Skip to main content

OMERO server certificate management plugin

Project description

OMERO server certificate management plugin

Actions Status

Generate self-signed certificates and configure OMERO.server.

If you prefer to configure OMERO manually see the examples in these documents:

Installation

Install openssl if it's not already on your system. Then activate your OMERO.server virtualenv and run:

pip install omero-certificates

Usage

Set the OMERODIR environment variable to the location of OMERO.server.

Run:

omero certificates
OpenSSL 1.1.1d  10 Sep 2019
Generating RSA private key, 2048 bit long modulus (2 primes)
.+++++
.............................+++++
e is 65537 (0x010001)
certificates created: /OMERO/certs/server.key /OMERO/certs/server.pem /OMERO/certs/server.p12

to update your OMERO.server configuration and to generate or update your self-signed certificates. If you already have the necessary configuration settings this plugin will not modify them, so it is safe to always run omero certificates every time you start OMERO.server. You can now start your omero server as normal.

This plugin automatically overrides the defaults for the following properties if they're not explicitly set:

  • omero.glacier2.IceSSL.Ciphers=HIGH!DHE: the default weaker ciphers may not be supported on some systems
  • omero.glacier2.IceSSL.ProtocolVersionMax=TLS1_3: Support TLS 1.2 and 1.3
  • omero.glacier2.IceSSL.Protocols=TLS1_2,TLS1_3: Support TLS 1.2 and 1.3

The original values can be found on https://docs.openmicroscopy.org/omero/5.6.0/sysadmins/config.html#glacier2

Certificates will be stored under {omero.data.dir}/certs by default. Set omero.glacier2.IceSSL.DefaultDir to change this.

If you see a warning message such as

Can't load ./.rnd into RNG

it should be safe to ignore.

For full information see the output of:

omero certificates --help

Developer notes

This project uses setuptools-scm. To release a new version just create a tag.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

omero_certificates-0.4.0.tar.gz (14.5 kB view details)

Uploaded Source

Built Distribution

omero_certificates-0.4.0-py3-none-any.whl (11.9 kB view details)

Uploaded Python 3

File details

Details for the file omero_certificates-0.4.0.tar.gz.

File metadata

  • Download URL: omero_certificates-0.4.0.tar.gz
  • Upload date:
  • Size: 14.5 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.0.0 CPython/3.12.9

File hashes

Hashes for omero_certificates-0.4.0.tar.gz
Algorithm Hash digest
SHA256 e772e898394aa8cfa0d798efded04838291c0a952d7dd01a1dc6bbd91692c076
MD5 028d27240fd0f7fc785f57864a52f6c2
BLAKE2b-256 07dbb72a450db0e14787bd070efb3e7d4f13ad0056590e4641eedde214ef6eea

See more details on using hashes here.

File details

Details for the file omero_certificates-0.4.0-py3-none-any.whl.

File metadata

File hashes

Hashes for omero_certificates-0.4.0-py3-none-any.whl
Algorithm Hash digest
SHA256 9dcc589ed5b0879feeb38afc6c7a78e80ed487815cd820d57a81eefae49c690f
MD5 cacfeec565354f1c5aeee5269db0ee2c
BLAKE2b-256 1ac69457c43ed54090feae661c7ee191e042c24219cedce0c463b94de456b061

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page