Log in | Register
  1. Forum
  3. Discontinued Products
  5. JFBConnect Joomla 2.5 Support (CLOSED)
  7. Loading https

Topic-icon Loading https

Active Subscriptions:

None
14 years 3 months ago #19548 by kramit
Loading https was created by kramit
I just installed an SSL certificate, and even though I am using Force SSL as well as using Akeeba Admin Tools to secure all non http requests, there are numerous links for Facebook that are not loading as https.

I have updated my URLs in the app to reflect the change, but these are still loading http. How can I change this so visitors don't get that 'Some things on this page are insecure'?
The topic has been locked.
Support Specialist
14 years 3 months ago #19555 by alzander
Replied by alzander on topic Loading https
Kray,
Unfortunately, Facebook doesn't load all of it's assets over an SSL connection. While JFBConnect will load the main Javascript library over SSL if the current page is encrypted, if you use the social widgets from Facebook (Like button, comment box, Fan Box, etc), many of those will not fully load over SSL. When they are rendered on the page, they load an iFrame to Facebook's servers. That iFrame will then load user avatars and some other graphics over a non-SSL connection.

The reason this is done is because SSL requests can't be cached. For the heavy load Facebook obviously has, they have made the choice not to load that content over an SSL connection. Because of the iFrame method they are using, we have -no- control over what's loaded and they have no method to force SSL on some of those assets.

There are some widgets that likely can work over SSL without the mixed content warning, but not all of them. You may need to test what does and doesn't work and decide if the warning message is worth it or not.

Hope that explains, and sorry for the inconvenience. This is a common question, and big annoyance. We definitely hope Facebook allows SSL asset loading in the future, but we haven't heard any rumblings about that coming soon.

Thanks,
Alex
The topic has been locked.
Active Subscriptions:

None
14 years 3 months ago #19569 by kramit
Replied by kramit on topic Loading https
That is very sad news indeed. All I wanted it for was the Facebook login :(
The topic has been locked.
Support Specialist
14 years 3 months ago #19576 by alzander
Replied by alzander on topic Loading https
If you're just using the Login button, no Like buttons or other 'widgets', that shouldn't trigger the mixed-mode content warnings. The login functionality is capable of running in SSL mode without those warnings.

Can you post a page that we can see with the problem? We should be able to help narrow down where the issue lies.

Thanks,
Alex
The topic has been locked.
Active Subscriptions:

None
14 years 3 months ago #19596 by kramit
Replied by kramit on topic Loading https
You can check out the site at taboorevie.ws

I am only using the SCLogin Module and none of the additional extensions are published. Let me know if I should be doing something else.

Thanks
The topic has been locked.
Support Specialist
14 years 3 months ago #19603 by alzander
Replied by alzander on topic Loading https
Kray,
If you use Google Chrome, you can open your page and then open the Developer Tools (CNTRL-Shift-I), and then click the "Network" icon. On there, it will show all content that was loaded to render the page. The Facebook content seems to be coming over https properly. The content from b1.adbrite.com/iads is not. While the Javascript to load the ads is loaded over https, the images that the Javascript is loading is over http only.

I believe that's the issue. Try disabling (temporarily) those ads and see if the warning goes away. If not, check the other images and narrow things down. If you find something from Facebook, definitely let us know.

Hope that helps,
Alex
The topic has been locked.
  1. Forum
  3. Discontinued Products
  5. JFBConnect Joomla 2.5 Support (CLOSED)
  7. Loading https
From the Blog
Facebook | Twitter | LinkedIn | Blog RSS