开发者

Https and Frames. Is connection encrypted?

If I have a frame embedded into a html page. The page connects through http. My question is:

If my frame connects through https is the connection and everything sti开发者_如何转开发ll encrypted despite the fact that the container page connects through http?

UPDATE: Thank you everyone. So it is encrypted :)


Everything which is transfered through https is encrypted. If your https page contains elements which are not encrypted (only http), the browser will warn you unless you have turned of the warning.

So yes, your frame will be loaded as https and will be encrypted if the content url is a https one.

If you want to be sure - install an http proxy and check the traffic through this proxy. You'll see html for your http requests and garbled messaged for https.


The iframe's connection and content will be encrypted, however, the user's browser will only show the "lock" icon if the containing page is https so making the iframe https and the containing page http is kind of pointless from that point of view.


Only the frame content, retrieved through the https connection, is encrypted.

If the encrypted frame content references (e.g. image links, other frames, etc) content it might still explicitly specify that that referenced content is not encrypted e.g. <img src="http://...."/>

0

上一篇:

下一篇:

精彩评论

暂无评论...
验证码 换一张
取 消

最新问答

问答排行榜