We have an iframe with http url in our portal and i disabled the https config in development environment life time when i create iframe outside it works but in outsystems never work because of mixed content so is there any way to embedded iframe with http url inside reactive web screen without using reverse proxy or editing the iis config
Unfortunately, embedding an HTTP page in an HTTPS OutSystems reactive web screen without encountering mixed content errors is not feasible. This restriction is enforced by modern browsers and aligns with best practices for web security.
When an HTTPS page tries to include HTTP resources, browsers block the request to protect users from potential security risks. Disabling configurations in Lifetime or using development environments without HTTPS does not override browser-level restrictions.
From the examples in the articles retrieved:
The best long-term solution is to ensure the target URL you're embedding has HTTPS enabled. If this is not possible, using an external redirection or reverse proxy remains the only viable option to ensure compatibility and security.
Answer is NO – this is a browser-enforced security rule (mixed content is blocked). There is nothing you can configure in OutSystems (or any other platform) to allow an HTTP iframe inside an HTTPS app. The only solutions are to make the source available over HTTPS or proxy it.