1.http问题
Mixed Content: The page at ‘https://blog.xms.su/’ was loaded over HTTPS, but requested an insecure script ‘http://blog.xms.su/wp-content/themes/dux/assets/js/main.js?ver=8.2’. This request has been blocked; the content must be served over HTTPS.
解决:在前端的head部分加上
<meta http-equiv="Content-Security-Policy" content="upgrade-insecure-requests" />
