https://rogerhub.com/~r/code.rogerhub/bughunt/70/same-origin-policy-and-a-buggy-wordpress-plugin/ The programming blog at RogerHub Mon, 20 Apr 2015 10:03:00 +0000 hourly 1 http://wordpress.org/?v=4.2.2 https://rogerhub.com/~r/code.rogerhub/bughunt/70/same-origin-policy-and-a-buggy-wordpress-plugin/#comment-26 Fri, 29 Nov 2013 10:42:00 +0000 https://rogerhub.com/~r/code.rogerhub/?p=70#comment-26 Just checked the plugin code. It looks like an HTTPS url won’t be used unless the page itself is loaded using HTTPS. Are you sure that the plugin is performing the redirection? It could just be a web server configuration issue.

]]> https://rogerhub.com/~r/code.rogerhub/bughunt/70/same-origin-policy-and-a-buggy-wordpress-plugin/#comment-25 Fri, 29 Nov 2013 10:39:00 +0000 https://rogerhub.com/~r/code.rogerhub/?p=70#comment-25 Is the script that generates the XML located in /wp-admin/? Resources that are loaded by the public site shouldn’t be following the admin SSL option anyway.

]]> https://rogerhub.com/~r/code.rogerhub/bughunt/70/same-origin-policy-and-a-buggy-wordpress-plugin/#comment-24 Mon, 25 Nov 2013 20:29:00 +0000 https://rogerhub.com/~r/code.rogerhub/?p=70#comment-24 Hi Roger,
I’m having this exact problem with a different plugin, called WP-Juicebox which enables creation of photo galleries. It creates an XML file dynamically when you create your gallery, which if you have SSL enabled on wp-admin automatically forces it to https. So the gallery breaks if you try to view the page with http. How were you able to hack your plugin code to use https? It seems to me that all http requests to the gallery post itself needs to be redirected to https, but I don’t know how to do that without hacking the WordPress core.
Thanks in advance.

]]> https://rogerhub.com/~r/code.rogerhub/bughunt/70/same-origin-policy-and-a-buggy-wordpress-plugin/#comment-1 Sun, 10 Mar 2013 08:43:00 +0000 https://rogerhub.com/~r/code.rogerhub/?p=70#comment-1 interesting post – never knew about the crayon plugin and will definitely start using it

]]>