ZK loads remote PNGs

XMLWordPrintable

    • Type: Bug
    • Resolution: Fixed
    • Priority: Later
    • 7.0.6
    • Affects Version/s: 6.5.1
    • Component/s: ZK Loader
    • None
    • None

      norm.css.dsp loads two PNGs from the wild:

      background-image: url('http://www.zkoss.org/zk/img/${z:encodeWithZK("zkpowered.png")}')
      background-image: url('http://www.zkoss.org/zk/img/${z:encodeWithZK("zkuptime.png")}')

      For starters, ZK shouldn't call home like this. Secondly, the ZK webapp may not have a route to the wild. Thirdly, this causes mixed content warnings when running under HTTPS.

      Please load these images from within the webapp, and not make remote calls for them.

            Assignee:
            Hudson (Inactive)
            Reporter:
            emersonf
            Votes:
            5 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: