I checked the Developer Tools Console on Google and it seems there are scripts being requested insecurely:
map:36 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.1.0/css/bootstrap.min.css'. This content should also be served over HTTPS. map:38 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.2.0/css/font-awesome.min.css'. This content should also be served over HTTPS. map:39 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/octicons/2.1.2/octicons.min.css'. This content should also be served over HTTPS. map:40 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/select2/3.5.0/select2-bootstrap.min.css'. This content should also be served over HTTPS. map:43 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/bootstrap-datetimepicker/3.1.3/css/bootstrap-datetimepicker.min.css'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://fonts.googleapis.com/css?family=Open+Sans:300,400'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/require.js/2.1.14/require.min.js'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.1.0/fonts/glyphicons-halflings-regular.woff'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.1.0/fonts/glyphicons-halflings-regular.ttf'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.2.0/fonts/fontawesome-webfont.woff?v=4.2.0'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.2.0/fonts/fontawesome-webfont.ttf?v=4.2.0'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/octicons/2.1.2/octicons.woff'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/octicons/2.1.2/octicons.ttf'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTa-j2U0lmluP9RWlSytm3ho.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTZX5f-9o1vgP2EXwfjgl7AY.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTRWV49_lSm1NYrwo-zkhivY.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTaaRobkAwv3vxw3jMhVENGA.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTf8zf_FOSsgRmwsS7Aa9k2w.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTT0LW-43aMEzIO6XUTLjad8.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTegdm0LZdjqr5-oayXSOefg.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/K88pR3goAWT7BTt32Z01mxJtnKITppOI_IvcXXDNrsc.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/RjgO7rYTmqiVp7vzi-Q5URJtnKITppOI_IvcXXDNrsc.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/LWCjsQkB6EMdfHrEVqA1KRJtnKITppOI_IvcXXDNrsc.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/xozscpT2726on7jbcb_pAhJtnKITppOI_IvcXXDNrsc.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/59ZRklaO5bWGqF5A9baEERJtnKITppOI_IvcXXDNrsc.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/u-WUoqrET9fUeobQW7jkRRJtnKITppOI_IvcXXDNrsc.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/cJZKeOuBrn4kERxqtaUH3VtXRa8TVwTICgirnJhmVJw.woff2'. This content should also be served over HTTPS. require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/jquery/2.1.1/jquery.min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.1.0/js/bootstrap.min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/jqueryui/1.10.4/jquery-ui.min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/backbone.js/1.1.2/backbone-min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/select2/3.5.1/select2.min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/underscore.js/1.7.0/underscore-min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/knockout/3.3.0/knockout-min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 chrome-extension://lapmgejioldofnecdomcdgblbiffefhb/contentscripts/page.js:13 M-Files For chrome is supported. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure image 'http://dev.virtualearth.net/Branding/logo_powered_by.png'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/octicons/2.1.2/octicons.woff'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.1.0/css/bootstrap.min.css'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.2.0/css/font-awesome.min.css'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/octicons/2.1.2/octicons.min.css'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/select2/3.5.0/select2-bootstrap.min.css'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://fonts.googleapis.com/css?family=Open+Sans:300,400'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/bootstrap-datetimepicker/3.1.3/css/bootstrap-datetimepicker.min.css'. This content should also be served over HTTPS. How can we fix this? On Friday, July 7, 2017 at 5:53:06 PM UTC+8, Joel Aldor wrote: > > Hi all, > > I was able to install the SSL certificate already from Letsencrypt, but > upon opening https://training.philippineheritagemap.org on Chrome, the > front page is quite messed up. Then there's a tooltip on the URL bar that > says "This site is trying to load unsafe scripts from unauthenticated > sources.". When I click on "Load unsafe scripts", then the website loads > fine. But the https:// on the URL bar is crossed out and it will say "Not > Secure" (see the two screenshots). > > > <https://lh3.googleusercontent.com/-MNo37dEkMgQ/WV9Z2QzGzJI/AAAAAAAATrw/6gA5ll7Dl3MSi5acTnIBL4btLLjywKOxwCLcBGAs/s1600/Screenshot-arches.png> > > > > <https://lh3.googleusercontent.com/-LfVTKQwC1oQ/WV9Z5kTKyTI/AAAAAAAATr0/xmTyzDKQtXgq3fJ8014eiGEDM0xKt4eygCLcBGAs/s1600/Screenshot-arches2.png> > > > > > Maybe we need to set something in settings.py? > > Regards, > > Joel > > On Monday, March 27, 2017 at 10:04:54 PM UTC+8, Vincent Meijer wrote: >> >> Hello Joel, >> >> First things first: is your Apache instance configured to point traffic >> on port 443 to your Arches/Django instance? >> If you post your config here we could probably help you more efficiently. >> >> The next thing I would check is to which certificate your Apache config >> points. >> Then check if the certificate actually exists in that path. >> >> Did the certbot command run without any errors? Did it say something >> along the lines of "Congratulations! Your certificate has been downloaded" ? >> >> Vincent >> >> >> On Friday, 24 March 2017 23:31:22 UTC-4, Joel Aldor wrote: >>> >>> Hi all, >>> >>> I am trying to enable HTTPS on training.philippineheritagemap.org by >>> deploying a LetsEncrypt certificate using LetsEncrypt certbot. I followed >>> the steps here: https://certbot.eff.org/#ubuntutrusty-apache >>> >>> The website still runs on HTTP but when I try to put https://, all it >>> gives is an Apache2 Ubuntu default page. >>> >>> Not sure what I need to do with the Apache configuration files. Can >>> someone help? >>> >>> Thank you. >>> >>> Joel >>> >> -- -- To post, send email to archesproject@googlegroups.com. To unsubscribe, send email to archesproject+unsubscr...@googlegroups.com. For more information, visit https://groups.google.com/d/forum/archesproject?hl=en --- You received this message because you are subscribed to the Google Groups "Arches Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to archesproject+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
