-
Posts
-
Hi community,
I have installed a let`s encrypt SSL certificate via my host Allinkl, everything is set so far. They told me if I want to have full SSL I need to intergrate it into WP.
Since I am rathe a rookie with this I googled and found tons of warnings not to severley harm my WP sites.
Does anybody have a bomb-proof guide how to proceed? I already downloaded a script called Searc Replace DB but am to scared to try anything becuase of all the warnings.
Thanks for help and keep on “Enfolding”
Klaus-PeterMorning,
In order for the SSL to work all urls in your site need to be over https. So any theme related css, javascript, images, internal links, embedded iframes all need to be pointing correctly.
Change the URL value under settings>general to https, will take care of anything handled by the theme and WordPress.
The only issue you may have is if you have hard coded an image using
<img src="http://www.urlhere.com" />as these wont be picked up by the setting change.Search and replace scripts will scan the database looking for any reference to http and changing it to https. How good they are I can’t say as I always manually check. I don’t trust anything to poke about in a database.
Do the changes in your settings then load each page. If you get the nice green pad lock… happy days. All resources on that page are loading over https. Move on to the next page.
If you hit a page where any resource is over http you’ll get the red not secure icon. That page will need investigating. You can inspect the page by right clicking and choosing inspect.
Under the console tab is where you will find the resources that need checking.
As we can see from Microsoft’s page all resources are over https but they do have one 404 link. Tut tut Bill…You can also add a little piece of code to the htaccess file that will force http to load over https.
Maybe not a bullet proof guide as there are several ways to tackle the potential issue.
If you can post a link to the site I can check each page and let you know if there are any changes needed. No password or access required just the url of the home page
I’ve helped a few people with ssl probs…
issue one
issue twoLet me know if I can help
TJ
Hey TJ, many thx!
The site is
http://www.resonanz-energie.de.
It is great if you check it out. It would be awesome if you give me infos to complete the SSL.Best wishes
Klaus-PeterHi,
It doesn’t look like too much is loading incorrectly
The logo and the favicon are being loaded over http. Go to theme options and look for the part that deals with [b]logo[/b] and [b]favicon[/b]. Make sure they read https. you can add the “s” in and hit save.
So far that is all I’ve found :)
TJ
Many many thanks! I have 3 pages left where images are loaded from a non http page within my website that actually doesn´t exist.
It is a pic not shown on the page called http://www.resonanz-energie.de/imagesI found logo and favicon uploads and corrected them, also a few links with http I changed to https.
but the pagesremaindes with the warning (grey lock symboö with yellow warning triangle)
How can I find out more?
Best regards
:) Klaus-Peter@TJ,
ok, I am on my way. I have fixed the issues on 2 pages with the images, they are clean now.
the 3rd page contains links to NASA or related orgs and they are non-https sites for whatever reason.
So finally with your help I am through with SSL for my pages!!Thanks for beeing there and help so quickly!!!!!
Best wishes
Klaus-PeterHi Klaus-Peter,
Thanks for the feedback, so you got all the issues sorted out now?
Thanks to TJ for helping out :-)
Best regards,
RikardHi Rikard,
yes, with the exception of my pagestill having the security warning since I have linked non-https sites. I guess this issue remains until I find the same info with https to change the link.
Thx a lot and all have a good weekend
Klaus-PeterHi,
Any external link, either a button or a coded link, that goes to another site from yours is fine and doesn’t need to be https.
The SSL is only affected by resources that load in the DOM in your site.On the page in question there are 3 things causing issues.
1) http://www.n3kl.org/sun/images/status.gif – the normal image
2) http://www.n3kl.org/sun/images/kpstatus.gif – the quite image
3) http://www.hamqsl.com/solarpic.php – the data image.You could download the images and the upload them to the page via the image element. The last php script there is no way around, unless like you said you find another source that has https
TJ
Yeah TJ, I guess you are right. The gifs can´t be just stored and loaded as images since they are updated every halfanhour or so, they are monitors so to say.
For the tome beeing I will let it as it is, till I find replacemnets from https sites.
Best wishes and thx for now.
Klaus-Peter
- You must be logged in to reply to this topic.