XMLHttpRequest error with HTTP to HTTPS redirect rule

Question

Hi&nbsp;
So Im redirecting our HTTP traffic to HTTPS on the F5 with an Irule.&nbsp;
The problem is that the browsers are saying there's an unsafe script trying to load and blocks some people from accessing the site.&nbsp;
It says '' was loaded over https , but requested an insecure XMLHttpRequest endpoint.
'' This request has been blocked; the content must be served over HTTPS.&nbsp;
Do I need to do something special for XMLHttpRequest ?&nbsp;
If I load the 'unsafe script' it loads the XML in normal HTTP and works but then there is a line through the HTTPS.&nbsp;

greg_labelle · Answer

Can you post a copy of the iRule that is redirecting the traffic?

christian_greyl · Answer

Hi

This is the HTTP to HTTPS irule.

when HTTP_REQUEST {
HTTP::redirect "https://[HTTP::host][HTTP::uri]"
}

I should also add these two rules that redirect to two different servers based on the URL after the traffic is moved to HTTPS

when HTTP_REQUEST { 
if { [HTTP::host] equals "smartit.randomdomain.com" and [HTTP::uri] equals "/" }{ 
    HTTP::redirect "https://smartit.randomdomain.com/ux/smart-it//" 
  } 
if { [HTTP::host] equals "myit.randomdomain.com" and [HTTP::uri] equals "/" } { 
    HTTP::redirect "https://myit.randomdomain.com/ux/myitapp//" 
  }   
}

christian_greyl · Answer

It was the application that was at fault. &nbsp;

Forum Discussion

XMLHttpRequest error with HTTP to HTTPS redirect rule

3 Replies

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

F5 HTTPS Redirect 2025

Error post F5 upgrade

BIG-IP methods to Fix the “421 Misdirected Request” Error

winscp error

Rewriting Redirects

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS