Insecure content from markdown-it-bundle when using https


Recently updated my copy of discourse and noticed this weird little bug in the console that also prevents the preview window from loading.

[blocked] The page at was not allowed to run insecure content from

Only get this error when accessing the site via https. Accessing the site via regular http eliminates the problem and the preview loads as usual.

Did I miss a recent change somewhere in the setting that I need to adjust so that that particular asset gets loaded over https when connecting via https? All other assets seem to be loading correctly.

Got mix-content error and confused
(Rafael dos Santos Silva) #2

If you turn the site setting force_https ON, it should work, can you try that?


Already have that enabled.

(Rafael dos Santos Silva) #4

If you have that enable how can you access the site via HTTP? :thinking:



proxy_set_header X-Forwarded-Proto https;

to my outer nginx fixed this by letting discourse know that I needed the https:// assets instead of the https:// ones.

(Jeff Atwood) closed #6