Is there a way to get the script for search results from an HTTPS site
instead of http://www.google.com/afsonline/show_afs_search.js
I am using the custom google business search on a HTTPS site. When search is submitted web browser shows warning:
"This page contains both secure and nonsecure items"
I tried to modify the source to be https://www.google.com/afsonline/show_afs_search.js but that doesn't work. Still JavaScript returned from that link connects to http links instead of https links.
Does anybody knows how to fix this ?
A hack that works for me is to provide a modified version of the script
https://www.google.com/afsonline/show_afs_search.js
on another server, say:
https://www.myserver.com/show_afs_search.js
Just copy the original scripts source code and replace 'http' with 'https' in the script (one occurrence). Of course that might stop working anytime if Google changes something.
Even if you modify the Javascript link to HTTPS, show_afs_search.js is still hardcoded to get the search results via HTTP, not HTTPS. To avoid this error, make your own copy of show_afs_search.js that grabs results via HTTPS.
Steps:
- download
show_afs_search.js - open the file and replace 'http' with 'https'
- put this file one your https server and use it
Just change the one instance of http to https.
来源:https://stackoverflow.com/questions/3838716/how-to-use-google-custom-search-on-https-to-avoid-non-secure-content-prompt