locked
hub.video.msn.com Secured Site? RRS feed

  • Question

  • Hello,

    I am looking to embed Microsoft help videos on a secured (https) site.  When I extract the embed code from this page: https://support.office.com/en-us/article/Create-your-first-Word-2013-document-abfe7d91-98e5-422f-9033-6df5f5998b0a?ui=en-US&rs=en-US&ad=US , I get this embed link: http://hub.video.msn.com/embed/23232fd2-c4cf-469f-a5b0-7df840b235e3/

    However, when I try to embed this link directing to http://hub..., it gets blocked by Chrome and Firefox due to a HTTPS site loading HTTP (non-secured) content.  Is there a location where these videos reside that sit on a https site that isn't YouTube?  Any help is greatly appreciated!

    Wednesday, September 30, 2015 1:36 PM

Answers

All replies

  • jsmith409

    I am not sure about how Chrome and Firefox handle the mixed https content, but this video may not be secured by certification.

    But the original website can use some settings to handle the mixed content on Https site:

    Handling Mixed (HTTPS/HTTPS) Content

    http://blogs.msdn.com/b/ieinternals/archive/2009/06/22/https-mixed-content-in-ie8.aspx


    Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact tnmff@microsoft.com.

    Friday, October 2, 2015 2:01 PM
  • Hi,

    Which IE security zone does the Secure site map to? (File>Properties menu from IE)

    IE has a security zone setting preventing navigation into a zone of lower integrity?

    To log suppressed error messages and warnings in the IE Dev Tool go

    Tools>Internet Options>Advanced tab>check "Always record developer console messages"

    Navigate to your secure site, then display the Dev Tool>Console tab, any scripting errors, xss or https warnings are now displayed in the dev tool console.

    Return to the browser without closing the dev tool and click your link to hub.video content. Copy and paste any error warnings or messages with your questions.

    For embed links content ideally you would use a link element targeted to a new window eg.

    <a href=http://hub.video.msn.com/embed/23232fd2-c4cf-469f-a5b0-7df840b235e3/ target="_blank">Start using Word</a>


    Rob^_^

    Monday, October 5, 2015 11:54 PM
  • Hi Rob,

    IE 11 isn't blocking the content, but I know we shouldn't be embedding content in a secured site to an unsecure object.  Chrome and Firefox do block the videos, but I'm not looking for a way around these videos being blocked.  I don't want, nor should I embed an unsecured object on a secured site.  I'm actually just wondering if Microsoft has a secured location where these videos reside, but I have no idea how or where to ask this question to Microsoft.  I tried asking a tech at the Support Center and he ended my session right after I asked the question, assuming he didn't know the answer and panicked.  So, I came here to post.  My thought is that they don't exist on a secured, encrypted site, and if that's the case, I'll move on.  Just thought I would ask in case anyone knew. 

    Rob, I went ahead and tried what you requested and I receive multiple error messages stating:

    "HTTPS security is compromised by..." and then the URL to all the components coming from http://hub.video.msn.com/embed/23232fd2-c4cf-469f-a5b0-7df840b235e3/ 

    Thanks for the help!

    Thursday, October 8, 2015 1:29 PM
  • Hi,

    to test just use the https protocol instead.

    eg. instead of

    http://hub.video.msn.com/embed/23232fd2-c4cf-469f-a5b0-7df840b235e3/

    use

    https://hub.video.msn.com/embed/23232fd2-c4cf-469f-a5b0-7df840b235e3/

    unfortunately it appears that hub.video.msn.com does not support https as I get a certificate error when I test the above url.

    I've opened a feedback to ticket to the site feedback link.

    Regards.


    Rob^_^

    Friday, October 9, 2015 12:45 AM