How to get Chrome to allow mixed content?
Solution 1
Steps as of Chrome v91 (6/17/2021):
- Click the Not secure warning next to the URL
- Click Site settings on the popup box
- Near the bottom of the list is Insecure content, change this to Allow
- Close settings, go back to the site, and Refresh the page
Older Chrome Versions:
timmmy_42 answers this on: https://productforums.google.com/forum/#!topic/chrome/OrwppKWbKnc
In the address bar at the right end should be a 'shield' icon, you can click on that to run insecure content.
This worked for me in Chromium-dev Version 36.0.1933.0 (262849).
Solution 2
In Windows open the Run window (Win + R):
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --allow-running-insecure-content
In OS-X Terminal.app run the following command ⌘+space:
open /Applications/Google\ Chrome.app --args --allow-running-insecure-content
Note: You seem to be able to add the argument --allow-running-insecure-content to bypass this for development. But its not a recommended solution.
Solution 3
The shield icon that is being mentioned was not in the sidebar for me either, however I solved it doing the following:
Find the shield icon located in the far right of the URL input bar,
Once clicked, the following popup should appear wherein you can click Load unsafe scripts,
That should result in a page refresh and the scripts should start working. What used to be an error,
is now merely a warning,
OS: Windows 10
Chrome Version: 76.0.3809.132 (Official Build) (64-bit)
Edit #1
On version 66.0.3359.117, the shield icon is still available:
Notice how the popup design has changed, so this is Chrome on version 66.0.3359.117.
Note: The shield icon will only appear when you try to load insecure content (content from http) while on https.
Solution 4
On OSX using the current Chrome build (2/20/2020, 79.0.3945.130), you can:
Click on the 'i' info icon on the left side of address bar.
Click Site Settings
Scroll down to Insecure content
Change it from Blocked (Default) to Allow
Reload the page and try your action again.
Solution 5
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" " --allow-running-insecure-content"
Related videos on Youtube
01 : 06
08 : 54
01 : 02
00 : 42
00 : 46
03 : 28
04 : 34
05 : 34
10 : 23
06 : 51
Trant
Updated on March 08, 2022Comments
-
Trant about 2 years
Chrome browser by default is blocking mixed content. How do I adjust my settings/configuration to allow mixed content without making any adjustments on the UI every time?
I have found two solutions but neither of them work:
- Several articles say you can adjust this under the Security section of "Under the Hood" in the Options. This option no longer seems to exist. There is no Under The Hood tab and there is no such dropdown to adjust how Chrome handles mixed content as far as I can tell.
- Another option is to add the
--allow-running-insecure-contentflag to your command line. I did this like so:"C:\Program Files\Google\Chrome\Application\chrome.exe" --allow-running-insecure-content. However this made no difference. If I tried adding the flag inside the double quotes, then Windows complains saying it is invalid.
So what option do I have now with the latest version of Chrome?
-
Jimmy D over 10 years@StevenV I can think of may scenarios when I might want or need to "defeat" this behavior. but that's not really the question. The op wants to know HOW to do it. If you don't know, then why bother commenting? op - Your #1 works for me on a https site that references non-https images for example. Although this isn't a programming question and shouldn't be on SO. Post it on SuperUser instead.
-
Trant over 10 yearsSo you have a Under the Hood section of your Chrome settings? I dont!
-
advncd about 4 yearsThis worked for me: stackoverflow.com/a/48480814/996926
-
Alexander Bondar over 8 yearsChrome 48 seems not to have the shield icon anymore.
-
Ivan Vegner about 8 years@kwill When I click on the shield icon and choose to run unsafe scripts, that still does not fix the issue. Are there any alternatives? -
kwill about 8 yearsSee January 5th, 2016 post from "che" below. -
David Cruwys over 7 yearsThis does not appear to work in Chrome 55, I have posted a question regarding this here. stackoverflow.com/questions/41498423/… -
David Cruwys over 7 yearsI found I had to use these two settings to get my extension working in developer mode using Mixed Content. I have a detailed explanation here. stackoverflow.com/questions/41498423/…
-
dragon788 about 7 yearsTo clarify it isn't necessarily showing the content automatically, it simply isn't signaling with a triangular warning on the https:// portion of the URL.
-
A.W. almost 7 yearsNo icon in Chrome 59
-
spottedmahn over 6 yearsI triedC:\Program Files (x86)\Google\Chrome\Application\chrome.exe --allow-running-insecure-contentand that did not work for me. And I tried with--disable-web-security. The key was--user-data-dir -
user3439968 over 6 yearsWorked. But I can't find how to disable 'run insecure content'. You can enable it, but you can't disable it.
Google Chrome Version 48.0.2564.116 (64-bit) -
BobHy over 6 yearsNo longer a viable answer. Chrome has removed the shield icon.
-
psycho brm over 6 yearsI got
Chrome Version 62.0.3202.94 (Official Build) (64-bit)and I got the shield icon. Might be because I'm redirectinghttpsrequest tohttp://localhost. -
Guillaume about 6 yearsWorks for me as well on
Version 64.0.3282.167, and you just have to close the tab to disable it -
Deepak Keynes about 6 yearsMixed Content Issue -
Script47 about 6 years@Keynes The above simply mitigates the effects temporarily. If you wanted to solve it completely, ensure that all your outgoing requests are going to a secured (https) server instead ofhttp. -
Venkat about 6 yearsI'm not able see the shield icon, Chrome version: 66.0.3359.117 -
Script47 about 6 years@Venkat it is still available for me. I've just updated to the latest version. Please see Edit #1.
-
BobHy over 5 yearsI tried this, it does not work. HSTS/PKP settings are to tell the browser to request HTTPS from the server even if the requested URL says http: or doesn't say any protocol at all. But the server is expected to support HTTPS, which is not what the OP asked for.
-
Nir Levy over 4 yearsConfirmed on 75.x
-
codemirror about 4 yearsWorks in Google Chrome too -
Jeremy about 4 years@codemirror thanks, sorry, i had a typo in my original post. I meant, OSX using Chrome
-
ThomasRones over 3 yearsWorking on Version 86.0.4240.75, but I also had to clear the cookies for this site (Found at the top of the site settings page) -
Sabito 錆兎 stands with Ukraine over 3 yearsWhilst this may theoretically answer the question, it would be preferable to include the essential parts of the answer here, and provide the link for reference. -
Henrik Bøgelund Lavstsen about 3 yearsstill valid answer, just click where the Shield icon used to be, the list of options is just alot larger but the option is still there.
-
Douglas Gaskell over 2 yearsEven when insecure content is allowed, it still blocks mixed content.
-
Douglas Gaskell over 2 yearsOn chrome, it still blocks mixed content even after doing this.
