I'm using Jira in https and I have some adjustments I'd like to make with some extra JS. My JS is hosted on an insecure server (no https available).
When I dynamically load the insecure JS file by inserting it into the DOM (using a browser extension), Chrome tells me:
[blocked] The page at
https://jiraserver/browse
ran insecure content fromhttp://myserver/jira.js
.
I can see how this is very secure and all, but I don't care. I want to load that insecure JS file. How can I tell Chrome to trust me and just do what I say?
My insertion method (in the extension code):
document.body.appendChild((function(s){s.src='http://myserver/jira.js';return s;})(document.createElement('script')));
myserver
doesn't server https. It doesn't have a certificate. @Upwards How would I get the source code? The point is to have the source code 'dynamic' so it can change on myserver and automatically change onjiraserver
. – Quash