Facebook apps, redirect and SSL
Hi,
I have an issue with the Lithium Facebook apps and the latest versions of Chrome and Firefox.
When a new user clicks on "give a kudo", he is redirected to our custom subscription page:
https://stage.cvous.com/t5/custom/page/page-id/FacebookConnexion?referer=http%3A%2F%2Fstage.cvous.com%2Ft5%2Ffacebook%2Fcanvas%2Fappactionpage%2Ffacebook-id%2F2775D7F6D929791422A159C958649CD1%2Ffacebook-action%2FgiveKudos%2Ffacebook-app%2F339555642853136
The subscription page works fine but the redirect doesn't. Chrome or Firefox blocks any unsecured redirection. The problem comes from "?referer=http...". It should be "?referer=https...".
I've been looking through the options of the community but didn't find anything. The Secure Page Tab URL is well written in facebook.com
Would you know how to get the referer link with "https" instead of "http"?
Thanks!
Best,
Henrik
HI,
Firstly let me just say how cool your community is... I love it, really cool branding...
So this may not be 100% helpful as i dont have a fix but i do have a workaround that may work for you. When we launched our fb app i did the same as you appear to be doing and built it using our stage however i kept getting issue with the https element, raised with Li support, they eventually confirmed it was to do with the https settings/config on our stage which they tweak/fixed however whilst I was waiting i decided to build the app on our live platform and it worked a treat, i didn't face any issues.
I know its generally a "no, no" doing anything in live however you dont have any/much data in your stage so any testing of your app wont be realistic "in my opinion" Others may disagree however i would suggest you build the app using your live community but when you add the app to your fb page put it in sandbox mode this will enable you or your fb page admins to view the app and test it fully whilst your customers cannot.
Once your happy with it, take it our of sandbox mode and within a few mins/hours it will be visible to all. On another note, if you do it in stage, you only have to build it again in live so you may as well do it the once in live and use the fb app settings to control its visibility/access.
Hope this helps...
Hi Henrik
To add for the sake of completeness - we applied a configuration change to your community to ensure that all generated links are directed through https. For any other users experiencing similar issues with SSL and mixed secure/non secure content please do feel free to raise a support ticket with us for investigation.
Regards
Noaman
