You are viewing limited content. For full access, please sign in.

Question

Question

Port 80 is not Bound but I get "the information you have entered on this page will be sent over an insecure"

Web Client
Updated November 20, 2017
asked on August 2, 2017

Hello,

I suspect this isn't an easy issue to resolve but port 80 isn't bound on my IIS server but when I log into https://<myserver>/laserfiche, I get the warning: "the information you have entered on this page will be sent over an insecure"

Has anyone got any tips and things I might check?

-Ben

0 0

Answer

SELECTED ANSWER
replied on August 3, 2017

Upon further investigation, I was thinking of the correct feature but this is slightly different from the issue we resolved last December.  I can reproduce the problem in your video with Firefox; neither Chrome nor IE complain.  I think Firefox is wrong to put up a warning here and it might even be a change in behavior in Firefox, though it's hard to be sure.

I'll file an SCR for this, you may want to open a support case to track it.

0 0

Replies

replied on August 2, 2017

The "mixed content" message... It's your browser warning you that the page you're loading contains references to pages or objects with a http reference in the URL.  It doesn't matter that the site isn't bound to HTTP, if the page it's served you (albeit over https) contains references to objects over HTTP.

 

Accept the warning and allow the page to load.  Then use VIEW PAGE SOURCE in your browser (called something subtly different in each browser) and search/find for this text on the page:  http://

 

You'll find a reference to an object (script, image, something) that contains a URL with http specified, like http://someserver.com/somefolder/someobject instead of either https://someserver.com/somefolder/someobject or a relative path of /somefolder/someobject (which would use the existing https://someserver.com connection that's loading the page. 

 

Finding what on the page is loading an object over http:// may give you some insight. 

 

Side note... since you don't have HTTP bindings enabled on the site, those object should fail to load (assuming they are objects on the same site)... so for example if it's an image, you'd expect to see a blank space where an image should be. 

 

0 0
replied on August 2, 2017

Hi Damon,

The landing page is the out-of-the-box Web Access, so there should be no references from another source.

Interesting, I double checked with Chrome, Firefox, IE and MS Edge. Only Chrome displays the warning and none of them report references to unsecured URLs. So I don't think there are any assets that are being loaded from a http location.

Do you know of a way to be certain? Normally Firefox will display a list of assets if HTTPS is in the URL and there are some assets being loaded from a HTTP source.

-Ben

0 0
replied on August 3, 2017

I see you uploaded a video, but in chrome it is super easy to check on which it is complaining about. 

Go into Developer options(F12) --> Click on the Network tab --> Click Disable cache checkbox then refresh the page. It should list the problem file/page in red as well as every single request.

0 0
replied on August 2, 2017

Can you clarify exactly when you see this?  Is it the login dialog, and the warning comes up when you click "Sign In"?  Or is it in response to some action on the browse page?  What version of Web Access is this?

0 0
View 4 previous replies
replied on August 3, 2017

For those following at home, I've sent Brian a video but haven't made it public as it exposes some network credentials.

0 0
replied on August 3, 2017

Ok, I remember this.  This should be fixed in Web Access 10.2.  It was related to a trick we were doing to get the browser to offer to remember your credentials even though we log in via web service.

0 0
replied on August 3, 2017

ah ha!

This is my version:

Laserfiche web client
10.2 (10.2.1.277)
Laserfiche Repository Access
10.2.1.488
0 0
replied on August 3, 2017

Am I build behind?

0 0
SELECTED ANSWER
replied on August 3, 2017

Upon further investigation, I was thinking of the correct feature but this is slightly different from the issue we resolved last December.  I can reproduce the problem in your video with Firefox; neither Chrome nor IE complain.  I think Firefox is wrong to put up a warning here and it might even be a change in behavior in Firefox, though it's hard to be sure.

I'll file an SCR for this, you may want to open a support case to track it.

0 0
replied on August 3, 2017

Will do Brian. Thanks for liking into this. 

0 0
replied on November 19, 2017

Hi @████████

I've upgraded to

Laserfiche Web Client
10.3 (10.3.0.510)
Laserfiche Repository Access
10.3.0.229

And the error stopped happening on logon. I now get it when using the quick search bar. The wanring display if I type a riteria dn hit <enter> bit not if I click the magnifying glass.

 

replied on November 20, 2017

To followup, this bug has been fixed in the 10.3 release of Web Access.

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...