Https and mixed content issue

Are these images being added by your theme or are they n the content area of your posts/pages? You can check if it’s the former by temporarily switching to the default theme to rule out any theme-specific problems.

Esmi, thanks for writing!
I went through my theme files and do not seem to see the url hard coded anywhere. I think they are being added by the theme though because the images are either in the headers or the slide show.I wonder if its the javascript on the slide show on the front page. In my google console I also see this:

(index):324 Mixed Content: The page at 'https://www.easlce.eu/' was loaded over HTTPS, but requested an insecure image 'https://www.easlce.eu/wp-content/uploads/2011/12/a3.png'. This content should also be served over HTTPS.slideit @ (index):324(anonymous function) @ VM2374:1

Thanks for looking at this!

Update: Found where things are loading- its a slide show. Where would one find this script to edit within a theme? And, if found, can I simply change the links to https? Thanks.

   <!-- Slideshow Wrapper -->
      <div id="slide-wrapper">
        <!-- Slideshow Static -->
        <div class="static-block">
        <!-- Removed -->
<a href="javascript:gotoshow()"><img src="https://174.36.243.202/~easlceeu/wp-content/uploads/2011/12/a1.pngg" name="slide" border=0 width=620 height=346></a>
<script>
<!--

//configure the paths of the images, plus corresponding target links
slideshowimages("https://www.easlce.eu/wp-content/uploads/2011/12/a1.png","https://www.easlce.eu/wp-content/uploads/2011/12/a2.png","https://www.easlce.eu/wp-content/uploads/2011/12/a3.png")
slideshowlinks("https://www.easlce.eu/about-us/","https://www.easlce.eu/about-us/","https://www.easlce.eu/about-us/")

//configure the speed of the slideshow, in miliseconds
var slideshowspeed=3100

var whichlink=0
var whichimage=0
function slideit(){
if (!document.images)
return
document.images.slide.src=slideimages[whichimage].src
whichlink=whichimage
if (whichimage<slideimages.length-1)
whichimage++
else
whichimage=0
setTimeout("slideit()",slideshowspeed)
}
slideit()

//-->
</script>

• This reply was modified 7 years, 10 months ago by Alison.

Install the plugin “better search replace”. Search for https://174.36.243.202/~easlceeu and replace with https://www.easlce.eu. That should resolve the issue.

Hi thanks Steve, strangely “better search replace” did not flag that url. But I ended up discovering the php file and editing the url in error. All is good now. Thanks both of you for the help!

A

I should have also suggested a 2nd plugin, “string locator” that finds stuff that’s hard-coded and not in the database. ??

Thanks Steve,

I found one more string that appeared on our site but the string locator could not find it either. But I tracked it down to this piece of code in a plugin I think. How can I force it to apply https? Its only on the standard login page now that it shows mixed content. https://www.easlce.eu/wp-login.php
I tried just deleting the image but the login page still requests the unsecure url of the logo: https://www.easlce.eu/wp-content/plugins/easlcemember/images/logo.png

This is the code I believe that requests the image? Let me know if I should repost in a new thread, I was unsure since its along the same issue. I appreciate the help! x

$default_options["login_reg_logo_src"] = $GLOBALS["WS_PLUGIN__"]["easlcemember"]["c"]["dir_url"]."/images/logo.png";
$default_options["login_reg_logo_src_width"] = "550";
$default_options["login_reg_logo_src_height"] = "100";
$default_options["login_reg_logo_url"] = home_url("/");
$default_options["login_reg_logo_title"] = get_bloginfo("name");
				/**/

• This reply was modified 7 years, 10 months ago by Alison.

Disable and delete the plugin, then reinstall it. That might shock it into using the current access protocol.. Nothing in the code you showed has “https://” as part of it.