0

I've reconfigured a Wordpress site to use https and although there are no http links appearing in the html source Chrome still says "connection not fully secure".

I've read this post and I find in Developer Tools > Network there is a jpg file listed as being on an http connection. However I've changed the only reference to this file in the database in table wp_posts in field guid to be https, refreshed the browser cache but it is still listed as http although not appearing in the source.

Other non-wordpress https sites on the same server show the secure sign so the certificate must be installed correctly.

I've used the online checker at www.whynopadlock.com and the only item it flags as a fail is the jpg image, which I've changed? Is there a WP cache, I can't see an cache plugins in admin.

Nick W
  • 877
  • 2
  • 15
  • 30

2 Answers2

1

Try to search for all http:// version of the website in your database but also, change the name of the website in the main settings to https AND flush your permalinks if you haven't in Settings -> permalinks -> click update.

If it doesn't change anything, maybe the file is hard-coded in your template file? Another script could load the file via ajax you wouldn't see it in the source code...

Doyou
  • 71
  • 7
0

Test it in another Browser.

Maybe there is some Server-Cache (PHP, Memcached, etc.).

In bulk WP should have the change an affect.

Evo
  • 123
  • 1
  • 13
  • Yes already tested in FF and now tested in whynopadlock.com. I'm not aware of any server cache. Sorry I don't understand the last line in your comment. – Nick W Oct 26 '17 at 13:13
  • If you had changed the link inside the database and there is no caching-plugin, the link at frontend should be have changed also. Have you checked the link in backend? – Evo Oct 26 '17 at 13:24
  • Yes I have re-checked all tables in the database for instances of the image name with url and the only instance I found before changing was in wp_posts in field guid, for that entry the post_type is 'attachment'. Maybe the system is using a path setting to which it appends the image file name. I will re-search for the path domain (which is the old site domain) in the database. – Nick W Oct 26 '17 at 13:44
  • But have you checkt it in the WP-backend, not the database way? Do you navigate to the site in BE with the attachment and reset the link there? – Evo Oct 26 '17 at 13:54
  • Sorry where are you suggesting I look? I've checked url settings in Settings>General and Settings>Permalinks, they are all https. I've now replaced all references to the old domain name in the database to the new domain, but still no change. In dev tools network I notice it says the initiator for the jpg is analytics.js:44 – Nick W Oct 26 '17 at 14:03
  • so check the analytics.js is pulled over https and the also reference inside the file. =) – Evo Oct 26 '17 at 14:57
  • It was an absolute path for background url in the stylesheet that caused the not fully secure issue. – Nick W Oct 26 '17 at 15:02