[MDL-28486] youtube and vimeo embeding causes warnings on https sites - Moodle Tracker

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.0.3, 2.3
Fix Version/s: 2.3.2
Component/s: Filters
Labels:
- triaged
Environment:
Internet Explorer

Affected Branches:
MOODLE_20_STABLE, MOODLE_23_STABLE
Fixed Branches:
MOODLE_23_STABLE
Pull from Repository:
git://git.luns.net.uk/moodle.git
Pull Master Branch:
~~MDL-28486~~-master-2
Pull Master Diff URL:
https://git.luns.net.uk/moodle.git/commitdiff/MDL-28486-master-2

Testing Instructions:

Hide

General tests

The following tests apply to MOODLE_23_STABLE and to master:

Navigate to Settings -> Site administration -> Appearance -> Media
- Ensure that the YouTube and Vimeo options are ticked
Navigate to a course page
Turn editing on
Edit a section

Set the section Summary to:

<p><a href="http://www.youtube.com/v/1akyXgddyAY">Example YouTube</a></p>

<p><a href="http://vimeo.com/1234567">Example Vimeo</a></p>

<p><a href="http://www.youtube.com/playlist?list=PL9B6AC5E479B1B992">Example Playlist</a></p>

Save changes
- Confirm that the Top video (YouTube) is displayed
- Confirm that the Middle video (Vimeo) is displayed
- Confirm that the Bottom video (YouTube Playlist) is displayed
- View the source and confirm that each video is pointed at the correct (https) URL
Open the 'Activity Chooser'
- Confirm that none of the videos sit in front of the activity chooser

MOODLE_23_STABLE

The following instructions are in addition to the tests above. Moodle 2.3 still has the XML Strict Headers setting which slightly changes the way that some videos are displayed:

Navigate to Site administration -> Development -> Debugging
Turn "XML strict headers" to on
View the course page again
- Confirm that the Top video (YouTube) is displayed
- Confirm that it is not in an iframe
- Confirm that the Middle video (Vimeo) is displayed
- Confirm that the Bottom video (YouTube Playlist) is displayed
Open the 'Activity Chooser'
- Confirm that none of the videos sit in front of the activity chooser

Show

General tests The following tests apply to MOODLE_23_STABLE and to master: Navigate to Settings -> Site administration -> Appearance -> Media Ensure that the YouTube and Vimeo options are ticked Navigate to a course page Turn editing on Edit a section Set the section Summary to: <a href="http://www.youtube.com/v/1akyXgddyAY">Example YouTube</a> <a href="http://vimeo.com/1234567">Example Vimeo</a> <a href="http://www.youtube.com/playlist?list=PL9B6AC5E479B1B992">Example Playlist</a> Save changes Confirm that the Top video (YouTube) is displayed Confirm that the Middle video (Vimeo) is displayed Confirm that the Bottom video (YouTube Playlist) is displayed View the source and confirm that each video is pointed at the correct (https) URL Open the 'Activity Chooser' Confirm that none of the videos sit in front of the activity chooser MOODLE_23_STABLE The following instructions are in addition to the tests above. Moodle 2.3 still has the XML Strict Headers setting which slightly changes the way that some videos are displayed: Navigate to Site administration -> Development -> Debugging Turn "XML strict headers" to on View the course page again Confirm that the Top video (YouTube) is displayed Confirm that it is not in an iframe Confirm that the Middle video (Vimeo) is displayed Confirm that the Bottom video (YouTube Playlist) is displayed Open the 'Activity Chooser' Confirm that none of the videos sit in front of the activity chooser

Description

IE will give insecure content warnings if youtube is used with http and the page is httpsed. Youtube support https embeding (see: http://apiblog.youtube.com/2011/02/https-support-for-youtube-embeds.html ), so we can support this.

Other browsers also give similar warnings

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

0001-MDL-28486-filter-mediaplugin-Support-youtube-embedin.patch
1.0 kB
28/Jul/11 2:03 AM

Issue Links

is blocked by

MDL-28484 We do not have a function to detect if we are being served on https

Closed

Activity

People

Assignee:: Andrew Lyons

Reporter:: Dan Poltawski

Peer reviewer:: Dan Poltawski

Integrator:: Sam Hemelryk

Tester:: Andrew Davis

Participants:: Andrew Davis, Andrew Lyons, Aparup Banerjee, Dan Poltawski, Eloy Lafuente (stronk7), Sam Hemelryk

Component watchers:: David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 28/Jul/11 1:56 AM

Updated:: 10/Aug/12 11:42 AM

Resolved:: 10/Aug/12 11:42 AM

Fix Release Date:: 10/Sep/12