Do you want to view only the webpage content.... - https

Question

while implementing hhtps, is there a way not to show the message "Do you want to view only the webpage content that was delivered securely?" and force the answer to "no" as it will mess up with my css and javascript .

thanks

score 2 · Answer 1 · edited May 23 '17 at 12:13

2

you may need to serve all the page elements, including the css and javascript from the SSL server.

Also see Dealing with HTTP content in HTTPS pages

edited May 23 '17 at 12:13

Community

1
1

answered Aug 20 '10 at 01:05

kervin

11,672
5
42
59

score 1 · Accepted Answer · answered Aug 20 '10 at 00:40

That is implemented by the browser process, not the transport mechanism. There are plenty of custom implementations that would not show that warning, but most commonly available browsers will as it represents a potential security hole in the SSL process.

Essentially its the browser warning you that it only got part of the content from an SSL connection, and there is no way for you the end user to directly tell which page elements are from the trusted (i.e. SSL connected) host and which are from untrusted hosts.

If you want to avoid this, either consider placing your CSS/javascript in the pages directly, or limit your SSL to only specific pages which do not include those resources.

How do i limit the SSL on resources.. the following is the error: 'ASP.NET Ajax client-side framework failed to load'. — user384080, Aug 20 '10 at 01:17

score 0 · Answer 3 · answered Jan 24 '14 at 15:44

Follow these steps to turn this off, but as everything you with security you must weight the risks.

Navigate to Tools-> Internet Options-> Security
Select the "Security Tab"
Click the "Custom Level" button at the bottom
In the "Miscellaneous" section change "Display mixed content" to Enable
Then click the "OK" button

Fissh

Do you want to view only the webpage content.... - https

3 Answers3