first, I deployed a website using Firebase hosting.
then, bought a domain from Godaddy, and linked them together.
note: everthing working great so far - https etc.
But, when loading the site(with chrome) I get this error:
This page is trying to load scripts from unauthenticated sources
Example in https://saharmillis.info/
When pressing the "load unsafe scripts" the HTTP get cancelled.
In the console I get some errors about link by http instead of https,
but all my CSS files & scripts, located on my Firebase host locally.
If you open the developer console of Chrome, you will see very explicit errors with the URLs that cause the problem:
So your code is (directly or indirectly) loading fonts that are served over HTTP. Note that
fonts.gstatic.com
can serve the files over HTTPS as well. So if you find where the includes come from, you can just replacehttp://
withhttps://
to get rid of the error.Update: a quick check shows that the URLs are in the files in your font folder. E.g.
Droid+Sans.css
: