Reputation: 5548
Chrome/IE doesn't request any resource across non-https in Facebook application
There is a problem with Facebook applications/page tabs and Chrome/Internet Explorer users that have checked "secure browsing" setting in their profile but not only.
Problem rises when facebook opens our app by https protocol. Let's assume that we have app and all our resourcess accessbile by https. When user visits our app, everything working but not iframe/JS widgets, provided by external sites without SSL like some counters, instant messaging widget etc.
What to do if the page where widget comes from doesn't let us to generate ssl-version code, and also just changing http to https doesn't work because of lack of certificates/ssl enabled etc ?
Upvotes: 0
Views: 1104
Answers (2)
Reputation: 11
TripAdvisor widget
The answer is : replace this script tag with TripAdvisor script
This :
<script src="http://www.jscache.com/wejs?wtype=sswidecollectreview&uniq=612&locationId=1480219&lang=en_US&border=true"></script>
To This tag from TripAdvisor Script
<script src="https://www.tripadvisor.com/WidgetEmbed-sswidecollectreview?uniq=831&locationId=308116&border=true&lang=en_US"></script>
and add [ S ] character to link for images [https] like this :
<a target="_blank" href="http://www.tripadvisor.com/"><img src="https://www.tripadvisor.com/img/cdsi/img2/branding/medium-logo-12097-2.png" alt="TripAdvisor"/></a>
To This :
<a target="_blank" href="http://www.tripadvisor.com/"><img src="https://www.tripadvisor.com/img/cdsi/img2/branding/medium-logo-12097-2.png" alt="TripAdvisor"/></a>
its work ...
Upvotes: 1
Reputation: 180897
Basically what the "padlock"/SSL indicator in the browser indicates is that the whole page is secure. That means, no insecure content is included on the page without explicit warning by the browser that that is the case.
There may be browser specific workarounds (aka bugs), but relying on them for your page to work is not a good idea.
The best "workaround" is likely to just contact the people hosting the widgets and inform them about your problem, or if possible just plain hosting the widgets on your own secure site.
Upvotes: 0
Related Questions
- facebook page tab not available over ssl
- Getting blank signed request from facebook in ie only
- Link to an insecure page from secure canvas page no longer working in Chrome
- Facebook JavaScript SDK over HTTPS loading non-secure items
- Facebook App "This Connection is Untrusted"
- Secure/Non-secure browsing issue
- facebook iframe app is blank when using https
- Facebook Iframe App - prompting for secure content although I have SSL installed?
- "Empty response received" when using HTTPS
- Facebook App redirecting to https