Hi, thanks for replying, I thought Zen Cart took care of images provided they had relative links? Or am I wrong?
its going to be a doozy combing through all the pages and finding which images need to be hardcoded.![]()
Hi, thanks for replying, I thought Zen Cart took care of images provided they had relative links? Or am I wrong?
its going to be a doozy combing through all the pages and finding which images need to be hardcoded.![]()
SSL certs are to show that your website is who it says it is..I thought Zen Cart took care of images provided they had relative links? Or am I wrong?
the moment you start linking to websites/images outside your website/domain is when warnings occur, becuase those are outside the protection of your SSL cert...zencart does protect your files/folders/urls IF in your domain, NOT outside it.
Ok, that makes sense then in the example of the paypal image being piped in externally...
But my images ARE inside my domain, and as mentioned above, they are not using absolute paths, they are relative..
And this is my issue; these images are being reported as insecure.
Just as a point of interest, the backend is working just fine under SSL and this includes images in the admin directory.
-Scott.
You should not hardcode any images to https pathways. Zen Cart should correctly handle images, and switch between http and https addresses for them, according to which page you are on. It appears to be doing that just fine. It's not images which are causing the problem.
It's links like these:
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js"></script>
and you've also got off-site http links to Twitter and YouTube as well.
Vger
THanks Vger, thats what I thought.
I was aware of the Ajax link and was getting to that
I thought the images were a problem as they are being reported in the media tab of firefox (after clicking on the padlock)
Hmmm.. maybe its just reporting the images being that are shown on the page - not that they are the culprits?
Ill try taking out the external links first and report back.
Taking out those links worked. Thank you.
Its interesting though, as our current live store with the same SSL cert has links to youtube etc and the checkout procedure is not breaking there... for example;
https://www.crushcosmetics.com.au/index.php
Note the youtube and twitter icons have external links.
I solved the problem of my external links not being in 'https' (and getting the broken padlock)
I created a php redirect to another secure page on my site, from this page, it then leaves the site entirely and doesnt break the SSL session.
E.G; Twitter image - link is; https://www.crushcosmetics.com.au/jump_twitter.php
On the 'jump twitter' page I have a simple redirect;
PHP Code:<?php
header( 'Location: http://twitter.com/crush_cosmetics' ) ;
?>