Jump to content

Archived

This topic is now archived and is closed to further replies.

dario

SSL Prep?

Recommended Posts

dario

Hey y'all.

On the PL FB UG I see that Gavin has posted notice that Google is about to ding sites which are not https. Two years ago I added a cert to a DMS site and had troubles. It was a testing site so I took it down and promptly forgot my issues.

Looking ahead, other than adding the cert, what do I need to be on the lookout for as it relates to DMS2? I've got the site on SiteGround GoGeek and using CloudFlare.

Share this post


Link to post
Share on other sites
Simon

If the URLs are set to ssl in the Wordpress settings then all generated URLs will be ssl and there are zero issues.

if you use one of the crappy plugins that make certain pages ssl then you have to force dms to use ssl when it builds the URLs as it uses the sites main URL as a base.

Share this post


Link to post
Share on other sites
morrisjohnc

I have had an SSL cert since I started my website, but the Bespoke theme breaks when the site is accessed on HTTPS, so I haven't used it.

Certain sections, like the Featured Slider on my homepage, do not load at the https URL. Could anyone advise me on a quick way to fix this?

The URL is https://wheelchairtravel.org/

 

Thanks!

Share this post


Link to post
Share on other sites
dario

Looks like your images are being served from the non-SSL side of your site.
They are being blocked by the SSL side.
Of course, you know that.

I know you said that you have had a cert from the beginning but why the http site too?

 

Screen Shot 2016-01-31 at 10.45.01 AM.png

Share this post


Link to post
Share on other sites
morrisjohnc

Dario,

When setting up this website, and the Bespoke theme on DMS, I kept getting these same errors, so I moved forward on non-secure HTTP. Couldn't seem to get an answer out of James, the developer who built Bespoke. I could manually change URLs for some of the custom sections, but many of the others were difficult to find. Seemed to be too much work modifying a theme that should have been HTTPS ready from the beginning.

Share this post


Link to post
Share on other sites
morrisjohnc

As a further issue, the DMS editor will not load when accessed via HTTPS (when I have set the URLs to https inside Wordpress settings).

Share this post


Link to post
Share on other sites
Simon

Can you open a support ticket, supply the url and an admin login and i'll take a look/

Share this post


Link to post
Share on other sites

  • Similar Content

    • marshallsolutions
      By marshallsolutions
      For the site https://marshallsirishpub.com I am running
      Wordpress 4.9.4
      Pagelines base theme 1.0.2
      Pagelines Framework 2.5.0
      The share bar specifically Stumble Upon is causing an error when checking SSL for HTTPS at whynopadlock.com.  Here is the errors shown:
      A file with an insecure url of "http://cdn.stumble-upon.com/js/badge_su.js?v=20120613" was loaded on line: 1 of https://www.stumbleupon.com/badge/embed/2/?url=https%3A%2F%2Fmarshallsirishpub.com%2F.
      A file with an insecure url of "http://cdn.stumble-upon.com/css/badges_su.css?v=20120613" was loaded on line: 1 of https://www.stumbleupon.com/badge/embed/2/?url=https%3A%2F%2Fmarshallsirishpub.com%2F.

      Errors that are reported on line 1 are generally not part of the source code. This error may be caused by an external javascript file which is writing to the page, however we are unable to reliably detect these scripts in our automated test.
      Please contact us using the "Need Help?" link below if you need assistance with resolving this error.
      I contacted support at Really Simple SSL which is the plugin we use to convert the site to HTTPS via SSL.  They said I should contact you guys.  Here is what their support had to say via email:
      the sharing bar seems to load the Stumbleupon script over http:// despite being trying to redirect it to https://. The cdn.stumbleupon doesn't seem to have an SSL certificate and therefore refuses to load over https://. I'd suggest to contact the developer of the sharing plugin, the Stumbleupon button can de designed in another way, without it trying to load a script over http://.
      So it seems I need to modify some file in pagelines to make the stumble upon portion of the share bar to read https and not http.  If that's not possible then I need to remove stumble upon from the share bar.
      Thanks.
    • yemoonyah
      By yemoonyah+
      Hi, even though I just got a SSL certificate, I can't get the green padlock to appear due to the following error:
      :A file with an insecure url of "http://yemoonyah.com/wp-content/plugins/pl-section-boxes/check.svg" was loaded via the javascript file: https://yemoonyah.com/wp-includes/js/jquery/jquery.js?ver=1.12.4 on line 3. The insecure URL may not be directly contained in the script file and may exist elsewhere."
      I figured if I delete and re-install the plugin it might fix the problem but will my boxes on the website still be there? Or do I have to redesign everything all over again if I delete the plugin and then re-install it?
    • israelgenealogy
      By israelgenealogy
      I have an old PageLines site that I recently got working with SSL, but there are mixed content errors. There are two problems I've found. One is the search button icon called from forms.less:
      url(@{plRoot}/images/[email protected])
      The second is when PageLines loads FontAwesome from icons.less:

      url('@{iconFont}.eot?v=3.0.1');

      Where is similarly loads the font using http. Any idea why these are loading using http instead of https, and is there a simple way to fix these? I know I need to upgrade the theme, but it's a major project, so for the moment I'd just like to get these secured before taking on switching themes/frameworks.
    • Dan Haddock
      By Dan Haddock
      Plugins Active and installed: 
      Akismet Anti-Spam
      Coming Soon Page & Maintenance Mode by SeedProd
      Contact Form 7
      Cookie Law Info
      DMS Professional Tools  
      Enhanced Media Library  
      Flamingo
      Google Analytics for WordPress by MonsterInsights
      Google XML Sitemap
      Jetpack by WordPress.com
      Legull 
      Loginizer   
      MailChimp for WordPress
      PageLines Updater    
      Schema App Structured Data 
      Sucuri Security - Auditing, Malware Scanner and Hardening
      Uber reCaptcha    
      Yoast SEO
      Wordpress Version: 4.8.1
      Pagelines Version: 2.2.4
       
      Good Evening/Afternoon or Morning, 
      I am running into a problem with CSS styling not applying inside of most browsers (Safari, Firefox) when I am logged in to wordpress, and all browsers that I have tested when I am logged off and the site has been made public (Chrome, Firefox and Safari).
      As a result, I have managed to identify the probable cause. It looks as though these browsers are refusing to render my sites compiled CSS file due to it being a HTTP URL rather than HTTPS.
      I have attempted to change this URL to HTTPS in my browser, however it brings back an ERROR: File not found page - https://www.shortfilmblog.com/wp-content/uploads/pagelines/compiled-css-core-1505847507.css
      What would you suggest in this regard? Would this be resolvable from your end?
      Happy to provide any further details required.
×