[openmeetings-dev] [openmeetings] r4473 committed - Created wiki page through web user interface.

Fri, 28 Oct 2011 00:34:43 -0700 

Revision: 4473
Author:   [email protected]
Date:     Fri Oct 28 00:29:50 2011
Log:      Created wiki page through web user interface.
http://code.google.com/p/openmeetings/source/detail?r=4473

Added:
 /wiki/ClientAndServerSideSecuritySettings.wiki

=======================================
--- /dev/null
+++ /wiki/ClientAndServerSideSecuritySettings.wiki      Fri Oct 28 00:29:50 2011
@@ -0,0 +1,36 @@
+#summary How to restrict access to your Openmeetings server
+
+=== Server Side ===
+
+You can protect your !OpenMeetings instance from beeing accessed from 3th party by using the file: 
+
+$RED5_HOME/webapps/openmeetings/WEB-INF/red5-web.properties
+
+Content:
+{{{
+webapp.virtualHosts=*,localhost, 127.0.0.1
+}}}
+Sample file:
+http://code.google.com/p/openmeetings/source/browse/trunk/singlewebapp/WebContent/WEB-INF/red5-web.properties
+
+=== Client Side ===
+
+And you can restrict the access also for the client side: Every Flash Plugin will check a file called "crossdomain.xml" before it tries to access the server using rtmp/RPC. This file is located: 
+
+$RED5_HOME/webapps/root/crossdomain.xml
+
+Content:
+{{{
+<?xml version="1.0"?>
+<cross-domain-policy>
+        <site-control permitted-cross-domain-policies="all"/>
+        <allow-access-from domain="localhost" to-ports="20-65535"/>
+        <allow-access-from domain="*.local" to-ports="20-65535"/>
+</cross-domain-policy>
+}}}
+
+Sample file:
+http://code.google.com/p/openmeetings/source/browse/trunk/singlewebapp/red5-1.0.0-RC1/red5/webapps/root/crossdomain.xml
+
+If you accessing your application behind an Apache Webservre (using mod_proxy or mod_jk2) be careful to make the crossdomain.xml accessible. +Flash will always search for this file in the www-root directory of every URL you connect to. You might use [https://addons.mozilla.org/de/firefox/addon/firebug/ !FireBug] for example too lookup this request. 

--
You received this message because you are subscribed to the Google Groups 
"OpenMeetings developers" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to 
[email protected].
For more options, visit this group at 
http://groups.google.com/group/openmeetings-dev?hl=en.

Reply via email to