Menu
I am having a site with some pages on HTTPS connection. From these HTTPS pages, I have to use a HTTP Ajax request for some errors retrieval like blank fields. But this error messages are not coming. Is there any solution to it or I have to make that AJAX request to file on HTTPS connection?
720
Ajax. Ajax is the traditional way to make an asynchronous HTTP request. Data can be sent using the HTTP POST method and received using the HTTP GET method. To make an HTTP call in Ajax, you need to initialize a new XMLHttpRequest() method, specify the URL endpoint and HTTP method (in this case GET).
GET vs POST in AJAX callsUnless you are sending sensitive data to the server or calling scripts which are processing data on the server it is more common to use GET for AJAX calls. This is because when using XMLHttpRequest browsers implement POST as a two-step process (sending the headers first and then the data).
This is not possible due to the Same Origin Policy.
You will need to switch the Ajax requests to https, too.
105
Without any server side solution, Theres is only one way in which a secure page can get something from a insecure page/request and that's thought postMessage and a popup
I said popup cuz the site isn't allowed to mix content. But a popup isn't really mixing. It has it's own window but are still able to communicate with the opener with postMessage.
So you can open a new http-page with window.open(...) and have that making the request for you
XDomain came to mind when i wrote this but here is a modern approach using the new fetch api, the advantage is the streaming of large files, the downside is that it won't work in all browser
You put this proxy script on any http page
onmessage = evt => { const port = evt.ports[0] fetch(...evt.data).then(res => { // the response is not clonable // so we make a new plain object const obj = { bodyUsed: false, headers: [...res.headers], ok: res.ok, redirected: res.redurected, status: res.status, statusText: res.statusText, type: res.type, url: res.url } port.postMessage(obj) // Pipe the request to the port (MessageChannel) const reader = res.body.getReader() const pump = () => reader.read() .then(({value, done}) => done ? port.postMessage(done) : (port.postMessage(value), pump()) ) // start the pipe pump() }) } Then you open a popup window in your https page (note that you can only do this on a user interaction event or else it will be blocked)
window.popup = window.open(http://.../proxy.html) create your utility function
function xfetch(...args) { // tell the proxy to make the request const ms = new MessageChannel popup.postMessage(args, '*', [ms.port1]) // Resolves when the headers comes return new Promise((rs, rj) => { // First message will resolve the Response Object ms.port2.onmessage = ({data}) => { const stream = new ReadableStream({ start(controller) { // Change the onmessage to pipe the remaning request ms.port2.onmessage = evt => { if (evt.data === true) // Done? controller.close() else // enqueue the buffer to the stream controller.enqueue(evt.data) } } }) // Construct a new response with the // response headers and a stream rs(new Response(stream, data)) } }) } And make the request like you normally do with the fetch api
xfetch('http://httpbin.org/get') .then(res => res.text()) .then(console.log) If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
