HTTP Localhost resources are not treated as secure in HTTPS page

Description of the issue: On a website served up HTTPS it is understood that HTTP resources should be blocked, but Localhost is a known exception that should not be blocked. Brave appears to be blocking Localhost resources in this instance with a net::ERR_BLOCKED_BY_CLIENT error. This issue does not occur on Chrome (or Firefox)

How can this issue be reproduced? Add a reference to a Localhost resource from an HTTPS hosted webpage. In my instance I am attempting to connect to a local IPFS Node which is by default hosted at

Expected result: Request should not be blocked

Brave Version( check About Brave):
Version 1.20.110 Chromium: 88.0.4324.192 (Official Build) (64-bit)

Additional Information: Is there a flag or advanced setting that can change this behavior? Is there a plan to fix this?

1 Like

I just noticed that the Zotero Connector plugin stopped working in Brave. I wonder if it’s because of this issue.

People are talking about the plugin breaking in a recent update here.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.