EDIT 08/03/2010: A reader just pointed out that the method outlined in this post will present a warning in in the status bar when using the latest version of FireFox. No popups or dialog messages though – that’s good. And it still works flawlessly in IE and Chrome. Thanks to Jayapal for pointing the warning in FF.
Here is a cool trick to get rid of ssl security warning errors when embedding youtube videos into secure web pages.
This solution will work if your server is using Apache and has Mod_Rewrite enabled (most Linux web hosting companies do).
First, add this to your .htaccess file:
RewriteEngine on RewriteBase / RewriteRule ^youtube/(.*)$ http://www.youtube.com/$1 [L]
Then to actually embed the video using the following format:
<object width="560" height="340"> <param name="movie" value="https://www.yourdomain.com/youtube/v/mydjFYoD4WS&hl=en_US&fs=1&rel=0&autoplay=1"/> <param name="allowFullScreen" value="true"/> <param name="allowscriptaccess" value="always"/> <embed src="https://www.yourdomain.com/youtube/v/mydjFYoD4WS&hl=en_US&fs=1&rel=0&autoplay=1&" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="560" height="340"/> </object>
Notice the urls in the embed code are https://www.yourdomain.com/youtube/….
With the rewrite code in place in your htaccess file, Apache will now see those urls and rewrite them into the actual youtube urls (http://www.youtube.com/….). The result…no more security warnings. The secure page loads securely. The youtube video plays without causing any warning problems.