Skip to main content

Bug Tracker

Side navigation

#10860 closed bug (invalid)

Opened November 22, 2011 06:18PM UTC

Closed November 22, 2011 06:25PM UTC

Last modified November 22, 2011 06:36PM UTC

HTTPS bug

Reported by: anonymous Owned by:
Priority: low Milestone: None
Component: ajax Version: 1.7
Keywords: Cc:
Blocked by: Blocking:
Description

Using IE8 (Browser Mode IE8 and Document Mode Quirks), upon selecting out of returned HTML with td elements with background attribute set to a gif, get the following dialog in IE when HTTPS:

"Do you want to view only the webpage content that was delivered securely? This webpage contains content that will not be delivered using a secure HTTPS connection, which could compromise the security of the entire webpage."

This seems to happen even though all image references are relative. When viewing traffic via Fiddler or Firebug the requests are all HTTPS.

To fix the problem, I need to clear all the background keywords from the returned HTML (in data parameter) like below. When doing this jQuery is still able to traverse the HTML in the data parameter okay.

Bug is apparent in both jQuery 1.7 and 1.6.2

Code:

$.post('/webapp/wcs/stores/PriceRequest/GetMyPrice?' + $('#get-my-price').serialize(), function(data) {

var data = data.replace(/background/g,'');

// grab GetMyPrice table from HTML in response

var getMyPriceTableSet = $("td:contains(Item):last", data).parent().parent().parent();

Attachments (0)
Change History (3)

Changed November 22, 2011 06:19PM UTC by anonymous comment:1

I can't submit test case with jsFiddle as don't believe supports HTTPS

Changed November 22, 2011 06:25PM UTC by timmywil comment:2

component: unfiledajax
priority: undecidedlow
resolution: → invalid
status: newclosed

I don't think it's possible that this is an issue with jQuery core. Make sure your ssl certificate is valid and all content is loaded over https.

Changed November 22, 2011 06:36PM UTC by dmethvin comment:3

The code snippet doesn't help much.

We don't support quirks mode because it's, well, quirky, especially for dimensions and positions. However, I doubt that's the source of the problem here.

If the page is HTTPS and the background GIF is via HTTP in the stylesheet, that might cause a problem like this, which is the mixed-content issue. But there isn't much jQuery can do about it.