Why is some of my content missing over HTTPS?

If you're viewing your site over HTTPS and notice that some content is missing (such as embedded videos or search boxes), that likely indicates a mixed content error. A mixed content error occurs when a page attempts to load content with an HTTP source on a page being viewed over HTTPS. In order for the browser to ensure that your connection remains secure, the content will be blocked and your browser will indicate that the page contains insecure content (i.e. the browser will show a "Not Secure" label or icon next to the page URL).

To prevent this from happening, you will either need to change the content's source URL to HTTPS, or remove the content from the page. This can include things like:

  • Images in custom headers or footers
  • Embedded pages or widgets inside of iframes (this includes pages displayed in LibWizard tutorials)
  • Embedded widgets, such as videos or catalog search boxes
  • External stylesheets (e.g. in your site's Custom JS/CSS code)
  • External javascript files (e.g. in your site's Custom JS/CSS code)

In order for a browser to completely consider a page secure, you must ensure that it does not contain any mixed content. If any of your embedded content can support being loaded over HTTPS, then update its source URL to use https:// instead of http:// before enabling HTTPS for your site.

If a piece of embedded content does not support HTTPS at all, however, please contact the content provider or vendor to see if they can provide HTTPS-compatible code. Otherwise, you may want to consider removing the content from your guides until you can find a secure alternative.

Related Articles