{"id":768,"date":"2020-06-11T11:34:17","date_gmt":"2020-06-11T18:34:17","guid":{"rendered":"https:\/\/SUMMALAI.COM\/?p=768"},"modified":"2020-06-11T11:34:17","modified_gmt":"2020-06-11T18:34:17","slug":"2-solutions-for-still-showing-not-secure-via-https-with-ssl","status":"publish","type":"post","link":"https:\/\/SUMMALAI.COM\/?p=768","title":{"rendered":"2 Solutions for still showing &#8220;not secure&#8221; via HTTPS (with SSL)"},"content":{"rendered":"\n<p><strong>Overview<\/strong><\/p>\n\n\n\n<p>A common issue after adding an SSL certificate is that your browser still shows your site as insecure. This most often happens because there are links on your page that still point to HTTP instead of HTTPS. For example, look at the following code to link an image.<\/p>\n\n\n\n<p><em>&lt;img src=&#8221;<strong>http<\/strong>:\/\/www.example.com\/images\/pic_mountain.jpg&#8221; alt=&#8221;Mountain View&#8221;><\/em><\/p>\n\n\n\n<p>Notice how the URL is directly linked with &#8216;http&#8217; at the beginning. When visiting the site in Firefox, the following is displayed:<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img fetchpriority=\"high\" decoding=\"async\" width=\"419\" height=\"380\" src=\"https:\/\/SUMMALAI.COM\/wp-content\/uploads\/2020\/06\/33.png\" alt=\"\" class=\"wp-image-769\" srcset=\"https:\/\/SUMMALAI.COM\/wp-content\/uploads\/2020\/06\/33.png 419w, https:\/\/SUMMALAI.COM\/wp-content\/uploads\/2020\/06\/33-300x272.png 300w\" sizes=\"(max-width: 419px) 100vw, 419px\" \/><\/figure>\n\n\n\n<p>You can see the padlock icon in the top left of the browser shows a warning icon instead.<\/p>\n\n\n\n<p><strong>Cause of this error<\/strong><\/p>\n\n\n\n<p>If you click on the warning icon the text explains that there are &#8216;unencrypted elements&#8217; on the page you&#8217;re viewing.<\/p>\n\n\n\n<p>From the example above, this is happening because the image was linked using &#8216;HTTP&#8217; and not &#8216;HTTPS&#8217;. Another way to confirm what on your site is linked insecurely is to use the following site:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><a href=\"https:\/\/www.whynopadlock.com\/\">whynopadlock.com<\/a><\/li><\/ul>\n\n\n\n<p><strong>Fixing unencrypted links<\/strong><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Solution 1<\/h2>\n\n\n\n<p><strong>Use absolute links<\/strong><\/p>\n\n\n\n<p>Absolute links are the full url location to your file. This includes the domain name. For example:<\/p>\n\n\n\n<p><em>&lt;img src=&#8221;<strong>https:<\/strong>\/\/www.example.com\/images\/pic_mountain.jpg&#8221; alt=&#8221;Mountain View&#8221;><\/em><\/p>\n\n\n\n<p>Just make sure you&#8217;re using HTTPS when linking this way.<\/p>\n\n\n\n<p><strong>Use relative links<\/strong><\/p>\n\n\n\n<p>Relative links do not include the domain name. These links point to a local file instead. For example:<\/p>\n\n\n\n<p><em>&lt;img src=&#8221;images\/pic_mountain.jpg&#8221; alt=&#8221;Mountain View&#8221;><\/em><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Solution 2  &#8211; Recommended<\/h2>\n\n\n\n<p><strong>Resolving the warning by adding code to your .htaccess file<\/strong><\/p>\n\n\n\n<p>Instead of manually updating links in your code, you could add the following lines to your site&#8217;s .htaccess file.<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Creating and editing a file via FTP<\/li><li>.htaccess overview<\/li><\/ul>\n\n\n\n<p><em>Header always set Content-Security-Policy &#8220;upgrade-insecure-requests;&#8221;<\/em><\/p>\n\n\n\n<p>These lines force the browser to automatically update any insecure links to secure links. Once added, the warning should immediately disappear. <\/p>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Overview A common issue after adding an SSL certificate is that your browser still shows your site as insecure. This most often happens because there are links on your page that still point to HTTP instead of HTTPS. For example, look at the following code to link an image. &lt;img src=&#8221;http:\/\/www.example.com\/images\/pic_mountain.jpg&#8221; alt=&#8221;Mountain View&#8221;> Notice how <a class=\"read-more\" href=\"https:\/\/SUMMALAI.COM\/?p=768\">Read More<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_bbp_topic_count":0,"_bbp_reply_count":0,"_bbp_total_topic_count":0,"_bbp_total_reply_count":0,"_bbp_voice_count":0,"_bbp_anonymous_reply_count":0,"_bbp_topic_count_hidden":0,"_bbp_reply_count_hidden":0,"_bbp_forum_subforum_count":0,"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[104,5],"tags":[],"class_list":["post-768","post","type-post","status-publish","format-standard","hentry","category-apache","category-linux"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/768","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=768"}],"version-history":[{"count":0,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/768\/revisions"}],"wp:attachment":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=768"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=768"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=768"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}