Post by slk125 » Mon Mar 23, 2020 2:38 am

Recently bought an SSL package to finalize our store, but site remains insecure due to mixed content. After some research on this forum and using the suggested www.whynopadlock.com website, the issue seems to be with our theme extensions with some picture associations:

An image with an insecure url of "http://www.decorporter.com/image/catalog/AjaxLoader.gif" was loaded on line: 243 of https://www.decorporter.com/.

An image with an insecure url of "http://www.decorporter.com/image/catalo ... goword.jpg" was loaded on line: 1945 of https://www.decorporter.com/.

I've done a mass search of all the web files but the exact links above do not show. I think it is coded dynamically and I'm clueless as to where to go next. I'm not a web developer and would appreciate anyone that can give a hand to solving this issue.

I've also done a search on ajax on all my files, and found the following instance:

'module_ocajaxlogin_loader_img' => 'catalog/AjaxLoader.gif'

seems to be right and does not have any reference to http to it. I really don't know what to check next.

Thanks for all the help in advance.

Newbie

Posts

Joined
Thu Nov 02, 2017 10:52 am

Post by IP_CAM » Mon Mar 23, 2020 3:57 am

All config.php links need to look like this: ( with/without www, whatever you use ...)

Code: Select all

// HTTP
define('HTTP_SERVER', 'https://example.com/shop/');
define('HTTP_CATALOG', 'https://example.com/shop/');

// HTTPS
define('HTTPS_SERVER', 'https://example.com/shop/');
define('HTTPS_CATALOG', 'https://example.com/shop/');

Please don't send me OC Forum Personal Messages, just contact: jti@jacob.ch
---
OC 1.5.6.5 LIGHT Test Site: http://www.bigmax.ch/shop/
OC 1.5.6.5 V-PRO Test Site: http://www.jacob.ch/shop/
My Github OC Site: https://github.com/IP-CAM
2'450+ FREE OC Extensions from the World's largest Github OC Repository Archive Site.


User avatar
Legendary Member

Posts

Joined
Tue Mar 04, 2014 1:37 am
Location - Switzerland

Post by slk125 » Mon Mar 23, 2020 10:24 am

I believe I have all the config files setup properly, still have the same issues.

Code: Select all

// HTTP
define('HTTP_SERVER', 'http://www.decorporter.com/');

// HTTPS
define('HTTPS_SERVER', 'https://www.decorporter.com/');
Last edited by straightlight on Mon Mar 23, 2020 5:09 pm, edited 1 time in total.
Reason: Added code tags.

Newbie

Posts

Joined
Thu Nov 02, 2017 10:52 am

Post by slk125 » Mon Mar 23, 2020 1:37 pm

I've managed to fix one of the two errors, which was a hard coded picture file.

I'm still stuck with the ajaxloader.gif, which I have boiled down that it is something to do with how this gif is loaded. I think this is the code:

Code: Select all

<div id="ajax-loader">
    <img src="{{ loader_img }}" alt="" />
    
Can someone tell me if this code is wrong such that it is referenced as a http:// rather than https://
Last edited by straightlight on Mon Mar 23, 2020 5:10 pm, edited 1 time in total.
Reason: Please add the code tags!

Newbie

Posts

Joined
Thu Nov 02, 2017 10:52 am

Post by cedcommerceteam » Mon Mar 23, 2020 1:39 pm

slk125 wrote:
Mon Mar 23, 2020 2:38 am
Recently bought an SSL package to finalize our store, but site remains insecure due to mixed content. After some research on this forum and using the suggested www.whynopadlock.com website, the issue seems to be with our theme extensions with some picture associations:

An image with an insecure url of "http://www.decorporter.com/image/catalog/AjaxLoader.gif" was loaded on line: 243 of https://www.decorporter.com/.

An image with an insecure url of "http://www.decorporter.com/image/catalo ... goword.jpg" was loaded on line: 1945 of https://www.decorporter.com/.

I've done a mass search of all the web files but the exact links above do not show. I think it is coded dynamically and I'm clueless as to where to go next. I'm not a web developer and would appreciate anyone that can give a hand to solving this issue.

I've also done a search on ajax on all my files, and found the following instance:

'module_ocajaxlogin_loader_img' => 'catalog/AjaxLoader.gif'

seems to be right and does not have any reference to http to it. I really don't know what to check next.

Thanks for all the help in advance.
Hi,
Please make sure that you have installed ssl properly and also configured in opencart properly by using below link

http://docs.opencart.com/en-gb/administration/ssl/

if still some pages showing insecure URL means there is something wrong

with that image path definition and that need to be checked and fix page wise

Call us at : (+91) -8765210318 , Skype: live:carlmorgan.cedcommerce , Email: support@cedcommerce.com
CedCommerece : Officail Opencart Partners
CedCommerce Official : www.cedcommerce.com
Opencart Services : www.cedcommerce/opencart-services.com
Sell On various Marketplace Integration : Opencart-Extensions
Magenative Mobile App/IOS Development : magenative.com


User avatar
Active Member

Posts

Joined
Wed Aug 09, 2017 9:02 pm

Post by slk125 » Mon Mar 23, 2020 1:47 pm

Hi, thanks for your reply. SSL is indeed working and i have tested it.

I've narrowed down the issue to the ajax-loader, which somehow references the ajaxloader.gif using a http:// syntax. But I can't find this ajax-loader definition anywhere with an http:// code. Most of the instance of ajax-loader is simply like this:

Code: Select all

<div id="ajax-loader">
<img src="{{ loader_img }}" alt="" />
Last edited by straightlight on Mon Mar 23, 2020 5:11 pm, edited 1 time in total.
Reason: Please add the code tags!

Newbie

Posts

Joined
Thu Nov 02, 2017 10:52 am

Post by slk125 » Mon Mar 23, 2020 2:17 pm

maybe another relevant code is this found in the extension\module:

'module_oclayerednavigation_loader_img' => 'catalog/AjaxLoader.gif'

Does this somehow direct the image as an insecure image? what should i change this to?

Newbie

Posts

Joined
Thu Nov 02, 2017 10:52 am

Post by letxobnav » Mon Mar 23, 2020 3:25 pm

I believe I have all the config files setup properly, still have the same issues.

// HTTP
define('HTTP_SERVER', 'http://www.decorporter.com/');

// HTTPS
define('HTTPS_SERVER', 'https://www.decorporter.com/');
both should be https://

Crystal Light Centrum Taiwan
Extensions: MailQueue | SUKHR | VBoces

“Data security is paramount at [...], and we are committed to protecting the privacy of anyone who is associated with our [...]. We’ve made a lot of improvements and will continue to make them.”
When you know your life savings are gone.


User avatar
Expert Member

Posts

Joined
Fri Aug 18, 2017 4:35 pm
Location - Taiwan

Post by slk125 » Mon Mar 23, 2020 3:44 pm

;) i see, my bad. Worked like a charm. Thank you for everyone's help.

Newbie

Posts

Joined
Thu Nov 02, 2017 10:52 am
Who is online

Users browsing this forum: No registered users and 10 guests