Perhaps not a bug, however I figured it was worth submitting...

When a site is run over HTTPS the theme will cause the browser to kick a warning about running non HTTPS based scripts. It's the URL that is used to bring in the Google fonts. When I changed it to HTTPS the warning goes away. I am not sure if it would make sense to change the URL to the fonts to HTTPS by default or if there is a syntax that would allow the skin to pull them via HTTP when the site is on HTTP vs HTTPS when served over HTTPS.


Pixel Exit Staff
Hi, Thanks for posting

Yes we have been aware of the SSL warning. Usually removing the 'http' from the links fixes the issue. With that said, in XenBase 1.4 we are looking at moving it to using the JavaScript method for the google fonts.

<script type="text/javascript">
  WebFontConfig = {
    google: { families: [ 'Open+Sans::latin' ] }
  (function() {
    var wf = document.createElement('script');
    wf.src = ('https:' == document.location.protocol ? 'https' : 'http') +
    wf.type = 'text/javascript';
    wf.async = 'true';
    var s = document.getElementsByTagName('script')[0];
    s.parentNode.insertBefore(wf, s);
  })(); </script>
We have not tried this implementation yet but I see no reason why it would not work. So I will tag this as a future fix until XB 1.4 rolls out.



Pixel Exit Staff
There's a few fonts still in our styles using the http:// in front, we'll make sure to ship it out without.


Pixel Exit Staff
All fonts we use via google fonts have been resolved removing the http:,

Fixed in the 1.4.0 Beta 1 release.

Pre-Sale Questions

If you have any questions or concerns you want to ask before you make a purchase don't hesitate to use one of our multiple support channels for your convenience.