Flexible SSL & Wordpress: Fixing “Mixed Content” Errors
In January 2015, David Fritsch discussed how Cloudflare's Universal SSL was used by many customers to secure their websites with free SSL certificates. One of the issues faced was "Mixed Content" errors when using Flexible SSL, which creates a secure connection between website visitors and Cloudflare but an insecure one between Cloudflare and the origin server. This issue can be resolved by using relative protocols in links to assets like javascript, CSS, and images. The latest version of Cloudflare's WordPress plugin helps resolve these errors by altering the protocol within the links to assets. However, limitations still exist for some plugins that add assets through JavaScript, requiring further action from plugin developers. Additionally, Flexible SSL has its limitations and may not be suitable for websites handling sensitive information like credit cards, where Full SSL with an SSL certificate on the server is recommended.
Company
Cloudflare
Date published
Jan. 21, 2015
Author(s)
David Fritsch
Word count
627
Language
English
Hacker News points
None found.