Https errors in IE7 for WebResouce requests.

Discussion in 'ASP .Net Building Controls' started by Chuck P, Oct 11, 2007.

  1. Chuck P

    Chuck P Guest

    If I create a control which uses an embedded image and then put in on an
    HTTPS request IE complains about having secure and nonsecure items.

    The code is:

    protected override void RenderContents(HtmlTextWriter writer)

    writer.AddAttribute(HtmlTextWriterAttribute.Src,
    Page.ClientScript.GetWebResourceUrl(this.GetType(),
    @"Util.Ctrl.LanlHeaderFooter.xfooter-flap.gif"));

    writer.RenderBeginTag(HtmlTextWriterTag.Img);writer.RenderEndTag();


    The rendered page looks like:
    <img
    src="/WebResource.axd?d=nc8abQRgNFbYC__mtwu1dcoXXE1irMXnivUPeULPG9kycw8mvRhETkdzWWJBUFQLM6ts8qSJHbQp9HKu8QZBNA2&t=633277067943801753" id="img-inside" />

    How can I prevent this error message?
     
    Chuck P, Oct 11, 2007
    #1
    1. Advertisements

  2. Hi Chuck,

    First, please look into this KB to see if this applies to your case:

    #SSL Termination and ASP.NET
    http://support.microsoft.com/kb/910444/


    I've also found some similar cases that if the requests are mixed with http
    and https content, the warning will be issued. Please use Fiddler
    (http://www.fiddlertool.com/) to trace the requests to see if this is the
    case.

    If above information doesn't help, please create a reproducible project
    along with your configuration settings and send it to me for further
    troubleshooting. Thanks.


    Regards,
    Walter Wang (, remove 'online.')
    Microsoft Online Community Support

    ==================================================
    When responding to posts, please "Reply to Group" via your newsreader so
    that others may learn and benefit from your issue.
    ==================================================

    This posting is provided "AS IS" with no warranties, and confers no rights.
     
    Walter Wang [MSFT], Oct 12, 2007
    #2
    1. Advertisements

  3. Chuck P

    Chuck P Guest

    I did some googling on sercure and non-secure items.
    Seems to be an IE bug that occurs if you use relative URLs.
    IE doesn't respect the way the request was made.

    Not completely correct:
    http://www.webmasterworld.com/forum23/4441.htm
     
    Chuck P, Oct 15, 2007
    #3
  4. Hi Chuck,

    The URL you referenced doesn't mention it's IE7 specific or occurs on all
    IE versions.

    Do you have a repro at hand to show this issue? I haven't found similar
    reports regarding this issue.

    Regards,
    Walter Wang (, remove 'online.')
    Microsoft Online Community Support

    ==================================================
    When responding to posts, please "Reply to Group" via your newsreader so
    that others may learn and benefit from your issue.
    ==================================================

    This posting is provided "AS IS" with no warranties, and confers no rights.
     
    Walter Wang [MSFT], Oct 16, 2007
    #4
  5. Chuck P

    Chuck P Guest

    Walter,

    I found the following statement in a web page where a ctrl was placed.
    <link href="mvwres:7-Util.Ctrl.LanlHeaderFooter.LanlHeader.css,Util,
    Version=1.0.0.0, Culture=neutral, PublicKeyToken=null"
    rel="stylesheet" type="text/css" />

    I am not sure when or what makes a composite control insert this into a page
    (do you know?).
    After I removed the link, the embedded CSS was still applied in the ctrl at
    design time.

    Anyway I removed the mvwres link code and now I don't get the SSL warning in
    IE7.
     
    Chuck P, Oct 19, 2007
    #5
  6. Hi Chuck,

    Thank you very much for your update and sharing the root cause here. I
    think the link of "mvwres" custom protocol we once discussed must be
    treated as http resource from the https page and caused the warning.

    Regards,
    Walter Wang (, remove 'online.')
    Microsoft Online Community Support

    ==================================================
    When responding to posts, please "Reply to Group" via your newsreader so
    that others may learn and benefit from your issue.
    ==================================================

    This posting is provided "AS IS" with no warranties, and confers no rights.
     
    Walter Wang [MSFT], Oct 22, 2007
    #6
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.