Reputation: 111
Detect mixed content with javascript
I'm looking for a way to detect (in javascript / angular) whether there is one or more mixed content issue in order to inform the users that this page uses http links instead of correct https ones.
It's a crucial feature, this project is only about user created content, and content not showing up because of https is regarded as a major failure if no information message is provided.
So far I stumbled on, iframe / Image load failure detection but this could also be numerous other issues (broken links, ...).
Any ideas on the matter would be highly appreciated !
Upvotes: 2
Views: 871
Answers (1)
Reputation: 4737
I just had the same issue, look at this document:
It has very useful information, especially this is useful:
Content-Security-Policy-Report-Only: default-src https: 'unsafe-inline' 'unsafe-eval'; report-uri https://example.com/reportingEndpoint
It took me a while to understand what it means, but basically it reads: don't allow to load urls of any kind that are not https, but allow inline scripts/styles and eval scripts in script blocks. Don't act on matches, just report them to this url
Upvotes: 1
Related Questions
- How to identify mixed content in https website
- How to verify if website has mixed content
- MixedContent when I'm loading https page through ajax, but browser still thinks it's http
- Check if link has https:// in angularjs
- How to catch Mixed Content error?
- How to embed urls as https in angularjs depending on the browser url?
- HTTP images over HTTPS using angularjs
- Detecting if application is accessed via SSL?
- using ng-if to secure different content on page angular js
- How to detect which content is not secured on mixed content SSL page.?