简体繁体中英

SSL and Non-Secure Resources

原文 2012-02-01 17:33:12 7 1 php/ security/ ssl

I know there have been questions regarding an https:// webpage, and people who have gotten warnings and the "red" padlock on their browser.

I am having the same issue, however, I know what the culprit is.

On part of my website, I allow content (basically a news feed and picture via RSS) to be displayed to the user. The resources are trusted, but just not secured. My issue is: the content that's being delivered is not coming from a secure location, nor does it have the capability. (For example, I tried accessing one of the articles by adding an "https", but no go.)

I know that one method is to not allow the RSS feed to be delivered. But is there any way around this? Is there any way to take a non-secure feed and make it secure before delivering it to my end-user?

I just don't want the annoying "red" padlock to keep showing up.

Any help on this would be great. I am using primarily PHP and jQuery.

Thanks!

1 answers

No. If you load resources from non-SSL urls into an SSL page, you will get the security warnings. There is no way around it other than proxying the insecure content so it goes to the client through your server over an SSL-protected link.

Connecting to a non-secure LDAP server via PHP on a Secure Domain

Display authenticated users on non-secure (anonymous) routes

How to redirect from non-secure version of site to secure version of site using .htaccess

Are secret query strings a reasonable way to limit access and hide content to a non-secure site?

How to structure content of PHP includes for use in both non-secure (http://) and secure (https://) areas and across multiple directories?

SSL Page Posting to Non Secure Form

SSL - Access non secure API from secure page

ssl page showing as using resources from a non ssl page…but its not

Secure javascript resources with laravel

Secure Authentication without SSL

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Connecting to a non-secure LDAP server via PHP on a Secure Domain Display authenticated users on non-secure (anonymous) routes How to redirect from non-secure version of site to secure version of site using .htaccess Are secret query strings a reasonable way to limit access and hide content to a non-secure site? How to structure content of PHP includes for use in both non-secure (http://) and secure (https://) areas and across multiple directories? SSL Page Posting to Non Secure Form SSL - Access non secure API from secure page ssl page showing as using resources from a non ssl page…but its not Secure javascript resources with laravel Secure Authentication without SSL

Related Tags

SSL and Non-Secure Resources

Question

1 answers

solution1 4 ACCPTED 2012-02-01 17:35:33

solution1
4 ACCPTED 2012-02-01 17:35:33