Loading...

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: Later
Fix Version/s: 7.0.6
Affects Version/s: 6.5.1
Component/s: ZK Loader
Labels:
None

norm.css.dsp loads two PNGs from the wild:

background-image: url('http://www.zkoss.org/zk/img/${z:encodeWithZK("zkpowered.png")}')
background-image: url('http://www.zkoss.org/zk/img/${z:encodeWithZK("zkuptime.png")}')

For starters, ZK shouldn't call home like this. Secondly, the ZK webapp may not have a route to the wild. Thirdly, this causes mixed content warnings when running under HTTPS.

Please load these images from within the webapp, and not make remote calls for them.

relates to

ZK-2693 HTTPS/SSL errors due to fonts.googleapis.com import

Closed

ZK-4828 remove externally loaded resources with internal refs.

Closed

Assignee:: Hudson (Inactive)

Reporter:: emersonf

Votes:: 5 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 08/Apr/13 5:11 PM

Updated:: 30/Mar/21 7:04 AM

Resolved:: 20/Mar/18 7:37 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates