As was foretold, we've added advertisements to the forums! If you have questions, or if you encounter any bugs, please visit this thread: https://forums.penny-arcade.com/discussion/240191/forum-advertisement-faq-and-reports-thread/

Alabaster Slim's Signature Images no longer working

HardtargetHardtarget There Are Four LightsVancouverRegistered User regular
So this is damned odd and seems to be happening for anybody who has an old alabasterslim.com based steam sig. They no longer seem to load, whether in the body of a post or in the signature.

I'll take mine as a example, if you go to the direct link, it'll load fine: http://alabasterslim.com/76561197960696746/steam_sig.png
But if you try to embed it, nothing:
steam_sig.png

Any clues? I pinged him on Twitter and as far as he knows it should be all good

steam_sig.png
kHDRsTc.png
Hardtarget on
Bullhead

Posts

  • OrcaOrca Registered User regular
    It's loading fine for me as of right now. I can see both your signature and the embed.

    H3KnucklesRingoShadowhope
  • HardtargetHardtarget There Are Four Lights VancouverRegistered User regular
    ymrl1n9adbjx.png

    what the. nothing for me!

    steam_sig.png
    kHDRsTc.png
    DarkPrimus
  • SneaksSneaks Registered User regular
    I don’t see it either, and I think that this might be a security certificate issue. If this “Alabaster Slim” site is signing its own certificate, Google Chrome will—by default—block a remote link. (If @Orca isn’t using Chrome, it might explain why they see it.)

    destroyah87
  • That_GuyThat_Guy I don't wanna be that guy Registered User regular
    I've been having the same problem for the last 6 months or so. It only seems to happen in Chrome. I don't get any sort of cert error on the website hosting the sig, just when it's trying to be displayed here.

    steam_sig.png
  • OrcaOrca Registered User regular
    I’m using Firefox, so good call there.

    H3KnucklesKayne Red Robe
  • HardtargetHardtarget There Are Four Lights VancouverRegistered User regular
    Interesting. I've shot AlabasterSlim a message on Twitter, we'll see what he says!

    steam_sig.png
    kHDRsTc.png
  • OrcaOrca Registered User regular
    y'all need to use a REAL browser:

    6tht620pk256.png

    Ringo
  • JaysonFourJaysonFour Classy Monster Kitteh Registered User regular
    Yeah, they're loading fine for me on Firefox.

    This sounds like something on the Chrome side of things, I think.

    steam_sig.png
    KetarH3Knuckles
  • BroloBrolo Broseidon Lord of the BroceanRegistered User regular
    edited February 13
    Mixed Content: The page at 'https://forums.penny-arcade.com/discussion/239666/alabaster-slims-signature-images-no-longer-working#latest' was loaded over HTTPS, but requested an insecure element 'http://alabasterslim.com/76561197960696746/steam_sig.png'. This request was automatically upgraded to HTTPS, For more information see https://blog.chromium.org/2019/10/no-more-mixed-messages-about-https.html

    And then loading

    https://alabasterslim.com/76561197960696746/steam_sig.png

    returns:

    NET::ERR_CERT_COMMON_NAME_INVALID

    so the alabaster slim is not serving HTTPS in cross-domain contexts, and Chrome will try to force that connection. However the SSL Cert for Alabaster Slim is no longer valid, so Chrome aborts the transfer and errors out the request:
    fetch("https://alabasterslim.com/76561198139993892/steam_sig.png", {
    "referrer": "https://forums.penny-arcade.com/",
    "referrerPolicy": "strict-origin-when-cross-origin",
    "body": null,
    "method": "GET",
    "mode": "cors",
    "credentials": "omit"
    });

    (FAILED) NET::ERR_CERT_COMMON_NAME_INVALID

    you actually can force Chrome to load insecure sites with the following:
    Option 2 – Prevent Warning
    Click a blank section of the denial page.
    Using your keyboard, type thisisunsafe. This will add the website to a safe list, where you should not be prompted again.

    however that still returns a 500 series internal server error, it just looks like the Alabaster Slim service is not set up with HTTPS in mind

    Brolo on
    SmasherBullhead
  • SudsSuds Registered User regular
    I finally looked into it. Spending the money for a SSL certificate, so hopefully that fixes it for people on Chromium.

    steam_sig.png
    H3KnucklesShadowfireBahamutZEROElvenshae
  • AthenorAthenor Battle Hardened Optimist The Skies of HiigaraRegistered User regular
    Suds wrote: »
    I finally looked into it. Spending the money for a SSL certificate, so hopefully that fixes it for people on Chromium.

    Any chance of using LetsEncrypt to save yourself some money?

    He/Him
  • SudsSuds Registered User regular
    Athenor wrote: »
    Suds wrote: »
    I finally looked into it. Spending the money for a SSL certificate, so hopefully that fixes it for people on Chromium.

    Any chance of using LetsEncrypt to save yourself some money?

    Super helpful! And easy to setup. Looks like it's working too.

    steam_sig.png
    H3KnucklesShadowfire
  • HardtargetHardtarget There Are Four Lights VancouverRegistered User regular
    Suds wrote: »
    Athenor wrote: »
    Suds wrote: »
    I finally looked into it. Spending the money for a SSL certificate, so hopefully that fixes it for people on Chromium.

    Any chance of using LetsEncrypt to save yourself some money?

    Super helpful! And easy to setup. Looks like it's working too.

    success! That's fantastic :)

    steam_sig.png
    kHDRsTc.png
Sign In or Register to comment.