Hello community, here is the log from the commit of package trytond.14640 for openSUSE:Leap:15.2:Update checked in at 2020-10-24 16:21:44 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Leap:15.2:Update/trytond.14640 (Old) and /work/SRC/openSUSE:Leap:15.2:Update/.trytond.14640.new.3463 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "trytond.14640" Sat Oct 24 16:21:44 2020 rev:1 rq:843215 version:5.0.28 Changes: -------- New Changes file: --- /dev/null 2020-10-22 01:51:33.322291705 +0200 +++ /work/SRC/openSUSE:Leap:15.2:Update/.trytond.14640.new.3463/trytond.changes 2020-10-24 16:21:44.671209933 +0200 @@ -0,0 +1,339 @@ +------------------------------------------------------------------- +Tue Oct 20 14:16:16 UTC 2020 - Axel Braun <axel.br...@gmx.de> + +- Version 5.0.28 - Bugfix Release + +------------------------------------------------------------------- +Sat Oct 3 08:38:00 UTC 2020 - Axel Braun <axel.br...@gmx.de> + +- Version 5.0.27 - Bugfix Release + +------------------------------------------------------------------- +Mon Aug 24 08:57:32 UTC 2020 - Axel Braun <axel.br...@gmx.de> + +- changed trytond.conf to listen to all interfaces + +------------------------------------------------------------------- +Thu Aug 20 21:02:16 UTC 2020 - Axel Braun <axel.br...@gmx.de> + +- Version 5.0.25 - Bugfix Release + +------------------------------------------------------------------- +Tue Jul 21 09:52:36 UTC 2020 - Axel Braun <axel.br...@gmx.de> + +- Version 5.0.24 - Bugfix Release + * readme renamed (SUSE -> openSUSE) + +------------------------------------------------------------------- +Tue Jun 9 19:55:24 UTC 2020 - Axel Braun <axel.br...@gmx.de> + +- Version 5.0.23 - Bugfix Release + +------------------------------------------------------------------- +Tue Mar 10 09:44:05 UTC 2020 - Axel Braun <axel.br...@gmx.de> + +- version 5.0.19 + revert_werkzeug_setup.patch added to remove dependency on werkzeug < 1.0 + +------------------------------------------------------------------- +Wed Mar 4 12:48:39 UTC 2020 - Ondřej Súkup <mimi...@gmail.com> + +- add fix_werkzeug.patch to fix boo#1164970 +- remove implicit _service (not needed anymore for download) +- spec-clean to meet openSUSE packaging standards + +------------------------------------------------------------------- +Sun Feb 2 18:40:27 UTC 2020 - Axel Braun <axel.br...@gmx.de> + +- Version 5.0.18 - Bugfix Release + +------------------------------------------------------------------- +Fri Jan 10 12:56:37 UTC 2020 - Axel Braun <axel.br...@gmx.de> + +- Version 5.0.17 - Bugfix Release + +------------------------------------------------------------------- +Tue Dec 3 09:27:32 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- Version 5.0.16 - Bugfix Release + +------------------------------------------------------------------- +Thu Nov 21 14:01:30 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- version 5.0.15 (upgrade to GNU Health 3.6.x) + get_login_trytond-46.patch removed + +------------------------------------------------------------------- +Mon Nov 11 17:59:05 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- Version 4.6.22 - Bugfix Release + +------------------------------------------------------------------- +Thu Oct 24 06:50:06 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- Version 4.6.21 - Bugfix Release + home directory of tryton user corrected (boo #1155685) + +------------------------------------------------------------------- +Sun Sep 15 16:38:13 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- Version 4.6.20 - Bugfix Release + +------------------------------------------------------------------- +Tue Aug 20 20:33:45 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- Version 4.6.19 - Bugfix Release + +------------------------------------------------------------------- +Fri Aug 2 17:00:15 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- Version 4.6.18 - Bugfix Release + +------------------------------------------------------------------- +Fri Jul 12 17:20:13 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- Version 4.6.17 - Bugfix Release + +------------------------------------------------------------------- +Fri May 17 10:31:11 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- Version 4.6.15 - Bugfix Release + +------------------------------------------------------------------- +Wed Feb 20 21:06:03 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- Version 4.6.13 - Bugfix Release + +------------------------------------------------------------------- +Fri Feb 1 08:17:53 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- removed record-rpm option in %install, as this fails to build in Factory + +------------------------------------------------------------------- +Sun Jan 27 20:48:07 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- Version 4.6.12 - Bugfix Release + +------------------------------------------------------------------- +Mon Jan 7 16:19:58 UTC 2019 - Axel Braun <axel.br...@gmx.de> + +- Version 4.6.11 - cummulated changes: + * trytond_get_login.patch removed (series 4.2) + * get_login_trytond-46.patch added for 4.6 series + * trytond42_psql10.diff removed (not needed for 4.6) + +------------------------------------------------------------------- +Mon Dec 10 19:09:03 UTC 2018 - Axel Braun <axel.br...@gmx.de> + +- Version 4.2.17 - Bugfix Release + +------------------------------------------------------------------- +Tue Nov 13 15:13:58 UTC 2018 - Axel Braun <axel.br...@gmx.de> + +- Version 4.2.16 - Bugfix Release + +------------------------------------------------------------------- +Wed Aug 22 13:03:07 UTC 2018 - axel.br...@gmx.de + +- Version 4.2.15 - Bugfix Release (boo#1107771) + +------------------------------------------------------------------- +Sat Aug 4 07:28:52 UTC 2018 - axel.br...@gmx.de + +- Version 4.2.14 - Bugfix Release + +------------------------------------------------------------------- +Thu Jul 19 15:19:55 UTC 2018 - axel.br...@gmx.de + +- trytond42_psql10.diff applied for postgres10 compatibility + Kudos to mbeh...@m9s.biz! + +------------------------------------------------------------------- +Wed Jul 11 12:35:03 UTC 2018 - axel.br...@gmx.de + +- Version 4.2.13 - Bugfix Release + +------------------------------------------------------------------- +Tue Jun 12 19:04:04 UTC 2018 - axel.br...@gmx.de + +- boo#1096706 set postgres96 using update-alternatives (openQA failure) + +------------------------------------------------------------------- +Mon Jun 11 09:20:09 UTC 2018 - axel.br...@gmx.de + +- Version 4.2.12 - Bugfix Release + boo#1096706 requirement for postgres96 fixed + copyright to log file and readme added + Specfile cleaned up + +------------------------------------------------------------------- +Sat May 12 12:59:31 UTC 2018 - axel.br...@gmx.de + +- Version 4.2.11 - Bugfix Release + +------------------------------------------------------------------- +Fri Apr 27 18:52:20 UTC 2018 - axel.br...@gmx.de + +- requires postgres96, otherwise trytond-admin fails (Leap 15) + +------------------------------------------------------------------- +Fri Mar 2 09:11:30 UTC 2018 - axel.br...@gmx.de + +- Version 4.2.10 - Bugfix Release + +------------------------------------------------------------------- +Sat Feb 17 06:47:27 UTC 2018 - axel.br...@gmx.de + +- user_login.patch replaced by trytond_get_login.patch + see boo#1078111 + +------------------------------------------------------------------- +Fri Jan 5 19:59:52 UTC 2018 - axel.br...@gmx.de + +- Version 4.2.9 - Bugfix Release + +------------------------------------------------------------------- +Tue Dec 5 20:19:55 UTC 2017 - axel.br...@gmx.de + ++++ 142 more lines (skipped) ++++ between /dev/null ++++ and /work/SRC/openSUSE:Leap:15.2:Update/.trytond.14640.new.3463/trytond.changes New: ---- _service fix_werkzeug.patch revert_werkzeug_setup.patch tryton-server.README.openSUSE trytond-5.0.28.tar.gz trytond.changes trytond.conf trytond.conf.example trytond.service trytond.spec trytond_log.conf ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ trytond.spec ++++++ # # spec file for package trytond # # Copyright (c) 2020 SUSE LLC # Copyright (c) 2015 2017 Dr. Axel Braun # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed # upon. The license for this file, and modifications and additions to the # file, is the same license as for the pristine package itself (unless the # license for the pristine package is not an Open Source License, in which # case the license is the MIT License). An "Open Source License" is a # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. # Please submit bugfixes or comments via https://bugs.opensuse.org/ # %define majorver 5.0 %define base_name tryton Name: trytond Version: %{majorver}.28 Release: 0 Summary: An Enterprise Resource Planning (ERP) system License: GPL-3.0-or-later Group: Productivity/Office/Management URL: https://www.tryton.org/ Source0: http://downloads.tryton.org/%{majorver}/%{name}-%{version}.tar.gz Source1: tryton-server.README.openSUSE Source2: trytond.conf.example Source3: %{name}.conf Source4: %{name}_log.conf Source20: %{name}.service Patch0: fix_werkzeug.patch Patch1: revert_werkzeug_setup.patch BuildRequires: fdupes BuildRequires: python3-Werkzeug BuildRequires: python3-bcrypt BuildRequires: python3-lxml >= 2.0 BuildRequires: python3-psycopg2 BuildRequires: python3-pydot3 BuildRequires: python3-python-sql BuildRequires: python3-setuptools BuildRequires: python3-wrapt BuildRequires: systemd-rpm-macros Requires: html2text Requires: libreoffice-pyuno Requires: postgresql-server Requires: python3-Genshi Requires: python3-Levenshtein Requires: python3-Sphinx Requires: python3-Werkzeug Requires: python3-bcrypt Requires: python3-dateutil Requires: python3-lxml Requires: python3-mock Requires: python3-polib Requires: python3-psycopg2 >= 2.5.4 Requires: python3-python-sql >= 0.4 Requires: python3-relatorio >= 0.7.0 Requires: python3-simpleeval Requires: python3-wrapt Requires: unoconv Requires(pre): %{_sbindir}/groupadd Requires(pre): %{_sbindir}/useradd BuildArch: noarch %{?systemd_requires} %description This package contains the server of the Tryton application platform, the latter of which is a three-tier high-level general purpose application platform written in Python, using Postgresql as the database engine. Tryton provides modularity, scalability and security. %prep %setup -q cp %{SOURCE1} . cp %{SOURCE2} . %patch0 -p1 %patch1 -p1 %build python3 setup.py build %install python3 setup.py install --prefix=%{_prefix} --root=%{buildroot} # only for systemd mkdir -p %{buildroot}%{_sysconfdir}/%{base_name} install -p -m 640 %{SOURCE3} %{buildroot}%{_sysconfdir}/%{base_name}/%{name}.conf install -p -m 640 %{SOURCE4} %{buildroot}%{_sysconfdir}/%{base_name}/%{name}_log.conf mkdir -p %{buildroot}%{_unitdir} install -p -m 644 %{SOURCE20} %{buildroot}%{_unitdir}/%{name}.service mkdir -p %{buildroot}%{_localstatedir}/{lib,log}/%{base_name} %fdupes -s %{buildroot} %pre getent group tryton > /dev/null || %{_sbindir}/groupadd -r tryton || : getent passwd tryton > /dev/null || %{_sbindir}/useradd -r -g tryton \ -d %{_localstatedir}/lib/tryton -s /sbin/nologin \ -c 'Tryton ERP' tryton || : %service_add_pre trytond.service %post %service_add_post trytond.service %preun %service_del_preun trytond.service %postun %service_del_postun trytond.service %files %license LICENSE %doc README tryton-server.README.openSUSE trytond.conf.example doc/* %{python3_sitelib}/* %dir %{_sysconfdir}/%{base_name} %{_bindir}/%{name} %{_bindir}/%{name}-admin %{_bindir}/%{name}-cron %{_bindir}/%{name}-worker %{_unitdir}/%{name}.service %attr(640,root,tryton) %config(noreplace)%{_sysconfdir}/%{base_name}/%{name}.conf %attr(640,root,tryton) %config(noreplace)%{_sysconfdir}/%{base_name}/%{name}_log.conf %attr(755,tryton,tryton) %dir %{_localstatedir}/lib/%{base_name} %attr(755,tryton,tryton) %dir %{_localstatedir}/log/%{base_name} %changelog ++++++ _service ++++++ <services> <service name="download_files" mode="localonly" /> </services> ++++++ fix_werkzeug.patch ++++++ Index: trytond-5.0.18/trytond/wsgi.py =================================================================== --- trytond-5.0.18.orig/trytond/wsgi.py +++ trytond-5.0.18/trytond/wsgi.py @@ -9,8 +9,19 @@ import traceback from werkzeug.wrappers import Response from werkzeug.routing import Map, Rule from werkzeug.exceptions import abort, HTTPException, InternalServerError -from werkzeug.contrib.fixers import ProxyFix -from werkzeug.wsgi import SharedDataMiddleware +try: + from werkzeug.middleware.proxy_fix import ProxyFix + + def NumProxyFix(app, num_proxies): + return ProxyFix(app, + x_for=num_proxies, x_proto=num_proxies, x_host=num_proxies, + x_port=num_proxies, x_prefix=num_proxies) +except ImportError: + from werkzeug.contrib.fixers import ProxyFix as NumProxyFix +try: + from werkzeug.middleware.shared_data import SharedDataMiddleware +except ImportError: + from werkzeug.wsgi import SharedDataMiddleware import wrapt @@ -150,6 +161,6 @@ if config.get('web', 'root'): app.wsgi_app = SharedDataMiddlewareIndex(app.wsgi_app, static_files) num_proxies = config.getint('web', 'num_proxies') if num_proxies: - app.wsgi_app = ProxyFix(app.wsgi_app, num_proxies=num_proxies) + app.wsgi_app = NumProxyFix(app.wsgi_app, num_proxies) import trytond.protocols.dispatcher import trytond.bus ++++++ revert_werkzeug_setup.patch ++++++ --- a/setup.py +++ b/setup.py @@ -108,7 +108,7 @@ 'python-dateutil', 'polib', 'python-sql >= 0.5', - 'werkzeug < 1.0', + 'werkzeug', 'wrapt', 'passlib >= 1.7.0', ], ++++++ tryton-server.README.openSUSE ++++++ tryton-server for openSUSE ========================== How to get it running (Without reading the instructions) ======================================================== You have already installed the package trytond and found this documentation. Good. 1) Log in as root and start the database > su > systemctl start postgresql 2) Change postgres parameters. You need to log in as user postgres, in order to avoid authorisation issues. Assuming we have nano as editor: <you are logged in as user 'root'> > su postgres > nano /var/lib/pgsql/data/pg_hba.conf Change the line local all all md5 to local all all trust Save your input. Save your input. 3) Create a role for 'tryton' in the database (sill as user postgres) > psql -c "CREATE USER tryton WITH CREATEDB;" 4) exit as user postgres and restart postgres > exit > systemctl restart postgresql 5) start trytond: > systemctl start trytond 6) Install the tryton client: > zypper in tryton 7) Open the tryton client: >tryton go to 'manage profiles' -> add -> name it 'localhost' -> Host: localhost -> you should now see a selection of available databases Note: From Tryton Release 4.2 onwards it is not possible anymore to create databases from the Frontend. You need to do this manually (see below) DONE. Setup (a bit more in detail) ============================ Preparing the database ---------------------- Tryton uses a Relational Database Management System (RDBMS) to store data. The preferred RDBMS for Tryton is PostgreSQL. You have to setup this database manually. Here is a short explanation how to achieve this. We can distinguish two scenarios, to which the following description will reference: 1) the database is created manually (recommended for productive environments) 2) the database shall be created from the Tryton client (recommended for test) * In both cases, make sure PostgreSQL is running: > systemctl status postgresql Note: If PostgreSQL runs on another machine than the Tryton server, make sure you have setup database password authentication. Please refer to the PostgreSQL manual how to do this. To allow Tryton Server to connect to postgres, md5 authentication should be used. In the configuration file /var/lib/pgsql/data/pg_hba.conf change the lines # IPv4 local connections: host all all 127.0.0.1/32 ident # IPv6 local connections: host all all ::1/128 ident to: # IPv4 local connections: host all all 127.0.0.1/32 md5 # IPv6 local connections: host all all ::1/128 md5 Restart the server for the changes to take effect. * Creating the database user: The Tryton Server runs as user 'tryton', so we need a role in postgres for this. For manual database creation (standard as from Tryton 4.2 onwards) it is sufficient to create the user as follows: > su postgres > psql -c "CREATE USER tryton WITH CREATEDB;" Note: If you want to run the database as another user than 'tryton', you need to replace 'tryton' above with the user you want to use instead. Preparing the Tryton server --------------------------- * Setting up the Tryton server (trytond): The openSUSE package comes with a working configuration example, see /usr/share/doc/packages/trytond/trytond.conf.example It contains all settings for a locally running database and manual database configuration. Adjust /etc/tryton/trytond.conf to reflect any different the setup of your system. * If the Tryton server shall listen on some external interface (i.e. shall be available for clients connecting from other machines), change the jsonrpc protocol to listen accordingly. * If the Tryton server is listening on external interfaces, it is highly recommended to enable SSL for the connection. Note: See https://code.google.com/p/tryton/wiki/InstallationonopenSUSE#Setting_up_SSL_communication_with_the_Tryton_server for a description to set up certificates * Restarting trytond: > systemctl restart trytond Note: The fingerprint of connected servers is stored in the clients known_hosts file. When a server is changed for its SSL usage, the client will refuse to reconnect to this server. Removing the according line from ~/.config/tryton/<version>/known_hosts will allow to connect to the server again. Now you are ready to connect with a client, e.g. tryton-client. Creating the database for Tryton -------------------------------- For manual creation of the database, the folowing steps are to be performed: * Creating the database: > su - postgres -c "createdb mydb --encoding='UTF-8' --owner=tryton" Note: The owner of the database should be the same user, as under which the tryton server runs (default:tryton) Enter a name for the database (here as default: mydb). * Initializing the database: Log in as user tryton: > sudo su tryton -s /bin/bash > /usr/bin/trytond-admin -c /etc/tryton/trytond.conf --all -d mydb Note: Use the database name you chose in the previous step (here as default: mydb). You will be asked for the admin password for this database. For the first time, log in to the newly initialized database with user admin and password as set during initialization. As result you will have a bare Tryton database with the base modules installed. See: http://doc.tryton.org/4.2/trytond/doc/topics/configuration.html Installation of the Webfrontend for tryton (sao) from source ------------------------------------------------------------ In case you want to install sao from source: sao bases on nodejs, and it comes as separate package. Download and extract tryton-sao into a directory, say /srv/tryton-sao Make sure you have nodejs and git installed: > zypper install nodejs git Now change into to installation directory and install sao: > cd /srv/tryton-sao/package > npm install Now you need to run grunt. make sure it is run from the locally installed version: > cd /srv/tryton-sao/package > node_modules/grunt-cli/bin/grunt Last but not least, edit /etc/tryton/trytond.conf In the section [web], set the path: root = /srv/tryton-sao/package Now restart trytond (or gnuhealth). Upgrade ------- * Once you have upgraded to a new major version (second number of the version string) you have to update your database(s). After the categorically recommended backup do: > /usr/bin/trytond-admin -c /etc/tryton/trytond.conf --all -d mydb Remember to replace tryton with the name of your database. Notes ----- Now, you're finished with the system setup. Please be aware of the following things: * trytond runs by default under the user 'tryton', who is setup as no-login. If you need to login as user tryton, use su - tryton -s /bin/bash * trytond has one default account for server administration: - User: admin; password: the one you have configured in trytond.conf as super_pwd. This user is the one used for database management tasks from the client. Note: Each Tryton database will have its own admin with login password stored in the database itself (not to be confound with the admin of the Tryton Server). * trytond must have read access to its configuration file, otherwise it will start with internal defaults. The postinst script will (re)set ownership to the system user running trytond and correct the permissions on the standard configuration file (/etc/tryton/trytond.conf). * trytond listens by default on port 8000 (jsonrpc). If you need to change this, edit /etc/tryton/trytond.conf in the section [jsonrpc]. * trytond in its upstream configuration listens by default to the localhost interface. If you want to change this default to listen on all interfaces, edit /etc/tryton/trytond.conf in the section [jsonrpc]. * modules can be installed via YaST or zypper, e.g. zypper in trytond_account * Installation of modules into the database can be done from the Administration Panel of the client. Under Modules you can select from the modules packages (trytond_*) you have installed on your system. * Only the same major version of Tryton client and Tryton server can connect. -- Axel Braun <axel.br...@gmx.de> MON Jun 11 10:27:14 UTC 2018 This file is based on tryton-server.README.Debian Copyright: 2009-2012 Daniel Baumann <dan...@debian.org> 2011-2014 Mathias Behrle <mathi...@m9s.biz> ++++++ trytond.conf ++++++ # /etc/tryton/trytond.conf - Configuration file for Tryton Server (trytond) # # This file contains the most common settings for trytond (Defaults # are commented). # For more information read # /usr/share/doc/packages/trytond [database] # Database related settings # The URI to connect to the SQL database (following RFC-3986) # uri = database://username:password@host:port/ # (Internal default: sqlite:// (i.e. a local SQLite database)) # # PostgreSQL via Unix domain sockets # (e.g. PostgreSQL database running on the same machine (localhost)) #uri = postgresql://tryton:tryton@/ # # Postgres running on the same machine: uri = postgresql:/// # PostgreSQL via TCP/IP # (e.g. connecting to a PostgreSQL database running on a remote machine or # by means of md5 authentication. Needs PostgreSQL to be configured to accept # those connections (pg_hba.conf).) #uri = postgresql://tryton:tryton@localhost:5432/ # The path to the directory where the Tryton Server stores files. # The server must have write permissions to this directory. # (Internal default: /var/lib/trytond) path = /var/lib/tryton # Shall available databases be listed in the client? #list = True # The number of retries of the Tryton Server when there are errors # in a request to the database #retry = 5 # The primary language, that is used to store entries in translatable # fields into the database. #language = en [web] # Settings for the web interface # The IP/host and port number of the interface # (Internal default: localhost:8000) # # Listen on all interfaces (IPv4) #listen = 0.0.0.0:8000 # # Listen on all interfaces (IPv4 and IPv6) listen = [::]:8000 # The hostname for this interface #hostname = # The root path to retrieve data for GET requests # (i.e. namely the path to the web client) # (Internal default: /var/www/localhost/tryton) #root = /usr/lib/node-modules/tryton-sao # The number of proxy servers in front of trytond. #num_proxies = 0 [request] # The maximum size in bytes for unauthenticated requests (zero means no limit). #max_size = 2MB # The maximum size in bytes of an authenticated request (zero means no limit). #max_size_authenticated = 2GB [ssl] # SSL settings # Activation of SSL for all available protocols. # Uncomment the following settings for key and certificate. # SSL is activated by defining privatekey. # The path to the private key #privatekey = /etc/ssl/private/ssl-cert-snakeoil.key # The path to the certificate #certificate = /etc/ssl/certs/ssl-cert-snakeoil.pem [session] # Session settings # A comma separated list of login methods to use for user authentication. # By default, Tryton supports only the password method which compares the # password entered by the user against a stored hash. # Other modules may define other methods (please refer to their documentation). # The methods are tested following the order of the list. #authentications = password # The time (in seconds) until a session expires. #max_age = 2592000 # (30 days) # The time (in seconds) until an inactive session is considered invalid for # special internal tasks, thus requiring to re-confirm the session. #timeout = 300 # (5 minutes) # The maximal number of authentication attempts before the server answers # unconditionally 'Too Many Requests'. # The counting is done on all attempts over one period of timeout. #max_attempt = 5 # The maximal number of authentication attempts from the same network before # the server answers unconditionally 'Too Many Requests'. # The counting is done on all attempts over a period of timeout. #max_attempt_ip_network = 300 # The network prefix to apply on IPv4 addresses when counting authentication attempts. #ip_network_4 = 32 # The network prefix to apply on IPv6 addresses when counting authentication attempts. #ip_network_6 = 56 [password] # The minimal length required for user passwords. #length = 8 # The path to a file containing one forbidden password per line. #forbidden = # The ratio of non repeated characters for user passwords. #entropy = 0.75 # The time (in seconds) until a reset password expires. #reset_timeout = 86400 # (24h) # The path to the INI file to load as CryptContext: # <https://passlib.readthedocs.io/en/stable/narr/context-tutorial.html#loading-saving-a-cryptcontext> # If no path is set, Tryton will use the schemes `bcrypt` or `pbkdf2_sha512`. #passlib = None [email] # Mail settings # The URI to connect to the SMTP server. # Available protocols are: # - smtp: simple SMTP # - smtp+tls: SMTP with STARTTLS # - smtps: SMTP with SSL #uri = smtp://localhost:25 # The From address used by the Tryton Server to send emails. #from = tryton@localhost [attachment] # Defines how to store the attachments # A boolean value to store attachment in the FileStore. #filestore=True # The prefix to use with the FileStore. #store_prefix = None [bus] # Allow clients to subscribe to bus channels (Boolean). #allow_subscribe = False # The time (in seconds) to keep the connection to the client open # when using long polling for bus messages. #long_polling_timeout = 300 # The time (in seconds) a message should be kept in the queue # before being discarded. #cache_timeout = 300 # The timeout (in seconds) for the select call when listening # on a channel. #select_timeout = 5 # Let the worker queue handle bus messages #queue = False # Define the class to use when queue is set to True #class = trytond.bus.LongPollingBus # Special Settings [cache] # Various cache size settings # The number of different models kept in the cache per transaction. #model = 200 # The number of loaded records kept in the cache. It can also be changed # locally using the _record_cache_size key in Transaction.context. #record = 2000 # The number of fields to load with eager Field.loading. #field = 100 # The minimum number of seconds between two cleanings of the cache. #clean_timeout = 300 [queue] # Activate asynchronous processing of the tasks. Otherwise they are performed at the end of the requests. #worker = False [table] # This section allows to override the default generated table names. The main purpose # is to bypass name length limitations of a database backend. # Examples: #account.invoice.line = acc_inv_line #account.invoice.tax = acc_inv_tax # Module settings # # Some modules are reading configuration parameters from this # configuration file. These settings only apply when those modules # are installed. # [account_fr_chorus] # The private key to communicate with the chorus service. #privatekey = # The certficate to communicate with the chorus service. #certificate = # Target URL of the Chorus service #url = https://chorus-pro.gouv.fr:5443 [ldap_authentication] # The LDAP URL to connect to the server following RFC-2255. #uri = ldap://host:port/dn?attributes?scope?filter?extensions # A basic default URL could look like #uri = ldap://localhost:389/ # The LDAP password used to bind if needed. #bind_pass = # If the LDAP server is an Active Directory. #active_directory = False # The UID attribute for authentication. #uid = uid # If the user shall be created in the database in case it does not exist. #create_user = False [sms_authentication] # The fully qualified name of the method to send SMS. It must take three # arguments: text, to and from. # # - The sms method just sends a code via SMS to the user. This code can directly # be used in the login dialog. # - The password_sms method sends a code only after the user entered a valid # password (two-factor authentication). # # Both methods require that the user has a *mobile* phone number defined # otherwise he can not be authenticated with those methods. # # This method is required to send SMS. #function = # The number from which the SMS are sent. #from = # The length of the generated code. #length = 6 # The time to live for the generated codes in seconds. #ttl = 300 # The name used in the SMS text. #name = Tryton [product] # The number of decimals with which the unit prices are stored # in the database. The default value is 4. # Warning: This setting can not be lowered once a database is created. #price_decimal = 4 ++++++ trytond.conf.example ++++++ # /etc/tryton/trytond.conf - Configuration file for Tryton Server (trytond) # # This file contains the most common settings for trytond (Defaults # are commented). # For more information read # /usr/share/doc/packages/trytond [database] # Database related settings # The URI to connect to the SQL database (following RFC-3986) # uri = database://username:password@host:port/ # (Internal default: sqlite:// (i.e. a local SQLite database)) # # PostgreSQL via Unix domain sockets # (e.g. PostgreSQL database running on the same machine (localhost)) #uri = postgresql://tryton:tryton@/ # #Default setting for a local postgres database uri = postgresql:/// # # PostgreSQL via TCP/IP # (e.g. connecting to a PostgreSQL database running on a remote machine or # by means of md5 authentication. Needs PostgreSQL to be configured to accept # those connections (pg_hba.conf).) #uri = postgresql://tryton:tryton@localhost:5432/ # The path to the directory where the Tryton Server stores files. # The server must have write permissions to this directory. # (Internal default: /var/lib/trytond) path = /var/lib/tryton # Shall available databases be listed in the client? #list = True # The number of retries of the Tryton Server when there are errors # in a request to the database #retry = 5 # The primary language, that is used to store entries in translatable # fields into the database. #language = en_US [ssl] # SSL settings # Activation of SSL for all available protocols. # Uncomment the following settings for key and certificate # to enable SSL. # The path to the private key #privatekey = /etc/ssl/private/ssl-cert-snakeoil.key # The path to the certificate #certificate = /etc/ssl/certs/ssl-cert-snakeoil.pem [jsonrpc] # Settings for the JSON-RPC network interface # The IP/host and port number of the interface # (Internal default: localhost:8000) # # Listen on all interfaces (IPv4) listen = 0.0.0.0:8000 # # Listen on all interfaces (IPv4 and IPv6) #listen = [::]:8000 # The hostname for this interface #hostname = # The root path to retrieve data for GET requests #data = jsondata [xmlrpc] # Settings for the XML-RPC network interface # The IP/host and port number of the interface #listen = localhost:8069 [webdav] # Settings for the WebDAV network interface # The IP/host and port number of the interface #listen = localhost:8080 [session] # Session settings # The time (in seconds) until an inactive session expires #timeout = 3600 # The server administration password used by the client for # the execution of database management tasks. It is encrypted # using using the Unix crypt(3) routine. A password can be # generated using the following command line (on one line): # $ python -c 'import getpass,crypt,random,string; \ # print crypt.crypt(getpass.getpass(), \ # "".join(random.sample(string.ascii_letters + string.digits, 8)))' # Example password with 'admin' super_pwd = jkUbZGvFNeugk [email] # Mail settings # The URI to connect to the SMTP server. # Available protocols are: # - smtp: simple SMTP # - smtp+tls: SMTP with STARTTLS # - smtps: SMTP with SSL #uri = smtp://localhost:25 # The From address used by the Tryton Server to send emails. #from = tryton@localhost [report] # Report settings # Unoconv parameters for connection to the unoconv service. #unoconv = pipe,name=trytond;urp;StarOffice.ComponentContext # Module settings # # Some modules are reading configuration parameters from this # configuration file. These settings only apply when those modules # are installed. # #[ldap_authentication] # The URI to connect to the LDAP server. #uri = ldap://host:port/dn?attributes?scope?filter?extensions # A basic default URL could look like #uri = ldap://localhost:389/ [web] # Path for the web-frontend #root = /usr/lib/node-modules/tryton-sao ++++++ trytond.service ++++++ [Unit] Description=Tryton server After=syslog.target [Service] Type=simple User=tryton Group=tryton PIDFile=/var/lib/trytond/trytond.pid ExecStart=/usr/bin/trytond --config /etc/tryton/trytond.conf --pidfile=/var/lib/tryton/trytond.pid --logconf=/etc/tryton/trytond_log.conf # Give a reasonable amount of time for the server to start up/shut down TimeoutSec=300 # We rely on systemd to restart trytond if it dies Restart=always [Install] WantedBy=multi-user.target ++++++ trytond_log.conf ++++++ # /etc/tryton/trytond_log.conf - Logging configuration file for Tryton Server (trytond) # # Copyright (c) 2016 Mathias Behrle <mbeh...@m9s.biz> # # This file contains settings for trytond to rotate logs daily and # to keep 30 logs. [database] [formatters] keys=simple [handlers] keys=rotate [loggers] keys=root [formatter_simple] format=%(asctime)s] %(levelname)s:%(name)s:%(message)s datefmt=%a %b %d %H:%M:%S %Y [handler_rotate] class=handlers.TimedRotatingFileHandler args=('/var/log/tryton/trytond.log', 'D', 1, 30) formatter=simple [logger_root] level=INFO handlers=rotate
