|
Richard Duncan
|
May 8, 2015 at 10:06 am
Hello,
How do we resolve this issue to eliminate browser warnings?
https://www.comedyguys.com/register/
Mixed Content: The page at ‘https://www.comedyguys.com/register/’; was loaded over HTTPS, but requested an insecure image ‘http://www.comedyguys.com/wp-content/plugins/event-espresso/images/icons/external-link.png’;. This content should also be served over HTTPS.
|
|
Josh
|
May 8, 2015 at 10:59 am
Hi Richard,
Are you using the WordPress https plugin? If so, there’s a URL filter box on its settings page. You add the URL slugs for the main registration page and the thank you page to the Secure Filters fields in that box. Then you save.
|
|
Richard Duncan
|
May 8, 2015 at 11:09 am
Hi Josh,
I did that previously and just confirmed that the page slug is still present in the filters.
Yesterday there was no browser warning and today there is.
I think I see what happened, I “think” yesterday we had checked “Remove Unsecure Elements” and today it is unchecked. Rechecking it removed the browser error. Since the insecure element is only an icon and it is the only item being removed, turning this on is probably an ok fix.
QUESTION
We are only forcing SSL on checkout and return pages.
In the HTTPS plugin settings where it asks for SSL host, should I enter
http://www.comedyguys.com or https://www.comedyguys.com (they use wwww)
Thanks
|
|
Richard Duncan
|
May 8, 2015 at 11:11 am
I may have spoke to soon.
Even with the “Remove Unsecure Elements” checked the browser warning is still appearing. It disappeared momentarily wen that was activated and then reappeared.
?????????
|
|
Richard Duncan
|
May 8, 2015 at 11:13 am
Sooooooooooo since we are not using any external websites for payment processing, what file do I need to edit to remove that whole line of code and the reference to that icon?
|
|
Josh
|
May 8, 2015 at 11:35 am
Hi Richard,
Right now, where it asks for SSL host, does it already have something there? If so that probably should not be changed, but you can double check with your host.
I’m not sure why that image link is not resolving to https for you. This is because I have EE3 loaded up with the WP HTTPS plugin and with the main registration page secured, the external image link is also secure.
We set the image URL used there to use a dynamic path to allow it to be http or https. There may be something else set up on your site that’s overriding this.
If you decide you want to go ahead with the hack the line of code out idea, then you can do so by copying over the gateways/gateway_display.php file over to the /wp-content/uploads/espresso/gateways folder on your server.
Then you remove line 85 from your copy and save.
|
|
Richard Duncan
|
May 8, 2015 at 11:38 am
Hacked and fixed.
Thanks Josh
On to the next fire. 🙂
|
