Community mailing list archives

Re: Odoo v9 Community and Enterprise editions

Libertus Solutions, Alan Bell
- 05/11/2015 09:26:46

On 11/05/15 14:08, Antony Lesuisse wrote:
> I spent a little time browsing the use GNU faq page you linked and i found
> something about InteractingRemotely
> I think Odoo as an HTTP server falls in that category. I don't think user
> means the functional res.users
well I agree with that, it would certainly include someone anonymously 
browsing the ecommerce site or portal.
>   but somebody who uses the software even just to
> render a page an HTML page with a login form.
this is more debatable, I would argue that a failed login doesn't count 
as an interaction, but it is a reasonable position to say that it does. 
It is largely an academic point, because if you are using the ecommerce 
or any web module then you are making it publicly available anyway.
> Yes it would be very easy to add a controller auth public to base
> "/base/" this controller would zip on the fly the content of the
> server and all addons paths. And we would add the link in the footer of every
> pages including the login page.
something like that would be great, however I am mildly concerned about 
the ddos potential of it - especially if it was a link on the login 
page. Maybe going through some kind of captcha first would be sensible.