How to detect :

Test your website for free, this tool scan all links in your website such as small or bigger website (could take longer for big website)

Only 1 clic and some times to detect all mixed-content such as styles, images or javascript script…

 

Contact me

Im Web developper specialise in WordPress. Im also WordCamp Speaker and currently available for short missions. Contact me to fix your mixed-content issue or any other issues on your Website. Im WordPress Developper based in Montreal

Why do browsers say that my site is not secure?

Even if you have a certificate on your site and are serving pages with HTTPS, web browsers may still say that your site (or some pages on it) are not secure. A single Web page is usually made up of dozens (or even hundreds) of separate files (called assets). These include not only the basic HTML page itself, but also all the images, audio, video, CSS files, JavaScript files, etc. that are used. If one of these resources is not served by HTTPS, browsers will change the way they use that resource. Having HTTP assets on an HTTPS page is called “mixed content”. There are two types of mixed content: Passive mixed content includes images, audio files, videos, etc. that could be altered by HTTP, but would not affect the functionality of the underlying page. Browsers generally allow passive blended content, but they mark the entire page hosting this content as unsecure and do not display a padlock in the address bar. Active blended content includes things like scripts, frames, etc. that could be altered by HTTP and would affect the functionality of the page, potentially allowing a wide range of malicious behavior. Browsers typically block active blended content, which can lead to parts of the page not working properly. What does this site do? It depends on whether the URL you are browsing is HTTP or HTTPS: If your site already uses HTTPS (and you provide a URL that starts with https://), the missing padlock scans your site for pages that have non-HTTPS resources referenced. These are pages that may not function properly or may be marked as insecure. It will also look for pages on your site that are still served by HTTP, and show you whether they would have mixed content if they were switched to HTTPS. If your site does not already use HTTPS (and you provide a URL that starts with http://), Mixed-content checker will scan your site for pages that have explicit HTTP references that could cause mixed-content errors if you were to implement HTTPS. This is useful for preparing your site for an HTTP to HTTPS transition. When the missing padlock scans your site, it looks for images, audio files, videos, frames, CSS files, JavaScript files, and forms. Unfortunately, we can’t catch anything that could cause your pages to be marked as insecure. See the definition of mixed-content here

🔍 How to detect mixed-content

The tool allows you to scan your website for mixed content. Very easy to use, the robot will browse your site and test all URLS

🧰 How to repair the https error of the mixed-content

To repair the errors of the mixed-content, it is first advised to detect them via the tool presented above. The mixed-content checker allows you to find all mixed content. Once the mixed-content has been identified, it is very easy to repair it.

đź”’ The green padlock on WordPress

There are several solutions to correct the green padlock error on WordPress, including plugins for SSL mixed-content. Very simple to use, it allows to repair the mixed-content and to see the green padlock appear