Are you or your students seeing a security warning when visiting your Thinkific site? If so, the most likely reason is that there's some insecure content on the page. Below we'll cover what that means, how to recognize this issue, and how to fix it!
In this article:
What's Insecure Content?
Insecure content is any file linked to from a web page via an HTTP link rather than an HTTPS link. (The 'S' signifies that the link is secure).
If there's any insecure content on a page, it means that the whole page can only be available at an HTTP link. If anyone tries to visit that page via HTTPS, they'll see a scary security message from their browser.
Here's what the error message looks like for most common browsers:
Needless to say, you don't want prospective or current customers seeing this message! Here's how to fix it.
Fixing Insecure Content
Step 1: Find the Insecure Content
Now you need to find out what's causing the browser security warning to show. The most common cause are files, hosted on other web pages, linked to via a "non-secure" HTTP link. This "mixed content" (the mix of HTTP and HTTPS URLs) causes browsers to flag the page as insecure.
To find out specifically which content is being flagged as insecure, visit whynopadlock.com.
Paste in the HTTPS URL for the offending page(s) on your Thinkific site in the field shown below and hit Check:
Why No Padlock will then give you a report on the page, highlighting any insecure elements on the page:
Step 2: Fix the Insecure Links
Now that you've found which file(s) are causing your page to be insecure, it's time to make them secure. You do this by using an HTTPS URL to link rather than an HTTP URL.
Images or Files in Text Lessons
If you have an issue with a file link in a Text Lesson, the best way to handle this is to upload the file directly to Thinkific rather than "hot-linking" to it. Hot-linking means to link from a web page to a file already hosted on another website. Uploading the file to Thinkific ensures that it will be available via a secure link.
For example, say the problem is with an image linked to from a text editor on Thinkific, you can use the Insert Image button to add it instead:
If the link is in a Multimedia Lesson, you can simply update your link to include HTTPS in the URL.
If you are have any insecure images or files on your site pages, make sure to upload the file using the built in Site Builder tools.
For Developers: If the issue is with a file that you've linked to when customizing your site, upload that file as an asset.
Step 3: Temporarily Deactivate SSL If Required
Having SSL enabled for your site is a great idea (we cover why in this article), but having this setting enabled does mean that all URLs for your site will redirect to HTTPS.
If you need to temporarily remove SSL while fixing any issues, please send us an email with the following:
- Make sure you are contacting us from the email address associated with the Site Owner
- Site URL:
- Confirmation that you need SSL temporarily deactivated
Once we reply confirming it has been deactivated, you will be able to force an insecure connection on your site by manually typing in http:// instead of https://.
Step 4: Test Your Fix and Reactivate SSL
Now that you've made all your content secure, visit the same page via an HTTPS URL. You should be able to access it without seeing any browser security warnings!
Now make sure to reactivate SSL for your site:
- Go to Settings
- Select Site URL in the left menu
- Under SSL Certificate, click the toggle beside Activate SSL
- And that's it!