javascript - Mixed Content warning on Chrome due to iframe src -

-

somewhere in code, on secure site, following snippet used:

var iframe = document.createelement("iframe"); iframe.setattribute("src", "pugpig://onpageready"); document.documentelement.appendchild(iframe); iframe.parentnode.removechild(iframe); iframe = null;

the iframe src attribute set here triggering callback it's causing chrome (version 54) complain "mixed content" src attribute interpreted non-https url on https:// domain , version of chrome not presenting users easy option allow mixed content load anyway (e.g. shield icon in address bar).

changing chrome version / using different browser / starting chrome --allow-running-insecure-content switch not option reasons question is, there way make "pugpig://onpageready" part perceived https url?

you can try this:-

<meta http-equiv="content-security-policy" content="upgrade-insecure-requests" />

or

<meta http-equiv="content-security-policy" content="block-all-mixed-content" />

paste in <head>...</head> tags.

the http content-security-policy (csp) block-all-mixed-content directive prevents loading assets using http when page loaded using https.

all mixed content resource requests blocked, including both active , passive mixed content. applies <iframe> documents, ensuring entire page mixed content free.

the upgrade-insecure-requests directive evaluated before block-all-mixed-content , if former set, latter no-op. recommended set 1 directive or other – not both.


Comments

Post a Comment

Popular posts from this blog

ios - MKAnnotationView layer is not of expected type: MKLayer -

-
Image
so code works fine logger riddled message. there way rid of or suppress it? postannotation.swift class postannotation: mkpointannotation { //mark: properties let post: post //mark: initialization init(post: post) { self.post = post super.init() self.coordinate = cllocationcoordinate2d(latitude: post.latitude, longitude: post.longitude) self.title = post.title self.subtitle = post.timestring() } } adding annotation let annotation = postannotation(post: post) self.map.addannotation(annotation) func mapview func mapview(_ mapview: mkmapview, viewfor annotation: mkannotation) -> mkannotationview? { if annotation mkuserlocation { return nil } var annotationview = mapview.dequeuereusableannotationview(withidentifier: "pin") as? mkpinannotationview if annotationview == nil { annotationview = mkpinannotationview(annotation: annotation, reuseidentifier: "pin")
Read more

ZeroMQ on Windows, with Qt Creator -

-
i have installed zmq link given below on windows 7. http://zeromq.org/distro:microsoft-windows 1) have c++ project in qt-creator , i'm using zmq c++ binding (zhelpers.hpp etc). 2) have added .lib installed zmq folder qtcreator 3) while compiling, compiler looks _imp__zmq_verion, in .dll files present in .lib have __imp_zmq_version. 4) causing undefined reference zmq_version. anyone else faced problem , has solution ?
Read more

unity3d - Unity SceneManager.LoadScene quits application -

-
i have 2 different scenes 1 named 'main' , other 'game' both added scenes in load. when use scenemanager.loadscene("game"); works no problem when tried return main scene code if (input.getkeydown (keycode.escape)) { scenemanager.loadscene("main"); } strangely game quits. thanks. sorry interruption. somewhere on other script found code. if (input.getkeydown (keycode.escape)) { application.quit (); } that's bad, know...
Read more