Monday, 13 July 2015

APEX 5.0.0.00.31 and HTTPS SQL workshop issue

Unable to see the source code in Firefox or Chrome

Just a quick update on something we discovered this morning. Maybe it is an old and known thing but we were definitely not aware of it.

In Firefox 39.0 and latest Chrome 43.0.2 version (if you have APEX 5.0.0.00.31 version installed on ORACLE 12c with HTTPS enabled) if you navigate to SQL Workshop to browse your tables and other DB objects for some reasons it all works except for Packages.

 

If you try to select a package and see its code your browser reports an error:
Mixed Content: The page at 'https://www.xxx.xx/ords/f?p=4500:1001:14464316:::::' was loaded over HTTPS, but requested an insecure resource 'http://www.xxxx.xx/ords/f?p=4500:2250:14464316:GETOBJECT_TREE:NO:::'. This request has been blocked; the content must be served over HTTPS.
Luckily I could confirm this with apex.oracle.com account  where there is different version installed Application Express 5.0.1.00.06 version which works perfectly fine. 

Bizarre or what. 

Update 16 July - problem seems to be in our web server configuration. We are running on Amazon with the SSL certificates in front of Apache and Tomcat/ORDS. Currently Amazon connects over http to Apache which causes the problems.

Solution was to change redirect rules to include:
Header edit Location ^http://(.*)$ https://$1
After this I could normally see package source code in SQL Workshop. Hope this helps.

Regards,
SLino

No comments:

Post a Comment