configure openerp server for cross domain

Question

Hi, I am using OpenERP V7 with Ubuntu.

following the guide : https://github.com/vaab/js-oe-json [1]  to work with openERP using Jquery, I saw:

"You can force your openerp server to set these headers thanks to apache when used in proxy mode by adding these in your apache configuration:"

Header set Access-Control-Allow-Origin "*"
Header set Access-Control-Allow-Methods "POST, GET, OPTIONS"
Header set Access-Control-Allow-Headers "origin, content-type, accept"

To do so, does it means that I hav

Torsten Francke · Answer

The Script Access OpenERP per Javascript. In general no Browser allows calling Javascript to a different domain. This is a basic of security.
In some context it can be helpfull to have a way that other domains can execute Javascipt on your webside. This will be implemented in "Access-Control-Allow" HTTP Header.
In OpenERP you can not excess the HTTP Header, so he adds a apache as proxy. The installation is not part of the manuel.
*BUT: i recommend: don't do this becouse it breaks your security o

Powiązane posty	Odpowiedzi	Widoki
apache 502 proxy error after updating to 7th version Rozwiązane v7 apache 502error	1 gru 23	68973
Minimum Lot Charge For Sales Order Line Items v7	0 gru 24	9448
Record Rule to allow a User to update their own Employee object without belonging to Officer group Rozwiązane v7	3 wrz 24	21590
How to activate the Technical Features? Rozwiązane v7	5 gru 24	52884
Way to only allow a specific DB to be the default? Rozwiązane v7	4 lip 24	10552

To pytanie dostało ostrzeżenie

Podoba Ci się ta dyskusja? Dołącz do niej!