Hi - my website is coming up as ‘not secure’ despite Full SSL being active. When I click on the ‘not secure’ button on the browser it says that the SSL certificate is valid. On Cloudflare, I also have HTTPS force switched on in the settings.
I don’t understand why the site is listed as not secure - can someone please help me figure it out.
The website is: https://www.therunnersphysio.com/
You have mixed content issues.
Mixed content errors mean that your website is being loaded over HTTPS but some of the resources are being loaded over HTTP. To fix this you will need to edit your source code and change all resources to load over a relative path, or directly over HTTPS.
For example, if you load your images with a full URL:
<img src="http://example.com/image.jpg" />
You would want to change this to:
<img src="//example.com/image.jpg" />
By removing the http:, the browser will use whichever protocol the visitor is already using. An alternative option would be to enable the Automatic HTTPS Rewrites feature that can potentially fix these errors for you automatically. Do be aware that resources loaded by JavaScript or CSS will not be automatically rewritten and mixed content warnings will still appear.
See this Community Tip for further details
This topic was automatically closed after 30 days. New replies are no longer allowed.