I'm hosting files on Parse and was wondering how to get an HTTPS link for uploaded files/images, as opposed to HTTP. I'm creating a web app and without all the assets being sent over SSL, it has the potential to throw errors and not appear on certain browsers.
If your uploaded file stored in any class and the column name is
profilePic then you can use
profilePic._url
for getting https link or url of it..
Related
I'm learning Lavarel and I have a problem that I don't know how to solve it.
In an internal network I have the machine http://caption-t3/ with a Laravel application. Users access to the laravel application through the URL: https://www.my-domain.com/app/t3/portal.
A reverse proxy redirects all requests from https://www.my-domain.com/app/t3/portal to http://caption-t3/. I don't have access to the reverse proxy configuration
The problem is that the content is obtained but not the css, js and images files. I don't know if it's a problem with the .htaccess file (an apache server is used and I don't know how to configure the .htaccess files) or with Laravel configuration.
Can anyone give me guidance?
Thanks.
I have hosted my project on the server and my application is getting hacked, as of now I came to know my configuration files are no secured like .env, composer.json etc. These can be directly accessed by saying mydomain/filname e.g., www.abc.com/.env, when anybody hits url like this then file is opened on the browser. How can protect these files. I am using lravel 5.7
It seems you have multiple .htaccess files and your server isn't using the one that Laravel provides.
I'm a beginner in Shopify and trouble with Shopify proxy
Front Store: https://bhavin.myshopify.com
App Store: https://myapp.ngrok.io (Laravel)
I want to add two files (custom js and manifest.json) in my front store.
Install and authentication is working fine
I'm adding manifest.json something like that
var link = document.createElement('link');
link.rel = 'manifest';
link.href = 'https://myapp.ngrok.io/manifest.json';
document.head.appendChild(link);
1. Without proxy
manifest.json file added properly but throw error something like that
Access to resource at 'https://myapp.ngrok.io/manifest.json' from origin 'https://bhavin.myshopify.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
2. With Proxy
Subpath prefix: apps
Subpath: cnv
Proxy URL: https://myapp.ngrok.io/proxy
Now my manifest.json file path is https://bhavincb.myshopify.io/apps/cnv/manifest.json
Url is working fine if I'm logged in the admin panel
If I open that URL when I'm not logged in then it returns
This page isn’t working with HTTP ERROR 401
In my front store while load manifest file it is showing something like that (when logged in)
Manifest: Line: 1, column: 1, Unexpected token.
There is not any error in manifest.json
I'm using Laravel Shopify package
As of I know, I guess I'm doing something wrong with a proxy configuration.
Does anyone have a solution?
Any help will appreciate
I resolved to issue my self (ref. 2. With Proxy)
The issue with my store actually I'm using free trial and in free trial you can't disable password protection
If your password protection is enabled and you are trying to access proxy URL without logged in, in that case, Shopify won't allow accessing.
After purchase plan, it's working fine
The better recipe to follow might be this. One, you use your App to access the assets of the shop theme, and upload your manifest.json text file as an asset. That means it is accessible in Liquid, in the theme, and the shop can therefore render it and make it useful.
Second, use your App to install custom.js as a ScriptTag asset. That is the usual way to accomplish running your own JS.
The App Proxy is not really meant for use the way you are using it.
I have issue with oil price
which we were getting form below script/ external website link :-
But Due to SSL , we have changed link from below way
which is perfectly working on chrome browser but on other browser script not loading properly
(Have you any idea regarding this how we can resolve )
I am doing this in Wordpress
From an https website you can't include js from an http host. (Active mixed content is blocked)
If you need to include a script, host it yourself (or use a CDN provider with https)
If you need to include a data provider, you need to proxy the request :
https://you.website/get_data.js returns the content of https://the.other.website/get_data.js
When I try to access my website over https, I get a mixed content error. Looking at the console, The offending resources are all images that are uploaded using the wordpress media uploader.
But isn't wordpress smart enough to know that it should serve those images over ssl if the https version of the website is requested? If not, is there an easy solution to resolve this issue (besides from editing every post to replace say http://example.com/image.jpg with //example.com/image.jpg)
Wordpress has a plugin that does this trick. Wordpress HTTPS(SSL)
It replaced all images loaded through "HTTP" with "HTTPS".