Web Sockets deprecated

Web Sockets documentation

With Open-Xchange Middleware version 7.8.3 Web Socket connections are supported. A Web Socket connection is only allowed to be established for a fully authenticated session. Hence, a HTTP Upgrade request is required to pass all the validating and verifying steps as for regular HTTP requests in order to establish a Web Socket connection.

Moreover, a Web Socket connection is cluster-wide registered. Thus a message created on cluster member A reaches possible open Web Sockets on cluster member B.

Prerequisites

In order to use Web Socket transport the load-balancing and/or proxy'ing Web Server needs to be prepared to also accept and manage Web Socket connections. For Apache the mod_proxy_wstunnel module is the appropriate choice in addition to the mod_proxy module.

Following the exemplary best-practice configuration for Apache the mod_proxy_wstunnel module needs at first to be enabled:

  $ a2enmod proxy_wstunnel

Assuming there is already a proxy configuration for Open-Xchange Groupware nodes; e.g.

    # Define default Proxy container
    <Proxy balancer://oxcluster>
        Order Allow,Deny
        Allow from all
        BalancerMember http://ox1.open-xchange.com:8009 timeout=100 smax=0 ttl=60 retry=60 loadfactor=50 keepalive=On route=OX1
        BalancerMember http://ox2.open-xchange.com:8009 timeout=100 smax=0 ttl=60 retry=60 loadfactor=50 keepalive=On route=OX2
        ProxySet stickysession=JSESSIONID|jsessionid scolonpathdelim=On
    </Proxy>

Simply add a section for those nodes that are supposed to be accessible by Web Socket connections:

    <Proxy balancer://oxcluster_ws>
        Order Allow,Deny
        Allow from all
        BalancerMember ws://ox1.open-xchange.com:8009 timeout=100 smax=0 ttl=60 retry=60 loadfactor=50 keepalive=On route=OX1
        BalancerMember ws://ox2.open-xchange.com:8009 timeout=100 smax=0 ttl=60 retry=60 loadfactor=50 keepalive=On route=OX2
        ProxySet stickysession=JSESSIONID|jsessionid scolonpathdelim=On
    </Proxy>

As last step, there needs to be a ProxyPass directive for the socket.io path dedicated to Web Sockets:

    ProxyPass /ajax balancer://oxcluster/ajax
    ProxyPass /appsuite/api balancer://oxcluster/ajax
     ...

    ProxyPass /socket.io balancer://oxcluster_ws/socket.io

Please note: As a Web Socket is made cluster-wide accessible, Hazelcast is used to manage the orchestration and management of Web Sockets in the cluster. If Hazelcast is not installed, inter node communication is not supported.

Installation

  1. Install the "open-xchange-websockets-grizzly" package
  2. Enable the com.openexchange.websockets.enabled property. That property is responsive to config-cascade. Hence it can be specified for user, context, context-set or server scope. For instance, create file websockets.properties in Open-Xchange configuration directory (/opt/open-xchange/etc) and add line com.openexchange.websockets.enabled=true to globally enabled Web Sockets.

Configuration

Enable/disable

As already outlined above, the config-cascade-aware property com.openexchange.websockets.enabledcontrols whether a Web Socket is allowed to be created for a certain user.

Remote communication

The following settings control buffering and queueing of Web Socket messages that are supposed to be transferred to a remote cluster member:

These settings are not config-cascade-aware, but reloadable.