Autoblog HTTPS Mixed content issue.

I am fetching news using Autoblog but from the source, I am fetching the news is using http:// and my website is https://.
So when the user clicked Click here to read more iframe pops up but with no content and it is because of iframe content is coming from a non-https site https://monosnap.com/file/aA18yA9twVGQajmgxONPRg8Y0DJdli And the browser blocked the content: https://monosnap.com/file/odbLBtPY1bsyh6210KzsvecV4Yu1Td

How can we solve this issue? Please help.

  • Adam Czajczyk

    Hello Thomas,

    I hope you're well today and thank you for your question!

    I have checked the site and if you want to keep those articles ("read more" part) inside a popup, I'm afraid there's no easy solution here.

    Your site is properly set up for SSL and the Autoblog is also working fine on the site. The problem here is the "target site". It's not only served over plain HTTP connection but also is not available via HTTPS. My point is that even if we managed to "rewrite" "read more" links to use HTTPS (which would "unblock" it in a browser) the content wouldn't be displayed anyway because the original site cannot be reached over HTTPS.

    That means that unless admins of the "target" site (from which you're fetching feed) implement SSL on it, there are two ways to go only:

    1. Quit on serving "read more" in a popup

    In this feed's configuration you can check the "Do you want to turn off this feature for this feed" checkbox in "Open Link in Popup" section and this will disable popup for this particular feed. Then, additionally, you can enable the "Open this link in a new window" option in "Post excerpt" section.

    This way "read more" link would open a separate browser tab instead of a popup and that would work fine, simply loading the original article over a http connection in a new browser tab.

    2. Setting up a proxy

    The other option would be to setup your own proxy that would actually fetch the content of the target link over http and then return it over https from your own domain. That would require a custom coded script that would:

    - first, hook up to Autoblog to replace the original URL of the target article with some internal link to a proxy
    - then upon request to that link it would connect (e.g. via CURL) to the original URL, download its content and serve back to your site.

    That's doable but it'd be really complex thing to do and would require quite a lot of custom coding.

    Personally, in case of feeds like this particular one, I'd go for the first solution (disabling popup) and also get in touch with the admins of the "target" site suggesting them to implement the SSL.

    If you have any additional questions, let me know please.

    Kind regards,
    Adam

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.