Access-Control-Allow-Origin: <origin header value> Access-Control-Allow-Credentials: true
I'm trying to keep this errors from triggering...You didn't need to change them as you were already using the protocol-less code - i.e. no ="http: or ="https: at the start of the src line, just ="//
I've just tried to access your site via - https://www.mymilitia.com/ and get an invalid certificate error: The certificate is only valid for the following names: *.myhsphere.cc, myhsphere.cc
Have you temporarily disabled it?