As title, when I clicked on the download link I got nothing. Opening developer tools revealed the following:
Mixed Content: The site at 'https://getfedora.org/' was loaded over a secure connection, but the file at 'http://mirror.atl.genesisadaptive.com/fedora/linux/releases/33/Workstation/x86_64/iso/Fedora-Workstation-Live-x86_64-33-1.2.iso' was redirected through an insecure connection. This file should be served over HTTPS. This download has been blocked. See https://blog.chromium.org/2020/02/protecting-users-from-insecure.html for more details. getfedora.org/:1 Mixed Content: The site at 'https://getfedora.org/' was loaded over a secure connection, but the file at 'http://mirror.lax.genesisadaptive.com/fedora/linux/releases/33/Workstation/x86_64/iso/Fedora-Workstation-Live-x86_64-33-1.2.iso' was redirected through an insecure connection. This file should be served over HTTPS. This download has been blocked. See https://blog.chromium.org/2020/02/protecting-users-from-insecure.html for more details. getfedora.org/:1 Mixed Content: The site at 'https://getfedora.org/' was loaded over a secure connection, but the file at 'http://mirrors.syringanetworks.net/fedora/linux/releases/33/Workstation/x86_64/iso/Fedora-Workstation-Live-x86_64-33-1.2.iso' was redirected through an insecure connection. This file should be served over HTTPS. This download has been blocked. See https://blog.chromium.org/2020/02/protecting-users-from-insecure.html for more details.
@adrian I thought we fixed this in the redirect? Or did we only fix that it sometimes had ftp links?
Anyhow, thanks for the report, we will look into it.
@kevin I just had a look at it.
If I understand it correctly this goes through roles/httpd/reverseproxy/templates/reversepassproxy.mirrormanager-redirector.conf which has the following line RewriteRule ^/(.+) {{proxyurl}}/mirrorlist?path=$1&redirect=1
roles/httpd/reverseproxy/templates/reversepassproxy.mirrormanager-redirector.conf
RewriteRule ^/(.+) {{proxyurl}}/mirrorlist?path=$1&redirect=1
This redirects to http and https; whatever has the higher priority. Can we change the RewriteRule to say &protocol=https if it comes from a https request?
RewriteRule
&protocol=https
Metadata Update from @mohanboddu: - Issue priority set to: Waiting on Assignee (was: Needs Review) - Issue tagged with: medium-gain, medium-trouble, ops
Commit 765e526a fixes this issue
Issue status updated to: Open (was: Closed)
Metadata Update from @kevin: - Issue close_status updated to: Fixed - Issue status updated to: Closed (was: Open)
Log in to comment on this ticket.