It’s showing:
List of detected items with mixed content
Because really simple ssl includes a mixed content fixer you do not have to worry about this list, but if you want to disable the mixed content fixer, you can find a list of possible issues here.
The scan searched for the following insecure links:
– http://www.furniturefarm.co.uk
– http://furniturefarm.co.uk
– src=’http://
– src=”http://
– src=http://
My favourite tool in the work shop is this one…True love indeed | edit
Special requests are the thing today | edit
After day in the cow shed working sort of hard | edit
Original Fading Grey Furniture Farm Sheepskin Bull Footstool | edit
Original Furniture Farm Punky Sheep Sheepskin Footstool | edit
Winter Has Arrived at the Online Furniture Farm Shop | edit
We have been busy and also busy having fun | edit
Original Peacock Blue Light Faced Sheepskin Covered Furniture Farm Bull Footstool | edit
Original Furniture Farm Natural Dappled Sheepskin Bull Footstool | edit
Original Icelandic Sheepskin Covered Furniture Farm Oak Bodied Highland Bull Footstool | edit
Option: widget_text
Option: dashboard_widget_options
Option: Galleryimagespath
Option: wpsc_upgrade_urls
Option: al2fb_redir_ref
Option: al2fb_redir_to
Option: theme_mods_weaver-ii-pro
Option: weaverii_pro
Option: product_list_url
Option: shopping_cart_url
Option: checkout_url
Option: transact_url
Option: user_account_url
Option: fcbk_bttn_plgn_options_array
Option: dbem_event_published_email_body
Option: dbem_event_resubmitted_email_body
Option: seedprod_maintenancemode_options
Option: cookiecontrol_settings
Option: weaverii_settings
Option: al2fb_last_request
Option: al2fb_last_texts
Option: stats_cache
Option: wpseo_social
Option: wc_product_slider_a3_card_skin_control_settings
Option: ossdl_off_cdn_url
But the Auto Replace Mixed content is ticked.
I’ve also tries using https://ww.wp.xz.cn/plugins/ssl-insecure-content-fixer/ in an attempt to fix what are obviously HTTP files that are being pubbled from somewhere, but whatever method I try there, it ends up the same, I’m going to end up bald here due to ripping my hair out, suggestions welcome…
Hi,
You have a stylesheet included that is not on https. You should change it to https. I will add this type of link to the mixed content fixer in the next release.
<link href=’http://fonts.googleapis.com/css?family=Lemon’ rel=’stylesheet’ type=’text/css’>
You also still have several http:// links to your own website in the source. This suggests the mixed content fixer is blocked by a theme or plugin. To fix it, deactivate plugins until it starts working, or fix the links manually by checking your theme settings, plugins and content for http:// links.
As for the wp-config warning, I’ve made a change to the detection mechanism, you can check if that helps by downloading the current development version. If that doesn’t help, could you email me the content of your wp-config.php, (you can remove passwords etc of course), so I can test with it.
To fix it, deactivate plugins until it starts working, or fix the links manually by checking your theme settings, plugins and content for http:// links.
I wouldn’t know how to start even finding which theme settings, plugins or content needed the links fixing manually, never mind how to fix them manually unless you mean editing all references to HTTP to HTTPS 🙁
This is a nightmare, I can’t be starting disabling plugins either, this is a busy time for the site and doing that will cause real problems, how do I identify what theme settings, plugins and content requires editing?
Where can I get a the current development version from too?
Hi,
Development version: http://plugins.svn.ww.wp.xz.cn/really-simple-ssl/trunk
But this is only the wpconfig warning, and does not really cause issues. It’s just a nag.
if you can’t try by disabling plugins, then you can either deactivate the ssl plugin and revert back to http until you have tested the issue on a separate install, or do it manually.
To give you some pointers:
Start with the mixed content list as you sent it to me. The first entries are posts/pages, which should be simple enough.
Then check your widget html
You have some gallery plugin, check that too.
One by one, check your plugin settings for urls, and change it to https.
It’s W3 Total Cache that is breaking the security that SSL Insecure Content Fixer fixed in it’s hardest Capture mode, but as soon as you enable W3 Total Cache page caching the padlock goes as it starts presenting non HTPPS files…
Will have to look for a caching plugin that will work with SSL and your plugin, with it not helping that my browser cache was holding it as broken too.
Many thanks for your input.
Holmey
Tried WP Super Cache, that breaks things too 🙁
I always use wp fastest cache, with good results.
