Hi Richard! Thanks for getting in touch.
Quote:
|
It seems that certain times product pages will show as "secure" & other times when you return to the same product page it no longer notes "secure" in the URL window.
|
I'm sorry to hear that! I'll be happy to help.
Quote:
|
I realize that Ecwid checkout process is secure via https://, however seeing as we do have a site SSL certificate I would like all of our products pages to also show as secure to convey that all of our site is secure (& not just our checkout process).
|
Yes, you're right,
Ecwid always uses a secure HTTPS connection whether site runs on HTTPS or not. I took a look at your site pages (thanks for the examples) and found out why some of them have that green padlock which indicates a secure connection while others don't. I'll explain why this happens below.
First, I suggest you visit one of the pages which Chrome counts as "insecure" and check the info Chrome provides on the issue. To see the info, hit that letter "
i" in the circle that appears instead of the green padlock. In the appeared popup you'll see the following message:
Code:
Your connection to this site is not fully secure.
Attackers might be able to see the images that you’re looking at on this site and trick you by modifying them.
This means the page is secure in general but some resources, such as images, can be compromised. Chrome allows you to see more details on the problem by clicking on the "
Details" link under the message. Once you do this, you'll see another message:
Code:
Mixed Content.
The site includes HTTP resources.
In short, this means your site uses HTTPS/SSL but some of the resources added to this particular page use insecure HTTP protocol. For instance, it can be images added with HTTP URLs instead of HTTPS ones. In case of this page, Chrome points to an image with the following URL:
Code:
http://www.giovannicosmetics.com/gui/images/bullet-grey.png
As you can see, this URL uses HTTP protocol instead of HTTPS. I examined the page further and found out this images comes from the product description added to the product on that page. To solve the problem, you should replace that non-HTTPs URL with HTTPS one. To do that, go to the
Ecwid Control Panel → Catalog → Products and open the product on that page for editing. Scroll down to the description section, switch the description editor to HTML mode and locate the URL in question. See the below screenshot:
Once you remove that URL or update it with a valid one, the page will appear as secure in Chrome and other browsers.
Links on the topic:
Hope this helps!
01-18-2017, 12:23 AM
Help Center
Linear Mode
