/plushcap/analysis/cloudflare/flexible-ssl-wordpress-fixing-mixed-content-errors

Flexible SSL & Wordpress: Fixing “Mixed Content” Errors

What's this blog post about?

In January 2015, David Fritsch discussed how Cloudflare's Universal SSL was used by many customers to secure their websites with free SSL certificates. One of the issues faced was "Mixed Content" errors when using Flexible SSL, which creates a secure connection between website visitors and Cloudflare but an insecure one between Cloudflare and the origin server. This issue can be resolved by using relative protocols in links to assets like javascript, CSS, and images. The latest version of Cloudflare's WordPress plugin helps resolve these errors by altering the protocol within the links to assets. However, limitations still exist for some plugins that add assets through JavaScript, requiring further action from plugin developers. Additionally, Flexible SSL has its limitations and may not be suitable for websites handling sensitive information like credit cards, where Full SSL with an SSL certificate on the server is recommended.

Company
Cloudflare

Date published
Jan. 21, 2015

Author(s)
David Fritsch

Word count
627

Hacker News points
None found.

Language
English


By Matt Makai. 2021-2024.