbleupon.com/badge/emb... ran insecure content from http://cdn.stumble-upon.com/js/badge_....

[blocked] The page at https://www.stumbleupon.com/badge/emb... ran insecure content from http://cdn.stumble-upon.com/css/badge....

So i guess if you adjust the embed script to load the content securely, it should fixed on google-chrome too (other browsers look fine)

Bill Sullivan

  • 1 Post
  • 0 Likes
I'd like to add my request for an SSL-compatible StumbleUpon Badge. We are very happy using a badge and would like to keep it on our site as we transition over to https.

Erik

  • 4 Posts
  • 0 Likes
This reply was created from a merged topic originally titled
Badge not loading correctly on secure site in Chrome.


It seems that chrome is a little particular about https connections and for some reason is not picking up ('https:' == document.location.protocol ? 'https:' : 'http:')

It works fine in other browsers. You can see it here https://edgefoundation.org/blog/2013/... at the bottom.

I tried forcing it to https and that didn't seem to work. The stubmble widget is still loading http.

Erik

  • 4 Posts
  • 0 Likes
This reply was created from a merged topic originally titled
Badge not loading correctly on secure site in Chrome.


It seems that chrome is a little particular about https connections and for some reason is not picking up ('https:' == document.location.protocol ? 'https:' : 'http:')

It works fine in other browsers. You can see it here https://edgefoundation.org/blog/2013/... at the bottom.

I tried forcing it to https and that didn't seem to work. The stubmble widget is still loading http.

Erik

  • 4 Posts
  • 0 Likes
This reply was created from a merged topic originally titled
Badge not loading correctly on secure site in Chrome.


It seems that chrome is a little particular about https connections and for some reason is not picking up ('https:' == document.location.protocol ? 'https:' : 'http:')

It works fine in other browsers. You can see it here https://edgefoundation.org/blog/2013/... at the bottom.

I tried forcing it to https and that didn't seem to work. The stubmble widget is still loading http.

Alex

  • 2 Posts
  • 0 Likes
This reply was created from a merged topic originally titled
Problems with StumbleUpon Badge over HTTPS.


It's not possible to get a properly formatted badge when loading it over https.

Compare these:
http://www.stumbleupon.com/badge/embed/1/?url=https%3A%2F%2Ftunessence.com%2Fblog%2F4-steps-to-getting-over-guitar-plateaus%2F

https://www.stumbleupon.com/badge/embed/1/?url=https%3A%2F%2Ftunessence.com%2Fblog%2F4-steps-to-getting-over-guitar-plateaus%2F


While the embed script properly checks http vs https, the url it ultimately loads does not. Here are the offending lines:
src="http://cdn.stumble-upon.com/js/badge_su.js?v=20120613"
href="http://cdn.stumble-upon.com/css/badges_su.css?v=20120613"

There is no check for the protocol used, and therefore browsers block these http requests from completing whenever https is used.

This makes your badge unusable in an https site or blog, which is sad :(

Hope this helps,
Alex

This conversation is no longer open for comments or replies.