I requested a Let’s Encrypt certificate for the domain of my organization’s WordPress site this morning and it was addressed and installed in record time. But when I test the https URL (in Chrome) this afternoon, The page loads unstyled, with a note saying in “this page is trying to load scripts from unauthenticated sources.”
My next step was going to be to force https (DreamHost guide) but I don’t want to do that until solving this display issue.
Ever-hated by Google PageSpeed, I know Google Analytics and AddThis share buttons are called from off-site and not all of them use https addresses. But those also should not be affecting our main display and functionality, right?
http://m.addthisedge.com/…-4e7226ca76b2ae71/_ate.track.config_resp (60 seconds)
http://s7.addthis.com/js/300/addthis_widget.js (10 minutes)
https://www.google-analytics.com/plugins/ua/linkid.js (60 minutes)
http://www.google-analytics.com/analytics.js (2 hours)
http://www.google-analytics.com/ga.js (2 hours)
https://www.google-analytics.com/analytics.js (2 hours)
I’ve since gathered that this switch should not be made site-wide right away and that it will take a lot of individual mopping up of any links that are protocol-specific. But I’d like to know if there is any process for this on the server-side before we proceed. Thanks for any and all guidance.