Sign in

Publii native scripts cause Chrome to block website and flag site as insecure

Forum Bug Report

  • This topic has 3 replies, 2 voices, and was last updated 3 years, 6 months ago by .
Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • November 9, 2019 at 10:12 pm #712
    Avatar photo[anonymous]

    Ok, I got past the issues of Publii not syncing the website to s3 by uploading the contents of the Publii’s output folder to s3 with CyberDuck. But now that I have Publii’s files as they are supposed to, I discovered a nasty problem with Publii’s out-of-the box setup:

    Screen-Shot-2019-11-09-at-21.44.46

    So before loading the CSS and the JS, Chrome blocks my website flagging big red bells about the security of Publii’s scripts. So if I click on “load unsafe scripts”, The CSS and the JS loads but then my site’s security grading disappears and people are constantly told the site is insecure despite the certificate:

    Screen-Shot-2019-11-09-at-21.38.46

    So, what’s going on?

    November 9, 2019 at 10:16 pm #715
    Avatar photo[anonymous]

    This was sent twice, just tried to delete it but one can’t.

    November 10, 2019 at 12:03 am #718
    Avatar photo[anonymous]
    This reply has been marked as private.
    November 10, 2019 at 7:14 am #720
    Avatar photoBob

    Hi,

    If you refer to the external SVG sprite file it does not work on Chrome or Firefox. The SVG map file must be served from the same domain you set in the server configuration.

    --
    Do you appreciate the support you've received today? If so, consider donating to the Publii team by clicking here; we'll be sure to use your donation to make Publii even better!

  • Author
    Posts
Viewing 4 posts - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.