我有一个使用Yammer“embedFeed”API嵌入Yammer Feed的应用。该应用程序以SSL(通过HTTPS)托管。
在PC运行IE9时,它会导致IE显示一个对话框,显示:“此页面正在访问不受其控制的信息。这会带来安全风险。您要继续吗?”
显示Yammer Embed的代码非常简单,如下所示。
<!-- This is included in the <HEAD> tag -->
<script type="text/javascript" src="https://c64.assets-yammer.com/assets/platform_embed.js"></script>
<!-- This is included at the bottom of the page -->
<script>
yam.connect.embedFeed({
container: '#YammerContent',
network: 'domain.com'
});
</script>
其他PC上的Firefox,Chrome和IE11都能正常运行。
我认为此问题与Internet选项中的IE9安全设置有关。但是,我还没弄清楚可能是什么设置问题。
关于解决此问题,我有以下问题:
答案 0 :(得分:2)
这是IE9中的CORS(跨源资源共享)问题。请确保需要在受信任网站中添加的所有网址都在那里,以供参考https://technet.microsoft.com/en-us/library/hh373144.aspx。
这是指导的Yammer部分的片段:
*.assets-yammer.com
ajax.googleapis.com^
*.cloudfront.net^
*.crocodoc.com^
*.yammer.com
*.yammerusercontent.com
^These URLs are for third party services used by Yammer to provide the ability of viewing documents, videos and images uploaded by your users into Yammer. These URLs are not required to be on the allow list if your organization is administratively disabling the ability of uploading files into Yammer