webaware
Forum Replies Created
-
Forum: Plugins
In reply to: [Gravity Forms Eway] Credit card number doesnt save on submitG’day entegy,
It still sounds like your API key / password for the sandbox aren’t correct. Please recheck all of your settings:
* live API key / password / CSE key in the Live settings fields
* sandbox API key / password / CSE key in the Sandbox settings fields
* Use Sandbox (testing) tickedIf all are correct, then please contact eWAY to verify that your account is correctly configured at their end.
cheers,
RossForum: Plugins
In reply to: [SSL Insecure Content Fixer] Advice NeededG’day Steve,
Some of the images loaded on that page come from other websites that don’t have valid TLS certificates. Those alone are generating a bunch of warnings. The only solutions for those are to fix the certs on those sites, or remove the images from your site.
You also have a copyright seal loaded over http. If you know where that’s set, you should be able to edit it and change the URL to https. It looks like it’s in a text widget. Changing the fixer mode to Content would fix that one, but you might as well fix it at the source by editing the widget.
You can see what is causing your insecure content warnings in your browser console, or in an online test tool. Here’s a summary:
https://ssl.webaware.net.au/testing/
cheers,
Ross- This reply was modified 9 years, 5 months ago by webaware.
Forum: Plugins
In reply to: [SSL Insecure Content Fixer] 403 Forbidden error with woocommerce downloadsG’day tami73,
I can’t reproduce that with a basic WooCommerce site. Can you tell me more about your site and products please?
Does your website mix HTTP and HTTPS pages?
What download method do you have configured? (Force Downloads, X-Accel-Redirect/X-Sendfile, Redirect only)
Do your downloadable products download from the standard WooCommerce downloads folder inside wp-uploads, or do you have an add-on such as Amazon S3 downloads or DropBox?
I can’t get any difference in my test environment between with or without the fixer. I do see a difference when the product download URL has begins with http: or https: — the former opens PDF products in a new tab, whereas the latter downloads the products. I’d suggest that all your products should use https: URLs for their downloadable files.
cheers,
RossForum: Plugins
In reply to: [SSL Insecure Content Fixer] Still getting mixed content warningsHave you tried the setting
HTTP_X_FORWARDED_PROTO? I’d imagine that’s what CloudFront will be sending. If it isn’t, check your CloudFront settings.You might need to ask GoDaddy for help on this. They might have settings that prevent access to the test script in the plugin (hence your
errorresponse), and might also be messing with the headers coming from CloudFront.cheers,
RossForum: Plugins
In reply to: [SSL Insecure Content Fixer] Still getting mixed content warningsG’day vonodyssey,
When you run the SSL Test tool, what does it recommend for HTTPS Detection?
Tools > SSL Tests
NB: just because you have CloudFront, that doesn’t mean you will be getting the
HTTP_CLOUDFRONT_FORWARDED_PROTOheader. You need to use the setting recommended by the tool or on the settings page. Most likely, it will beHTTP_X_FORWARDED_PROTO.CloudFront only forwards the
CloudFront-Forwarded-Protoheader when you configure it to do so. You would only do that if your site mixed HTTP and HTTPS pages, which you should not be doing on a new website these days. There is no advantage to mixing HTTP and HTTPS any more, unless you have advertisements coming from networks that don’t support HTTPS.cheers,
RossForum: Plugins
In reply to: [SSL Insecure Content Fixer] no padlockG’day,
Your website is loading some images over HTTP still. Read about cleaning up content — the section about Images, iframes, embeds.
https://ssl.webaware.net.au/testing/cleaning-up-content/
A short-cut is to set your fixer level to something higher, like Content or Capture. But I recommend cleaning up your content if you can.
cheers,
RossForum: Plugins
In reply to: [SSL Insecure Content Fixer] Advice NeededG’day Steven,
It can be just waiting for Cloudflare to kick in with a valid certificate. However, I’ve heard a few times that the Cloudflare plugin messes things up, so try deactivating that and setting HTTPS detection to
HTTP_X_FORWARDED_PROTO.https://ssl.webaware.net.au/https-detection/
If that’s not it, please post a link to an page with errors. I can’t diagnose anything very well without a link.
cheers,
RossForum: Plugins
In reply to: [SSL Insecure Content Fixer] After page loads problem with my siteG’day winner,
Your website favicon is being loaded over http. Log in to your website admin with https, then edit your theme settings to set the favicon again.
cheers,
RossForum: Fixing WordPress
In reply to: Looking for a order form pluginG’day Ryan,
There’s a few out there. Try these searches:
http://duckduckgo.com/?q=order+form+woocommerce&ia=web
http://duckduckgo.com/?q=woocommerce+one+page+checkout&ia=webcheers,
RossForum: Plugins
In reply to: [SSL Insecure Content Fixer] Here from the SSL forum – SSL Not ShowingThe admin bar has a search form, I think. But maybe it was just a caching problem on your site. All good 🙂
cheers,
RossForum: Plugins
In reply to: [SSL Insecure Content Fixer] Here from the SSL forum – SSL Not ShowingCongratulations!
Can you tell me please, what forms do you see in the admin bar, and do you get insecure content when you’re logged in as admin and view the front end?
cheers,
RossForum: Plugins
In reply to: [SSL Insecure Content Fixer] Fonts stopped loading after 2.2.3G’day spac3rat,
OK. Do you have a link that demonstrates this please? I can’t diagnose anything without seeing the problem.
cheers,
RossForum: Plugins
In reply to: [SSL Insecure Content Fixer] no httpsI just took a look, and it all looks good to me in Chrome and Firefox — did you find and fix your problem?
cheers,
RossForum: Fixing WordPress
In reply to: Clean Site, but No SSLG’day steveraven,
If you have Cloudflare’s Flexible SSL, then your site is probably not detecting when it’s being loaded on HTTPS. See here, and then change the HTTPS detection setting on SSL Insecure Content Fixer:
https://ssl.webaware.net.au/https-detection/
Also, you probably don’t need the Cloudflare Flexible SSL plugin if you’re using SSL Insecure Content Fixer.
If you’re still having problems, consider opening a support ticket with me:
https://wordpress.org/support/plugin/ssl-insecure-content-fixer
cheers,
Ross@tami73 this is resolved by version 2.2.3; please update.
cheers,
Ross