stackoom
  简体   繁体   中英

API Request from GitHub pages doesn't work ("mixed block")

 原文  2020-03-15 23:05:39       javascript/ reactjs/ api/ github/ github-pages

Question

So I deployed all of my React apps that are using an API. I am having problems sending this api and something block them and so my apps aren't working.

Note: all of my requests are cors so there is no problem with them.

github block my request

and this is link to the project in picture news-blog

1 answers

solution1
 3 ACCPTED  2020-03-15 23:08:42

The problem is that you're trying to fetch non-secure (http) content from a secure (https) site, which violates the site's Content-Security-Policy (CSP) . This is an insecure behavior as far as modern browsers are concerned.

From MDN:

The HTTP Content-Security-Policy response header allows web site administrators to control resources the user agent is allowed to load for a given page. With a few exceptions, policies mostly involve specifying server origins and script endpoints. This helps guard against cross-site scripting attacks (XSS).

The right way of solving this would be to load the data from a secure source. For example, instead of fetching from http://newsapi.org/v2/everything , try https://newsapi.org/v2/everything (note the difference between http and https).

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question React Redirection Doesn't Work on Github Pages Sending AJAX request doesn't work on all pages jQuery: last doesn't work with mixed tags Does Google Maps API work on Github Pages? Javascript modules don't work on github pages Gatsby “Creating Pages from Data Programatically” Doesn't Work request data from Github api AJAX request doesn't work ElementTransitions doesn't work on jquery loaded pages Rails Jquery doesn't work on other pages
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM