remove calls to ssl_allowed as well

app/controllers/api/v0/base_controller.rb

@@ -25,8 +25,6 @@ module Api
       rescue_from CanCan::AccessDenied, with: :unauthorized
       rescue_from ActiveRecord::RecordNotFound, with: :not_found
 
-      ssl_allowed
-
       # Include these because we inherit from ActionController::Metal
       #   rather than ActionController::Base and these are required for AMS
       include ActionController::Serialization

app/controllers/spree/paypal_controller.rb

@@ -2,8 +2,6 @@
 
 module Spree
   class PaypalController < ::BaseController
-    ssl_allowed
-
     include OrderStockCheck
 
     before_action :enable_embedded_shopfront

app/controllers/spree/user_sessions_controller.rb

@@ -12,8 +12,6 @@ module Spree
     include Spree::Core::ControllerHelpers::Common
     include Spree::Core::ControllerHelpers::Order
 
-    ssl_allowed :login_bar
-
     before_action :set_checkout_redirect, only: :create
     after_action :ensure_valid_locale_persisted, only: :create