I recently created a Wordpress Website on my personal server. And once completed I deployed it to the client's server successfully.
However, when I activated HTTPS, I received the 'Mixed Content' error, and when I Inspect the Console I still see a reference to my own server:
Mixed Content: The page at 'https://fluidfinance.co.za/' was loaded over HTTPS, but requested an insecure image 'http://transciety.co.za/fluidfinance/wp-content/uploads/2020/01/Slider1.jpg'. This content should also be served over HTTPS.
Fluidfinance.co.za being the client's server, and transciety.co.za is my server.
I checked the HTML body, and cannot find any reference to this image link. I also ran a Find and Replace on the Database, and still it is trying to fetch the images from my own server.
The actual image being displayed comes from the correct server.
How can I get rid of this reference, in order for the Mixed Content error to be removed?
Thank you in advance.
It is Coming from Elementor CSS.
URL: https://fluidfinance.co.za/wp-content/uploads/elementor/css/post-6.css
CSS Present.
.elementor-motion-effects-layer{background-image:url("http://transciety.co.za/fluidfinance/wp-content/uploads/2020/01/Slider1.jpg");background-repeat:no-repeat;background-size:cover;}
May You can Change it in Elementor Plugin or Manual by Going to the CSS Path.
Related
Theme: Astra
Template: brandstore
Have enabled in cloudflare:
SSL/TLS> Always Use HTTPS
SSL/TLS> Automatic HTTPS Rewrites
Speed>Auto Minify
Speed>Brotli
I want to remove this problem in my site
I have deleted the images that think was raising the warning, but it continue showing a warning in console tab of developer tool of the firefox browser.
Use in firefox f12 to open the developer tool, then go to the console tab and check this warning
Loading mixed (insecure) display content “http://kauchoplus.com/wp-content/uploads/2020/09/banner-03.jpg” on a secure page
and all in the images bellow.
If we click in the url image https://kauchoplus.com/wp-content/uploads/2020/09/banner-03.jpg the message is this.
I am using cloudflare and have self-signed SSL certificate signed in the server.
Please help me to know who is requesting that image and remove the conection no secure problem.
I have resolved the problem, deleting a empty container spectra-block.
The spectra blocks is installed along with the brandstorm template of the Astra theme.
Instead of genuine Mixed Content issue this seemed like more of a Wordpress issue hence posting here to find a resolution.
I have everything setup to work with https, though there is no valid certificate yet. here is the home page url https://tourpoule.nl. The home page loads but with Mixed content errors which seem to be generated by core Wordpress or theme functions. Attaching image:
Database does not have any url which would start with http://. I already have replaced them using search and replace script.
There is nothing in htaccess file except basic Wordpress setup code. I tried renaming it as well. I cleared all types of cache but still it does not work. The site is using twentytwenty theme and if I comment out css and javascript enque lines, some of the errors disappear but styles and scripts do not load(that is normal I know).
In the view source of page it shows mixed urls, some with https and style and javascript urls without https. see below:
Interestingly if I click a stylesheet url i.e. http://new.tourpoules.nl/wp-content/themes/twentytwenty/style.css?ver=1.0 it redirects to https://new.tourpoules.nl/wp-content/themes/twentytwenty/style.css?ver=1.0
I am not sure what is going on and have got struck. I am not able to reach the client so that we can discuss turning ssl redirection off in nginx for this domain where it is redirecting everything to https if it is not https. Not sure if that is causing issue (I believe it is not as it has nothing to do with Wordpress mechanism to generate urls). Any help or direction is greatly appreciated.
I can see your website is still unsecured, for what it's worth, get yourself letsencrypt ssl.
Back to you question, go to your database, open the wp_options table, change the siteurl item to https://tourpoules.nl and also change the home item to https://tourpoules.nl.
If you have used search and replace DB master script or plugin it will not update inside meta files as well as and check for the function file have you Enqueue with https://
So will be better if you download SQL file and replace with below:
From:
http://new.tourpoules.nl
To
https://new.tourpoules.nl
and re-upload again
I use WordPress, and I bought a theme from ThemeForest. Everything is great, but when I installed SSL I get insecure connection on my homepage.
Mixed Content: The page at 'https://freindly-flowers.com/' was loaded over HTTPS, but requested an insecure image 'http://freindly-flowers.com/wp-content/uploads/2018/11/logo-watermark.png?id=6521'. This content should also be served over HTTPS.
(index):1 Mixed Content: The page at 'https://freindly-flowers.com/' was loaded over HTTPS, but requested an insecure image 'http://freindly-flowers.com/wp-content/uploads/2017/12/testimonials.jpg?id=7079'. This content should also be served over HTTPS.
I have tried searching for those images in FTP, but they are not anywhere in FTP. What can I do and how can it show mixed content for images that are not even on the website?
The images are there - http://freindly-flowers.com/wp-content/uploads/2017/12/testimonials.jpg loaded for me. The problem is that your code is including http: without the s.
Navigate to that page and then right click somewhere and select "view Source" to see the source code. Search for http: in the source and you'll find all of the insecure requests. You may have hardcoded some image sources or copied database entries without updating urls, I really don't know, but using relative urls is one way to avoid this issue.
I've reconfigured a Wordpress site to use https and although there are no http links appearing in the html source Chrome still says "connection not fully secure".
I've read this post and I find in Developer Tools > Network there is a jpg file listed as being on an http connection. However I've changed the only reference to this file in the database in table wp_posts in field guid to be https, refreshed the browser cache but it is still listed as http although not appearing in the source.
Other non-wordpress https sites on the same server show the secure sign so the certificate must be installed correctly.
I've used the online checker at www.whynopadlock.com and the only item it flags as a fail is the jpg image, which I've changed? Is there a WP cache, I can't see an cache plugins in admin.
Try to search for all http:// version of the website in your database but also, change the name of the website in the main settings to https AND flush your permalinks if you haven't in Settings -> permalinks -> click update.
If it doesn't change anything, maybe the file is hard-coded in your template file? Another script could load the file via ajax you wouldn't see it in the source code...
Test it in another Browser.
Maybe there is some Server-Cache (PHP, Memcached, etc.).
In bulk WP should have the change an affect.
I have a wordpress site that intermittently displays incorrectly due to a bad css url being served to the client (by apache). I have tracked down the problem to the css file being somehow linked to with an incorrect link:
siteexample.com/wp-content/themes/twentyten/ce.bf1f3e76cdf43e6250526a554c555315.style,s.css
This file doesn't actually exist on the filesystem, which leads me to believe it is generated on the fly and served by apache through a possible tempfile. This functionality does indeed work on some of my other sites and I can click the link in question and load the css file (for those sites the theme is working correctly as well.
If I view the page source and click the bad link it gives me an error (In google chrome):
Error 321 (net::ERR_INVALID_CHUNKED_ENCODING): Unknown error.
Now noticing the "ce.bf1f3e"... on the beginning of the bad css url, the "ce" could be a prefix for "chunked encoding", but I am not aware of how this url is being generated in the first place. If it is on the apache side or on the wordpress side.
How can I turn off chunked encoding or force the css url to be given to the client as it exists on the filesystem as "style.css"?
I have found the issue. It appears wordpress has built in css caching that isn't resolving correctly. Regardless of the main problem, I have decided to disable css caching by using a separate wordpress plugin that appends a timestamp on the end of the css url and pulls the latest version from the filesystem every time.
Css Cache Buster Wordpress Plugin
I will post any follow up information I find on wordpress's css caching, but until then it appears this plugin has solved my immediate problem of the css url being incorrect when the page is served to the client.