Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Not working for subdmains - blocked by chrome/firefox because of http instead of https #199

Open
rimvislt opened this issue Feb 21, 2023 · 2 comments
Open

Not working for subdmains - blocked by chrome/firefox because of http instead of https #199

rimvislt opened this issue Feb 21, 2023 · 2 comments

Comments

@rimvislt
Copy link

When loading from xxx.test toolbar links are using https but when using domain admin.xxx.test debug toolbar is using http for loading assets and both browsers chrome and firefox are now blocking by default under https loading http.

SERVER_NAME: 'xxx.test'
PREFERRED_URL_SCHEME = "https"

register subdomain blueprint
app.register_blueprint(
bp,
url_prefix='/',
subdomain=admin
)

Firefox URL https://admin.xxx.test
Blocked loading mixed active content "http://xxx.test/_debug_toolbar/static/js/jquery.js"
home
Loading failed for the <script> with source “http://xxx.test/_debug_toolbar/static/js/jquery.js”. home:239:1
Blocked loading mixed active content "http://xxx.test/_debug_toolbar/static/js/jquery.tablesorter.js"
home
Loading failed for the <script> with source “http://xxx.test/_debug_toolbar/static/js/jquery.tablesorter.js”. home:240:1
Blocked loading mixed active content "http://xxx.test/_debug_toolbar/static/js/toolbar.js"
home
Loading failed for the <script> with source “http://xxx.test/_debug_toolbar/static/js/toolbar.js”.

Chrome URL https://admin.xxx.test
Mixed Content: The page at 'https://admin.xxx.test/login' was loaded over HTTPS, but requested an insecure script 'http://xxx.test/_debug_toolbar/static/js/jquery.js'. This request has been blocked; the content must be served over HTTPS.
login:1 Mixed Content: The page at 'https://admin.xxx.test/login' was loaded over HTTPS, but requested an insecure script 'http://xxx.test/_debug_toolbar/static/js/jquery.tablesorter.js'. This request has been blocked; the content must be served over HTTPS.
login:1 Mixed Content: The page at 'https://admin.xxx.test/login' was loaded over HTTPS, but requested an insecure script 'http://xxx.test/_debug_toolbar/static/js/toolbar.js'. This request has been blocked; the content must be served over HTTPS.
@jeffwidman
Copy link
Member

Myself or one of the other maintainers are happy to review a PR if you want to put one up tackling this.

@macnewbold
Copy link
Contributor

I agree, if this is still an issue, I'm happy to review a pull request that would correct it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@jeffwidman @macnewbold @rimvislt