MemoryX2 Posted August 24, 2013 Report Posted August 24, 2013 I know there was a core- something for this, but can support manager be updated so that it uses https:// for gravatar rather than the insecure http? /plugins/support_manager/views/default/admin_tickets_reply.pdt on line 135 plugins/support_manager/views/default/client_tickets_reply.pdt on line 103 Those lines in each file can be updated to https:// and then clients/admin will no longer receive the insecure content Amyamoxylea 1 Quote
Michael Posted August 24, 2013 Report Posted August 24, 2013 I know there was a core- something for this, but can support manager be updated so that it uses https:// for gravatar rather than the insecure http? /plugins/support_manager/views/default/admin_tickets_reply.pdt on line 135 plugins/support_manager/views/default/client_tickets_reply.pdt on line 103 Those lines in each file can be updated to https:// and then clients/admin will no longer receive the insecure content Yeah Paul was talking about making them like this: <img src="//gravatar.com/avatar/<?php echo md5(strtolower(trim($this->Html->_($reply->email, true))));?>?s=120" /> Scott Horsley 1 Quote
Paul Posted August 25, 2013 Report Posted August 25, 2013 CORE-596, it's still pending. Michael 1 Quote
cloudrck Posted November 5, 2013 Report Posted November 5, 2013 This is still present. Can't believe I didn't notice it until now. Easy fix On both: plugins/support_manager/views/default/client_tickets_reply.pdt plugins/support_manager/views/default/admin_tickets_reply.pdt <div> <img src="http://gravatar.com/avatar/<?php echo md5(strtolower(trim($this->Html->_($reply->email, true))));?>?s=120" /> </div> Should be: <div> <img src="https://secure.gravatar.com/avatar/<?php echo md5(strtolower(trim($this->Html->_($reply->email, true))));?>?s=120" /> </div> Quote
Michael Posted November 5, 2013 Report Posted November 5, 2013 Probably will be defaulted to //gravatar.com in 3.1.x Quote
MemoryX2 Posted November 5, 2013 Author Report Posted November 5, 2013 This is still present. Can't believe I didn't notice it until now. Easy fix On both: plugins/support_manager/views/default/client_tickets_reply.pdt plugins/support_manager/views/default/admin_tickets_reply.pdt <div> <img src="http://gravatar.com/avatar/<?php echo md5(strtolower(trim($this->Html->_($reply->email, true))));?>?s=120" /> </div> Should be: <div> <img src="https://secure.gravatar.com/avatar/<?php echo md5(strtolower(trim($this->Html->_($reply->email, true))));?>?s=120" /> </div> Yeah, it's literally a 5 minute fix. I have been trying to do it on each update but I occasionally forget. Quote
Tyson Posted November 5, 2013 Report Posted November 5, 2013 Probably will be defaulted to //gravatar.com in 3.1.x ^This. In v3.1.0 Michael 1 Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.