tags:

views:

171

answers:

4
+1  Q: 

Are there any tools or techniques to help determine the exact cause of a nonsecure page element error?

I run into this quite often where a new page is supposedly "tested" and ready to go. But as soon as I change the page from http to https (secure) mode I get the "This page contains both secure and nonsecure items." error.

Usually I can find the problem and fix it pretty quick. Today is different. I've checked every image reference and every javascript reference and their source and haven't found anything that should be causing this error.

Are there any developer tools or techniques that can point out specifically what is causing this error?

+1  A: 

If you're in Firefox you can use Tools -> Page Info -> Media, then just scan down the list to find the non-https link. There might also be JavaScript building dynamic <script> tags, or CSS including non-secure elements.

John Millikin  2008-10-06 23:25:23
Thanks! It was in the css, must be an editor the designer used. I didn't even notice it was linked because the css was referenced in the .master page not the .aspx content.
Brian Boatright  2008-10-06 23:31:53
This doesn't show Javascript as far as I can tell. Still useful though.
Matthew Scharley  2008-10-06 23:33:07
there should be something all inclusive that can help resolve these types of "errors" quickly.
Brian Boatright  2008-10-06 23:34:41
Firebug will show anything loaded in your page. There's no Secure column for determining this easily, but scrolling down and mouseing over everything will fairly quickly tell you which elements are secure and which aren't.
Matthew Scharley  2008-10-06 23:38:11
that is exactly what I did and found it pretty fast. it would have been nice to know that the actual source of the link was from x.css though.
Brian Boatright  2008-10-06 23:41:45
+2  A: 

Firebug's Net panel. Again, only in Firefox, although Firebug Lite might include this, I'm not sure. If it does, that'd cover this too.

Matthew Scharley  2008-10-06 23:28:11
that looks like a great plugin. Thanks for the link.
Brian Boatright  2008-10-06 23:32:24
It really is. Editing visually in the page is a HUGE help for working out CSS issues. It's one of my personal must have plugins for web development.
Matthew Scharley  2008-10-06 23:34:29
+1  A: 

I don't think these answer the question - I have the same issue - I've found many times tracking scripts even when loading via https the JS will have a http link somewhere in it that will cause this. A utility that identifies exactly WHAT is loading insecurely would be invaluable. Anybody?

JpMaxMan  2009-01-30 17:21:40
+1  A: 

Just to add a couple of other tools should someone have this problem in the future:

  • If you're using IE, there is Fiddler.
  • Wireshark is another tool that may be useful.
JB King  2009-01-30 17:28:42

related questions

Autosizing Textarea
Regular expression for parsing links from a webpage?
What are good tools for creating compiled HTML help files (.chm)?
Looking for WYSIWYG HTML editor
Any reason not to start using the HTML 5 doctype?
HTML comments break down
HTML Comments Markup
Setting a div's height in HTML with CSS
Wrapping lists into columns
Is a "Confirm Email" input good practice when user changes email address?
<XMP> Tag
HTML version choice
Options for HTML scraping?
How do you disable browser Autocomplete on web form field / input tag?
How do I make a checkbox toggle from clicking on the text label as well?
Html CSS Editor
Wordpress theme development offline tools
How do I give my web sites an icon for iPhone?
In HTML, how to word-break on a dash?
Detecting font in JavaScript
How do you test layout design across multiple browsers/OSs?
How do I print an HTML document from a web service?
Multiple submit buttons on a HTML form
How can I determine a web user's time zone?
Why doesn't the percentage width child in absolutely positioned parent work in IE7?