Login
Table of contents

My Website Shows as Insecure Due to Mixed Content?

Author:
cpcloudhosting

Published:

Updated on August 15, 2024

Reading Time: 1 min read

Website Showing as In-Secured #

If you have recently activated a CP CLOUD HOSTING SSL certificate for your domain, it can take up to 30 minutes to be fully installed across our load balancers.

However, if your website is still showing as insecure after the SSL has been installed, it is often due to ‘mixed content.’ This means there is content on the page being loaded through ‘http://’ URLs. For a webpage to be classed as secure, all content must be loaded over HTTPS, including external images, JavaScript, and CSS.

Finding Mixed Content #

To locate ‘http://’ references, you can search the source code of your website. Here’s how you can identify and fix mixed content:

Using Google Chrome: #

  1. Open JavaScript Console:
    • Go to the View menu: View -> Developer -> JavaScript Console.
    • Alternatively, right-click the page, select Inspect Element, then select Console.
  2. Identify Mixed Content:
    • The console will display errors and warnings related to mixed content. Remove or update the ‘http://’ URLs listed in these errors and warnings in your site’s source code.

Using Why No Padlock?: #

  • If your site is hosted on our Web Hosting, you can also use Why No Padlock? to identify mixed content.

For WordPress Users: #

  • If your site is running WordPress, use the SSL Insecure Content Fixer plugin. This plugin identifies all mixed content and replaces it with secure versions.

Final Steps: #

  • Ensure all references on your website use ‘https://’ URLs. Once this is done, your site will load securely in your browser.