Opened 3 years ago

Closed 3 years ago

#16959 closed defect (not a bug)

iframe snippet fails under https

Reported by: Arthur2e5 Owned by: dcf
Priority: Medium Milestone:
Component: Archived/Flashproxy Version:
Severity: Keywords:
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

When you use flashproxy in an HTTPS iframe, you will get all kinds of Security-Related errors like "SecurityError" (IE) and "This operation is insecure" (Firefox). This seems to be caused by trying to establish an unenrypted (i.e. `insecure') Websocket under HTTPS.

Under Firefox this can be worked around by letting the user set network.websocket.allowInsecureFromHTTPS, but there is no such thing for IE.

Child Tickets

Change History (1)

comment:1 Changed 3 years ago by dcf

Resolution: not a bug
Status: newclosed

Thanks for this. It's not a bug. Please see FlashProxyFAQ. We won't do anything to change how WebSocket interacts with HTTPS, because it's one of the things likely to change completely with #5578. It doesn't really affect the usefulness of the proxy, because there are enough HTTP-hosted ones that it still works.

Note: See TracTickets for help on using tickets.