Symptom
HSTS was ever setup in the domain. After disabled it in server-side, the HTTP URLs in the website cannot work.
Cause
Chrome is still enabling HSTS in client-side.
Solution
Disable it in Chrome.
- Input “chrome://net-internals/#hsts” in Chrome’s URL box.
- Enter the domain name which was enabled HSTS before under “Delete domain security policies” section and press the “Delete” button.
- Clear the cache in the browser