Forcing HTTPS
Permalink
Hello,
We purchased an SSL certificate for our website and it appears to be working on some of our content, but we are still getting a ‘mixed content’ alert. We know that the credit card processing our website is secure because it is accepting cards without a security notice. The last time this wasn’t secure, we got a security notice when we tested the credit card processing page.
I spoke with the company that hosts our website and they said that Concrete5 needs to force the HTTPS for the mixed content. Can someone help me with this? Does anyone know anything about this?
Thanks!!!!!!
Stephanie
We purchased an SSL certificate for our website and it appears to be working on some of our content, but we are still getting a ‘mixed content’ alert. We know that the credit card processing our website is secure because it is accepting cards without a security notice. The last time this wasn’t secure, we got a security notice when we tested the credit card processing page.
I spoke with the company that hosts our website and they said that Concrete5 needs to force the HTTPS for the mixed content. Can someone help me with this? Does anyone know anything about this?
Thanks!!!!!!
Stephanie
Thank you so much for your help!
Unfortunately, this is something that we have already tried. Do you know how to eliminate the 'mixed content' that triggers unsecured pages?
Thanks!
Stephanie
Unfortunately, this is something that we have already tried. Do you know how to eliminate the 'mixed content' that triggers unsecured pages?
Thanks!
Stephanie
what is your domain address. referencing any files not served from a secure server will trigger a security warning.
Our webpage is odexcellence.com. The mixed content is on the page where people can purchase memberships, but we have confirmed that the credit card processing is secure.
I just registered and almost purchased a membership and it was all green and secure for me.
Yeah, it appears to be working for the credit card processing, and that great. However, some of the mixed content is still for some reason not secure. At the very least, we at least have secure processing, but I'm wondering if we can figure out this mixed content issue.
it would be the easiest to make the server force HTTPS by adding the right code to the .htacess-file:
The code snippet is pulled from here, where you find more information:
http://www.inmotionhosting.com/support/website/ssl/how-to-force-htt...
Hope this helps :-)