I kept getting the insecure items popup in IE6 and tracked it down to line 23188 in ext-all-debug.js.



cut:

iframe.src="javascript:false";

paste:

iframe.src = (Ext.SSL_SECURE_URL || "javascript:false");


Might want to do it different but that works for me, correlates with the docs that javascript:false is default, and doesn't hurt anything if it's set to SSL_SECURE_URL in firefox.

What class is that in?

What class is that in?

That is found in "\source\widgets\form\HtmlEditor.js".

Thanks. That makes total sense and I have updated the codebase.