Menu
FF (62) and Chrome (69) consider http://127.0.0.1 a potentially trustworthy URL. This behavior is described in Certificates for localhost article, details are provided on w3.org site.
This allows to do XHR requests to http://127.0.0.1 from within HTTPS. For example JS code on a resource https://something-in-my-network.net can do XHR to http://127.0.0.1:8080 if there is a local service running.
But IE (11) prohibits these requests.
It is possible to configure IE to allow XHR to http://127.0.0.1 from within HTTPS?
The following code can be used to reproduce the problem:
var xhr = new XMLHttpRequest();
xhr.open('GET', 'http://127.0.0.1:8080', true);
IE will immediately throw Access denied while other browsers will not.
817
If you are just doing a normal XHR http request to localhost, it will create an error as a part of the security zones feature. There is a way you can make this work, outside of the code. You have to add "http://client.cors-api.appspot.com" to your "Trusted sites" zone.
154
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
