Mod download pages have bad HTTPS config, making downloading mods impossible

[SamusAranX]

Take this one for instance: https://www.nexusmods.com/fallout4/mods/6091

Hitting the Download (NMM) button makes some generic, useless error message pop up, while the real error hides in the console:

Mixed Content: The page at 'https://www.nexusmods.com/fallout4/mods/6091' was loaded over HTTPS, but requested an insecure XMLHttpRequest endpoint 'http://www.nexusmods.com/fallout4/ajax/downloadwithnmm?id=98423'. This request has been blocked; the content must be served over HTTPS.

I'm not sure why the endpoint URL isn't on HTTPS already, considering the it's on the same domain.

I get you're working on a successor to NMM, but as long as it's not here, you should at least keep the infrastructure for the last version of NMM alive.

[Dark0ne]

Nexus Mods doesn't currenty support HTTPS so you should not be browsing the site on that protocol. Many features of the site will not work if you do.

 

The forums do have a secure login so if you're concerned about middle-man attacks, login on the forums in the meantime. It also logs you in to the site.