Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

SSL "--allow-running-insecure-content" won't work with chromium-args [$5]

See original GitHub issue

Our app requires SSL through Node-Webkit while it does authentication. After authentication an iframe is created with SSL to prevent MIMA (man in the middle attacks) of Session ID’s and leakage of other information.

When loading resources ranging from images or YouTube videos inside SSL iframe. Node-Webkit prevents loading non ssl resources even with a --allow-running-insecure-content chromium-argument.

This really halts our development and it’s a little frustrating seeing --allow-running-insecure-content is a valid argument that works with Chromium. So… assuming it was valid we started development. 😓

I guess we should have checked to see if nwjs supported SSL connection fully (our fault) before starting development, theres even an issue about this back in 2013 https://github.com/nwjs/nw.js/issues/1113

Your help or suggestions are very much appreciated, even a work around would be nice!

Bug Reproduce-able on 11.6

<bountysource-plugin>

Did you help close this issue? Go claim the $5 bounty on Bountysource. </bountysource-plugin>

Issue Analytics

State:
Created 9 years ago
Comments:29 (16 by maintainers)

Top GitHub Comments

1reaction

clyang82commented, Sep 16, 2015

@r1si I met the same problem with you. I spent half a day to find out the reason. Now, it works well in my environment. Share to you: Just add this line in package.json. { … “chromium-args”: “–ignore-certificate-errors” “window”: … … } Please note: “chromium-args” is not a sub element of “window”. it is same level as “window”.

1reaction

shaynemcommented, May 12, 2015

try this

process.env[‘NODE_TLS_REJECT_UNAUTHORIZED’] = ‘0’;

On Tue, May 5, 2015 at 10:02 PM, r1si notifications@github.com wrote:

Hi @mscreenie https://github.com/mscreenie any news about code?

— Reply to this email directly or view it on GitHub https://github.com/nwjs/nw.js/issues/3123#issuecomment-99059607.

Top Results From Across the Web

NW.js Iframe fails to load some https website due to net

I believe this comes from a mismatch of running the browser on an HTTP url (localhost) and loading HTTPS content inside it.

List of Chromium Command Line Switches

List of Chromium Command Line Switches. There are lots of command lines which can be used with the Google Chrome browser. Some change...

Chromium Command Line Switches Cheat Sheet

Enables TLS/SSL errors on localhost to be ignored (no interstitial, no blocking of requests). --allow-legacy-extension-manifests. Allows the browser to load ...

sra_release-2.0-4-8-16.exe

sra_release-2.0-4-8-16.exe. This report is generated from a file or URL submitted to this webservice on November 20th 2017 23:18:24 (UTC)