1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Switched To HTTPS, Some Scripts Not Working

Discussion in 'BlackHat Lounge' started by dadangle, Oct 23, 2014.

  1. dadangle

    dadangle Junior Member

    Joined:
    Sep 6, 2014
    Messages:
    125
    Likes Received:
    118
    Occupation:
    Freelancing, fixing and creating things.
    Location:
    Magrathea
    Hello everyone. I tried to post this in the web design section, but I guess I can't yet. Here's my problem though: I've recently switched my site to https to see the pro's and con's. My host gives a free ssl cert to business accounts so why not try? I do enjoy it and have noticed a little more traffic from google and whatnot. However, I noticed last night that when you load the site, I get the 'unsafe script' badge in the url bar of chrome, some ads don't show up at all, and feedburner apparently doesn't work with https, so that makes no d*mn sense from google.

    The ads that aren't working are the main problem. They are Amazon and eBay ads and I only have two. I've switched the domain in all my accounts to https and have redirected all http's to https. But do Amazon and eBay ads not support https? And if they do, what am I missing? My shareasale ads work just fine still, so I'm guessing they're secure as well, but I can't figure it out. I just want that badge gone.

    The site itself doesn't have many scripts at all. But I'm not sure which ones could cause the problem. I assume, before I click 'load unsafe scripts', what works are secure, and what doesn't, isn't. Is that right?

    Also, I'm not too butthurt about feedburner, do any of you have any suggestions for an alternative?

    Thanks guys. Long live BHW
     
    Last edited: Oct 23, 2014
  2. JournoNick

    JournoNick Jr. VIP Jr. VIP Premium Member

    Joined:
    Feb 11, 2014
    Messages:
    613
    Likes Received:
    309
    Location:
    on the frontline
    If you are pulling content from another domain, i.e ads, then the yellow padlock will come up and say "some things in this page are unsafe. To avoid this, try taking out the http: in the link. Example, if your taking an ad from http://amazon.com/this-kickass-ad.jpg then change it to //amazon.com/this-kickass-ad.jpg. If they're affiliate ads, then just host the image on your servers. You should already be doing a redirect using htaccess or something like that.
     
    • Thanks Thanks x 1
  3. dadangle

    dadangle Junior Member

    Joined:
    Sep 6, 2014
    Messages:
    125
    Likes Received:
    118
    Occupation:
    Freelancing, fixing and creating things.
    Location:
    Magrathea
    Thanks for the advice mate. I'll be the first to admit, I'm fairly ignorant when it comes to these things still, so I'm not really sure about the htaccess or anything. But I took what I did understand and I think I may have fixed the ads. For example, the code for my Amazon banner was: "<iframe src="http://rcm-na.amazon-adsystem.com/e/cm?t=xxxxxxx-20&o=1&p=26&l=ur1&category=amazonhomepage&f=ifr&linkID=xxxxxxxxxxxxxxx" width="468" height="60" scrolling="no" border="0" marginwidth="0" style="border:none;" frameborder="0"></iframe>"

    And about the same for my ebay banner. I changed the http to https and boom, they work now. I wasn't sure if it'd be that easy but all seems fine now. Hopefully it really is that simple and I didn't just mess up my affiliate banner or anything. I did try to just remove the http without adding the https, hoping that it would pick up the way the site run's itself, but the banners didn't show up afterwards at all. I'm figuring it out though. Slowly, but surely. Still getting that d*mn badge though.

    Either way, thanks a lot JournoNick. That helped a lot.
     
    Last edited: Oct 24, 2014
  4. JournoNick

    JournoNick Jr. VIP Jr. VIP Premium Member

    Joined:
    Feb 11, 2014
    Messages:
    613
    Likes Received:
    309
    Location:
    on the frontline

    Ah yeah, that'll work also. I THINK that stuff in the header won't. I ran into this problem once before with Google fonts and it only accepted the // instead of https://...

    Anyway, you got it.

    You're very welcome.
     
  5. ezines

    ezines Power Member

    Joined:
    Jan 3, 2011
    Messages:
    712
    Likes Received:
    216
    Occupation:
    Online/Offline
    Location:
    Somewhere On Earth
    I think you're experiencing what is called "Mixed Contents". If you're using WordPress, try this plugin...
    Code:
    https://wordpress.org/plugins/wordpress-https/
    Ah... I just noticed, you're pulling content from amazon. This plugin above might not help with that matter. But if your ad is working now after changing it to https(from amazon), I think you have images in your website that is still using http and not https. You can try to manually change the links for your images to https, but that would require a lot of work if you have over 100 of images. If the mixed content is caused by your own domain/site, the plugin can help.
     
    • Thanks Thanks x 1
    Last edited: Oct 24, 2014
  6. dadangle

    dadangle Junior Member

    Joined:
    Sep 6, 2014
    Messages:
    125
    Likes Received:
    118
    Occupation:
    Freelancing, fixing and creating things.
    Location:
    Magrathea
    Thanks ezines. I'm not using wordpress but I know I probably should lol. I'm sorta sticking with weebly right now because I still have a lot to learn and my affiliate sales for weebly are fairly strong. But I think you're definitely right. After reading your advice, I realized that I hadn't even switched any of my internal to my own pages to https. Luckily the site is very new and I don't have that many links to change. I think after I get that all switched over, things will be golden again.

    Thanks again mate, you guys have helped tremendously. I asked the same questions on the (weekend) warrior forum and most people either weren't smart enough to understand, or their soul intention was to humiliate me. Arseholes.