Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!


how to get green padlock
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

how to get green padlock

erasereraser Member

Hello all,

I run a small forum, and we use XenForo behind Cloudflare and let's encrypt for ssl.

How to get SSL working without mixed content warnings?

Thanks in advance

Comments

  • vmhausvmhaus Member, Top Host, Host Rep

    You would need EV SSL certs for a green bar, and LetsEncrypt do not issue EV SSL certificates.

  • The issue is most likely that some of the assets on your site are being served over HTTP - I've not used XenForo before but I've seen that happen on other sites - I've seen a few XenForo sites proxying all their assets over a HTTPS connection in order to do it, but I'm not entirely sure how easy that is to set up.

    Thanked by 3ucxo GamerTech24 Pwner
  • VirMachVirMach Member, Patron Provider
    edited May 2017

    Cache all external content / proxy, or disallow embedding non-SSL content, or turn the content into a link instead of embedding.

  • teamaccteamacc Member

    Users posting http images will do that to you. There's some proxy stuff available somewhere that you could use.

  • erasereraser Member

    thank you

    sow how to proxy external images with nginx without downloading and storing them locally ? I.e. passing image's URI to the proxy server

  • corbpiecorbpie Member

    This website needs your answer too

    Thanked by 1danninov
  • AnthonySmithAnthonySmith Member, Patron Provider
    edited May 2017

    Just print one out and stick it over the place on the screen the padlock usually appears, then all your sites are secure!

    -or-

    Just press Alt+F4 in chrome/firefox to get a list of all the links on your site causing the problem.

  • @Someone said:
    I don't need mine. You can have it! :)

    I find it a bit ironic how your safety padlock is being served over a HTTP connection.

  • tr1ckytr1cky Member

    @eraser said:
    thank you

    sow how to proxy external images with nginx without downloading and storing them locally ? I.e. passing image's URI to the proxy server

    There's no easy answer to that.

    I'm using https://github.com/andrieslouw/imagesweserv/issues on a separate VPS. A little bit modified so that it also supports gifs.

    I also modified some xenforo code to handle images through the proxy.

  • tr1ckytr1cky Member

    Oh, there's also an official xenforo function for that, where you can also use a proxy in front to hide your backend ip, if you are after that.

    https://xenforo.com/community/threads/forcing-ssl-on-all-images-on-site.81694/

    The function you have to use to use a proxy in front of the images: https://xenforo.com/community/threads/untrusted-http-client.112944/

    Thanked by 1Yura
  • @matthewkilpatrick said:
    The issue is most likely that some of the assets on your site are being served over HTTP - I've not used XenForo before but I've seen that happen on other sites - I've seen a few XenForo sites proxying all their assets over a HTTPS connection in order to do it, but I'm not entirely sure how easy that is to set up.

    All that needs to be done is in the admin CP. simply replace the forum location to the HTTPS location, and everything should work :)

  • In cloudflare click on "crypto" menu, at the bottom of the page you'll find "Automatic HTTPS Rewrites", enable it and no more mixer content.

  • raindog308raindog308 Administrator, Veteran

    This can also be helpful:

    https://www.whynopadlock.com

    Put your URL in and it'll identify which items are outside SSL that you need to fix.

    Thanked by 2angstrom deadbeef
  • nfnnfn Veteran

    @eraser said:
    Hello all,

    I run a small forum, and we use XenForo behind Cloudflare and let's encrypt for ssl.

    How to get SSL working without mixed content warnings?

    Thanks in advance:

    You must enable image proxy and change all you template references to https.

    This guide will help you!

    https//xenforo.com/community/resources/how-to-implement-ssl-to-secure-http-traffic-https.5425/

  • JamesKJamesK Member
    edited May 2017

    You can also get the solution for SSL working properly without mixed content warning https://www.clickssl.net/blog/how-to-stop-secure-and-nonsecure-items-warning-on-your-site

  • In XenForo you need to edit a configure file to enable SSL and have it use https:// on all its URLs, or at least that was my experience

  • erasereraser Member

    i foud this plugin ImageProxy Host 0.3

    https://xenforo.com/community/resources/imageproxy-host.5030/

    All warnings are disappeared and all pages are shown as secure except the mainpage

    How can i fix that?

    1. how to use CF as a Host for serving proxied images

    thanks

  • erasereraser Member

    Hi

    so is there a way to proxy external http images through SSL maybe with nginx and /or CF without downloading and storing them locally ?

Sign In or Register to comment.