I submitted some changes to trunk rev. 1700739:
1. Use response.sendRedirect to forward url to login page instead of the response.setHeader("location", url), this avoids the warning messages from EntityUtilProperties. Besides, when testing in similar config as demo-ofbiz-trunk is (only 80 and 443 open, port 80 -> 8080, port 443 -> 8443), this change can keep the url to 80 or 443.
2. Replace tabs to spaces in several java files.
Hope it works on demo-ofbiz-trunk.