tags:

views:

106

answers:

3
+10  Q: 

Is it "safe" to use schemeless protocol URIs on public websites? Ex. //www.example.com/dir/file

In HTML when referencing images, css, javascript, etc... I sometimes use links without the http or https scheme portion, à la. <img src="//www.example.com/dir/file.gif" alt="" /> and I haven't had any browsers choke on it yet (that I know of). I've seen a few other public sites use it as well, but not many.

I even reference the Google jQuery CDN with this syntax on an e-commerce site:

<script src="//ajax.googleapis.com/ajax/.." type="text/javascript"></script>

Obviously, I only do this when I know the server has both http and https capabilities. (Usually my own sites)

So my question is what harm can this cause? What are the pitfalls or downsides?

+2  A: 

It will not harm anyway. Actually, if you write src="http://ajax.googleapis.com/ajax/.. and your user will browse site over HTTPS then browser will warn user that parts of the site uses HTTP. It is better to use // notation for such cases.

uthark  2010-02-02 06:36:34
ah. cool. thanks for this great tip.
Labuschin  2010-02-02 13:44:29
+1  A: 

A recent blog answered my question and sent me off to a couple places to learn more.

The answer is most definitely yes as long as you are aware of two things:

  1. The server with your content needs to be accessible with and without SSL (should be obvious)
  2. IE 7/8 will request stylesheets twice so you might want to avoid using the technique for stylesheets
Aaron Wagner  2010-10-28 13:58:44
arg.. IE fails again.
WalterJ89  2010-10-28 14:04:44
+1  A: 

There's one major drawback: when a user saves a file to their hard disk and accesses it by using the file protocol, there will be troubles. In that case URLs like //ajax.googleapis.com/ajax/foo are resolved to file://ajax.googleapis.com/ajax/foo and then your library will not be found.

Marcel Korpel  2010-10-28 14:03:44
I don't know that I've ever considered the behavior of my site for people that save the page locally. Do people really do that?
Aaron Wagner  2010-10-28 16:34:08
Yes, at least I do and I can't imagine I'm the only one. Internet pages tend to vanish arbitrarily. It's not that hard nor costly to explicitly use a protocol wherever you try to reach a new domain.
Marcel Korpel  2010-10-28 16:52:54

related questions

Autosizing Textarea
Regular expression for parsing links from a webpage?
What are good tools for creating compiled HTML help files (.chm)?
Looking for WYSIWYG HTML editor
Any reason not to start using the HTML 5 doctype?
HTML comments break down
HTML Comments Markup
Setting a div's height in HTML with CSS
Wrapping lists into columns
Is a "Confirm Email" input good practice when user changes email address?
<XMP> Tag
HTML version choice
Options for HTML scraping?
How do you disable browser Autocomplete on web form field / input tag?
How do I make a checkbox toggle from clicking on the text label as well?
Html CSS Editor
Wordpress theme development offline tools
How do I give my web sites an icon for iPhone?
In HTML, how to word-break on a dash?
Detecting font in JavaScript
How do you test layout design across multiple browsers/OSs?
How do I print an HTML document from a web service?
Multiple submit buttons on a HTML form
How can I determine a web user's time zone?
Why doesn't the percentage width child in absolutely positioned parent work in IE7?