Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

1.Chrom浏览器在访问有安全配置的服务器端后出现的问题 #95

Closed
ming42 opened this issue Nov 20, 2016 · 2 comments
Closed

1.Chrom浏览器在访问有安全配置的服务器端后出现的问题 #95

ming42 opened this issue Nov 20, 2016 · 2 comments

Comments

@ming42
Copy link

ming42 commented Nov 20, 2016

  1. 在服务器端启用两项安全配置后无法正常使用
    Web Server NginX
    相关服务器配置:
add_header X-Frame-Options DENY;
add_header X-Content-Type-Options nosniff;

当服务器启用 add_header X-Content-Type-Options nosniff; 后common_js无法正常载入
相关链接:
http://stackoverflow.com/questions/24528211/refused-to-execute-script-from-because-its-mime-type-application-json-is
https://segmentfault.com/q/1010000000651666
当服务器启用 add_header X-Frame-Options DENY; 后 系统设置/用户管理 等无法正常弹出

2.还有一个问题就是之前有人反映过的 http://static.kalcaddle.com/update/main.js?a=uuid_... 如果启用 SSL 后因为该地址不是 HTTPS 会被 Chrome 认为不安全而 Block
@kalcaddle
Copy link
Owner

感谢反馈,下个版本会解决

@kalcaddle
Copy link
Owner

Last version 3.34 , fix it

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@kalcaddle @ming42