Accessing endpoints over unencrypted http should be avoided

Impact area

Security

Severity

High

Affected element

Apex Class

Rule ID

SF-0020

Impact

Redirects to http sites can be unsafe.


Remediation

You should always use https for security.

Time to fix

30 min

References

This rule is linked to Common Weakness Enumeration CWE-284 Improper Access Control.




Last modified on Oct 13, 2020