By accessing /http-bind or /crossdomain.xml openfire redirect with the http status code 302 to the /http-bind/ and /crossdomain.xml/ (it adds a trailing slash)
That means that by calling e.g. /crossdomain.xml 2 request need to be done, to get the response. Another problem is that some rest clients don't follow the redirect
I'm not sure if we should have a distinction between /http-bind and /http-bind/, but it surely is a bug to have /crossdomain.xml redirect to /crossdomain/. The fix for this issue should not allow /crossdomain/ to be a valid resource - it should prevent the redirect from happening instead.