**Create a schema agnostic url**

Change `http://fonts.google...` to `//fonts.google...`

Drop the `http:` or `https:` from the front, the browser will use whichever schema you&#39;re currently using on the site.

&gt; You may request resources using `https` from `http`, but not the other
&gt; way round. An alternative to the above solution (and probably best practice) is to just always use
&gt; `https` if it&#39;s available (which it must be if you&#39;re using this style
&gt; of link, otherwise there no point in it anyway).


Remove the protocol from your URL and let the browser determine it:

    &lt;link href=&quot;//fonts.googleapis.com/css?family=PT+Sans&quot; ...

If your page is HTTPS, the font will be loaded from the HTTPS URL. If the page is HTTP, it&#39;ll be loaded from the HTTP URL.

I wonder if it is possible to override project.version/version variable in maven via command line?  
  
The following doesn&#39;t work:

    mvn deploy -Dversion=1.0-test-SNAPSHOT  
    mvn deploy -Dproject.version=1.0-test-SNAPSHOT  

  
Thanks in advance for your help!  
  
  
My pom.xml is:  
  

    &lt;project&gt;
    	&lt;modelVersion&gt;4.0.0&lt;/modelVersion&gt;
    	&lt;groupId&gt;just.another.company.name&lt;/groupId&gt;
    	&lt;artifactId&gt;my-pom&lt;/artifactId&gt;
    	&lt;version&gt;1.3-SNAPSHOT&lt;/version&gt;
    	&lt;name&gt;My Module&lt;/name&gt;
    	&lt;packaging&gt;jar&lt;/packaging&gt;
    	&lt;description&gt;POM Project for My Module&lt;/description&gt;
    &lt;/project&gt;

maven override project.version from command line

I have a mongoose schema for users (UserSchema) and I&#39;d like to validate whether the email has the right syntax. The validation that I currently use is the following:

    UserSchema.path(&#39;email&#39;).validate(function (email) {
      return email.length
    }, &#39;The e-mail field cannot be empty.&#39;)

However, this only checks if the field is empty or not, and not for the syntax.

Does something already exist that I could re-use or would I have to come up with my own method and call that inside the validate function?

Mongoose - validate email syntax

I&#39;m working on an ecommmerce project. Parts of the site are HTTP by default. Others, such as the checkout page, are HTTPS by default. On the HTTPS pages I&#39;m getting this message on the console on Chrome:

    [blocked] The page at https://store-ws3q9h.mybigcommerce.com/checkout.php?tk=c99fa39e007db6376dcddaac68695c22 ran insecure content from http://fonts.googleapis.com/css?family=PT+Sans. 
    [blocked] The page at https://store-ws3q9h.mybigcommerce.com/checkout.php?tk=c99fa39e007db6376dcddaac68695c22 ran insecure content from http://fonts.googleapis.com/css?family=Open+Sans:400italic,400,300,700.
    [blocked] The page at https://store-ws3q9h.mybigcommerce.com/checkout.php?tk=c99fa39e007db6376dcddaac68695c22 ran insecure content from http://fonts.googleapis.com/css?family=Patua+One.

The fonts are linked on the document head in this way: 

    &lt;link href=&#39;http://fonts.googleapis.com/css?family=PT+Sans&#39; rel=&#39;stylesheet&#39; type=&#39;text/css&#39;&gt;
    &lt;link href=&#39;http://fonts.googleapis.com/css?family=Open+Sans:400italic,400,300,700&#39; rel=&#39;stylesheet&#39; type=&#39;text/css&#39;&gt;
    &lt;link href=&#39;http://fonts.googleapis.com/css?family=Patua+One&#39; rel=&#39;stylesheet&#39; type=&#39;text/css&#39;&gt;

It looks ok on other browsers I have tested so far. 

Google Web Fonts on HTTPS pages on Chrome

I'm working on an ecommmerce project. Parts of the site are HTTP by default. Others, such as the checkout page, are HTTPS by default. On the HTTPS pages I'm getting this message on the console on Chrome:
<pre><code class="hljs language-ini">[blocked] The page at https://store-ws3q9h.mybigcommerce.com/checkout.php?tk=c99fa39e007db6376dcddaac68695c22 ran insecure content from http://fonts.googleapis.com/css?family=PT+Sans. 
[blocked] The page at https://store-ws3q9h.mybigcommerce.com/checkout.php?tk=c99fa39e007db6376dcddaac68695c22 ran insecure content from http://fonts.googleapis.com/css?family=Open+Sans:400italic,400,300,700.
[blocked] The page at https://store-ws3q9h.mybigcommerce.com/checkout.php?tk=c99fa39e007db6376dcddaac68695c22 ran insecure content from http://fonts.googleapis.com/css?family=Patua+One.
</code></pre>
The fonts are linked on the document head in this way:
<pre><code class="hljs language-bash">&#x3C;link href='http://fonts.googleapis.com/css?family=PT+Sans' rel='stylesheet' type='text/css'>
&#x3C;link href='http://fonts.googleapis.com/css?family=Open+Sans:400italic,400,300,700' rel='stylesheet' type='text/css'>
&#x3C;link href='http://fonts.googleapis.com/css?family=Patua+One' rel='stylesheet' type='text/css'>
</code></pre>
It looks ok on other browsers I have tested so far.

I want to use Google&#39;s Roboto font on my website and I am following this tutorial:

http://www.maketecheasier.com/use-google-roboto-font-everywhere/2012/03/15

I have downloaded the file which has a folder structure like this:

![enter image description here][1]

  [1]: http://i.stack.imgur.com/Hffqp.png

Now I have three questions:

1. I have css in my `media/css/main.css` url. So where do I need to put that folder?
2. Do I need to extract all eot,svg etc from all sub folder and put in `fonts` folder?
3. Do I need to create css file fonts.css and include in my base template file?

The example he uses this

    @font-face {
        font-family: &#39;Roboto&#39;;
        src: url(&#39;Roboto-ThinItalic-webfont.eot&#39;);
        src: url(&#39;Roboto-ThinItalic-webfont.eot?#iefix&#39;) format(&#39;embedded-opentype&#39;),
             url(&#39;Roboto-ThinItalic-webfont.woff&#39;) format(&#39;woff&#39;),
             url(&#39;Roboto-ThinItalic-webfont.ttf&#39;) format(&#39;truetype&#39;),
             url(&#39;Roboto-ThinItalic-webfont.svg#RobotoThinItalic&#39;) format(&#39;svg&#39;); (under the Apache Software License). 
        font-weight: 200;
        font-style: italic;
    }

What should my url look like, if I want to have the dir structure like:

`/media/fonts/roboto`

How can I use Google&#39;s Roboto font on a website?

I have a Rails 4 application and I am trying to use a custom font.

I have followed many tutorials on this and somehow it&#39;s just not working for my application.

I am using `application.css.less` and have the following declaration:

    @font-face {
        font-family: &#39;HDVPeace&#39;;
        src: font-url(&#39;HDV_Peace.eot&#39;);
        src: font-url(&#39;HDV_Peace.eot?iefix&#39;) format(&#39;eot&#39;),
            font-url(&#39;HDV_Peace.woff&#39;) format(&#39;woff&#39;),
            font-url(&#39;HDV_Peace.ttf&#39;) format(&#39;truetype&#39;),
            font-url(&#39;HDV_Peace.svg#webfont&#39;) format(&#39;svg&#39;);
    }

*Note: I have tried using* `url()` *instead of* `font-url()` *also. The former generates 404 errors on the console, where the latter just doesn&#39;t seem to do anything at all. In the chrome dev tools under resources, the font files are not appearing under the* `assets` *folder, or anywhere*

in my `config/application.rb` I have:

    config.assets.paths &lt;&lt; Rails.root.join(&#39;app&#39;, &#39;assets&#39;, &#39;fonts&#39;)

And in both my `config/environments/development.rb` and `config/environments/production.rb` I have:

    config.assets.paths &lt;&lt; Rails.root.join(&#39;app&#39;, &#39;assets&#39;, &#39;fonts&#39;)
    config.assets.precompile += %w( .svg .eot .woff .ttf)

My font files are located at `app/assets/fonts` and are not contained in a folder below that...

What am I missing?

**UPDATE:**

folder structure
    
    app
    └── assets
        └── fonts
            ├── HDV_Peace.eot
            ├── HDV_Peace.svg
            ├── HDV_Peace.ttf
            └── HDV_Peace.woff

How to use fonts in Rails 4

I am running twitter bootstrap3, and I am extremely happy with the new way it handles the icon as fonts. However: I need some custom icons; I need to make them myself, and ideally integrate it into the existing font. I have searched with no luck. I am well familiar with illustrator, vector graphics etc, but how to integrate?

Worst case scenario, I will make images the traditional way, but hope there is a better solution.

---

**How do I integrate a custom glyphicon with the existing (bootstrap 3) glyphicon font?** 

Twitter bootstrap 3 - create a custom glyphicon and add to glyphicon &quot;font&quot;

I have assigned a custom font of &#39;Helvetica&#39; with size 14 already for the text in UILabel using Interface Builder. 

I am using reusing the same label at multiple places, but at some place I have to display the text in bold.

Is there any way I can just specify to make the existing font bold instead of creating the whole UIFont again? This is what I do now:

    myLabel.font = [UIFont fontWithName:@&quot;Helvetica Neue&quot; size:14];

Setting BOLD font on iOS UILabel

What tab in chrome inspector shows the font files you&#39;re loading via font-face? I can&#39;t find it under resources. I&#39;m having an issue where one group of font-family files are loading, but another font-family is not. I have checked everything from going directly to the URL and seeing they are indeed present, but I would like to look in the inspector and see it loading the one font-family but not the other. Is this possible with chrome?

Where to see font files loaded by chrome in the inspector?

This morning, upon upgrading my Firefox browser to the latest version (from 22 to 23), some of the key aspects of my back office (website) stopped working.

Looking at the Firebug log, the following errors were being reported:

    Blocked loading mixed active content &quot;http://code.jquery.com/ui/1.8.10/themes/smoothness/jquery-ui.css&quot;
    Blocked loading mixed active content &quot;http://ajax.aspnetcdn.com/ajax/jquery.ui/1.8.10/jquery-ui.min.js&quot;`

among other errors caused by the latter of the two above not being loaded.

What does the above mean and how do I resolve it?

Why am I suddenly getting a &quot;Blocked loading mixed active content&quot; issue in Firefox?

Chrome browser by default is blocking mixed content. How do I adjust my settings/configuration to allow mixed content without making any adjustments on the UI every time?

I have found two solutions but neither of them work:

 1. Several articles say you can adjust this under the Security section
    of &quot;Under the Hood&quot; in the Options. This option no longer seems to
    exist. There is no Under The Hood tab and there is no such dropdown
    to adjust how Chrome handles mixed content as far as I can tell.
 2. Another option is to add the `--allow-running-insecure-content` flag
    to your command line. I did this like so:  `&quot;C:\Program
    Files\Google\Chrome\Application\chrome.exe&quot;
    --allow-running-insecure-content`.  However this made no difference. If I tried adding the flag inside the double quotes, then Windows
    complains saying it is invalid.

So what option do I have now with the latest version of Chrome?

How to get Chrome to allow mixed content?

I load some HTML into an iframe but when a file referenced is using http, not https, I get the following error:

&gt; [blocked] The page at {current_pagename} ran insecure content from {referenced_filename}

Is there any way to turn this off or any way to get around it?

The iframe has no `src` attribute and the contents are set using:

    frame.open();
    frame.write(html);
    frame.close();

How to allow http content within an iframe on a https site

I have a Java web service client, which consumes a web service via HTTPS.

	import javax.xml.ws.Service;

	@WebServiceClient(name = &quot;ISomeService&quot;, targetNamespace = &quot;http://tempuri.org/&quot;, wsdlLocation = &quot;...&quot;)
	public class ISomeService
		extends Service
	{

		public ISomeService() {
			super(__getWsdlLocation(), ISOMESERVICE_QNAME);
		}


When I connect to the service URL (`https://AAA.BBB.CCC.DDD:9443/ISomeService` ), I get the exception `java.security.cert.CertificateException: No subject alternative names present`.

To fix it, I first ran `openssl s_client -showcerts -connect AAA.BBB.CCC.DDD:9443  &gt; certs.txt` and got following content in file `certs.txt`:

	CONNECTED(00000003)
	---
	Certificate chain
	 0 s:/CN=someSubdomain.someorganisation.com
	   i:/CN=someSubdomain.someorganisation.com
	-----BEGIN CERTIFICATE-----
	XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
	XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
	XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
	XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
	XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
	XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
	XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
	XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
	-----END CERTIFICATE-----
	---
	Server certificate
	subject=/CN=someSubdomain.someorganisation.com
	issuer=/CN=someSubdomain.someorganisation.com
	---
	No client certificate CA names sent
	---
	SSL handshake has read 489 bytes and written 236 bytes
	---
	New, TLSv1/SSLv3, Cipher is RC4-MD5
	Server public key is 512 bit
	Compression: NONE
	Expansion: NONE
	SSL-Session:
		Protocol  : TLSv1
		Cipher    : RC4-MD5            
		Session-ID: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
		Session-ID-ctx: 	            
		Master-Key: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
		Key-Arg   : None
		Start Time: 1382521838
		Timeout   : 300 (sec)
		Verify return code: 21 (unable to verify the first certificate)
	---

AFAIK, now I need to

  1. extract the part of `certs.txt` between `-----BEGIN CERTIFICATE-----` and `-----END CERTIFICATE-----`,
  1. modify it so that the certificate name is equal to `AAA.BBB.CCC.DDD` and
  1. then import the result using `keytool -importcert -file fileWithModifiedCertificate` (where `fileWithModifiedCertificate` is the result of operations 1 and 2).

Is this correct?

If so, how exactly can I make the certificate from step 1 work with IP-based adddress (`AAA.BBB.CCC.DDD`) ?

**Update 1 (23.10.2013 15:37 MSK):** In an answer to a [similar question][1], I read the following:

&gt; If you&#39;re not in control of that server, use its host name (provided
&gt; that there is at least a CN matching that host name in the existing
&gt; cert).

What exactly does &quot;use&quot; mean?


  [1]: https://stackoverflow.com/questions/12792586/no-subject-alternative-names-present-exception-when-creating-web-service-client?rq=1

How to fix the &quot;java.security.cert.CertificateException: No subject alternative names present&quot; error?

I have started writing a wrapper for an API which requires all requests to be over HTTPS. Instead of making requests to the actual API while I am developing and testing it I would like to run my own server locally which mocks the responses.

I am confused about how to generate the certificates I need to create a HTTPS server and send requests to it.

My server looks something like this:

    var options = {
      key: fs.readFileSync(&#39;./key.pem&#39;),
      cert: fs.readFileSync(&#39;./cert.pem&#39;)
    };

    https.createServer(options, function(req, res) {
      res.writeHead(200);
      res.end(&#39;OK\n&#39;);
    }).listen(8000);

The pem files were generated with:

    openssl genrsa 1024 &gt; key.pem
    openssl req -x509 -new -key key.pem &gt; cert.pem

And a request looks something like this:

    var options = {
      host: &#39;localhost&#39;,
      port: 8000,
      path: &#39;/api/v1/test&#39;
    };

    https.request(options, function(res) {
      res.pipe(process.stdout);
    }).end();

With this setup I get `Error: DEPTH_ZERO_SELF_SIGNED_CERT`, so I think I need to add a `ca` option for the request.

So my question is how should I generate the following:

1.  The server `key`?
1.  The server `cert`?
1.  The `ca` for the request?

I have read a few things about generating self signed certificates with openssl, but can&#39;t seem to wrap my head around it and figure out which keys and certificates to use where in my node code.

**Update**

The API provides a CA certificate to use instead of the defaults. The following code works using their certificate and this is what I want to reproduce locally.

    var ca = fs.readFileSync(&#39;./certificate.pem&#39;);

    var options = {
      host: &#39;example.com&#39;,
      path: &#39;/api/v1/test&#39;,
      ca: ca
    };
    options.agent = new https.Agent(options);

    https.request(options, function(res) {
      res.pipe(process.stdout);
    }).end();


Content Type	Original Author	Original Content on Stackoverflow
Question	Jack Pilowsky	View Question on Stackoverflow
Solution 1 - Fonts	Lee	View Answer on Stackoverflow
Solution 2 - Fonts	Blender	View Answer on Stackoverflow

Google Web Fonts on HTTPS pages on Chrome

Fonts Problem Overview

Fonts Solutions

Solution 1 - Fonts

Solution 2 - Fonts

Mongoose - validate email syntax

maven override project.version from command line

Attributions