Using SSL is not secure because of gravatar

[pcottrell]

I am using the NGINX reverse proxy for SSL, and the page is not secure.

Problem: When there is no gravatar on a profile it defaults to http to pull the default image.

Possible solution, but I cant find one. Is there a config setting to make mautic force SSL, or something else?

---

Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.

[Gregy]

Hi, can you please post your nginx config here?

[dbhurley]

This sounds like something to be reported on https://github.com/mautic/mautic project.

[luizeof]

@dbhurley @Gregy @pcottrell this only happen when lead does not have an gravatar.

Otherwise the image is loaded over SSL

[rori4]

I have the same issue. Over to the mautic repo they say its not a mautic issue but a server configuration problem. I went over the suggestions in https://github.com/mautic/mautic/issues/7577 with no luck

I use this setup as in the ssl example: https://github.com/mautic/docker-mautic/tree/master/examples/mautic-example-nginx-ssl

Any suggestions?

[rori4]

Ok adding $_SERVER['HTTPS'] = 'on'; to the index.php seems to have resolved the issue.

To get inside the docker bash type: docker exec -it <mautic_container> bash

And to edit the index.php add nano or vim e.g: apt update && apt install nano