Tagged: Cart not secure
June 4, 2020 at 7:48 am #14158KevinJ1410Member
currently, I am trying to set up my first shop with your great solution.
I run into an issue that my cart is not secured from the moment on, I add a product to it. When looking at the source code, a few HTTP-address seems to pop up, which are related to the cart. (Some image PNG files.
You can have a look at it right here [kevinjuehlke.de/checkout]
Could these HTTP-address be the case my browser tells me my checkout page turns insecure at the given moment I add a product to it?
I ran into this problem once before with another problem and thought I’d solved it by enforcing HTTPS-addresses side wide.
I hope you can help me to solve this issue!
Best regards and thanks in advance,
KevinJune 6, 2020 at 12:57 am #80666adminKeymaster
Our cart works with HTTPS so this normally shouldn’t be an issue on the plugin’s side. If you were using “http” before and then later switched to “https” then somewhere in the configuration of your site, it sill has “http” URL set which is what is contributing to this.
If you go to your General settings of WordPress, do you see “HTTPS” url specified in the following field?
WordPress Address (URL)
Site Address (URL)
Then go to the eStore’s settins menu and check all the fields that has a URL value. Are all those using https URL?
Are you using a plugin like the following to force everything to go to HTTPS?June 6, 2020 at 12:40 pm #80667KevinJ1410Member
Thanks for your quick answer and many suggestions!
Unfortunately, none of your fixes could help me out so far – got the HTTPS-Prefix set everywhere rightly: in the settings, as well as in eStore and all my products.
My console keeps saying that it gives this mixed content warning because the PayPal checkout .png within the cart form is rendered from an HTTP path. Is there a way to fix the images path manually?
I have tried out your suggested plugin, but unfortunately I just get the ‘too many redirects error’ – even if I limit the plugins use solely to the checkout page.June 9, 2020 at 12:44 am #80668adminKeymaster
We don’t hardcode any image URLs. Those image URLs are auto-calculated so it should automatically use the “HTTPS” path (given all the HTTPS is setup correctly).
Did you by any chance add any custom CSS where the URL was hardcoded? I will log into your site and take a look to see what I can fine. I have sent you an email for it.
- You must be logged in to reply to this topic.