New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
You would need EV SSL certs for a green bar, and LetsEncrypt do not issue EV SSL certificates.
The issue is most likely that some of the assets on your site are being served over HTTP - I've not used XenForo before but I've seen that happen on other sites - I've seen a few XenForo sites proxying all their assets over a HTTPS connection in order to do it, but I'm not entirely sure how easy that is to set up.
Cache all external content / proxy, or disallow embedding non-SSL content, or turn the content into a link instead of embedding.
Users posting http images will do that to you. There's some proxy stuff available somewhere that you could use.
thank you
sow how to proxy external images with nginx without downloading and storing them locally ? I.e. passing image's URI to the proxy server
This website needs your answer too
Just print one out and stick it over the place on the screen the padlock usually appears, then all your sites are secure!
-or-
Just press Alt+F4 in chrome/firefox to get a list of all the links on your site causing the problem.
I find it a bit ironic how your safety padlock is being served over a HTTP connection.
There's no easy answer to that.
I'm using https://github.com/andrieslouw/imagesweserv/issues on a separate VPS. A little bit modified so that it also supports gifs.
I also modified some xenforo code to handle images through the proxy.
Oh, there's also an official xenforo function for that, where you can also use a proxy in front to hide your backend ip, if you are after that.
https://xenforo.com/community/threads/forcing-ssl-on-all-images-on-site.81694/
The function you have to use to use a proxy in front of the images: https://xenforo.com/community/threads/untrusted-http-client.112944/
All that needs to be done is in the admin CP. simply replace the forum location to the HTTPS location, and everything should work
In cloudflare click on "crypto" menu, at the bottom of the page you'll find "Automatic HTTPS Rewrites", enable it and no more mixer content.
This can also be helpful:
https://www.whynopadlock.com
Put your URL in and it'll identify which items are outside SSL that you need to fix.
You must enable image proxy and change all you template references to https.
This guide will help you!
https//xenforo.com/community/resources/how-to-implement-ssl-to-secure-http-traffic-https.5425/
You can also get the solution for SSL working properly without mixed content warning https://www.clickssl.net/blog/how-to-stop-secure-and-nonsecure-items-warning-on-your-site
In XenForo you need to edit a configure file to enable SSL and have it use https:// on all its URLs, or at least that was my experience
i foud this plugin ImageProxy Host 0.3
https://xenforo.com/community/resources/imageproxy-host.5030/
All warnings are disappeared and all pages are shown as secure except the mainpage
How can i fix that?
thanks
Hi
so is there a way to proxy external http images through SSL maybe with nginx and /or CF without downloading and storing them locally ?