Ajax-loader.gif loading over HTTP instead of HTTPS

johnlenehan · 23 March 2018 10:35

Hi

I am getting a mixed content error on my www.hiberniacollege.com.

“Mixed Content: The page at ‘https://hiberniacollege.com/’ was loaded over HTTPS, but requested an insecure image ‘http://hiberniacollege.com/wp-content/plugins/s2member/src/images/ajax-loader.gif’. This content should also be served over HTTPS.”

I am using WPEngine.

One response recommends ensuring that the following setting is set to no. “Okay, the solution here was a setting in s2Member under general options -> login welcome page -> Alway redirect non-admin users using http?”

However I do not have this setting? I am using the Pro version ’ s2Member Pro v170722’.

Does anyone have a solution to fix this?

J

KTS915 · 23 March 2018 13:14

That setting was removed so as to avoid causing this problem.

You say you’re with WPEngine. They are known for having very aggressive caching, and caching could certainly cause this. I think you need to talk to them.

WebAlterations · 4 December 2018 15:24

I’m having the same problem and on WPengine with the latest pro version.

thanks

parkwaychildcare · 8 May 2019 20:49

Me too. Same issue at WP Engine.

clavaque · 9 May 2019 00:50

If you force ssl with s2Member, do you still get that?

Create a custom field for s2member_force_ssl set to yes on that page.

If you’re using Gutenberg, go to the editor Options and enable Custom Fields from there first, then you’ll find the Custom Fields at the bottom of the page. https://www.namehero.com/startup/how-to-use-custom-fields-in-gutenberg-screenshots-example/

If that doesn’t do it, I’d troubleshoot testing for plugin or theme conflict. https://s2member.com/kb-article/common-troubleshooting-tips/

This plugin may help test that without affecting the site users: https://wordpress.org/plugins/health-check/

Let me know how it goes.

crediblock · 15 September 2020 22:33

I did that and it didn’t work. Just 1 file that’s http and no way to fix it. I’m forcing SSL on cloudflare it’s usually pretty strict. URL is https://globalintelhub.com https://globalintelhub.com/wp-content/plugins/s2member/src/images/ajax-loader.gif really want a fix for this.

clavaque · 16 September 2020 14:01

Hi crediblock.

I can’t reproduce that on my site…

I found your page with the pro-form at https://globalintelhub.com/signup/

Because the s2member_force_ssl is shown in the pro-form, it seems you added it as a custom profile field from s2’s General Options.

Screenshot_2020-09-16%20Signup%20to%20Global%20Intel%20Hub

That would not be correct. The s2member_force_ssl goes in the WordPress page itself, as a custom field of the page, in the page editor.

Screenshot_2020-09-16%20Edit%20Page%20%E2%80%B9%20s2Member%20Membership%20Plugin%20for%20WordPress%20%E2%80%94%20WordPress

I hope that helps.

onepresstech · 3 October 2020 08:20

@crediblock - you have your s2member_force_ssl visible in your form…this should be set to hidden shouldn’t it?

Regarding https…add a 301 redirect in your htaccess file so all http requests are 301 redirected to the https equivalent.

crediblock · 14 October 2020 13:42

I do that using cloudflare, and it works great on all the other wordpress sites where there is no s2member, like www.preiposwap.com that’s why I think it’s a s2member issue. When I ran a security scan for non https content, it showed me this single ajax image ‘loader.gif’ as the issue.

onepresstech · 15 October 2020 11:25

Just hit F12 on your browser, refresh the page and see where it comes from