Jump to content

Archived

This topic is now archived and is closed to further replies.

jasonkadlec

URLS to images in LESS CSS not loading as https

Recommended Posts

jasonkadlec    1
jasonkadlec

I went to http://whynotpadlock.com

 

and tested https://thingerdo.com/tip-jar

 

 

Insecure URL: http://fonts.googleapis.com/css?family=Open+Sans:400,800,300,700
Found in: https://thingerdo.com/wp-content/plugins/revslider/rs-plugin/css/captions.css?ver=3.6.1

Insecure URL: http://thingerdo.com/wp-content/themes/dms/editor/images/stripe.png
Found in: https://thingerdo.com/?pageless=1_1381995249

Insecure URL: http://thingerdo.com/wp-content/themes/dms/images/search-btn@2x.png
Found in: https://thingerdo.com/?pageless=1_1381995249

Insecure URL: http://thingerdo.com/wp-content/themes/dms/sections/quickslider/images/bg_direction_nav.png
Found in: https://thingerdo.com/?pageless=1_1381995249

Insecure URL: http://thingerdo.com/wp-content/themes/dms/sections/revslider/images/header-shadow.png
Found in: https://thingerdo.com/?pageless=1_1381995249

Insecure URL: http://thingerdo.com/wp-content/themes/dms/sections/revslider/assets/large_left.png
Found in: https://thingerdo.com/?pageless=1_1381995249

Insecure URL: http://thingerdo.com/wp-content/themes/dms/sections/revslider/assets/large_right.png
Found in: https://thingerdo.com/?pageless=1_1381995249

Insecure URL: http://thingerdo.com/wp-content/themes/dms/sections/revslider/assets/timer.png
Found in: https://thingerdo.com/?pageless=1_1381995249

Insecure URL: http://thingerdo.com/wp-content/themes/dms/sections/revslider/assets/coloredbg.png
Found in: https://thingerdo.com/?pageless=1_1381995249

Insecure URL: http://thingerdo.com/wp-content/themes/dms/sections/revslider/assets/loader.gif

Share this post


Link to post
Share on other sites
Danny    1,327
Danny

How have added SSL to your site, as most of your pages are not SSL either ?


Please search our forums, before posting!

Share this post


Link to post
Share on other sites
jasonkadlec    1
jasonkadlec

My SSL certificate is installed via my webhost, WPEngine.  

 

I tried using the WordPress HTTPS plugin to force SSL on the pages that have credit card forms, but in Google Chrome those pages with force SSL loaded with no CSS.

 

The same thing happened when WPEngine put in the force redirects on their end ( I'm guessing via .htaccess or some similar method). 

 

So I turned off the HTTPS plugin, WPEngine removed the force redirects and for now I am just putting direct links to those pages as HTTPS. The CSS loads, but I don't get the green padlock.

Share this post


Link to post
Share on other sites
jasonkadlec    1
jasonkadlec

@CliffordP - thanks for the link... installing your plugin now -- thank you!

  • Like 1

Share this post


Link to post
Share on other sites
jasonkadlec    1
jasonkadlec

Clifford P -- Not 100% following the plugin. I've installed it but I'm not seeing any difference. Does it only work if the entire site is forcing SSL by putting https://siteurl.com in the WordPress URL settings?

 

 

Or is the plugin supposed to be used in conjunction with the HTTPS plugin?

Share this post


Link to post
Share on other sites
TourKick (Clifford P)    1
TourKick (Clifford P)

jasonkadlec, as stated in my post, you cannot use the WordPress HTTPS plugin or anything like it on WP Engine hosting. Please re-read the post in its entirety.

 

As far as what the plugin does, "it just works" if you have SSL installed on your site. You shouldn't notice a difference in anything other than not getting the mixed content warnings in your browser.

 

Best to you.

Share this post


Link to post
Share on other sites
jasonkadlec    1
jasonkadlec

Clifford P - confirmed. "It just works." I think I just needed to clear the cache. Green pad lock now at any https://thingerdo.com page!

Share this post


Link to post
Share on other sites
Rob    547
Rob

Good point Cliff!


Former PageLines Moderator, Food Expert and Raconteur

Share this post


Link to post
Share on other sites
jasonkadlec    1
jasonkadlec

Clifford P

 

With the latest version of DMS running on WordPress 3.6.1  there appears to be a bug/conflict with PageLines DMS Force SSL/HTTPS -- when I have the plugin enabled, I'm not able to save/publish changes in the DMS editor.

 

For the moment, I'm turning the plugin off, making whatever changes, then turning it back on again. Are you able to reproduce?

Share this post


Link to post
Share on other sites
jasonkadlec    1
jasonkadlec

yep. Working now... I wonder why that is an "add as last resort" kind of thing... what is / might be breaking now that I've un commented those lines and have enabled:

 

add_action('wp_ajax_nopriv_pl_editor_actions', 'pl_editor_actions');

Share this post


Link to post
Share on other sites
TourKick (Clifford P)    1
TourKick (Clifford P)

Nothing's broken, it's just less secure... but then again DMS Editor doesn't run unless you're authenticated anyways... so it's not a personal security concern of mine. However, people shouldn't do that override unless necessary.

 

If it works, enjoy.

 

Looking for something new for your sites? Let me draw your attention to my store products: http://www.pagelines.com/author/tourkick/?post_type=product

Share this post


Link to post
Share on other sites

  • Similar Content

    • SaschaM
      By SaschaM+
      hi
      i wanted to point out at this time, that i am very very very happy with platform 5. (before i used DMS and others) as some ppl talking here some things are not working, i can say the opposite working on my Web:
      1. UberMenu
      is running fine, without shortcodes or "tricks" necessary - it runs out of the box with no problems in a few clicks configured. also further ubermenu plugins 100%
      2. Shift Nav
      As a further extension of UberMenu - also runs fine out of the box with a few clicks. also combine with ubermenu no problem (Ubermenu for normal nav, shift nav for mobile)
      3. https / SSL

      I user commodo instant ssl and everything runs fine (10 minutes installation) - no mixed content errors nothing everything very smooth :-). Google SERPS have been updated to https URLS wihtin 1 day(!)
      4. MaxCDN
      I use MaxCDN for sitespeed as i implemented also video backgrounds. it runs perfect with wp supercache
      5. Nginx
      I also run nginx on my webspace, also with that there a no problems with platform 5. I also use nginx streaming for video files, works perfect.
      For all points there a no functions codes necessary or implement shortcodes - it runs out of the box and makes it easy for everybody, whos a little firm in technical matters. Some guys here in the forum make it really complicated :-)
      I am working with pagelines around 5 years now, and platform 5 / framework 5 is the best tool ever
      BUT i am missing to configure site headlines h1-hx as in DMS possible easy way. It was a great way to make seo sitestructure. now there are lots of empty headlines or headlines or jumped over. in seo this causes errors in sites structure. this should be reworked.
      if you have any questions on pl5 with 1.-5. just ask me here....
      regs, 
      Sascha Mühlen
       
       
       
    • social_biz
      By social_biz
      I am trying to get iBlogpro6 running under https. All is fine but I am getting a mixed content warning:
      Mixed Content: The page at 'https://s11r.co/' was loaded over HTTPS, but requested an insecure stylesheet 'http://s11r.co/content/uploads/pagelines/compiled-css-core-1464872768.css'. This request has been blocked; the content must be served over HTTPS. The compiled css file are delivered in http not https. I tried toi delete them several times but the error is still there.
      Do I need to fix something in the theme folder? What? Where?
    • danigurgel
      By danigurgel
      Hello,
      I have a connection issue with my Pagelines Platform 5 Installation:
       
      I have already tried inserting define( 'PL_SSL_NO_VERIFY', true ); into my wp-config.php file. Did not solve it.
      I am unable to solve it as explained in the "Readme first" posts, because the hosting service refuses to whitelist those domain/IPs listed. 
      I am able to manually download any files I might need to, though. It is only my wordpress installation that cannot connect to those servers, not my computer.
       
      So my question is pretty straightforward: Is there any way I can bypass adding the account and add any new plugins, extensions and updates manually? It would be my best choice, I guess.
      Thanks
    • zabby
      By zabby+
      Hello! Looking for some help with an SSL issue. Just moved this existing site over to DMS and the SSL pages are loading funky: https://www.fullmanfirm.com/update-payment-information/
      I've disabled a bunch of plugins and tested to see if the header was the issue with no luck. The forms plugin for these pages is using Gravity Forms.
      Any help would be very much appreciated.
    • dario
      By dario+
      Hi,
      I switched to SSL and am having issues with my custom fonts. I did search the forum and followed some old threads but none of them seemed to change things.
      Using whynopadlock.com on https://www.sightsize.com/, results in 39 insecure items.
      All take the form of:
      Insecure URL: http://www.sightsize.com/wp-content/themes/sightsize/fonts/HelveticaNeue.eot
      Found in: https://www.sightsize.com/wp-content/uploads/pagelines/compiled-css-core-1456973700.css
      All the custom fonts (CSS and LESS fallback) are coded like so: src: url('@{plChildRoot} . . .
      Any ideas on how I might solve this?
×