Help making website secure https

5 replies · opened May 15, 2017

PpetewinterMay 15, 2017

Hi

My website https://www.cmyuk.com is based on your Canvas template. I am currently trying to make the website secure (https), but I am getting a number of Mixed content errors. Via the chrome console I being told that I am trying to request an insure image, but I’m struggling to find the issue. Can you please help me find the issues on the pages below…

  1. https://www.cmyuk.com/player/

This page uses your portfolio template. Do you know of an non secure calls within your code that would be causing my issue as I can’t find it?

  1. https://www.cmyuk.com/about/

Via the console I can see the twitter feed to requesting an non secure image, but I can’t see how to fix this. Can you help?

  1. https://www.cmyuk.com/materials/binder/

I assume there is something related with the form that is non secure. Any idea’s?

Any help would be much appreciated.

Regards

Pete

SSemicolon WebSTAFFMay 15, 2017

Hello,

We have gone through your Website and the Canvas CSS/JS does not have any http:// reference that would cause the Mixed Content Issue. However, we did find an http:// reference in the js/picturefill.min.js and js/svg-injector.min.js Files. You can simply change them to https:// .

This should fix the issue. Hope this Helps!

Let us know if we can help you with anything else or if you find any further issues.

PpetewinterMay 16, 2017

Thanks for the reply. I have now fixed the issue on the portfolio page. It wasn't with the scripts you suggested.

However on the twitter feed your script requests an non secure image for the avatar in the plugins.js file. How do I change this code to get the image as https ?


function sm_format_twitter(twitters) {
  var statusHTML = [];
  for (var i=0; i]*[^.,;'">\:\s\\)\]\!])/g, function(url) {
	  return '['+url+']('+url+')';
	}).replace(/\B@([_a-z0-9]+)/ig, function(reply) {
	  return  reply.charAt(0)+'['+reply.substring(1)+'](http://twitter.com/'+reply.substring(1)+')';
	});
	statusHTML.push('
- [
![attachment]('+username_avatar+')
](http://twitter.com/'+username+')'+status+'['+relative_time(twitters[i].created_at)+'](http://twitter.com/'+username+'/statuses/'+twitters[i].id_str+')');
  }
  return statusHTML.join('');
}
PpetewinterMay 22, 2017

Any update please?

SSemicolon WebSTAFFMay 23, 2017

Hello,

Thanks for your Patience!

Please find the following code in the js/plugins.js File:

twitters[i].user.profile_image_url

and replace it with:

twitters[i].user.profile_image_url_https

This should definitely fix the issue. Hope this Helps!

Let us know if we can help you with anything else or if you find any further issues.

PpetewinterMay 25, 2017

It does resolve the issue. Many thanks

Have the same question, or something new?

Sign in to the Canvas dashboard to reply or open your own topic. Canvas owners get direct help from the SemiColonWeb team.

Reply on the dashboard