Deezer内容通过HTTP提供
[英]Deezer content is served over HTTP
问题描述
I am using Deezer Javascript SDK and loaded it over https. 
我正在使用Deezer Javascript SDK并通过https加载它。
<script src="https://cdns-files.deezer.com/js/min/dz.js"></script>
But from today Chrome and Firefox has problem, because Deezer SDK loading some script over https and Chrome rejected as insecure content. 但是从今天起,Chrome和Firefox出现了问题,因为Deezer SDK通过https加载了一些脚本,而Chrome被视为不安全的内容而被拒绝。
Chrome console: Chrome控制台:
Mixed Content: The page at 'https://....' was loaded over HTTPS, but requested an insecure script ' http://www.deezer.com/js_trad-v00340851.php?l=cs '. 混合内容:“ https:// ....”页面通过HTTPS加载,但请求了不安全的脚本“ http://www.deezer.com/js_trad-v00340851.php?l=cs ”。 This request has been blocked; 该请求已被阻止; the content must be served over HTTPS. 内容必须通过HTTPS提供。 playerBB.php:1 Mixed Content: The page at 'https://....' was loaded over HTTPS, but requested an insecure script ' http://cdn-files.deezer.com/js/min/core-v00340851.js '. playerBB.php:1混合内容:“ https:// ....”页面已通过HTTPS加载,但请求了不安全的脚本“ http://cdn-files.deezer.com/js/min/core- v00340851.js '。 This request has been blocked; 该请求已被阻止; the content must be served over HTTPS. 内容必须通过HTTPS提供。 playerBB.php:1 Mixed Content: The page at '...' was loaded over HTTPS, but requested an insecure script ' http://cdn-files.deezer.com/js/min/live-v00340851.js '. playerBB.php:1混合的内容:“ ...”页面已通过HTTPS加载,但请求了不安全的脚本“ http://cdn-files.deezer.com/js/min/live-v00340851.js ”。 This request has been blocked; 该请求已被阻止; the content must be served over HTTPS. 内容必须通过HTTPS提供。
2 个解决方案
解决方案1
9 2015-01-15 14:47:57
This happens when your page and remote resource are using different HTTP protocols: one uses HTTP and another uses HTTPS . 当您的页面和远程资源使用不同的HTTP协议时会发生这种情况:一种使用HTTP ,另一种使用HTTPS 。
The preferred way to include third-party scripts is this one: 包含第三方脚本的首选方法是:
<script src="//cdns-files.deezer.com/js/min/dz.js"></script>
Removing https: or http: tells browser to load the document using same protocol as current page. 删除https:或http:告诉浏览器使用与当前页面相同的协议加载文档。 This should eliminate security warnings. 这应该消除安全警告。
解决方案2
0 2015-10-21 02:58:29
when i set the url : <a href="http://127.0.0.1:8080/download/1.txt"></a> from a https request, it report error : Mixed Content: The page at 'https://127.0.0.1/index.html' was loaded over HTTPS, but requested an insecure resource 'http://127.0.0.1:8080/download/1.txt' . 当我从https请求中设置url: <a href="http://127.0.0.1:8080/download/1.txt"></a> ,它报告错误:混合内容:位于'https://127.0.0.1/index.html'已通过HTTPS加载,但请求了不安全的资源'http://127.0.0.1:8080/download/1.txt' 。 This request has been blocked; 该请求已被阻止; the content must be served over HTTPS. 内容必须通过HTTPS提供。 Failed to load resource: net::ERR_CACHE_MISS 无法加载资源:net :: ERR_CACHE_MISS
when i added the target="_blank" to the url: <a target="_blank" href="http://127.0.0.1:8080/download/1.txt"> , it works! 当我将target="_blank"到URL: <a target="_blank" href="http://127.0.0.1:8080/download/1.txt"> ,它可以工作! , it works! , 有用! it's well known that target="_blank" means opening the linked document in a new window or tab or a new request! 众所周知target="_blank"意味着在新窗口或新选项卡或新请求中打开链接的文档!
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.