Get the most out of your Centmin Mod LEMP stack
Become a Member

SSL Dealing with mix content warnings in SSL - CSP upgrade-insecure-requests

Discussion in 'Domains, DNS, Email & SSL Certificates' started by eva2000, Aug 27, 2015.

  1. eva2000

    eva2000 Administrator Staff Member

    53,223
    12,116
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,654
    Local Time:
    12:20 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    Came across this while watching Letsencrypt video for a way of dealing with mixed content warnings if you have deployed a https SSL web site but have some page elements still loading from http. It's an additional header for Content-Security-Policy: upgrade-insecure-requests outlined at Upgrade Insecure Requests


     
  2. eva2000

    eva2000 Administrator Staff Member

    53,223
    12,116
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,654
    Local Time:
    12:20 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
     
    Last edited: Oct 22, 2015
  3. eva2000

    eva2000 Administrator Staff Member

    53,223
    12,116
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,654
    Local Time:
    12:20 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
  4. eva2000

    eva2000 Administrator Staff Member

    53,223
    12,116
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,654
    Local Time:
    12:20 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+