7

I have a javascript file located in a different server, and I am including the javascript file over http page like

<script type="text/javascript" src="http://www.example.com/scriptfile.js">

or over https page like

<script type="text/javascript" src="https://www.example.com/scriptfile.js">

The problem is, that I have page switching from http to https, for example, if a user is in

http://www.example.com/home(site home URL) and I load the javascript over http, now when the user navigates to another page like https://www.example.com/transaction (site transaction URL), I load the script over https and its working fine. From the mentioned transaction URL if the user hits the https://www.example.com/home (home URL changed to https), the script which I loaded over http fails because of unsecured content. Any suggestion to handle this is welcomed.

Improve this question
2
  • 1
    The trivial solution would be to get rid of all unsecured content - just use https:// throughout your site, and turn off port 80. Commented Feb 1, 2013 at 13:38
  • @Floris I loaded the javascript with 'https' regardless of the page protocol and it worked fine. thanks. Commented Feb 1, 2013 at 15:57

2 Answers 2

Reset to default
11

The protocol is optional. If you omit it, the browser will use whatever the document's protocol is. So you can do:

<script type="text/javascript" src="//www.mydomain.com/scriptfile.js">

The correct protocol will be used.

Improve this answer
Sign up to request clarification or add additional context in comments.

Comments

5

Use a protocol-relative URL for your script:

<script type="text/javascript" src="//www.mydomain.com/scriptfile.js">

This will use the same protocol as the calling page.

Improve this answer

Comments

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.