Sorry to reply so lately, not that I'm not following, but I don't receive email notification anymore, if you've got a clue about this I'm interested. I already verified my options with no luck, all seems good...---
I tested with HTTP HFS' share and HTTPS HFS' share, in both cases it works like it should :
- HTTP loads jquery.js via HTTPS without problem and quite quickly,
- HTTPS display a beautiful solid lock, and users won't ask about a tremendous exclamation mark anymore
Despite the fact the second idea works and is simplest to code (yeah, well... ^^'), the current working protocol would be great too as a variable like you suggest in the first idea. This way, templates can be HTTPS and HTTP at the same time without change, and without navigator warning.
Also, you're talking about saving bandwidth, but the file is loaded only once by session, after that, as there is no change in the file, cache is commonly used, but you're right, for people who pay their bandwidth it should be better to take it from google anyway.
I don't really know the impact on security to make an SSL connexion with an Stunnel-HFS server that send an HTML document asking for a file from another SSL server. The fact is that google is a giant curious spider, and that HFS via Stunnel theoretically wants to be discrete, perhaps I'm a bit excessive, but I still prefer to do like I said in the FAQ topic, and send myself this file to friends via HFS-Stunnel, and doing so I don't give any referrer to google.
But I admit it's perhaps extreme...
By talking about jquery.js, I don't really know which part of it you're using, but perhaps it would be possible to include only functions really used, at the same level as the IE blink. But perhaps it's not legal, and/or perhaps you use a large amount of it.