Forums | Mahara Community
11 February 2015, 3:47 AM
hi, we use Kaltura for our video management in our vle and i have found that the embed code (iframe) doesn't playback through mahara pages despite adding it as a trusted iframe source. I have to use legacy embed code to get the playback working. I
I found this tracker that mentions HTML5 for 15.04.0, but it's for flowplayer, see: https://bugs.launchpad.net/mahara/+bug/1103652
15.05.0 is planned for release on 2015-04-15: https://launchpad.net/mahara/+milestone/15.04.0
could you let me have for more detailed information concerning the development plans?
11 February 2015, 5:38 PM
Can you paste in a sample embed code for Kaltura here? Or link to a page that has a broken Kaltura iframe in it?
12 February 2015, 8:33 PM
Hi Aaron, sure:
iframe embed code:
<iframe src="http://cdnapi.kaltura.com/p/1082862/sp/108286200/embedIframeJs/uiconf_id/28169342/partner_id/1082862?iframeembed=true&playerId=kaltura_player_1423727240&entry_id=1_ku9b0c4h" width="400" height="333" allowfullscreen webkitallowfullscreen mozAllowFullScreen frameborder="0" style="width: 400px; height: 333px;" itemprop="video" itemscope itemtype="http://schema.org/VideoObject">
<span itemprop="name" content="Badges for EWC #OIE"></span>
<span itemprop="description" content="explanation of open badges in EWC"></span>
<span itemprop="duration" content="270"></span>
<span itemprop="thumbnail" content="http://cdnbakmi.kaltura.com/p/1082862/sp/108286200/thumbnail/entry_id/1_ku9b0c4h/version/100000/acv/111"></span>
<span itemprop="width" content="400"></span>
<span itemprop="height" content="333"></span>
Legacy flash embed (this one works ok in mahara:
<object id="kaltura_player_1423727278" name="kaltura_player_1423727278" type="application/x-shockwave-flash" allowFullScreen="true" allowNetworking="all" allowScriptAccess="always" height="333" width="400" bgcolor="#000000" style="width: 400px; height: 333px;" xmlns:dc="http://purl.org/dc/terms/" xmlns:media="http://search.yahoo.com/searchmonkey/media/" rel="media:video" resource="http://cdnapi.kaltura.com/index.php/kwidget/cache_st/1423727278/wid/_1082862/uiconf_id/28169342/entry_id/1_ku9b0c4h" data="http://cdnapi.kaltura.com/index.php/kwidget/cache_st/1423727278/wid/_1082862/uiconf_id/28169342/entry_id/1_ku9b0c4h">
<param name="allowFullScreen" value="true" />
<param name="allowNetworking" value="all" />
<param name="allowScriptAccess" value="always" />
<param name="bgcolor" value="#000000" />
<param name="flashVars" value="" />
<param name="movie" value="http://cdnapi.kaltura.com/index.php/kwidget/cache_st/1423727278/wid/_1082862/uiconf_id/28169342/entry_id/1_ku9b0c4h" />
<a rel="media:thumbnail" href="http://cdnbakmi.kaltura.com/p/1082862/sp/108286200/thumbnail/entry_id/1_ku9b0c4h/version/100000/acv/111"></a>
<span property="dc:description" content="explanation of open badges in EWC"></span>
<span property="media:title" content="Badges for EWC #OIE"></span>
<span property="media:width" content="400"></span>
<span property="media:height" content="333"></span>
<span property="media:type" content="application/x-shockwave-flash"></span>
13 February 2015, 11:23 AM
I tested that first embed code in Mahara 1.9 and 1.10. If I enter "cdnapi.kaltura.com" into my list of allowed iframe sites, then it works for me in 1.9 & 1.10 on an HTTP site, but not on an HTTPS site. Apparently the SSL certificate for cdnapi.kaltura.com has the wrong domain name on it.
So if your Mahara is an HTTPS site, then that probably explains the problem. You need to complain to the site administrators at Kaltura and get them to correct that SSL cert.
15 February 2015, 2:16 AM
Thanks Aaron, I have added the cdnapi URL to allowed iframe and that has fixed it. I will contact Kaltura and ask about the SSL cert. Appreciate your help :)
17 February 2015, 9:45 PM
for the sake of completion, I am updating this thread with the final resolution. When I had explained the issue in more detail to Kaltura they provided the following information:
"The Mahara service is probably using HTTPS protocol. From the hostname you have shared with me, I can tell that it does not work under HTTPS protocol, which leads you to be unable to embed it under SSL secured environment, as it counts as a security breach.
In order to embed a video under an environment such as this, you must make the embed code support HTTPS. Go to any entry on the content, click "Preview & Embed", the check the box that says "Support for HTTPS embed code" (see attached screenshot "HTTPS.jpg").
In addition, if you go into the URL https://www.sslshopper.com/ssl-checker.html, and search for "cdnapi.kaltura.com", you can see that the hostname does not conform with SSL technology, while if you search for "cdnapisec.kaltura.com", you will be able to see that it does.
The workaround/workflow "Mahara" had suggested you is to manually approve "cdnapi.kaltura.com" as secured, and it obviously works as well, but is obviously counted to be a security breach, as it "whilelists" an unsafe protocol. Therefore, it is not recommended.
Having said that, I advise removing the "cdnapi.kaltura.com" hostname from the "whilelist" and only embed entries to the website under HTTPS protocol."
I can confirm that replacing cdnapi.kaltura.com with cdnapisec.kaltura.com, using the Kaltura auto delivery option and selecting HTTPS sees the iframe embed working :)
18 February 2015, 11:03 AM
Thanks for the update! Glad to hear you got it working. :)
That's a bit unusual that Kaltura uses a different domain name for the HTTPS version of their site. With the shift to more stringent mixed-content checking in web browsers, most embedded content services have switched to providing their URL in HTTPS by default, or providing a URL that starts with "//", like "//www.youtube.com/embed/9uuqXXT7VYo", which makes it a "scheme-relative URL" that will be served in HTTP if it's on an HTTP page, and HTTPS if it's on a HTTPS page.
Anyway, thanks for sharing your solution. Hopefully this can help anyone else who has problems embedding Kaltura content into Mahara pages.