I'm going to assume that you are actually seeing it redirect to https://localhost:8081
(as opposed to 8181 and http).
Those URLs specifically are marked as requiring SSL in applicationContext-security.xml
:
<sec:intercept-url pattern="/register*" requires-channel="https" />
<sec:intercept-url pattern="/login*/**" requires-channel="https" />
<sec:intercept-url pattern="/account/**" access="ROLE_USER" requires-channel="https" />
<sec:intercept-url pattern="/checkout/**" requires-channel="https" />
<sec:intercept-url pattern="/null-checkout/**" requires-channel="https" />
<sec:intercept-url pattern="/null-giftcard/**" requires-channel="https" />
<sec:intercept-url pattern="/confirmation/**" requires-channel="https" />
If you comment those out (or remove them) then you will no longer see redirects. The alternative is to just configure SSL on your Tomcat instance.
Furthermore, the @RequestMapping
that you mentioned on LoginController
should just be @RequestMapping("/login")
. There is no need to include the /mycompany
part of that (which I assume is the Tomcat context) since Spring URLs ignore it.