So we have a site that does not have an ssl certificate and normally loads fine over http (works in firefox, chrome canary, safari etc) but when loading the site on Chrome v 44 it cant find any of the resources because it is trying to serve them over https.
So the html loads but no styling or scripts etc.
We think this is happening after a chrome update. In the console, all the resources have this error
net::ERR_INSECURE_RESPONSE
If your site is in wordpress, I have the solution.
Just place
$_SERVER['HTTPS'] = false;
in your themes's functions.php.
At least it worked for me...
Maybe it is Chrome HSTS Chrome HSTS
Related
When browsing to http://localhost:8080/ in chrome I get redirected to a bad request page, provided by the chrome browser. If I browse to the network url ie: http://192.168.1.1:8080/, then the chrome browser happily loads it.
The localhost url works fine in Firefox and in Edge.
Has anyone experienced this behaviour before and know how to fix it?
Check your chrome proxy settings and hosts file, also try the guest and private mode.
It might be a cookies problem
This has only started happening as of this morning. I have a wordpress website served via https, and all of the images on the site served via http aren't appearing all of a sudden. This only appears to be happening on Chrome (47.0.2526.73 m) and Firefox (41.0.1) however it appears to work on IE, and mobile safari.
this is called Mixed Content (Mixed Protocol),When the webpage is loaded over SSL (HTTPS protocol), most browsers expect all of the assets to be loaded over the same protocol. Some browsers will display an error about loading “insecure content” while others will just block the insecure content outright.
for fix that in wordpress there are two solutions that you can see here
I have a dev site for a store here where fonts are not showing properly in IE10: http://darciekentvineyards.com.uswest.vin65dev.com/Wines
They work on the live portion of the site in IE10: http://darciekentvineyards.com/about
They also work in Chrome.
I'm not sure what's causing this or why there's a scrollbar on the menu. Does anyone have a solution?
This is caused by restrictions on cross-origin use of fonts, as you can see if you press F12 in IE and select Console from the IE developer tool, then open the dev site in the browser. There are many error messages in the consolte about resource loading failing due to cross-origin request.
The simple solution is to upload the fonts onto the dev site too.
I have my personal Google Chrome extension that adds an iframe to every page.
Now, it worked perfectly until a couple of days earlier.
Now it wont work on https pages!
The iframe source is HTTP.
The console is reporting:
[blocked] The page at https://example.com ran insecure content from http://mysite.com
Now, I know about mixed content issue, but it worked perfectly before. Why isnt it working now and how to fix it?
Anyone?
Thanks
Well, a new chrome update was released a couple of days ago. Check the patch notes from that release if they changed anything security related to make Chrome extensions require both HTTP or both HTTPS, not mixed.
When I try to launch a custom protocol from https connection, Chrome version 30 is giving the following error.
[blocked] The page at https://something.com ran insecure content from custom-protocol://somethingelse.com/myapp
Chrome version 29 works fine.
Did anyone come across similar issue?
Is this a new issue/feature in chrome?
Appreciate any response.
Thanks in advance.
I did, and the problem was that I was using https to access the page, the link was in an iframe and most of all, the certificate used in the https was not trusted. After moving to https works fine.
And by the way, it was working in FireFox.
Hope it helps!