GithubHelp home page GithubHelp logo

Comments (5)

jens-maus avatar jens-maus commented on June 12, 2024 1

Already done, this ticket is closed...

from raspberrymatic.

github-actions avatar github-actions commented on June 12, 2024

@MSoegtrop, the issue you reported does not seem to be reproducible by the maintainer of this project. Please provide additional information and more detail and please try to reproduce your problem with a fresh test installation and try to find other users having the same problems so that they can support your observations.

from raspberrymatic.

jens-maus avatar jens-maus commented on June 12, 2024

Sorry, but I cannot reproduce this issue here in a RaspberryMatic standalone installation. In addition, I can perfectly see that the device download URL are always https:// URLs. I also tried this in different browser like Chrome and Firefox and didn't note any issue here. See here for the browser console where you can see that the URL is perfectly a https URL:

Bildschirmfoto 2023-10-25 um 09 33 04

So please elaborate further as I think this might be a HomeAssistant Addon issue only and try to identify the root cause by using your browser console and debugging.

from raspberrymatic.

jens-maus avatar jens-maus commented on June 12, 2024

Ok, after some further investigation, I think I have found the reason why this does not work for you. The issue seems to be that you might access home assistant via https, but the internal ingress based access to the WebUI is using plain http for performance reasons. But unfortunately the WebUI has some logic to identify if a connection is running under http or https, thus it will present plain http download links in that case but your main home assistant webui is running https, thus this will end up in that cross-security issue which some browsers simply don't like (having external http links in a https page).

from raspberrymatic.

MSoegtrop avatar MSoegtrop commented on June 12, 2024

@jens-maus : thanks for the investigations - more complicated than I thought. Would it make sense to always use https for firmware downloads? Since this goes to the internet - unlike usually local access to the WebUI - it would make sense from a security point of view to use https even if the WebUI uses http. Performance should not be relevant for such a download.

from raspberrymatic.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.