Is it bad to embed an iframe with content served over HTTPS?

This not recommended as is generally bad practice to embed an iframe with content served over HTTPS within a page served over plain HTTP (or mix content). The reason for this is, that there’s no good way for the user to check they’re using the HTTPS site they intend (unless the user really wants to check the source of the page).
For More Information Please Refer:


You May Also Like to Read: