0

Every page of DaniWeb has a Javascript error that says:

Uncaught SecurityError: Blocked a frame with origin "http://www.daniweb.com" from accessing a frame with origin "https://www.facebook.com".  The frame requesting access has a protocol of "http", the frame being accessed has a protocol of "https". Protocols must match.

I haven't changed anything related to our FB plugins anytime recently, and this is something new. I just started noticing it since upgrading to the newest version of Chrome the other day, so I'm wondering if it's a new security precaution on the browser side?? Regardless, what change do I need to make to fix this? I can't seem to find anything where I'm referencing the https version of the plugin.

Edited by pritaeas: Moved to Js, more activity there.

5
Contributors
8
Replies
56
Views
3 Years
Discussion Span
Last Post by jeffcogswell
0

Bump

Sorry to bump this but it's been a week with no responses. Should this be in the Javascript forum instead? Is bumping even allowed?

0

You'll need to serve the daniweb.com in "https" protocol so they can match , no other fix available.

0

That doesn't make sense to me because most websites are not served using https, and certainly most websites that Facebook intends their widget to be on are not served using https. Therefore, I can't see why they would design the Facebook widget to error out on non-https pages. I'm kinda convinced that there's something wrong with my implementation that I'm telling it to use the https version instead of the http version.

0

Have you tried removing the https: from the frame? And link it just like //connect.facebook.net or whatever plugin is there?
This will force the frame to load using the current page scheme (protocol relative URL).

0

Dani, did you get this worked out? I'm not seeing this error. I'm using chrome, but I am seeing a couple other FB errors.

0

Now I'm not seeing it anymore and instead seeing an error, myself, about an invalid Facebook ID?

This topic has been dead for over six months. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.