Hall of Fame

[sharekhan]

hi.

i just installed one server with ssl on cloudflare  dns.. most of the pages i get ssl errors.. so imoved few javascript from google cdn to local and changed path few worked after this now in admin panel i cont click any settings it just clicks and nothing expands. untill i unload ssl from browser..

[Marius P.]

Hello!Is jquery.js moved to local server? Not from cdn.

[sharekhan]

yes i replaced  from 2 places one from main- js  and another from admin -js folders moved to local but still i need brown ssl and asks for unload it ..

[Marius P.]

Did you add them with https?

[sharekhan]

i really dont know what are yu asking, when they are moved to local why does it need ssl.. is there any other place where js files are on google hosted links

[Marius P.]

I've never used ssl, so I can't give you an exact answer.
You can see all the js files at the top of the site -> View page source
I assume if you call them from ssl and the link is with http it won't work (this is why I've asked), but once again, I've never actually used ssl except for my cpanels.

[sharekhan]

all my js files are on localhost not on google ..you should move your demo site to ssl ..cloudflare gives free ssl to all

[Marius P.]

I see no advantage, and a tone of possible issues on older browser, even on some new ones.
SSL is for payment and sensitive information securing, not http browsing.

Ok, so, which are the problem js files?

[Hersh]

You don't need to move the files to local. It makes no difference. I believe Google's cdn supports ssl if you add https in front of it. Either way though, you'll need to add https to the urls in tpl.globals.php. You can find the tpl() function in functions.php.

@Mario,
SSL is not just for financial transactions. It is standard best practice. You always want to protect the privacy of your users. Every major social site uses https by default now.

[Hersh]

You could alternatively source these libraries as follows (especially if you are going to have both secure and unsecured pages):

//ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js

The browsers will then infer the respective protocol based on the current or referring page so if you are on an https page it will add https to it, otherwise it will display it as http accordingly.

[Marius P.]

@Mario,
SSL is not just for financial transactions. It is standard best practice. You always want to protect the privacy of your users. Every major social site uses https by default now.

I understand, but the personal info requested by PHPVibe doesn't put any security issue on the table, no CC, no PayPal, no private location, no address...

[Hersh]

True, but those aren't the only reasons for maintaining privacy. There are situations where some critical content may be considered unacceptable by certain governments in certain countries. In these situations, it is certainly paramount that one protects the privacy of users.

That said, even aside from this, there is a very basic compelling reason for having SSL: search engine ranking. Google prefers SSL secured sites over non-secure sites.

[pcemail]

I also have a few ssl issues, particularly with the images http://i.ytimg.com and had already changed http:// to // but still getting the ssl warnings.

This is a really cool script and hopeful the Devs will make PHPVibe 4.0 100% ssl compatible. Look forward to mods, addons, themes, etc to expand the CMS.

Thanks.