- Posts: 31
- Thank you received: 2
Insecure Fonts causing security warnings to customers :-(
- Peter Mee
- Topic Author
- Offline
- Junior Member
-
4 years 9 months ago #126769
by Peter Mee
Insecure Fonts causing security warnings to customers :-( was created by Peter Mee
Hi Guys
I went through a round up maintenance on one of my sites today and, in smoke testing after a Joomla / eShop point update, I noticed Chrome complaining about insecure scripts. (site is configured as https).
Investigating, I found that on content pages and, more critically, the checkout pages, there are multiple calls to fonts.gstatic.com over http from both jquery and mootools.
Initially, customers see a warning like this....
If they opt to allow scripts, they will then see this dire warning (not ideal on an eCommerce site!);
Here are partial grabs from developer tools. I had a look at some of the http links and all are available as https. Can this be resolved in a future release?
I went through a round up maintenance on one of my sites today and, in smoke testing after a Joomla / eShop point update, I noticed Chrome complaining about insecure scripts. (site is configured as https).
Investigating, I found that on content pages and, more critically, the checkout pages, there are multiple calls to fonts.gstatic.com over http from both jquery and mootools.
Initially, customers see a warning like this....
If they opt to allow scripts, they will then see this dire warning (not ideal on an eCommerce site!);
Here are partial grabs from developer tools. I had a look at some of the http links and all are available as https. Can this be resolved in a future release?
Please Log in or Create an account to join the conversation.
- Giang Dinh Truong
-
- Offline
- Administrator
-
- Peter Mee
- Topic Author
- Offline
- Junior Member
-
- Giang Dinh Truong
-
- Offline
- Administrator
-
Moderators: Giang Dinh Truong