enfant_terrible
asked on
loading cross domain web pages with HTTPS
I have a web site I would like to deliver applications to other non-related web sites / different domains. I'm looking for a robust not to hard to implement method, to allow my web site's web pages to be loaded on another web site via https.
Thanks!!
Thanks!!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Sometimes the answer is that it can't be done
ASKER
Sorry if anyone got upset it was not my intent to upset or disappoint anyone!!
it can't be done is not a solution. Maybe it can't be done the way I would have wanted it, but I'm interested in suggestions that produce the end results, not necessarily using the means I had asked for.
Someone else suggested my users point a subdomain to my application, I’ve tested this out and it works… it’s not as clean an experience as I wanted it to be for my users, but it’s more than a reasonable method to achieve what I want to achieve.
it can't be done is not a solution. Maybe it can't be done the way I would have wanted it, but I'm interested in suggestions that produce the end results, not necessarily using the means I had asked for.
Someone else suggested my users point a subdomain to my application, I’ve tested this out and it works… it’s not as clean an experience as I wanted it to be for my users, but it’s more than a reasonable method to achieve what I want to achieve.
Maybe it can't be done the way I would have wanted it, but I'm interested in suggestions that produce the end results, not necessarily using the means I had asked for
We are not mind readers here. But you are going to get certificate errors. and the 'display unsecure content' (mixed mode content) if you call an http location in an https website
you also cannot display an https site inside of another https site. But this is really browser dependant.. IE will give a network error, firefox nothing, chrome nothing
We are not mind readers here. But you are going to get certificate errors. and the 'display unsecure content' (mixed mode content) if you call an http location in an https website
you also cannot display an https site inside of another https site. But this is really browser dependant.. IE will give a network error, firefox nothing, chrome nothing
ASKER
I hope my resolution to the discussion settles it for everyone involved, hope everyone is happy and that everyone's self-esteem is restored... I was perplexed enough to cancel my paid subscription.....
could you share your solution as many others would be interested in it, including some security researchers. It appears that you made it a subsite of the main site which could be browsed from the website via https:\\mysite.xxx\thesite\myapp
just to refresh things:
I have a web site I would like to deliver applications to other non-related web sites / different domains. I'm looking for a robust not to hard to implement method, to allow my web site's web pages to be loaded on another web site via https.
for instance: on mydomain.myorg
index.htm
---------
index2.htm
---
will show mixed content error.
just to refresh things:
I have a web site I would like to deliver applications to other non-related web sites / different domains. I'm looking for a robust not to hard to implement method, to allow my web site's web pages to be loaded on another web site via https.
for instance: on mydomain.myorg
index.htm
---------
<html>
<head>
<title>A page that will have errors</title>
</head>
<body>
<p>Lets See if this works</p><iframe id="tree" name="tree" src="https:\\www.facebook.com" frameborder="0" marginheight="0" marginwidth="0" width="100%" height="100%" scrolling="auto"></iframe>
</body>
</html>
---index2.htm
---
<html>
<head>
<title>A page that will have errors</title>
</head>
<body>
<p>Lets See if this works</p><iframe id="tree" name="tree" src="http:\\www.facebook.com" frameborder="0" marginheight="0" marginwidth="0" width="100%" height="100%" scrolling="auto"></iframe>
</body>
</html>
will show mixed content error.
ASKER
no valid answer or good alternative suggestion