SSL HTTPS / Insecurely-Loaded Assets

swiftideas

ATTENTION, PLEASE READ: New topic creation is disabled, as we have moved to a new support system. Your existing topics will remain, but for all new requests you will need to use the new system. Click here to go to the new support request form.

This topic has 22 replies, 4 voices, and was last updated 8 years by Kyle – SUPPORT.

Viewing 15 posts - 1 through 15 (of 23 total)

1 2 →

Back to forum

Posted in: Neighborhood
June 17, 2015 at 4:37 pm #185529

glassdomain
Member

Post count: 103

Hi Guys,

I have installed an SSL cert on glassdomain.co.uk to the following pages:

Using wordpress HTTPs

– checkout
– cart
– Login / Register
– My Account
– wishlist/view/
– Change my Password

(I don’t want to do site wide https as this will potentially slow down the site)

I have noticed that the pages do not display the green padlock due to insecurely loaded assets.

Using the google debugging console it has thrown up the following issues where it looks like the form is referencing http:

For example:

– wishlist/view/

Mixed Content: The page at ‘https://glassdomain.co.uk/wishlist/view/’ was loaded over a secure connection, but contains a form which targets an insecure endpoint ’http://glassdomain.co.uk/'. This endpoint should be made available over a secure connection.

(index):779

Mixed Content: The page at ‘https://glassdomain.co.uk/wishlist/view/’ was loaded over a secure connection, but contains a form which targets an insecure endpoint ’http://glassdomain.co.uk/’. This endpoint should be made available over a secure connection.

(index):852

Mixed Content: The page at ‘https://glassdomain.co.uk/wishlist/view/’ was loaded over a secure connection, but contains a form which targets an insecure endpoint ’http://glassdomain.co.uk/’. This endpoint should be made available over a secure connection.

(index):959

Mixed Content: The page at ‘https://glassdomain.co.uk/wishlist/view/’ was loaded over a secure connection, but contains a form which targets an insecure endpoint ’http://glassdomain.co.uk/wishlist/view/'. This endpoint should be made available over a secure connection.

(index):1339

Mixed Content: The page at ‘https://glassdomain.co.uk/wishlist/view/’ was loaded over a secure connection, but contains a form which targets an insecure endpoint ‘http://glassdomain.co.uk/’. This endpoint should be made available over a secure connection.

If you can help me out on this one, im sure that others must have come across this issue before?

Many thanks in advance.

June 18, 2015 at 1:36 pm #185869

Rui Guerreiro – SUPPORT
Keymaster

Post count: 25779

Hi,

You should use the HTTPs plugin.
https://wordpress.org/plugins/wordpress-https/

-Rui

June 18, 2015 at 1:45 pm #185875

glassdomain
Member

Post count: 103

This reply has been marked as private.

June 18, 2015 at 2:53 pm #185907

David Martin – Support
Moderator

Post count: 20834

Hi,

The provided login does not work, can you check and post again?

Thanks,

David.

June 18, 2015 at 2:58 pm #185912

glassdomain
Member

Post count: 103

This reply has been marked as private.

June 18, 2015 at 2:59 pm #185914

glassdomain
Member

Post count: 103

btw i have just updated to v3 of this theme

June 18, 2015 at 3:04 pm #185921

David Martin – Support
Moderator

Post count: 20834

Hi,

Thanks, that worked great!

Have you updated the reading settings to use the new https rather than http ?

1) Settings => General => WordPress Address (URL)

2) Settings => General => Site Address (URL)

Thanks,

David.

June 18, 2015 at 3:28 pm #185931

glassdomain
Member

Post count: 103

hi David,

Wouldn’t this make the whole site https: ?

I only want

– checkout

– cart

– Login / Register

– My Account

– wishlist/view/

– Change my Password

Pages on https:

I might be missing something though!?

Many thanks for your help so far!

June 18, 2015 at 5:46 pm #185999

glassdomain
Member

Post count: 103

This reply has been marked as private.

June 19, 2015 at 10:33 am #186195

David Martin – Support
Moderator

Post count: 20834

Hi Peter,

The two pages that fail to use https both use a form post action, the URL is set by the WP ‘Settings => General => Site Address (URL)’. I think that is what is causing the issue.

1) http://glassdomain.co.uk/cart/
2) http://glassdomain.co.uk/wishlist/view/

We should need to try a htaccess to redirect those URL’s, could you supply us with a FTP login?

Thanks,
David.

June 19, 2015 at 10:55 am #186215

glassdomain
Member

Post count: 103

This reply has been marked as private.

June 19, 2015 at 2:16 pm #186342

glassdomain
Member

Post count: 103

This reply has been marked as private.

June 19, 2015 at 2:29 pm #186352

David Martin – Support
Moderator

Post count: 20834

Hi Peter,

I have finished now and put the settings back.

If you are worried about google seeing two versions, then I strongly suggest to make the whole site https, fixing the above issues.

Thanks.

June 19, 2015 at 3:06 pm #186379

glassdomain
Member

Post count: 103

Hi, Yes i would be worried about Google seeing two versions – this just isn’t good practice from what i can see on-line.

I have made the whole site redirect to https for now. as i think this is probably the best solution of all things considered.

Thanks for your help on this.

Peter

June 22, 2015 at 1:14 am #186723

Rui Guerreiro – SUPPORT
Keymaster

Post count: 25779

Hi,

You did it right, is the best practice being https from the beginning to the end of the purchase process. Thanks David

-Rui
Back to forum

Posted in: Neighborhood