DISPLAYING HTTP CONTENT IN HTTPS PAGESMay 10, 2016 / by Marco / Categories : Technology, website, Websites
This week we had to look at an issue with displaying HTTP (insecure) content in a HTTPS (secure) page. According to a number of sites, different browsers by default don’t allow this as the HTTPS page is secure and displaying non-secure content is a no-no. This is called displaying MIXED CONTENT.
The error message you would see in the browsers developer console would be something like:
Mixed Content The page at https://website was loaded over HTTPS but requested an image http://website/image.gif This content should also be served over HTTPS.
The recommended solution is to make sure that all the HTTP content is changed to HTTPS so that everything on the HTTPS page is encrypted. This is a very tedious task. The way I solved this issue was to include a special meta tag at the header of the page to upgrade all HTTP links to HTTPS automatically.
The one I used was:[codesyntax lang=”php”]
<meta http-equiv="Content-Security-Policy" content="upgrade-insecure-requests">
Limit to 5 sponsors.
OTHER ARTICLES YOU MAY LIKE
I recently received this error message when I manually started my VestaCP Nginx service: 99: Cannot assign requested address nginx: configuration file /etc/nginx/nginx.conf test failed I tried searching for a solution on Google but none of them helped. After some digging around, I managed to work out what the issue was. A few weeks ago […]read more
The use of technology in business is no more a matter of choice. Companies of all sizes need to use advanced enterprise technology to grow their business and improve their efficiency and productivity. Irrespective of the nature of the business, the business transformation services offered by enterprise technology solutions can be tremendously useful. It reduces the cost […]read more