Learn more about advanced publishing options like enabling SSL, minification of HTML, CSS, JS, and using Secure Frame Headers.
Note: We’re transitioning to Workspaces, and are in the process of updating our content. Visit the Workspaces blog post to read more about these updates and changes, or visit our updated lesson on advanced publishing options. You can also learn how to check if your account is on Workspaces.
Advanced publishing options (like minifying HTML/CSS, enabling SSL, and others) are located in the publishing dropdown within the Designer or under project settings →hosting → Advanced publishing options.
SSL is enabled by default for projects created after 14 November 2018. If your project was created before that date, make sure to enable SSL and save the changes.
You can switch SSL off, however note that sites that don't use SSL may be labeled "not secure" by some browsers, strongly discouraging people from visiting your site. Also, if you disable SSL on sites using Ecommerce, checkout will be disabled and your online store will not function. The add to cart button as well as other Ecommerce elements will stop working as well.
Each time you disable or enable SSL on a Webflow-hosted site, you'll need to update your DNS settings.
Minifying your site's code can help your live website load faster, but makes your code a little harder to read. Minifying the HTML can also fix spacing issues with inline-block elements.
Here, you can minify CSS, HTML, and/or JS separately.
Using secure frame headers protects your site from several kinds of clickjacking attacks by restricting where your site can be embedded. Enabling this option will add a couple of headers to your published pages to prevent the pages from being embedded in iframes.
Note: It is not possible to embed webflow.io subdomains in iframes due to Webflow staging domain security. However, if you add a custom domain or custom subdomain to your project, you can embed your project in iframes when disabling secure frame headers.