When i click a link in one page called a.html, the target link(b.html) will be have to be opened, which is an secure site SSL (https).
After i clicked the a.html site, the b.html site not opened instead it was saying the site can't be reached.
What issue i saw was the https:// is removed, i don't know why it
is removed.
Does any have any idea why this issue is occurring....
a.html Testing....
b.html https://test.abc.com/b.html - not opening because (https://) is removed.
I have tested from my local and is working. Just have a look at this small block of code that only has link to the google home page.
a.html
<html>
<head></head>
<body>
Google link from non https html
</body>
</html>
It should work if you have a https site or page working from anywhere.
Edit:
In the case of not working there should be some reasons like :
Some codes might be removing your https links like: jQuery codes.
There might be some redirection codes like htaccess.
Or there might be some scenarios like that.
Related
I am getting intermittent mixed content errors on my https site. The site link is stakeholdermap.com
I have checked Chrome Dev tools >Network tab and I am seeing unsecure urls examples below:
Mixed Content: The page at 'https://www.stakeholdermap.com/stakeholder-analysis.html' was loaded over HTTPS, but requested an insecure plugin data 'http://static.vertamedia.com/static/vpaid-ssp-vast.swf?aid=41476&sid=0&cb=146233.42079096.743365'. This content should also be served over HTTPS. ads?client=ca-pub-3370240294319443&format=300x250&output=html&h=250&slotname=8722343817&adk=5159607…
Mixed Content: The page at 'https://www.stakeholdermap.com/stakeholder-analysis.html' was loaded over HTTPS, but requested an insecure plugin data 'http://ads2.vertamedia.com/vast/vpaid-config/?width=300&height=250&aid=4147…takeholdermap.com&v=2.2.90&t=flash&video_duration=&cb=73026784276589750000'. This content should also be served over HTTPS.
But the adslots are using latest code (//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js)
I am pretty certain these are loaded by Adsense. My question is how can I block this or force it to use https?
Ask the users browser to fetch the secure content, if possible:
<meta http-equiv="Content-Security-Policy" content="upgrade-insecure-requests" />
If the ad is available via https, then it will fetch that version, otherwise, the content will be blocked and another shown in its place. Put the meta in the <head> section of your pages where all your other meta tags are located.
You can find more information here: https://developers.google.com/web/fundamentals/security/prevent-mixed-content/fixing-mixed-content
I am working on a Magento application which uses iframe on the product details page.But when I moved the application to the development environment the iframe stopped working.
<iframe width="980px" height="950px" frameborder="0" src="http://www.example.com/somedirectory/index.php?action=main&case=v2&type=std&model=xyz" style="border:none;" id="my_iframe">
<html>
<head></head>
<body></body>
</html>
</iframe>
There is content under head and the body part of iframe when in Live environment.
The iframe code is in the view.phtml file.
Update : when I statically replace the my development site url "http://www.example.com" with live site url in the iframe things start working? But how to fix for the development environment.
Please suggest some solution for this.
There were some unclosed php tags in the php file which was being used by the iframe.
When I closed the php tags properly,it started working.
In Chrome I get the following error messages in the console
[blocked] The page at https://domain.com/home.html ran insecure
content from
http://domain.com/typo3temp/stylesheet_09c1ef800c.css?1345207892.
if I call https://domain.com. The user gets a page without stylesheets and images. What can I do against this?
The files are included like <script type="text/javascript" src="js/lib/jquery-1.5.1.min.js"></script> but I don't want to define the domain.
Should I completely switch to https by setting the base URL with https? Which other possibilites do I have?
I used
config {
baseURL = https://domain.com
}
and adapted all links which had a http in the beginning (otherwise the slider stopped working because Chrome didn't load the other ressources ...). Seems to work now.
I have a jquery photo slider that is working great in a regular http:// URL like this:
http://tinyurl.com/cswdpbc
My problem starts when I try to access the page with https:// the slider no longer appears. I have tried to Use the Chrome tools but can't see anything out of the ordinary...can somebody take a peek and let me know what you think it could be?
HTTPS URL: http://tinyurl.com/c29585s
you are calling this: https: /wp-includes/js/comment-reply.js?ver=20090102 and it gives an SSL certificate error, try calling scripts without defining a protocol, like this:
<script type='text/javascript' src='//wp-includes/js/jquery/jquery.js?ver=1.7.1'></script>
also, you could use google's cdn to host that file for you ;)
<script src="//ajax.googleapis.com/ajax/libs/jquery/1.8.1/jquery.min.js"></script>
I'm not familiar with caching in coldfusion, but it seems it's doing somethnig it's not supposed to in my website.
I have only one index page, that uses a big switch statement to determin what cfm files to include, to build my website's pages. No everything works fine, I even have a default case that refers back to the homepage when trying to access a non-existing page.
When I create a new page and try to go to it but in the meantime forgetting I need to add a cfcase first, goes to the defaultcase. If I then create the needed cfcase, it should work, but it has cached the redirect of the last time, the path it followed in the switch/case, so I still get the defaultcase. Even if remove the defaulcase from the code, it still goes there.
Is there anyway to tell coldfusion to stop caching my switch/case. The rest of the content may be chached, no problem, just not the path of the switch/case..
edit 1
Here's my code:
<html>
<head>
</head>
<body>
<cfswitch expression="#attributes.fuseaction#">
<cfcase value="home">
<cfinclude template="dsp_home.cfm" />
</cfcase>
<cfcase value="admin">
<cfinclude template="admin/dsp_login.cfm" />
</cfcase>
<cfdefaultcase>
<cf_goto fuseaction="home">
</cfdefaultcase>
</cfswitch>
</body>
</html>
attributes.fuseaction is a variable that is stored in the url of the requested page, like so: http://www.domain.com/index.cfm/fuseaction/#switch/case-variable#.
cf_goto is a custom tag that gives a 301 code and redirects to the specified page where that variable is home.
When I do what I described above, the headers still give me the 301 error code and de redirect to the default case page. So I'm at a loss what it is that's being cached here.
CF doesn't cache switch/case logic, so it's a red herring to be looking at that to solve whatever your problem actually is.
Do you - by any chance - have "Trusted Cache" switched on in CFAdmin? If so, you'll need to clear it so your CFM files recompile when they're requested, and your changes will take effect.
Failing that: we need to see your code, as per Duncan's suggestion.