Hello,
I have enabled and installed SSL on the store. However, on the SSL page I now get mixed content errors. For example on the shopping cart, the images are not being rendered over ssl. The image path is fully qualified -
Mixed Content: The page at 'https://www.examplestore.com/cart' was loaded over HTTPS, but requested an insecure image 'http://www.examplestore.com/content/images/default-image.png'. This content should also be served over HTTPS.
Please let me know the best way to solve this problem.
Your help is appreciated.
Thank you.
Mixed Content Error
Team Member
- 547
- 6625
- 12/17/2015
- Armenia
Try the following:
1. Prescribe «Store URL» in the «Edit store details» page through HTTPS
2. Check the selected «SSL enabled» field on the «Edit store details» page
3. Check the selected «Force SSL for all site pages» field in the «Security settings» tab on the «General and miscellaneous settings» page
1. Prescribe «Store URL» in the «Edit store details» page through HTTPS
2. Check the selected «SSL enabled» field on the «Edit store details» page
3. Check the selected «Force SSL for all site pages» field in the «Security settings» tab on the «General and miscellaneous settings» page
- 1390
- 11685
- 8/10/2012
- United States
My guess is the same as Orion...
I think maybe in your /Views/Shared/Header.cshtml you have the non-secure URL hard-coded:
maybe like this:
...it should be like this in order to inherit the secure protocol:
I think maybe in your /Views/Shared/Header.cshtml you have the non-secure URL hard-coded:
maybe like this:
var logoPath = "http://www.yourdomain.com/Themes/" + currentThemeName + "/Content/images/logo.gif";
...it should be like this in order to inherit the secure protocol:
var logoPath = "~/Themes/" + currentThemeName + "/Content/images/logo.gif";
- 56
- 310
- 9/15/2014
- United States
It is pretty frustrating. I even deleted everything, installed a clean copy of NOP, and it still tries to load mixed content. All of the file references are relative.
Mixed Content: The page at 'https://www.fiasfreshmeals.com/' was loaded over HTTPS, but requested an insecure image 'http://www.fiasfreshmeals.com/content/images/thumbs/0000005_electronics_450.jpeg'. This content should also be served over HTTPS.
Where is the URL set? If I set SslEnabled in the store table, I get a redirect error.
Mixed Content: The page at 'https://www.fiasfreshmeals.com/' was loaded over HTTPS, but requested an insecure image 'http://www.fiasfreshmeals.com/content/images/thumbs/0000005_electronics_450.jpeg'. This content should also be served over HTTPS.
Where is the URL set? If I set SslEnabled in the store table, I get a redirect error.
- 1390
- 11685
- 8/10/2012
- United States
I don't know if this is your problem, but after we switched to "ForceSSLforallsitepages" we had some mixed content errors due to some hard-coded image references in our topic page's content, blog post content, and within the large description fields of some of our products that had to be fixed to be relative.