Connection Partially Encrypted with valid cert, wp-config options set

I am seeing “Connection Partially Encrypted” trying to use the login screen to my blog.

I have a valid certificate, and have set:

define(‘FORCE_SSL_ADMIN’, true);
define(‘FORCE_SSL_LOGIN’, true);

in my wp-config.php.

The *only* file that’s coming across unencrypted is:

The page at https://XXX.com/wp-login.php ran insecure content from https://XXX.com/wp-includes/js/jquery/jquery.js.

I have found all the occurrences of jquery.js in the source tree, but I’m not sure where to start poking.

Obviously everything else is getting properly prefixed, it’s just one file that is being handled differently from all the rest. I’m not that familiar with how the header’s built…anyone have a clue?

Any help greatly appreciated and I’ll blog the solution — hopefully whatever it is can be backpatched into the next rev, having big warnings pop up on a “secure” site obviously isn’t particularly helpful.

Thanks,

S

# find . -name “*.php” -exec grep “jquery.js” {} \; -print
$scripts->add( ‘jquery’, ‘/wp-includes/js/jquery/jquery.js’, false, ‘1.4.2’);
./wp-includes/script-loader.php
$js_files[] = $siteurl . ‘/wp-includes/js/jquery/jquery.js’;
./wp-content/plugins/magicmembers/core/hooks/hooks/user_hooks.php
<script type=”text/javascript” src=”../wp-includes/js/jquery/jquery.js”></script>
./wp-admin/install.php
$j = esc_url( site_url( ‘/wp-includes/js/jquery/jquery.js’ ) );
./wp-admin/js/revisions-js.php
$scripts->add( ‘jquery’, ‘/wp-includes/js/jquery/jquery.js’, false, ‘1.4.2’);
./wordpress/wp-includes/script-loader.php
<script type=”text/javascript” src=”../wp-includes/js/jquery/jquery.js”></script>
./wordpress/wp-admin/install.php
$j = esc_url( site_url( ‘/wp-includes/js/jquery/jquery.js’ ) );
./wordpress/wp-admin/js/revisions-js.php