malsup / blockui

jQuery BlockUI Plugin
http://jquery.malsup.com/block/
1.69k stars 506 forks source link

blockUI triggers "non-secure items" warning on https pages in IE7 #30

Open fbuchinger opened 12 years ago

fbuchinger commented 12 years ago

I am using blockUI in an intranet web app that is accessed via https. Internet Explorer 7 displays a "this page contains secure and non-secure items warning" as soon as blockUI starts blocking the page.

This seems to be caused by the dynamically generated <iframe src="javascript:false;></iframe>" that blockUI creates to do its work. This article warns that IE7 is very picky about iframe sources when the page was served over https.

Is there a workaround for this?

BenKelada commented 12 years ago

bgiframe only applies itself to ie6, maybe blockui should too?

change line 246 to: var lyr1 = ie6 || opts.forceIframe)

what was causing this issue for me was loading a background image via js, ie8 and below appear to have a bug where a relative path causes the nonsecure items messsage e.g.

$("#all_results").block({ 
  message: '<h1 id="ajax_searching">Searching...</h1>',
    fadeOut: 200,  
    css: { 
            background: 'white url("images/ajax-loader-snake-red.gif") no-repeat scroll left center'
         }
}); 

the above will cause ie8 to have the non secure message because of the background image. my fix was to use stylesheet for that element