Implement session and OTP into OpenERP server, weblclient and GTK
The topic of this blueprint is to code session management into openerp-sever as well as OTP (One Time Login).
Session management should be a generic module, without new functionality, but which allow people to store value in it. It'll work like Session in other framework.
The webclient is already using session, so, just keep compatibility.
The GTK client has to be improved in order to handle session.
For both client, we need to be able to show (or not) a third field for authentication : OTP
A second module will implement the OTP Generic function to allow people code OTP with different system
A third module will handle Yubikey as OTP for OpenERP : http://
Blueprint information
- Status:
- Started
- Approver:
- None
- Priority:
- Medium
- Drafter:
- None
- Direction:
- Needs approval
- Assignee:
- Joël Grand-Guillaume @ camptocamp
- Definition:
- Drafting
- Series goal:
- None
- Implementation:
- Started
- Milestone target:
- None
- Started by
- Joël Grand-Guillaume @ camptocamp
- Completed by
Related branches
Related bugs
Sprints
Whiteboard
Goal:
------
1. Allow the use of session inside OpenERP server
2. Allow other people to code their own OTP system or use our (yubikey).
3. Address the problematic of login with and without OTP. If I'm in travel, I want OTP, if I'm at work I don't want to login each time with OTP.
4. Improve security and allow secure connexion to OpenERP server avoiding brut force.
xrg: please take a look at my branch of server, client-kde. I am using the 'xml-rpc2' which stores the credentials in an authentication proxy object. Thus, there is only one authentication per TCP connection. In xml-rpc2, the basic http authentication can now be easily extended for OTP or other methods. One trivial part is the new dispatch functions, which don't need the password to be present at each call.