Requests from https site on http [duplicate]

Question

This question has already been answered:

Sending from https to http ajax 4 replies

There is generally an opportunity to produce such a trick, if so, how?

Thank you very much.

and what is the difficulty? . On other sites more often not, but there is ajax jsonp. - Rakzin Roman
@RakzinRoman does not work: prntscr.com/byouax . alert (1) is in test.js - ikerya

Petr Chalov Petr Chalov 947 2 silver marks 10 bronze marks · Answer 1 · 2016-07-28T17:20:15

This trick can only be done through a proxy. For example, you will have a proxy Url on the seith. Directly in any way, browsers are all banned.

Petr Chalov

947 2 silver marks 10 bronze marks

but how can it be done for example? there is a proxy - ikerya
It will be easier to write a method on the server that will accept a certain set of parameters, send these parameters to the url of interest to you (http | https), and return the data received from another server as a response to the client. - Petr Chalov

|

Answer 2 · 2016-07-28T20:00:18

The opportunity is there. It is necessary to set the header Access-Control-Allow-Origin on the server side, which accepted ajax, which will allow cross-domain requests. PHP example:

 if (!empty($_SERVER['HTTP_ORIGIN'])){ $originExpl = explode('//', $_SERVER['HTTP_ORIGIN']); $domain = end($originExpl); if ($domain == $_SERVER['HTTP_HOST']){ header("Access-Control-Allow-Origin: ".$_SERVER['HTTP_ORIGIN']); } }

To do this, https must be signed with a valid certificate, otherwise, if only ajax via https is in progress, the user will not be able to remove the security restriction.

we tried all this, but we need to send not an ordinary request, but a request from a secure site to an unsecured one.

Requests from https site on http [duplicate]

Reported as a duplicate by Grundy , aleksandr barakin , Denis , user194374, Kromster July 29 ', at 8:42 .

2 answers 2

More articles: