I spent my whole day configuring my wordpress website to use cloudflare flexible ssl.
I use WP HTTPS plugin and cloudflare page rule to redirect http to https.
It's working very well on firefox and IE but in chrome it's saying:
The page at 'https://mrbladedesigns.com/' was loaded over HTTPS, but is submitting data to an insecure location at 'http://mrbladedesigns.com/': this content should also be submitted over HTTPS.
One more thing I want to tell you guys that now also my wordpress address and Site address is HTTP in wordpress admin settings
I removed all of the insecure content but have no idea on how to resolve this.
Any help will be appreciated!
Just disable W3 Total Cache, https cloudflare will working fine.
I actually tried this as well but with more success. From your description it sounds like you have an issue with insecure content being loaded. This happens when you load the page via https but content is loaded via http.
The ssl insecure content fixer plugin will help you with most of your problems, but other problems will have to be fixed manually by changing http references in your html code to https.
never mind I fixed it, SSL insecure didn't worked for me, the root cause of this problem was the search bar on my homepage. Here's the fix: under WP HTTPS settings at the end there's an option Secure filters. Just write /?s there and save it! Done!
Related
My site was working before ssl and it was looking like this...
https://ibb.co/GxWFJdK
and this was after...
https://ibb.co/mzVrWWP
I removed ssl and put site back on http and still it is not working it is broken...It is wordpress site
You need to check the console, might be some JS or CSS code is still serving from the https://, you need to save the permalinks settings from the backend to reset it to http://
I have installed SSL in my hosting provider and tested it on whynopadlock.com/ , and it keeps saying my site is not fully secure:
Mixed Content: The page at 'https://mysite.nl/' was loaded over HTTPS, but requested an insecure image 'http://mysite.nl/wp-content/uploads/2019/07/bg-01-free-img.jpg'. This content should also be served over HTTPS.
Now when I look into media files in Wp, the link says https and not http. I have been looking for hours now and the plugins SSL Insecure Content Fixer and Really Simpel SSL havent been working either.
Any ideas to how to solve this would be appreciated!
Simply use this plugin for your website it will fix everything related to mix content and show your website secure with green signal.
Plugin name
Easy HTTPS Redirection
By Tips and Tricks HQ
Anyother help needed ? let me know.
Thank you
I connected cloudflare to my WordPress and enabled HTTPS flexible.
made 2 page rules
https://www.example.com/wp-login.php*
https://www.example.com/wp-admin/*
leaving SSL as flexible but disabling cache and security level
I did install two plugins
http-https-remover
https-redirection [which I disabled now]
I mistakenly changed my sit and home urls to https://example.com
so I did access with FTP to fix it back , however the www is back still can't access the website
when I disable http-https-remover the website loads the content but its not aligned .
the website it self got the following errors :
www.site.com/:8 A Parser-blocking, cross site (i.e. different eTLD+1) script, https://ajax.cloudflare.com/cdn-cgi/nexp/dok3v=f2befc48d1/cloudflare.min.js, is invoked via document.write. This MAY be blocked by the browser in this or a future page load due to poor network connectivity. If blocked in this page load, it will be confirmed in a subsequent console message.See https://www.chromestatus.com/feature/5718547946799104 for more details.
but they are not effecting the look and feel of the website .
for https://www.example.com/wp-admin/
the console is empty and the page returnes 200
the http version(when I disabel ssl from cloudflare for the 2 page rules) it gives me.
"This page isn’t working
www.assesstm.com redirected you too many time"
console :GET http://www.assesstm.com/wp-admin/ net::ERR_TOO_MANY_REDIRECTS
and the network is redirecting like crazy between http and https
disabling https in all the website gives me the redirect loop in the rest of the site
also worth mentioning that I'm not able to get the debug file after defining DEBUG with true in the wp-config.php file .
tried to force ssl on admin but didn't get a solution .
those are my wordpress plugins currently
a:14:{i:0;s:19:"akismet/akismet.php";i:1;s:44:"css3-text-and-image-overlay/css3_overlay.php";i:2;s:39:"easy-google-fonts/easy-google-fonts.php";i:3;s:50:"google-analytics-for-wordpress/googleanalytics.php";i:4;s:19:"jetpack/jetpack.php";i:5;s:29:"pirate-forms/pirate-forms.php";i:6;s:43:"shortcodes-ultimate/shortcodes-ultimate.php";i:7;s:41:"sp-news-and-widget/sp-news-and-widget.php";i:8;s:27:"tawkto-live-chat/tawkto.php";i:9;s:43:"themeisle-companion/themeisle-companion.php";i:10;s:37:"tinymce-advanced/tinymce-advanced.php";i:11;s:24:"wordpress-seo/wp-seo.php";i:12;s:32:"wp-overlays/wp-overlays-lite.php";i:13;s:25:"cloudflare/cloudflare.php";}
any suggestion
You should turn off SSL at your site and at cloudflare. See if that works.
Then set dns at cloudflare to bypass the cdn (grey cloud). Get ssl going on your site, and see if it loads under https.
If all that works, you can now turn on ssl at cloudflare (FULL, not Flexible) and switch dns back to using cloudflare (orange cloud).
Also,disable SSL and clean the cache, I'm sure that out there is a plugin for WP to help to propagate ssl url's, be sure you have it too, but what fixed my problem was disabling the rocket loader, you can find it in the speed option in cloudfare.
I've got this weird problem on one of my Wordpress sites and I hope you all could help out.
I have a this Wordpress site set-up and working correct. It has a SSL certificate so the URL is https://www.example.com.
Now if I add a link to one of my pages like this http://www.example_2.com it automatically changes the link to the https:// protocol. Which I find really strange because the link is literally <a href="http://www.example_2.com">.
Does anyone know why the link becomes https:// instead of the normal http:// protocol? Because my link is now giving an error when I click on the link and get send to the linked site.
I have googled this issue but it only give me results for how to configure your site for SSL (https://) and not for the issue I'm having...
Thanks in advance.
Your site probably is configured to immediately 302-redirect http requests to https.
What happens if you hit that site directly from your browser at http://www.example_2.com/ ? does it also bounce to https?
There is some chance your example_2.com site has enabled strict transport security. Read this. https://www.owasp.org/index.php/HTTP_Strict_Transport_Security_Cheat_Sheet
A lot of people are using links of the form
href="//www.example_2.com"
instead of
href="http://www.example_2.com"
these days to avoid this sort of confusion, and avoid mixed-content complaints. You might want to consider that. It's especially useful when you pull stuff from content delivery networks.
I've successfully added SSL on my WordPress website and it's every URL is working well with https URL but there seems all images is missing. In dashboard, all images URL is converted to https URL but in front-end they are not showing any URL it just seems like
Please anyone could help me to solve this issue?
This is likely because the URLs to the images are now http, and may be being blocked by browser security settings. There's a handy plugin I often use to help sort out issues like this called Really Simple SSL:
https://wordpress.org/plugins/really-simple-ssl/
This plugin manages the URLs to include the correct protocol, etc. You may need to change any hard-coded URLs in your theme that do not use https however.