Mixed Content: The page at ‘https://yourdomain’ was loaded over HTTPS, but requested an insecure script ‘http://url’. This request has been blocked; the content must be served over HTTPS.

Mixed Content: The page at ‘https://yourdomain’ was loaded over HTTPS, but requested an insecure script ‘http://url’. This request has been blocked; the content must be served over HTTPS.

If you are getting the same error  means you are calling HTTP from HTTPS, to avoid the error you can use src=”//yoururl/yourscript.js” in your script tag and it will auto-detect. or you can give direct path of https like  src=”https://yoururl/yourscript.js”

 

 

What is Mixed Content?

if an HTTPS web page includes HTTP content , the HTTP portion can be read or modified by attackers, even though the main page is served over HTTPS. When an HTTPS page has HTTP content, we call it content “mixed content”.

In this case webpage, user is visiting is only partially encrypted beacuse of HTTPS and HTTP uses, some of the content is retrieved unencrypted over HTTP.

 

The Mixed Content Blocker blocks certain HTTP requests on HTTPS pages.

 

if you want to force to https urls, you can do it by writing htacess file on your root folder

RewriteEngine on

RewriteCond %{REQUEST_SCHEME} =http

RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]

 

Leave a Reply

Your email address will not be published. Required fields are marked *

2 + 8 =


Tech Contents © 2016
Inline
Inline