Enable HTTPS on wordpress + Fix the Mix Content HTTPS alert

Enable HTTPS on wordpress + Fix the Mix Content HTTPS alert

Google Chrome is going to show the Non-Secure alert for all Non-HTTPS sites,
after hitting a few bad reference, we have finalize the following works fine:

  • Use Let’sEncrypt to generate yourself a valid SSL, or just use CloudFlare’s FlexiSSL
  • Make sure you backup your web files and DB before changing the site URL from http:// to https://, you will want to have a easy way to recover it without problem accessing to https://yoursite.com/wp-admin
  • Once you get https up and running, your site could look very bad as browsers refuse to load CSS and JS with http:// URL instead of https:// – > The infamous mixed content problem
  • Use THIS plugin -> SSL Insecure Content Fixer
  • Increase the level one by one, for us we have to go to the highest level, but the memory usage overhead is too little to take into account
  • Use the following Nginx config to redirect http:// to https://

[shell]server {
listen 80;
server_name yoursite.com;
rewrite ^(.*) https://yoursite.com$1 permanent;
[/shell]

Tags:
, ,