Overslaan naar inhoud
Je moet geregistreerd zijn om te kunnen communiceren met de community.
Alle posts Personen Badges
Labels (Bekijk alle)
odoo accounting v14 pos v15
Over dit forum
Deze vraag is gerapporteerd
ssl
1 Beantwoorden
9550 Weergaven
Avatar
ABIDI Jihen

I was working fine with openerp v7 over SSL, but when i merged to V8, SSL is not working any more: it's automatically redirected to http

this is my apache configuration for the V7:

<VirtualHost *:443>
    ProxyPreserveHost On
    Servername crm.impactcontact.tn
    ServerAdmin Admin
    ProxyPass / http://192.168.x.x:8072/
    ProxyPassReverse / http://192.168.x.x:8072/
    SSLEngine on
    SSLCertificateFile /etc/pki/tls/certs/squid.crt
    SSLCertificateKeyFile /etc/pki/tls/certs/squid.key
</VirtualHost>

I also used:

<VirtualHost *:443>
    ProxyPreserveHost On
    Servername crm.impactcontact.tn
    ServerAdmin Admin
    ProxyPass / http://192.168.x.x:8072/
   <Location />
    ProxyPassReverse / 
   </Location>
    SSLEngine on
    SSLCertificateFile /etc/pki/tls/certs/localhost.crt
    SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
   RequestHeader set “X-Forwarded-Proto” “https”
   SetEnv proxy-nokeepalive 1
</VirtualHost>

But, it still not working, any ideas

Thanks

Avatar
Annuleer
Avatar
Viktor Zhuromskyy
Beste antwoord

Here is my perfectly woring setup of Apache 2.4.7 vhost under Ubuntu 14.04. One thing I cannot get working is openerp-gevent server proxying, so it is commented out in my current config:


<VirtualHost *:443>
    ServerName erp.myserver.zzz
    ServerAdmin webmaster@myserver.zzz

        ProxyPreserveHost On
    ProxyRequests Off

    ProxyErrorOverride On

    # Turn off gzip compression
    #SetEnv no-gzip 1

    # If in any case we get 502 error, lets increase proxy buffer from default 8192 bytes
    ProxyIOBufferSize 16384

        SSLProxyEngine on
        SSLProxyVerify none
        SSLProxyCheckPeerCN off
        SSLProxyCheckPeerName off

        Header set Strict-Transport-Security "max-age=31536000; includeSubDomains"
        RequestHeader set X_FORWARDED_PROTO 'https' env=HTTPS
        RequestHeader set X-Forwarded-Proto "https" env=HTTPS

    <Proxy balancer://odoo-server>
        BalancerMember http://127.0.0.1:8069
        ProxySet lbmethod=byrequests failonstatus=503
    </Proxy>

        ProxyPass / balancer://odoo-server/ timeout=600
        ProxyPassReverse / http://127.0.0.1:8069/ 

    <Proxy balancer://odoo-gevent>
        BalancerMember http://127.0.0.1:8072
        ProxySet lbmethod=byrequests failonstatus=503
    </Proxy>

        ProxyPass /longpolling balancer://odoo-gevent/ timeout=30
        ProxyPassReverse /longpolling http://127.0.0.1:8072/longpolling

    <Location />
        DirectoryIndex index.html
        Options +FollowSymLinks +MultiViews

        AllowOverride AuthConfig Fileinfo Options All
            RewriteEngine On
            RewriteCond %{HTTPS} off
            RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}    
            AuthUserFile /etc/apache2/.htpasswd
            AuthName Hello
            AuthType Basic
            Require user admin
    </Location>

    <LocationMatch "/web/database/manager">
        DirectoryIndex index.html
        Options +FollowSymLinks +MultiViews

        AllowOverride AuthConfig Fileinfo Options All
            RewriteEngine On
            RewriteCond %{HTTPS} off
            RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}    
            AuthUserFile /etc/apache2/.htpasswd
            AuthName Hello
            AuthType Basic
            Require user admin
    </LocationMatch>

    SSLEngine on
    SSLCertificateFile /etc/ssl/certs/wildcard.myserver.zzz.crt
    SSLCertificateKeyFile /etc/ssl/private/wildcard.myserver.zzz.key
    SSLCertificateChainFile /etc/ssl/certs/wildcard.myserver.zzz-ca-bundle.crt 
    SSLOptions +StdEnvVars

    LogLevel warn
    ErrorLog ${APACHE_LOG_DIR}/erp.myserver.zzz-ssl_error.log
    CustomLog ${APACHE_LOG_DIR}/erp.myserver.zzz-ssl_access.log "%V:%p %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x %l %u %t \"%r\" %b %>s %O \"%{Referer}i\" \"%{User-Agent}i\""
</VirtualHost> 

 

 

 

Avatar
Annuleer
Luke Branch

Hi Viktor, Could you let me know what issues you encountered when trying to setup a proxy for openerp-gevent? I'm looking to get this setup myself soon and have had no problem getting Odoo to run in gevent mode. Is this something you've encountered only when trying to setup Odoo running behind a proxy?

Viktor Zhuromskyy

i see the openerp-gevent process is running on port 8072, and even can telnet it, but the openerp-server throws exception when im_chat* modules are installed: 2014-09-20 04:34:17,126 10947 ERROR devdesco openerp.http: Exception during JSON request handling. Traceback (most recent call last): File "/var/www/odoo/openerp/http.py", line 499, in _handle_exception return super(JsonRequest, self)._handle_exception(exception) File "/var/www/odoo/openerp/http.py", line 516, in dispatch result = self._call_function(**self.params) File "/var/www/odoo/openerp/http.py", line 282, in _call_function return checked_call(self.db, *args, **kwargs) File "/var/www/odoo/openerp/service/model.py", line 113, in wrapper return f(dbname, *args, **kwargs) File "/var/www/odoo/openerp/http.py", line 279, in checked_call return self.endpoint(*a, **kw) File "/var/www/odoo/openerp/http.py", line 732, in __call__ return self.method(*args, **kw) File "/var/www/odoo/openerp/http.py", line 375, in response_wrap response = f(*args, **kw) File "/var/www/odoo/addons/bus/bus.py", line 188, in poll raise Exception("bus.Bus unavailable") Exception: bus.Bus unavailable 2014-09-20 04:34:17,127 10947 INFO devdesco werkzeug: 127.0.0.1 - - [20/Sep/2014 04:34:17] "POST /longpolling/poll HTTP/1.1" 200 -

Gerelateerde posts Antwoorden Weergaven Activiteit
SSL
ssl
Avatar
Avatar
Avatar
3
mrt. 18
4242
BUG W8/VISTA : URLError: <urlopen error (Errno 10061) from paypal return with SSL under W8
ssl
Avatar
0
mei 16
5429
Running OpenERP7 in SSL (XML-RPCS) mode
ssl
Avatar
0
mrt. 15
4401
Can anyone help me for fixing this? it said my website not secure
ssl https
Avatar
0
jan. 24
2590
Haproxy SSL configuration
ssl LoadBalancer
Avatar
Avatar
Avatar
2
mrt. 23
5936