Getting "Mixed Content" when adding profile picture

  • Site URL
  • Ghost ver: 3.40.1
  • Node 12.18.3
  • Installed through DO droplet

The app is configured with Cloudinary integration to serve images.

I’m using a slightly modified fork of Lyra and followed the example in this blog post to edit post-cards.hbs, header-background.hbs and feature-image.hbs to use Cloudinary urls.

If I add a profile picture the browser connection shows “Not Secure” and the console displays 15 warnings of Mixed Content: The page at '<URL>' was loaded over HTTPS, but requested an insecure image '<URL>'. This content should also be served over HTTPS.

All warning are linked to the profile picture. If I delete the profile picture the warning disappears and the browser connection is “Secure

I have deleted the profile image after some users complained of not being able to access the site because of “Not Secure” connection.

I would like to know if there is a way to add the profile picture and avoid the "Mixed Content" warning.