Does not go to @Secured controller even after Successful Login

[abhaygoel]

Steps to Reproduce

Created a sample app using Grails 4.0.1, Spring Security 4.0.0.RC2.
Sample app is located at https://github.com/didinj/grails4-spring-security-login-example

Expected Behaviour

The control should get redirected to the url that led us to the login page. Alternatively, after login, if we change the browser url to a secured resource, we should be able to hit that resource since we are already logged in.

Actual Behaviour

Login is successful since we see that in the logs. However, we are not able to access a secured resource. It continuously redirects us back to the login page.
Tell us what happens instead

Environment Information

• Operating System: Mac OSX Catalina
• Grails Version (if using Grails): 4.0.1
• JDK Version: JDK 1.8 u0_121

Example Application

• https://github.com/didinj/grails4-spring-security-login-example

[abhaygoel]

Just realized that it works as expected on https. Is there a default setting that I'm missing?

[puneetbehl]

@abhaygoel The sample application is working fine with HTTP.