net::ERR_INSECURE_RESPONSE while making ajax request from node-webkit

Question

when I'm trying to make ajax request with jquery to:

https://localhost:8443/uri

I get this error:

net::ERR_INSECURE_RESPONSE

I'm using self signed certificate, in package.json I have these parameters:

"chromium-args": "--ignore-certificate-errors --auth-schemes='basic --auth-server-whitelist='*localhost:8443' --auth-negotiate-delegate-whitelist='*localhost:8443'''",

does anybody know how I can add self signed certificates to node-webkit's truststore !?

OS: ubuntu 14.10

my guess is your browser is blocking https domain not having certificate. — igauravsehrawat, Jul 22 '15 at 10:05
see if this help https://github.com/coolaj86/nodejs-self-signed-certificate-example — igauravsehrawat, Jul 22 '15 at 10:08
did you enable CORS? @Rodislav could you add your ajax call? — gon250, Oct 13 '15 at 19:35
Does [this question on Unix & Linux](http://unix.stackexchange.com/questions/90450/adding-a-self-signed-certificate-to-the-trusted-list) help? — doug65536, Oct 20 '15 at 13:15
it seems that this answer solve the isse: http://stackoverflow.com/questions/24504827/failed-to-load-resource-neterr-insecure-response-socket-io — Rodislav Moldovan, Oct 20 '15 at 13:58

Eric · Accepted Answer · 2017-04-01T20:37:38.060

10

The problem here is that the browser is blocking the call to that server because that server has an invalid certificate. Since it is a localhost server, it is a self-signed certificate. The best way to get around this is to try one of the following...

Change the localhost:8443 server to use a valid certificate
From your browser load the page, https://localhost:8443/, accept the invalid certificate, and then try the ajax call.

edited Apr 01 '17 at 20:37

answered Oct 22 '15 at 08:24

Eric

6,563
5
42
66

1

Manually accessing the page and accepting the invalid certificate helped me eliminate the error message, although it doesn't fix my problem since this won't be an option for those using my client. This isn't a thing which needs security, but because it's being called from a secure page, it will only work if also secure. And this is only a toy - a pricey official certificate is out of the question... Help!? – Greg Young Jun 25 '16 at 01:27
cant create certificate for localhost -https://letsencrypt.org/docs/certificates-for-localhost/ – King_Fisher Sep 10 '19 at 13:03
1

The second point saved my time :) appreciated – WK5 Mar 20 '22 at 11:30

net::ERR_INSECURE_RESPONSE while making ajax request from node-webkit

1 Answers1

Linked