This forum is now just an archive. Use the new Q&A website
It is currently Thu Apr 24, 2014 12:42 pm

All times are UTC + 2 hours




Forum locked This topic is locked, you cannot edit posts or make further replies.  [ 2 posts ] 
Author Message
 Post subject: 6.1 Configuration. Securing client connections
PostPosted: Tue Nov 15, 2011 7:11 am 
Offline

Joined: Fri Aug 12, 2011 5:27 am
Posts: 39
Location: Wellington, NZ
Now that I have the new 6.1 webclient working, I'm trying to lock it down to the same level as I've had 6.0.3 locked down.

With 6.0.x, I was able to lock it down so that the only the local host was allowed to connect to the netrpc service. The web client running on the server. Using an apache ssl proxy I was able only allow https access to the web client.
The unsecured xmlrpc service was disabled.
Access from outside the server eg GTK client (or OpenOffice plugin) could only connect using xmlrpcs.

I can't replicate this setup with 6.1.

With the new web client, are there other changes to the way the server accepts client connections? Changes to the configuration options? .. .. that are documented? ;)

Cheers
Ian

Quote:
[options]
; /etc/openerp-server.conf
; 6.0.3 version
; db_* removed for this example

netrpc = True
netrpc_interface = 127.0.0.1
netrpc_port = 8070

xmlrpc = False

xmlrpcs_port = 8071
secure = True
secure_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
secure_pkey_file = /etc/ssl/private/ssl-cert-snakeoil.key


Top
 Profile  
 
 Post subject: Re: 6.1 Configuration. Securing client connections
PostPosted: Wed Mar 07, 2012 6:21 am 
Offline

Joined: Sun Aug 31, 2008 11:09 pm
Posts: 3
It is not documented anywhere, but, apparently, the xmlrpc service is now provided the new web application module. You should be able to connect the GTK client using secure xmlrpc on the same port as the secure web service.

I have a similar configuration using Pound (http://www.apsis.ch/pound) instead of Apache for SSL termination.

- Mohammad Alhashash


Top
 Profile  
 
Display posts from previous:  Sort by  
Forum locked This topic is locked, you cannot edit posts or make further replies.  [ 2 posts ] 

All times are UTC + 2 hours


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:

Protected by Anti-Spam ACP