We use JSF1.2 + Woodstock with built-in AJAX. When we run the application on IE7 through HTTPS we see the "This page contains secure and nonsecure items" warning on each page. I read on other forums that it's mostly likely related to IE7 + AJAX. It looks like IE7 treats AJAX as nonsecure.
Does anybody have a similar problem? Have you found out a solution or work around?