Comment 11 for bug 934242
Revision history for this message
| Nicolas Bessi - Camptocamp (nbessi-c2c-deactivatedaccount) wrote | #11 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
Hello,
In an ERP as is any system one of the golden rule is that user should have control on all "output" of a system. We do not like when services or phones APP send mail or transmit our personal data without asking us.
Here it is the same, we do not want our system to generate output without our explicit authorization. OpenERP has a nice configuration panel. The activation of EDI mail should be set in a step of configuration wizard that is explicit and where check box is not checked by default.
An other problem is that EDI expose your ERP address if ERP is not accessible to public the link proposed in mail will lead to error message. That not good in term of image. An ERP is a critical application having his address propagated trough e-mail may be a security threat.
EDI is a great tool especially in term of B2B and is clearly a great advantage. But sale orders, purchase ordesr and invoices are highly strategic information and they should be really manage with care.
IMHO at that timeEDI layout of mail, and default security mechanism are mature enough to use it without taking other infrastructure reinforcement and tweak.
Regards
Nicolas