-
I have been working with FV FlowPlayer for a few days now and most everything works great. However, I noticed that I am now received mixed content messages on my secure pages. For example, I have WordPress set to display all of my wp-admin pages using SSL. Whenever I access the admin panel I get a notice in my browser indicating that the page contains some unsecure content. If I disable the FV FlowPlayer plugin, the warning immediately goes away. The odd part, is that the option to “Load FV Flowplayer JS everywhere” is turned off and these pages do not include an FV FlowPlayer shortcode.
Do you have any suggestions as to what might be causing that?
Thanks,
Don
-
-
Hello Don,
as you have our license, so we can look at your site directly and make sure our plugin is not causing issues. We have SSL websites too and we haven’t noticed this yet, but there could be a bug in the new stylesheet loading code.
Please post the link to your site where you get the warnings and we will have a look. I was not able to find it just by looking at http://edutainmentlive.com. This forum thread will remain private, so you can post your links without worries.
Thanks,
Martin
Martin,
Thank you for your reply. I had disabled FV FlowPlayer so that my users wouldn’t get the SSL warning. I have re-enabled it. You can recreate the issue by browsing to our main site (http://edutainmentlive.com/itprotv) and then clicking on the “Membership Signup” link at the top or the bottom of the page. That will switch the session over to SSL and you will receive the mixed content warning. There are no videos or FV FlowPlayer shortcodes on the Membership Signup page. I’ll leave FV FlowPlayer enabled for now so that you can see the error.
Hello Donald,
so what’s the exact link?
If it’s this one, then I do see the warning in Firefox, but not Chromium/Chrome or Safari: https://edutainmentlive.com/itprotv/account/selection/
Anyway, looks like the CSS loads via HTTP there, so we need to fix that. We will get this fixed on Monday.
Thanks,
Martin
Hello Donald,
actually I had a look right now – just install FV Flowplayer from this zip file and it should be fine. We will just need to improve this fix for websites which don’t use wp-content folder, but something else – not your case.
http://downloads.wordpress.org/plugin/fv-wordpress-flowplayer.zip
Please let us know how it goes.
Thanks,
Martin
Martin,
Thank you for looking into that for me. I tried the new plugin, but the problem persisted. Now I still receive the mixed content message even when I disable the plugin which is pretty odd. That makes me think the issue is not FV FlowPlayer’s fault and that it may have been coincidental that enabling/disabling the plugin was causing the issue. I will open a ticket with my hosting provider and see what they say.
Thanks again,
Don Pezet
Martin,
Just wanted to follow up on this. Your plugin is working great now. The mixed content messages are now being caused by a plugin from one of your competitors (S3FlowShield). We only keep them around because we use their plugin to generate time-restricted download links for our videos. I’ll work with them to fix it (or replace their plugin with someone else’s) but I wanted to take a minute to thank you for your help. You can flag this ticket as resolved.
Hi Donald,
Thanks for your detailed report.
FV Flowplayer offers protected downloads as well. You don’t need a second plugin.
Thanks.
That is awesome! I had no idea! You guys just became the one-stop shop for us. I did not see anything on the site indicating that FV FlowPlayer provided protected downloads. Can you point me to the instructions on how to use the feature?
Thank you,
Don Pezet
Hello Donald,
just check Settings -> FV WordPress Flowplayer -> Amazon S3 Protected Content.
Full Amazon S3 setup instructions are here: http://foliovision.com/wordpress/plugins/fv-wordpress-flowplayer/secure-amazon-s3-guide You probably done all of that. You can just check the first part “Obtaining the Amazon AWS access credentials” if you need new AWS access credentials.
Thanks,
Martin
Those instructions explain how to setup Amazon S3 so that you can playback the video in FV FlowPlayer securely (which we already do), but they doesn’t explain providing a way for the end user to actually download the video file if they want to. With S3FlowShield there were two shortcodes:
This would show the video in an embedded player:
[S3VIDEO file=’iins/003_Advanced_Router_Security_high.mp4′]This would show a download link:
[S3FILE file=’iins/003_Advanced_Router_Security_high.mp4′]Does FV FlowPlayer have anything like that? Or some other way to provide a time expiring link to download the video file itself?
Thanks again,
Don
Hello Donald,
I see, we are looking into this.
Thanks,
Martin
Hello Donald,
I see, we are looking into this.
Was that option just showing the video URL? The thing is some browsers might ask uses where to download the file, while some browser might start playing the video. So then the uses have to right click it and select “Save As…”. Could you please let us know how that worked?
Thanks,
Martin
Martin,
Thank you for looking in to this for me. You are exactly right. It was just rendering a direct link to the video file with a time expiring token attached to it. Some users could just click on the download link, but many (Chrome users for example) had to right-click and choose “save as” in order to save the file. We are fine with that, we just need some method to make that download available.
Thanks,
Don
Hello Donald,
sorry about the delay, we are working on this.
Thanks,
Martin
