I checked the Developer Tools Console on Google and it seems there are scripts being requested insecurely:
map:36 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.1.0/css/bootstrap.min.css'. This content should also be served over HTTPS. map:38 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.2.0/css/font-awesome.min.css'. This content should also be served over HTTPS. map:39 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/octicons/2.1.2/octicons.min.css'. This content should also be served over HTTPS. map:40 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/select2/3.5.0/select2-bootstrap.min.css'. This content should also be served over HTTPS. map:43 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/bootstrap-datetimepicker/3.1.3/css/bootstrap-datetimepicker.min.css'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://fonts.googleapis.com/css?family=Open+Sans:300,400'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/require.js/2.1.14/require.min.js'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.1.0/fonts/glyphicons-halflings-regular.woff'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.1.0/fonts/glyphicons-halflings-regular.ttf'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.2.0/fonts/fontawesome-webfont.woff?v=4.2.0'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.2.0/fonts/fontawesome-webfont.ttf?v=4.2.0'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/octicons/2.1.2/octicons.woff'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/octicons/2.1.2/octicons.ttf'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTa-j2U0lmluP9RWlSytm3ho.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTZX5f-9o1vgP2EXwfjgl7AY.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTRWV49_lSm1NYrwo-zkhivY.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTaaRobkAwv3vxw3jMhVENGA.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTf8zf_FOSsgRmwsS7Aa9k2w.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTT0LW-43aMEzIO6XUTLjad8.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTegdm0LZdjqr5-oayXSOefg.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/K88pR3goAWT7BTt32Z01mxJtnKITppOI_IvcXXDNrsc.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/RjgO7rYTmqiVp7vzi-Q5URJtnKITppOI_IvcXXDNrsc.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/LWCjsQkB6EMdfHrEVqA1KRJtnKITppOI_IvcXXDNrsc.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/xozscpT2726on7jbcb_pAhJtnKITppOI_IvcXXDNrsc.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/59ZRklaO5bWGqF5A9baEERJtnKITppOI_IvcXXDNrsc.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/u-WUoqrET9fUeobQW7jkRRJtnKITppOI_IvcXXDNrsc.woff2'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://fonts.gstatic.com/s/opensans/v14/cJZKeOuBrn4kERxqtaUH3VtXRa8TVwTICgirnJhmVJw.woff2'. This content should also be served over HTTPS. require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/jquery/2.1.1/jquery.min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.1.0/js/bootstrap.min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/jqueryui/1.10.4/jquery-ui.min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/backbone.js/1.1.2/backbone-min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/select2/3.5.1/select2.min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/underscore.js/1.7.0/underscore-min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 require.min.js:34 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure script 'http://cdnjs.cloudflare.com/ajax/libs/knockout/3.3.0/knockout-min.js'. This content should also be served over HTTPS. g.load @ require.min.js:34 chrome-extension://lapmgejioldofnecdomcdgblbiffefhb/contentscripts/page.js:13 M-Files For chrome is supported. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure image 'http://dev.virtualearth.net/Branding/logo_powered_by.png'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure font 'http://cdnjs.cloudflare.com/ajax/libs/octicons/2.1.2/octicons.woff'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.1.0/css/bootstrap.min.css'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.2.0/css/font-awesome.min.css'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/octicons/2.1.2/octicons.min.css'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/select2/3.5.0/select2-bootstrap.min.css'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://fonts.googleapis.com/css?family=Open+Sans:300,400'. This content should also be served over HTTPS. map:1 Mixed Content: The page at 'https://training.philippineheritagemap.org/map' was loaded over HTTPS, but requested an insecure stylesheet 'http://cdnjs.cloudflare.com/ajax/libs/bootstrap-datetimepicker/3.1.3/css/bootstrap-datetimepicker.min.css'. This content should also be served over HTTPS. How can we fix this? On Friday, July 7, 2017 at 5:53:06 PM UTC+8, Joel Aldor wrote: > > Hi all, > > I was able to install the SSL certificate already from Letsencrypt, but > upon opening https://training.philippineheritagemap.org on Chrome, the > front page is quite messed up. Then there's a tooltip on the URL bar that > says "This site is trying to load unsafe scripts from unauthenticated > sources.". When I click on "Load unsafe scripts", then the website loads > fine. But the https:// on the URL bar is crossed out and it will say "Not > Secure" (see the two screenshots). > > > <https://lh3.googleusercontent.com/-MNo37dEkMgQ/WV9Z2QzGzJI/AAAAAAAATrw/6gA5ll7Dl3MSi5acTnIBL4btLLjywKOxwCLcBGAs/s1600/Screenshot-arches.png> > > > > <https://lh3.googleusercontent.com/-LfVTKQwC1oQ/WV9Z5kTKyTI/AAAAAAAATr0/xmTyzDKQtXgq3fJ8014eiGEDM0xKt4eygCLcBGAs/s1600/Screenshot-arches2.png> > > > > > Maybe we need to set something in settings.py? > > Regards, > > Joel > > On Monday, March 27, 2017 at 10:04:54 PM UTC+8, Vincent Meijer wrote: >> >> Hello Joel, >> >> First things first: is your Apache instance configured to point traffic >> on port 443 to your Arches/Django instance? >> If you post your config here we could probably help you more efficiently. >> >> The next thing I would check is to which certificate your Apache config >> points. >> Then check if the certificate actually exists in that path. >> >> Did the certbot command run without any errors? Did it say something >> along the lines of "Congratulations! Your certificate has been downloaded" ? >> >> Vincent >> >> >> On Friday, 24 March 2017 23:31:22 UTC-4, Joel Aldor wrote: >>> >>> Hi all, >>> >>> I am trying to enable HTTPS on training.philippineheritagemap.org by >>> deploying a LetsEncrypt certificate using LetsEncrypt certbot. I followed >>> the steps here: https://certbot.eff.org/#ubuntutrusty-apache >>> >>> The website still runs on HTTP but when I try to put https://, all it >>> gives is an Apache2 Ubuntu default page. >>> >>> Not sure what I need to do with the Apache configuration files. Can >>> someone help? >>> >>> Thank you. >>> >>> Joel >>> >> -- -- To post, send email to [email protected]. To unsubscribe, send email to [email protected]. For more information, visit https://groups.google.com/d/forum/archesproject?hl=en --- You received this message because you are subscribed to the Google Groups "Arches Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
