I try to use the skyscanner Widget on an SSL page. SSL is provided by cloudflare.
Now I am getting the "Loading insecure resource on secure page error" and the Widget is not loaded.
See https://www.addismap.com/
vs. http://www.addismap.com/
I am Loading the Widget already via HTTPS but it tries to load parts via HTTP. Probably a bug?
The documentation has been updated to include instructions of how to host the Widget in a page using SSL.
http://business.skyscanner.net/portal/en-GB/Documentation/WidgetsStart
Specifically, include the ssl=true GET parameter in the <script> tag.
Disclaimer: I'm a Skyscanner employee.
You need to load the widget over HTTPS.
Blocked by browser
Related
So I get the following error in Chrome console:
Mixed Content: The page at 'https://your-username.github.io/' was
loaded over HTTPS, but requested an insecure stylesheet
'http://yui.yahooapis.com/pure/0.6.0/pure-min.css'. This request has
been blocked; the content must be served over HTTPS.
Basically the yahoo pure library is being served over HTTP. Is the only solution simply to download it and link to it in a "relative directory" format from my index.html page (e.g., "./pure-min.css")?
As suggested in this issue, try instead
replacing all occurrences of http://yui.yahooapis.com with https://yui-s.yahooapis.com.
You can see it used in this YUI Library Examples: ProfilerViewer Control.
I've included mini-profiler in my app. It loads great on standard http pages, but over SSL I get the following warning
page was loaded over HTTPS, but requested an insecure script 'http://mydomain/mini-profiler-resources/includes.js?v=xyz
Is there a setting or other type of configuration I can use to get this to load over HTTPS?
Hi I have a question in regards to CS-cart version 2.2.4 Banners Slideshow.
It uses Nivo Slider and the banner works fine on the normal site (http://www.smilefile.com.au/) but as soon as it goes to the secure URL it breaks (https://www.smilefile.com.au/).
The image to the links don't seem to be broken but it seems the javascript isn't running...
obviously, you include some javascript files from external domain by http, it causes the secure problem:
[blocked] The page at https://www.smilefile.com.au/ ran insecure content from http://ajax.aspnetcdn.com/ajax/jquery.validate/1.8/jquery.validate.min.js.
Try to read this question, it should help.
How to Include CSS and JS files via HTTPS when needed?
I've found the page that plain http images with a https/ssl page can't be displayed without warnings. Are there any way to display a picture from another http:// web-site on your https://web-site without warnings? (suppose you have a permission to display that picture on you web-site).
Chrome put a yellow triangle on SSL locker: "...However, this page includes other resources, that are not secure..."
IE displays a warning when a page loads: "Do you want to view only the webpage content that was delivered securely?"
So, how to display a picture on https:// page if it is on another web-server?
You can use the information on this article on Encosia. Basically you have to use a // syntax for your urls in order to use the same protocol in all cases. For example, if you have a https request, the following
//ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js
will hit google's CDN using the https protocol. However, if you don't have control over the other server, i think you're out of luck. If you do have control over the other server i'd recommend using the method described in the article above by allowing your content server to serve both protocols.
this is an updated question:
I am trying to include a picture on an external server.
PROBLEM HERE: my home website is using https:// and the picture on the external server is just http. The picture is fine (tested) but IE seems not to allow to access http:// sources when on a https:// website.
I am looking for html or javascript code to allow access for loading pictures from other domain WHEN my home domain is HTTPS and my external domain is HTTP
thanks
Klaus
I'm afraid this is a feature of the browser. When you enter a page like this on IE and some other browsers, it will give the user the option to disallow "unsecured" elements on the page (this includes elements served over HTTP); and will not display them. Your page cannot override the users' action.