Back to all lessons
Lesson library

Advanced publishing options

Learn more about advanced publishing options like SSL, minification of HTML, CSS, JS, and secure frame headers.

Note: We’re transitioning to Workspaces, and this lesson has been updated to reflect that change. Visit the Workspaces blog post to read more about these updates and changes. 
If your account hasn’t yet switched over to Workspaces, please visit our legacy lesson about advanced publishing options. You can also learn how to check if your account is on Workspaces.

This video features an old UI. Updated version coming soon!

You can utilize advanced publishing options to help your site load faster and protect your site from several kinds of clickjacking attacks. 

Advanced publishing options are located in the publishing dropdown in the Designer or under Site settings > Publishing tab > Advanced publishing options

The advanced publishing options have the enable SSL, minify HTML and Minify JS turned to ON.

Enable SSL

SSL is enabled by default for sites created after November 14th, 2018. 

To enable SSL on a site created before that date, set Enable SSL to on, save your changes, and publish your site. 

You can toggle Enable SSL off, but keep in mind that sites that don’t use SSL may be labeled “not secure” by some browsers, strongly discouraging people from visiting your site. We strongly recommend enabling SSL. 

For security, you cannot disable SSL on Ecommerce or Memberships sites.

Important: Each time you disable or enable SSL on a Webflow-hosted site, you’ll need to update your DNS records. Learn more about DNS records for SSL and non-SSL hosting.

Minify HTML, CSS, JS

You can minify HTML, CSS, and/or JS separately. Minifying your site’s code can help your live website load faster, but can also make your code a little harder to read. Minifying the HTML can also fix spacing issues with inline-block elements.

Good to know: You can minify HTML, CSS, and/or JS separately.

Use secure frame headers

Using secure frame headers protects your site from several kinds of clickjacking attacks by restricting where your site can be embedded. Enabling this option will add a couple of headers to your published pages to prevent the pages from being embedded in iframes.

Note: It isn’t possible to embed Webflow staging subdomains (e.g., yoursite.webflow.io) in iframes, due to Webflow staging domain security. However, if you add a custom domain or subdomain to your site, you can embed your site in iframes as long as Use secure frame headers is set to off
Try Webflow — it's free