Listener secure attribute doesn't work as expected -------------------------------------------------- Key: WFLY-6002 URL: https://issues.jboss.org/browse/WFLY-6002 Project: WildFly Issue Type: Bug Components: Web (Undertow) Affects Versions: 10.0.0.CR5 Reporter: Radim Hatlapatka Assignee: Stuart Douglas Fix For: 10.0.0.Final Attachments: confidential.war When setting {{secure}} attributed on {{http-listener}} and deploying web application which requires secured connection ({{<transport-guarantee>CONFIDENTIAL</transport-guarantee>}}. The web application should be accessible even from the {{http}} as the listener is defined as secured, but instead it results to redirect to https (when having redirect-socket defined) or to internal server error (when no redirect-socket). Steps to reproduce: # start eap and deploy attached confidential.war # configure http-listener default as secured => /subsystem=undertow/server=default-server/http-listener=default:write-attribute(name=secure, value=true) # reload the server # go to http://127.0.0.1:8080/confidential/index.jsp # you should get 200 response code, still you get 302, which is not correct as the listener is defined as secured