Hello @chrisdalmeida,
Thank you for using Paid Memberships Pro.
The SSL Seal is not required for a site. It’s not standard anymore. Most browsers now check for a certificate and add in the URL line if the site is secure or not. Having a padlock in your address bar is optimal.
You maybe able to get the needed code from Lightsail:
https://lightsail.aws.amazon.com/ls/docs/en_us/articles/understanding-tls-ssl-certificates-in-lightsail-https
You should be able to copy/paste it into the site if it’s just HTML and an image. If it’s javascript, we may have a code snippet to help it to work.
Kim W
Glad to help.
In addition, this post has some code snippets and information for using code that includes .js. https://www.paidmembershipspro.com/show-your-ssl-seal-code-on-membership-checkout/
Kim W
Thread Starter
sirhc
(@chrisdalmeida)
@kimwhite thank you.
I am getting a lot of errors in my console in the payment page:
m=b,_tp,_r:209 This document requires 'TrustedScript' assignment. c. @ m=_b,_tp,_r:209 onreadystatechange @ VM210:58 XMLHttpRequest.send (async) XMLHttpRequest.send @ VM210:66 .an.send @ m=b,_tp,_r:213 .en @ m=b,_tp,_r:210 .yE @ m=IZT63,ZyYHPb,ws9Tlc,vfuNJf,PrPYRd,hc6Ubd,Das5Le:29
v @ m=IZT63,ZyYHPb,ws9Tlc,vfuNJf,PrPYRd,hc6Ubd,Das5Le:43
.nF.flush @ m=IZT63,ZyYHPb,ws9Tlc,vfuNJf,PrPYRd,hc6Ubd,Das5Le:43 .VZ.log @ m=IZT63,ZyYHPb,ws9Tlc,vfuNJf,PrPYRd,hc6Ubd,Das5Le:55
A0.O @ m=IZT63,ZyYHPb,ws9Tlc,vfuNJf,PrPYRd,hc6Ubd,Das5Le:232
8Refused to evaluate a string as JavaScript because 'unsafe-eval' is not an allowed source of script in the following Content Security Policy directive: "script-src 'self'".
VM90:58 Refused to evaluate a string as JavaScript because 'unsafe-eval' is not an allowed source of script in the following Content Security Policy directive: "script-src https://m.stripe.network 'sha256-e/Jqu4k9Gk1ZCWO6StAsfhF3i7qgIwfuitaD1g9DyvE='".
onreadystatechange @ VM90:58
XMLHttpRequest.send (async)
XMLHttpRequest.send @ VM90:66
(anonymous) @ m.stripe.network/out-4.5.42.js:1
i @ m.stripe.network/out-4.5.42.js:1
s @ m.stripe.network/out-4.5.42.js:1
(anonymous) @ m.stripe.network/out-4.5.42.js:1
(anonymous) @ m.stripe.network/out-4.5.42.js:1
Promise.then (async)
w @ m.stripe.network/out-4.5.42.js:1
E @ m.stripe.network/out-4.5.42.js:1
y @ m.stripe.network/out-4.5.42.js:1
e @ inner.html:1
VM90:58 Refused to evaluate a string as JavaScript because 'unsafe-eval' is not an allowed source of script in the following Content Security Policy directive: "script-src https://m.stripe.network 'sha256-e/Jqu4k9Gk1ZCWO6StAsfhF3i7qgIwfuitaD1g9DyvE='".
onreadystatechange @ VM90:58
XMLHttpRequest.send (async)
XMLHttpRequest.send @ VM90:66
(anonymous) @ m.stripe.network/out-4.5.42.js:1
i @ m.stripe.network/out-4.5.42.js:1
s @ m.stripe.network/out-4.5.42.js:1
h @ m.stripe.network/out-4.5.42.js:1
e @ inner.html:1
m=_b,_tp,_r:209 This document requires 'TrustedScript' assignment.
divi fonts also failing to load :/
Thread Starter
sirhc
(@chrisdalmeida)
The evaluation of string error is actually normal I gathered.
I read your documentation, it says shared or public SSL certificates are not valid.
but I’m trying to understand if the Amazon public and free one fall in the same category or if I have to get a private one
”
AWS Certificate Manager Pricing
Public SSL/TLS certificates provisioned through AWS Certificate Manager are free. You pay only for the AWS resources you create to run your application.”
https://aws.amazon.com/certificate-manager/pricing/?nc=sn&loc=3
