Title: Unwanted Security: why https:// on default theme headers?  – modified Twenty Ten
Last modified: August 19, 2016

---

# Unwanted Security: why https:// on default theme headers? – modified Twenty Ten

 *  [tirussell](https://wordpress.org/support/users/tirussell/)
 * (@tirussell)
 * [15 years, 10 months ago](https://wordpress.org/support/topic/default-headers-have-https-modified-twenty-ten/)
 * My default custom header image’s URL contains https:// when output by `header_image()`–
   but I don’t want that to happen.
 * I have modified Twenty Ten’s functions.php as follows:
 *     ```
       register_default_headers( array(
          'placeholder' => array(
              'url' => '%s/images/headers/main.jpg',
              'thumbnail_url' => '%s/images/headers/main-thumbnail.jpg',
               /* translators: header image description */
       	'description' => __( 'Placeholder Only', 'mytheme' )
          )
       ) );
       ```
   
 * So it seem the `%s` path is being SSL’d? I have my admin area secured using FORCE_SSL_ADMIN…
   but how would that cause this?

The topic ‘Unwanted Security: why https:// on default theme headers? – modified 
Twenty Ten’ is closed to new replies.

## Tags

 * [default-header](https://wordpress.org/support/topic-tag/default-header/)
 * [header](https://wordpress.org/support/topic-tag/header/)
 * [HTTPS](https://wordpress.org/support/topic-tag/https/)
 * [SSL](https://wordpress.org/support/topic-tag/ssl/)

 * 0 replies
 * 1 participant
 * Last reply from: [tirussell](https://wordpress.org/support/users/tirussell/)
 * Last activity: [15 years, 10 months ago](https://wordpress.org/support/topic/default-headers-have-https-modified-twenty-ten/)
 * Status: not resolved

## Topics

### Topics with no replies

### Non-support topics

### Resolved topics

### Unresolved topics

### All topics