-
Bug
-
Resolution: Done
-
Major
-
10.0.0.CR5
-
None
When setting secure attributed on http-listener and deploying web application which requires secured connection (<transport-guarantee>CONFIDENTIAL</transport-guarantee>. The web application should be accessible even from the http as the listener is defined as secured, but instead it results to redirect to https (when having redirect-socket defined) or to internal server error (when no redirect-socket).
Steps to reproduce:
- start eap and deploy attached confidential.war
- configure http-listener default as secured => /subsystem=undertow/server=default-server/http-listener=default:write-attribute(name=secure, value=true)
- reload the server
- go to http://127.0.0.1:8080/confidential/index.jsp
- you should get 200 response code, still you get 302, which is not correct as the listener is defined as secured
- clones
-
JBEAP-2804 Listener secure attribute doesn't work as expected
- Closed
- is cloned by
-
UNDERTOW-611 Listener secure attribute doesn't work as expected
- Resolved