-
Posts
-
Hi have just added SSL to my hosting account and am getting the dreaded mixed content error visiting whynopadlock.com I get cert is valid but images in page are not being delivered via https…
Looking at other posts on this sight it appears an export using WP Migrate DB and import should sort this out without a problem only thing is currently is I go to edit via cornerstone from a forced ssl connection to wp-admin the session switches to none ssl and then logs me out when I return to Dashboard..
Any Ideas? and will the wp migrate db routine sort this out also????
Many Thanks
Alan
Hi Alan,
Thanks for writing in! Would you mind providing us with login credentials so we can take a closer look? To do this, you can make a post with the following info:
– Link to your site
– WordPress Admin username / password
– FTP credentialsDon’t forget to select Set as private reply. This ensures your information is only visible to our staff.
Cheers!
Hi there,
I have detached and re-attached some of your background images & images that are not loaded through https. Please purge all your cache before testing your site again and now your issues should be resolved.
Let us know how it goes.
Thanks!Hi there,
I don’t expect you to have gone through whole site obviously but I still have issues see comment re developers below.
When first checked I was still getting mixed content. On my home screen I had mobile order issue so had mobile and desktop panel and the mobile panel (only visible on mobiles yet still still flagged for http/https regardless) still had an insecure image path once this was tracked down and fixed home page loads clean HTTPS.
I will now have to go through whole site on all images and fix.
A suggestion for a proper solution and I am not sure how to get this to developers for consideration would be to strip the protocol from the image path before insert to database within Cornerstone
i.e. change http://<domain>/wp-content/uploads/2016/03/Icon_EmailCalendars_55x40.png to //<domain>/wp-content/uploads/2016/03/Icon_EmailCalendars_55x40.png
Customiser already does this….
I know I can use a plugin to do this on the fly but I cannot see a point in adding complication of adding another layer of complexity with another plugin when a fix to cornerstone would do it after all Cornerstone is now a standalone product and hence could effect a lot of Customers..
Hi there,
Thanks for writing back!
Cornerstone doesn’t input either http or https for images/urls. For images which you can find in includes/shortcodes/image.php it uses
wp_get_attachment_image_srcrather than using either http or https. Try placing that .htaccess code below the</ifModule>Thanks!
Hi there!
Thanks for writing back, just tried logging in again with the FTP to check this for you, but get a login authentication error, (screenshot attached), can you double check the provided details please?
Thank you!
Hi there,
Another staff here, I checked your site and padlock is green and there is no more issue related to mixed content. I also checked it at https://www.whynopadlock.com/ and nothing found.
I checked on firefox and there is no redirect issue, perhaps it’s already fixed?
Thanks!
It has been fixed because I manually went through and re-attached all the pictures under https but it doesn’t explain why the three lines of suggested code added to .htaccess breaks the site.
Also does not explain why if site not forced to https site wide from within General but I manually logging in to wp-admin under HTTPS accessing cornerstone launches in none HTTPS and on exit forces relogin to wp-admin (see first post)
Hi there,
I’ve tried logging in again with the FTP details, but get:
Connection timed out or server hung up. The server you are connecting to may be configured to limit the number of connections you are allowed to make.Can you check you allow connections from IP’s other than your own, some hosts block connections based on IP ranges or all but the hosting accounts owners IP address.
Regarding the entering in https and exiting in HTTP, I’ll bring that up at today’s development meeting.
For the .htaccess, try this:
# BEGIN WordPress <IfModule mod_rewrite.c> RewriteEngine On RewriteCond %{HTTP_HOST} !^www\.365-sussex.com\.com [NC,OR] RewriteCond %{HTTP:X-Requested-Proto} !https RewriteRule ^(.*) https://365-sussex.com/\ [L,R] RewriteBase / RewriteRule ^index\.php$ – [L] RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule . /index.php [L] </IfModule> # END WordPressThanks!
- <script> jQuery(function($){ $("#no-reply-878420 .bbp-template-notice, .bbp-no-topic .bbp-template-notice").removeClass('bbp-template-notice'); }); </script>
