File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Tomcat and the fly likes avoid the mixed-content warning over ssl Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Make it so: Java DB Connections & Transactions this week in the JDBC forum!
JavaRanch » Java Forums » Products » Tomcat
Bookmark "avoid the mixed-content warning over ssl" Watch "avoid the mixed-content warning over ssl" New topic

avoid the mixed-content warning over ssl

Dave Bosky
Ranch Hand

Joined: Dec 16, 2003
Posts: 72
I'm using an Apache 2/Tomcat 5.5/SSL setup and keep receiving mixed-content warnings from IE. Apache is serving the static content like images, styles, etc. and Tomcat is serving the servlet/jsp's.

Every page I access popups the mixed content warning.

Can I modify a Tomcat or Apache conf file to eliminate this problem???

Ben Souther

Joined: Dec 11, 2004
Posts: 13410

These messages are generated by the browser, not Tomcat or Apache HTTPD.

The way to eliminate them is to insure that ALL resources (images, iframes, etc..) linked from secure pages are called through SSL.

Relative links will do this automatically.

Also, with MSIE if you have an src or href attribute in an image or iframe tag with a blank value, this message will show up. To fix this I aim all empty iframes and images to a "blank.html" page.

Java API J2EE API Servlet Spec JSP Spec How to ask a question... Simple Servlet Examples jsonf
With a little knowledge, a cast iron skillet is non-stick and lasts a lifetime.
subject: avoid the mixed-content warning over ssl
It's not a secret anymore!