HTTPS with mixed content and got blocked

Viewing 13 posts - 1 through 13 (of 13 total)

Author

Posts
May 20, 2017 at 2:31 pm #797003
YongyanLi
Participant
our website got broken due to mixed content, mainly due to below
requested an insecure stylesheet like:
http://xxx/wp-content/themes/enfold/css/print.css?ver=1′.
http://xxx/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff?v=3′
http://xxx/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.ttf?v=3′.
http://xxx/wp-content/plugins/wp-rocket/inc/front/js/lazyload.1.0.5.min.js’

how can I change it to https? why enfold got http links like that?

below only applicable for content with exact same link, so it is not workable for above issues
meta http-equiv=”Content-Security-Policy” content=”upgrade-insecure-requests” />
- This topic was modified 7 years, 6 months ago by YongyanLi.
May 20, 2017 at 5:31 pm #797059

Mike
Moderator

Hey YongyanLi,
Try this easy fix: https://wordpress.org/plugins/really-simple-ssl/

Best regards,
Mike

May 24, 2017 at 3:17 am #798686

YongyanLi
Participant

That’s not helping

it is because Enfold got the http resource…finally figure it out where the problem locates, Not the SSL, NOT SERVER PROBLEM, NOT WP ROCKET.. it is mostly ENFOLD

and I searched the forum, many people got the same issue when they use SSL and I CAN’T believe this problem are still existing ( 2-3 years passed)

DID any one in Enfold can tell me how to make all ths CSS,JS code to be transit via HTTPS instead of HTTP?

May 24, 2017 at 8:09 am #798758

Rikard
Keymaster

Hi,

Please send us a temporary admin login and login URL so that we can have a closer look. You can post the details in the Private Content section of your reply.

Best regards,
Rikard

May 25, 2017 at 1:30 pm #799529

YongyanLi
Participant

please check !

I hope you can find what’s going on

I tried to use directive

Content security policy: “upgrade all insure requests:”

it is proved to come into effect
but it didn’t help for this issue

May 26, 2017 at 4:49 am #799965

Rikard
Keymaster

Hi,

Thanks for the details, though I can’t see any error messages of mixed content on the front page. Where are you seeing them?

Best regards,
Rikard

May 28, 2017 at 4:25 am #800698

YongyanLi
Participant

I will check and let you know

May 29, 2017 at 3:35 am #800916

YongyanLi
Participant

Hi

the issues come back again

I don’t know why, everything looks fine when I log in the backend,
but if you don’t fresh the backend a few days, then the issues come back

May 29, 2017 at 5:30 am #800943

Rikard
Keymaster

Hi,

The only error message I can see are on the frontend:

Unrecognized Content-Security-Policy directive ‘âupgrade-insecure-requests’.

bylees.com/:1 Unrecognized Content-Security-Policy directive ‘â’.

I’m pretty sure that is not related to the theme though.

Best regards,
Rikard

May 30, 2017 at 8:06 am #801392

YongyanLi
Participant

HI,

I’VE DELETED IT
IT IS JUST A DIRECTIVE TRY TO SOLVE THAT PROBLEM
DO YOU MIND CHECKING AGAIN?

May 31, 2017 at 2:06 am #801744

Mike
Moderator

Hi,
I solved it for you, the issue was with your shop page not requesting “https” css and fonts, so I installed https://wordpress.org/plugins/really-simple-ssl/ which corrects this type of issue. Now you don’t have any mixed content errors :)

Best regards,
Mike

May 31, 2017 at 2:33 pm #802027

YongyanLi
Participant

Hi, Mike

Thanks very very much indeed

BTW, Can I deleted this plugin ? since the problem was solved.

Or maybe the problem will come back when plugin deleted??

May 31, 2017 at 11:53 pm #802266

Nikko
Inactive Moderator

Hi,

Please don’t delete the plugin Mike installed since it’s necessary, removing it will cause the issue to come back.

Best regards,
Nikko
Author

Posts

Viewing 13 posts - 1 through 13 (of 13 total)

You must be logged in to reply to this topic.

Follow us on Facebook

Kriesi13.000+ likes

Open facebook page

Join our Facebook community

Subscribe to our Newsletter