Membership SSL

Hey,

I Finally have the Membership plugin up and running, with one major caveat: A page element is causing the SSL to be flagged as invalid, and i get different outputs depending on the browser used (?!)

The SSL parses just fine to services like WhyNoPadlock.com yet...

ssl-1.jpg - SSL broken in Chrome.
ssl-2.jpg - Completely different page in Firefox, but the SSL isn't flagged.
ssl-3.jpg - In IE I get the same page as in Chrome, but another SSL flag.
ssl-4.jpg - In IE, after showing all non-secure items -- Reported error on authorizenet.js

Any help appreciated.

  • aecnu
    • WP Unicorn

    Greetings opus13,

    Thank you for bringing this issue to our attention.

    I will notify the lead developer of this issue and see if I can get him in here for his advice/advise concerning this issue.

    Though this may take a bit longer then a normal ticket, I will try to get him in here asap.

    Thank you for being a WPMU Dev Member!

    Cheers, Joe

  • webcrafter
    • WPMU DEV Initiate

    I would first check the code of the page to makes sure that all references to graphic files and directories are either direct /img/image.jpg for example and not via url inside the code such as http://www.yoursite.com/img/image.jpg...if this method is used then you must use the https://www protocol not to get this error when you access securely. If you are referencing outside links that are not being linked to securely it can also be causing this issue such as a verification link to your ssl provider, or credit card gateway, if this link is with the http:// and not the https:// protocol...

    This is most often the cause for such errors in html code....one way to easily check for this problem would be to open the files in a text editor like notepad++ and do a search for http:// and see what comes up....

    This may or may not be the issue but perhaps worth looking at....

    hope it is helpful,
    Brad

  • opus13
    • Site Builder, Child of Zeus

    Odd. On a lark I tried the plugin on a test install (on the same server). The only /dir/ difference is that the wordpress installation is located in a subfolder names /test/.

    See attached. The page renders correctly, but the SSL is not listed as valid. After checking whynopadlock, a plugin (all-in-one calendar) is causing the issue. The weird part is.. that plugin is installed in the regular install of the main site as well without issue (!)

  • opus13
    • Site Builder, Child of Zeus

    I decided to do some more poking.

    I set up another installation in a /test2/ dir, and didn't install any plugins or themes (just to be sure) and set up membership. I went to the /register/ page, clicked the button and... was redirected to the root domain http://www.xxx.com/register page.

    That's a new one, i guess there's some sort of default redirecting going on?

    Also, I installed the newly-available update, and on my root domain, I am now not getting any recognition of the SSL when using the membership plugin.

  • opus13
    • Site Builder, Child of Zeus

    Figured it out:

    When non SSL compliant links are attached to the page the Membership plugin does not embed into the site structure correctly, and an alternate URL is delivered to the browser containing only the secure items. This manifests in different ways in different browsers. IE shows only '-1' in the browser view, and other browsers show reduced interface components.

    This can also be compounded by attempting to use the 'pop up window' option under Membership > Options > Membership Pages > Registration Page. There is no chance of actually viewing http: transport articulated links in the page content, so the SSL validates, but nothing actually works.

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.