stevenvachon
commented
7 years ago Didn't Chrome remove these warnings?
Open Flimm opened 7 years ago
stevenvachon
commented
7 years ago Didn't Chrome remove these warnings?
Flimm
commented
7 years ago Not really, try it for yourself:
https://mixed-script.badssl.com/ (this one gives no user-visible errors on Chrome, but it blocks the script) https://mixed.badssl.com/ (this one gives no user-visible errors on Chrome, but it does log a warning. On Firefox, the icon in the address bar changes)
https://badssl.com/ is a useful site for testing these sorts of things.
If your site is using HTTPS, if it embeds images with a non-HTTPS protocol, the browser will display a warning in the URL bar. If it embeds scripts or iframe with a non-HTTPS protocol, the browser will refuse to load that content altogether.
It would be awesome if this tool would detect and report an issue like that.