javascript 远程计算机上的 HTTPS 不安全响应错误
声明:本页面是StackOverFlow热门问题的中英对照翻译,遵循CC BY-SA 4.0协议,如果您需要使用它,必须同样遵循CC BY-SA许可,注明原文地址和作者信息,同时你必须将它归于原作者(不是我):StackOverFlow
原文地址: http://stackoverflow.com/questions/33609990/
Warning: these are provided under cc-by-sa 4.0 license. You are free to use/share it, But you must attribute it to the original authors (not me):
StackOverFlow
Insecure response error with HTTPS on remote computer
提问by G.Urzeda
I have following problem with HTTPS. My client navigated to checkout page and he did not see any content. Checkout site is rendered on HTTP protocol but most of content is loaded dynamically through SSL (for example js files used to render cart content). And this content was unable to load because of net::ERR_INSECURE_RESPONSE.
我有以下 HTTPS 问题。我的客户导航到结帐页面,但他没有看到任何内容。结帐站点在 HTTP 协议上呈现,但大部分内容是通过 SSL 动态加载的(例如用于呈现购物车内容的 js 文件)。并且此内容无法加载,因为net::ERR_INSECURE_RESPONSE。
Below you have screenshot of console (Chrome). As you can see every secured request failed (even one from AmazonWS) so I assume that problem isn't related to server/scripts but rather browser or internet configuration. Also when client tried to access page via private browsing he suddenly succeded. Does anyone have idea what could be wrong? Just to add, certificate is still valid (to 2016.01.16).
下面是控制台(Chrome)的屏幕截图。正如您所看到的,每个安全请求都失败了(即使是来自 AmazonWS 的请求),因此我认为该问题与服务器/脚本无关,而是与浏览器或 Internet 配置有关。此外,当客户试图通过私人浏览访问页面时,他突然成功了。有谁知道可能有什么问题?补充一下,证书仍然有效(到 2016.01.16)。
采纳答案by Quentin
Load the script directly in your browser. Look at the detailed security information it gives.
直接在浏览器中加载脚本。查看它提供的详细安全信息。
They certificate is using an obsolete encryption method.
他们的证书使用过时的加密方法。
回答by Miltos
I had the same issue when Fiddler was running on the background. Try closing Fiddler.
当 Fiddler 在后台运行时,我遇到了同样的问题。尝试关闭 Fiddler。
[Edit]
[编辑]
I had set the option to decrypt HTTPS sessions by re-signing traffic using self-generated certificates in Fiddler.
我已经设置了通过使用 Fiddler 中自生成的证书重新签名流量来解密 HTTPS 会话的选项。
If your client wasn't using Fiddler at the time, could it be that traffic goes through a proxy where another certificate is used in the middle?
如果您的客户当时没有使用 Fiddler,那么流量是否会通过中间使用另一个证书的代理?
