My website is not secure yet?

Hello, I have the security problem
cert. is active but still site is not secure
SSL/TLS encryption mode is Flexible, but when I change it to Full / Full(strict) the site doesn’t work.
page rule is on and Always use HTTPS is on
can please somebody help me urgently
thanx in advance
Website - eyetoall.com

Hi @amarjeetsura,

Using flexible is definitely a security problem, please see Why flexible SSL mode is not the best choice!

As for your issue, it looks like mixed content to me.

Mixed content errors mean that your website is being loaded over HTTPS but some of the resources are being loaded over HTTP. To fix this you will need to edit your source code and change all resources to load over a relative path, or directly over HTTPS.

For example, if you load your images with a full URL:

<img src="http://example.com/image.jpg" />

You would want to change this to:

<img src="//example.com/image.jpg" />

By removing the http:, the browser will use whichever protocol the visitor is already using. An alternative option would be to enable the Automatic HTTPS Rewrites feature that can potentially fix these errors for you automatically. Do be aware that resources loaded by JavaScript or CSS will not be automatically rewritten and mixed content warnings will still appear.

See this Community Tip for further details

1 Like

Hi, my question is that i have configured SSL to my website eyetoall.com but still my website in not yet secure and its opening in HTTP only?

This topic was automatically closed after 30 days. New replies are no longer allowed.