Normally the following in web.xml

<security-constraint>
<web-resource-collection>
<web-resource-name>webapp</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>

would make your web application to redirect from http to https. This is the case of JBoss EAP 6.1. Just tried out WIldFly. Undertow gives me the following instead (via AJP listener):

07:57:57,233 ERROR [io.undertow.request] (default task-6) UT005023: Exception handling request to /dss/index.jsf: java.lang.IllegalStateException: No secure listeners defined.
at org.wildfly.extension.undertow.ServletContainerService.lookupSecurePort(ServletContainerService.java:107)

Directly navigating to the web application over SSL does work.

Tomaz Cerar:
This is a bug.

it tries to find ajp connector with ssl enabled which is useless for AJP as SSL can be end pointed on apache.

It needs this info to know to what port to redirect to, as ssl can be on any port.