在https网站中显示iframe会显示警告 [英] Showing Iframe in a https site shows warning

问题描述

我的网站上有一个页面 https://www.mydomain.com/about 。它包含一个vimeo视频。
我们将vimeo视频嵌入到页面上的iframe中。

I have a page on my website https://www.mydomain.com/about . It consist of a vimeo video. We are embedding the vimeo video in a iframe on the page.

但它显示一条安全警告，指出您是否只想查看网页内容这是安全交付的吗？。

But it shows a security warning stating that "Do you want to view only the webpage content that was delivered securely ?".

有没有办法避免这种情况？

Is there a way to avoid this ?

推荐答案

该警告表示您网页上的某些内容是通过HTTP而非HTTPS提供的。它告诉用户，即使页面本身是通过HTTPS提供的，它也包含未经过身份验证的内容（图像，样式表，脚本，iframe），并且此类内容可能会受到MITM攻击。

That warning means that some content on your page was served through HTTP instead of HTTPS. It tells the user that, even though the page itself was served through HTTPS, it includes content (image, stylesheets, scripts, iframes) that was not authenticated, and that such content may be subject to MITM attacks.

如果您想避免警告，您应该将iframe的来源设置为 https：网址。

If you want to avoid the warning, you should set the source of the iframe to an https: URL.

这篇关于在https网站中显示iframe会显示警告的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！