Dear reader,
We noticed that our website for UMC (Univention Management Console) wasn’t “secure”, due to mixed content being loaded from demo.univention.com/ (see attachment "
UMC_HTTP_demo_background_01.PNG").
Downloading a file at all is alright-ish (although I would like to know why such a very often used file is not put locally, tracking-bitmap kind of thought?), but making the HTTPS fail due to that is troublesome.
We solved by editing the file
/usr/share/univention-management-console-frontend/js/dijit/themes/umc/umc.css
changing line 10692 from http to https:
background: url("https://demo.univention.de/univention-management-console/js_$20162001042724$/dijit/themes/umc/images/background-tile.png") repeat, #5a5a5a;
After a reload, the page fully loads as HTTPS. See attachment “UMC_HTTP_demo_background_02.PNG”
Can this please be adjusted in the package?
Kind regards,
Luuk