Regarding the mixed content warnings, you are seeing these because some embedded images are still served over http. While annoying, these do not pose much of a security risk. We will investigate if there is a way for us to fix this.
Discourse automatically downloads embedded images and replaces the urls in the post with https:// links to the downloaded image (hosted by Discourse). Not really a problem, even if it didn’t do that. Doesn’t work for http:// videos or other things I’d imagine, but eh
It doesn’t download locally if the image is large enough, so large images will still be HTTP/HTTPS of the site they’re uploaded to.
1 Like
Finally! Awesome!
Yay
Well, this is super annoying having to reauthorize my discourse app every time I open it, but I’ll manage
1 Like