Hiya I have just set up a LetsEncrypt cert on a dnn8 site. Things work as expected except any images in html modules which seem to be fetched over http resulting in the "Not secure" chrome warning. (Grrr) Does anyone know a remedy please. Thanks
Betacam,
You have different options. One could be to replace all occurences of "http://www.mysite.com/" by "https://www.mysite.com/" in the HTML modules using SQL, something like
UPDATE HtmlText SET Content = REPLACE(Content, 'http://www.mysite.com/', 'https://www.mysite.com/') WHERE Content LIKE '%http://www.mysite.com/%'
Or, even better, get rid of the protocol and server part:
UPDATE HtmlText SET Content = REPLACE(Content, 'http://www.mysite.com/', '/') WHERE Content LIKE '%http://www.mysite.com/%'
This could be a pain, esp. if you have other modules than HTML that display such images, or use links to stylesheets or Javascripts etc. with this syntax.
The better way would be to implement a Content Security Policy, there you have the option to upgrade insecure requests by the browser automatically (will not work in really old browsers, but they don't care about mixed content anyway...)
See
Happy DNNing! Michael
Michael TobischDNN★MVP
These Forums are dedicated to the discussion of DNN Platform.
For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:
Awesome! Simply post in the forums using the link below and we'll get you started.