Https for the client-web, encrypts communication between your webbrowser and client-web server which is connected to openerp-server.To enable https for the you can use web-server and use its proxy functions.
1. Enabling apache proxy module can be done by
sudo a2enmod proxy ssl proxy_http
2. Https for the client-web can be made to run on any other port than default ssl, we have to include the port to be used in /etc/apache2/ports.conf inside the <IfModule mod_ssl.c> container as
NameVirtualHost *:33225
Listen 33225 (for example)
3. Proxy Settings- mywebname-ssl
Create a new file using and add the following lines,
sudo vim /etc/apache2/sites-available/mywebname-ssl
<VirtualHost *:33225>
ServerAdmin webmaster@localhost
ServerName <yourwebsitename>
ServerAlias www.<yourwebsitename>.com
SSLEngine on
SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem
SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key
<Proxy *>
Order deny,allow
Allow from all
</Proxy>
ProxyRequests Off
ProxyPass / http://127.0.0.1:8080/ (OpenERP web running port)
ProxyPassReverse / http://127.0.0.1:8080/
# Fix IE problem (http error 408/409)
SetEnv proxy-nokeepalive 1
</VirtualHost >
4. Enabling the site can be done by
sudo a2ensite mywebname-ssl
5. Typing at the browser https://yourwebsite:33225 will redirect you to the required web page if there are some issues you can comment the line or make the value ‘False’ in openerp-web.cfg
tools.csrf.on = True
If you are using the default-ssl then need to edit the lines in
/etc/apache2/sites-available/default-ssl
<VirtualHost *:443>
————-
————-
ProxyRequests Off
ProxyPass / http://127.0.0.1:8080/
ProxyPassReverse / http://127.0.0.1:8080/
————–
—————-
</VirtualHost >
Anonymous: Hi Fahad, I am working on Opnerp SSL part (6.1.1) and I saw your blog on this (http://www.zbeanztech.com/blog/setting-ssl-proxy-openerp-web).I am getting one error like 502 reverse proxy error when I apply https and when I run on http it is working fine.".
Leave a Reply