La página de la unidad del usuario de OneDrive solicita que se cargue la siguiente secuencia de comandos (que normalmente Chrome bloquea para que sea insegura)
<html>
<head>
<title>Bing</title>
</head>
<body>Loading...
<script type="text/javascript">
//<![CDATA[
var _w = window;
var o = _w.opener;
var mainWindow;
(mainWindow = o) || (mainWindow = _w.parent);
if (mainWindow) {
mainWindow.sj_evt && mainWindow.sj_evt.fire("wl:auth");
};
if (o) _w.close();;
//]]>
</script>
</body>
</html>
Y lo siguiente se registró en la Consola de desarrollador
AI session renewal date is 0, session will be reset.
Mixed Content: The page at 'https://onedrive.live.com/?cid=<REDACTED>' was loaded over HTTPS, but requested an insecure form action 'http://www.bing.com/Passport.aspx?popup=1'. This request has been blocked; the content must be served over HTTPS.
Mixed Content: The page at 'https://onedrive.live.com/?id=root&cid=<REDACTED>' was loaded over HTTPS, but requested an insecure form action 'http://www.bing.com/Passport.aspx?popup=1'. This content should also be served over HTTPS.
Uncaught SecurityError: Blocked a frame with origin "http://www.bing.com" from accessing a frame with origin "https://onedrive.live.com". The frame requesting access has a protocol of "http", the frame being accessed has a protocol of "https". Protocols must match.
¿Alguien puede arrojar algo de luz sobre lo que está haciendo exactamente? ¿Ya no es seguro OneDrive o es un falso positivo de Chrome?