Jump to content

Archived

This topic is now archived and is closed to further replies.

vashichino7

Just noticed SSL breaks on homepage

Recommended Posts

When visiting my homepage - https://www.savingshub.com - SSL asks that there are unsecure items on the page. Currently I know that the RSS feed and Blogger buttons on the footer are on an http - a href because the https does not work with those links. When those are taken off, the site is still broken when visited secure. I believe it is the javascript call for the banner which I have set up. Is there a way the secure the javascript call?

 

Also, RSS feeds and Blogger are both unsecure links, anyone know how to secure a link or how I can have those still on the site however make the page secure?

 

 

Thanks guys.

Share this post


Link to post
Share on other sites

@@vashichino7

 

By default the index.php is NOT a secure page (no ssl enabled). The website should be accessed as http://www.savingshub.com

 

 

 

 

Chris


:|: Was this post helpful ? Click the LIKE THIS button :|:

 

See my Profile to learn more about add ons, templates, support plans and custom coding (click here)

Share this post


Link to post
Share on other sites

Thank you Chris, yes I did a little research and I believe that I had a misunderstanding. All is good, thank you for the reply! Found the Newsletter image btw, template bottom :x lol! @@DunWeb

Share this post


Link to post
Share on other sites

There exists a flaw in the default osC code that takes you to the index in secure mode after checkout if you have SSL enabled.

 

I know it exists in 2.3.1 and am fairly confident the 2.2 RC versions as well.

 

So making the index "secure" is probably worth the effort.

 

Either that or I could link you to a post with a code fix that stops it.


If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you.

 

"Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice."

- Me -

 

"Headers already sent" - The definitive help

 

"Cannot redeclare ..." - How to find/fix it

 

SSL Implementation Help

 

Like this post? "Like" it again over there >

Share this post


Link to post
Share on other sites

Hi, let me ask, if you have SSL, why not make it the default? Why use NONSSL at all?

 

Sara

It doesn't serve any purpose to have ssl always enabled but it can cause problems. Many times there are links on non-ssl pages to external sites that will cause an ssl failure. And ssl pages increases the load on the server. But, more importantly, if you have ssl enabled for all pages and don't have redirection code for non-ssl pages (which there isn't any by default), then you will run into a duplicate content situation with google and that could affect your rankings. All of the problems having ssl always enabled can be worked around but after doing that, nothing would have been gained.

Share this post


Link to post
Share on other sites

×