i'm using https on appengine. i checked not all request are using https spdy in firefox. Is there any thing that need to configure so that all requests are using spdy ?
?
As long as the file is served over https and by appengine servers, then it will be served over SPDY -- if the browser supports SPDY that is. Can't tell from your screenshot.. but if any of those files come from a different origin (ex, a third party widget), then those files may be served over plain HTTPS if they don't support SPDY.
Related
I have an elastic beanstalk instance in which I have deployed my spring-boot application. By default elastic beanstalk gives you a URL for your environment over http.
While this works fine this has led to a lot of problems for me. I have the frontend (my react application) deployed on Vercel. I want my frontend app to get data from my elastic beanstalk app. Problem is the url is in http. On the console I get an error like this
Mixed Content: The page at '' was loaded over HTTPS, but requested an insecure resource ''. This request has been blocked; the content must be served over HTTPS.
which renders the app useless basically.
After hours of google I found out that I have to request the data over https because my vercel app is over https*(I might be very wrong here)* I've tried some solutions to get my elastic beanstalk app to serve the data on https to no avail.
Here is what I've tried
I created a self signed ssl certificate using openssl and uploaded
it to AWS via the AWS cli. I then went to my applications load
balancer settings and added the ssl certificate . (This did not
work, I cried)
I used keytool to create yet another ssl certificate and added it to my
resources folder and the corresponding settings in the
application.settings file. I repackaged the jar file and redeployed
it to AWS.(Still didn't work. Didn't cry this time though. I was
out of tears)
Question How do I serve the data from my spring-boot app to my Vercel react app over https? Or any other method. Just anything that will work.
If one thing is clear from all that long nonsense I've told you up there is I don't know wtf I'm doing. Just following a bunch of tutorials which for all I know keep destroying my app and your time even more.
Now my app is broken and now I cant even load the static assets on the elastic beanstalk URL because I'm getting another error
400 Bad Request
The plain HTTP request was sent to HTTPS port
I know that question is really long and maybe even wrong. Please help
So once you have the SSL certificate ready this what you need to do in the AWS Elastic beanstalk to serve your application for https
Add a new listener to for port: 443 and select HTTPS
After this incase you are facing any certificate error while browsing the page, ensure that the URL mentioned in the certificate is matching the URL in browser
I have a reactjs frontend server and a backend ruby on rails server. Both of them are hosted on Heroku.
My domain name is on GoDaddy and i am paying a version on Heroku (for my frontend server) to have a ssl (Automated Certificate Management (ACM)).
I can access my domain name on the https protocol but also on the http protocol
I would like to redirect all connections to the website from http to https.
I tried multiple things:
Cloudflare but that didn't work out
https_only in my static.json of my reactjs server
force_ssl=true on my ruby on rails server
Nothing is working.
What are your advice to solve that kind of problems ? I don't know if i should solve that in the reactjs server (no info about that on google) or on godaddy (apparently that is not working with heroku) or on the rails server (i don't think so because it's the backend server)...
I am looking forward to have a better understanding of the DNS thing but it is not easy, have you some tutorial to share with me ?
Thanks in advance
I just use the "Always use HTTPS"-Feature from Cloudflare for that.
I want to know if is possible to run an AngularJS app directly from Amazon S3 bucket, having in mind that this app makes requests to a web server.
This will generate a CORS problem, considering that the files on S3 are not running on a HTTP server?
If more information is needed so that you can help me, I can readily answer.
Thanks.
In this instance S3 is the HTTP server. You wouldn't be able to load the site in the browser if there was no server serving the files.
The CORS issue will depend on the CORS configuration on the web server hosting the resources AngularJS will be requesting.
I deploy my website to google appengine and I want to take advantage of http/2 (specifically http push) for clients which support it but still serve the bundled version to http/1.x clients.
How can I check the protocol version (using python or even the app.yaml)?
Check the request header for Upgrade or send a 426 upgrade reqd
If I use HTTPS on App Engine, Google servers automatically serve it using SPDY to compatible browsers. Is there a way to override this (any settings or special header)? I want to use old HTTP/1.1 when using HTTPS