Jump to content

HTTP and HTTPS mixed content errors in Internet Explorer


Recommended Posts

hello

i have made a custom theme and have recently installed a SSL certificate (correctely and has been checked) to use SSL in prestashop. however when i go to 'my account' internet explorer pops this message up:

To help protect your security, Internet Explorer has blocked this website from displaying content with security certificate errors. Click here for options


you can then click on the bar at the top and it stops moaning, then when i actually login i get the following error about mixed https and http content:

Do you want to view only the webpage content that was delivered securely?

This webpage contains content that will not be delivered using a secure HTTPS connection, which could comprimise the security of the entire webpage.


These errors are down to some content (i think) having a HTTP prefix in the url instead of HTTPS.

I want a utility, for IE or another browser that will actually point out to me what is being blocked so i can fix it. I have tried doing it manually but i am not that good yet. Does internet explorer have logs for this sort of thing etc...

The website if needed is

www.captain6antiquejewellery.com

any help would be good

thanks

shoulders
Link to comment
Share on other sites

looks as if the search module is breaking the SSL cert.
When I trouble shoot SSL errors I normally uninstall modules 1 by 1 until I find which one is causing the problem.

I also noticed that when you are in the cart on the page order.php the customer is still on http.
Have a look at your order.php file and at the top there should be:
/* SSL Management */
$useSSL = true;

About your mixed message when logged in..do you have alerts on? If yes then chances are this will be breaking the SSL also.

Link to comment
Share on other sites

  • 2 years later...

Hi, Did you manage to get this problem resolved?

 

Because I am a new PrestaShop user and I am having the same problem. I've just had an SSL certificate enabled, and all is working, with the exception that IE8 keeps popping up the message "do you want to view only the webpage content that was delivered securely?"

 

Whilst this is annoying, I could probably live with it, but there is no way that I would expect my customers to accept this.

 

I have installed the "HttpWatch" sniffer, and it reports that two urls are causing the problem...

http://fonts.googleapis.com/css?family=Chivo and

http://themes.googleusercontent.com/static/fonts/chivo/v4/kGTnr977hmchOE1JfUzNKQ.eot

 

Everything else on the order page is using https

 

I have cleared the cache for these two items, but they keep coming back. Does anyone have an idea about how I could stop this problem from occurring? (Both urls mention fonts. Do they seem to be related to the font used by the theme of my store?)

 

Thanks in advance

Andrew

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...