Setting That Allows Non-Secure HTTP Connections for Sites Was Removed

As part of updates related to Google Chrome’s SameSite cookie changes, HTTPS connections are required to access Salesforce. The Require Secure HTTPS Connections release update was enforced in production orgs on May 1, 2020. In Winter ’21, we removed the Sites setting, Require Non-Secure Connections (HTTP), because HTTP connections are no longer permitted for authenticated requests.

Where: This change applies to Lightning Experience, Salesforce Classic, and all versions of the Salesforce app in all editions.