• Greetings,

    I’m working on a site that will require SSL for login, administration, registration, etc. I’ve set the FORCE_SSL_LOGIN and FORCE_SSL_ADMIN flags in the configuration as discussed here. However, while this does force an HTTPS connection, it doesn’t do so for CSS and JS included by plugins. This forces the annoying “not everything is encrypted” warning that IE uses.

    I tried searching for a filter that would allow me to turn all insecure links into secure ones, but I couldn’t find a solution at this time. Any help would be most appreciated.

    Thanks,
    Dash

Viewing 1 replies (of 1 total)
  • Thread Starter David Dashifen Kees

    (@dashifen)

    My solution of the moment: use SSL throughout the site. By setting the site URL and blog URL in my settings to be https://my.site.com (for example) everything loads via SSL assuming the plugin designers used constants like WP_PLUGIN_URL and WP_CONTENT_URL to include their stuff. Not the best solution since it does mean that we waste some server time handling the encryption for SSL, but this site isn’t high-traffic so I don’t expect problems in the short term.

    If there’s a better way, I’d love to know more.

    Thanks,
    Dash

Viewing 1 replies (of 1 total)
  • The topic ‘Stylesheets and Javascript with SSL’ is closed to new replies.