We’ve enforced HTTPS for the Content Preview API. HTTP requests are no longer served directly. They now receive an HTTP 308 (Permanent Redirect) to the equivalent HTTPS URL.

This aligns with our documented security posture (Transport Layer Security for all API traffic) and reduces the risk of insecure traffic being used in production integrations.

What you need to do:

• Ensure your Content Preview API base URL is set to HTTPS.
• If you observe unexpected 308 responses, update the client to follow redirects or switch to HTTPS directly.