This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Disable the Desktop Host "Discovery" Process in the Web Client

Go to answer
MikeBruckner
Star Collaborator
Star Collaborator

‎03-14-2023 12:52 PM

I'm currently working on our upgrade to OnBase 22.1, and was curious to see if anyone has found a way to disable the Desktop Host "discovery" process within the web client? 

 

For reference, the "discovery" process I'm referring to here is that upon logging into the web client, the user's browser will search for the desktop host by making a handful of calls to http[://]127.0.0.1/discovery (stopping early if the Desktop Host is actually installed and running).

 

This approach isn't dissimilar from other apps that have similar desktop host integrations, however, within our environment, when these calls are made, the Content Security Policy that we have configured on our web server blocks them. This effectively means that every time a user logs into the web client, we get 11 Content Security Policy violation reports.

 

We could of course add a CSP directive to allow these calls (for those in a similar position who ARE using the desktop host and have a Content Security Policy set, the directive you would need to add is: connect-src http://127.0.0.1:*/discovery), however, as a security best practice, I'd like to avoid adding anything to our CSP that we know is not (technically) needed within our environment at this time - if at all possible.

 

Thanks!
-Mike

Labels:
0 Kudos
1 ACCEPTED ANSWER

Go to answer
MikeBruckner
Star Collaborator
Star Collaborator

‎03-27-2023 07:26 AM

Hi Everyone,

 

Just to circle back and close the loop here for anyone who might be in the same situation as our organization...

 

In working with Support and R&D, it is currently not possible to disable the Desktop Host discovery process. The rationale here is that with OnBase 22.1, the Desktop Host has completely replaced the old ActiveX controls.

 

However, I did create an Idea, asking for the implementation of a new "switch" that will allow administrators to disable this discovery process: https://community.hyland.com/ideas/idea/89326-provide-the-ability-to-disable-the-web-client-desktop-...

 

For now though, the options are either to (A) add the necessary "connect-src" directive (connect-src http://127.0.0.1:*/discovery or, this can also be limited to the specific ports [these currently appear to be 9938 -9949]), or (B) leave the directive off of the CSP, with the understanding that each user who logs in will end up sending a series of CSP reports.

 

Thanks!

-Mike

View answer in original post

13 REPLIES 13

Go to answer
Avinash_Mittapa
Champ on-the-rise
Champ on-the-rise

‎10-05-2023 06:34 AM

Hi Mike,

 

We are getting same error when we turn on virtual print driver for web client in 22.1 version. turning vpd to false will not display this message. 

 

Is there any instructions for vpd to function in web client.

 

Regards,

Avinash

0 Kudos

Go to answer
AdamShaneHyland
Employee
Employee
In response to Avinash_Mittapa

‎10-10-2023 09:40 AM

Hi @Avinash Mittapalli ,

 

Here is the documentation for OnBase 22.1 to enable the Virtual Print Driver for the OnBase Web Client.

 

https://support.hyland.com/r/OnBase/Web-Server/English/Foundation-22.1/Web-Server/Module-Specific-We...

 

Additionally, you'll need the Desktop Host installed and working.  Here is the documentation for the component ...

 

https://support.hyland.com/r/OnBase/Web-Server/English/Foundation-22.1/Web-Server/Desktop-Host-Insta...

 

Take care.

0 Kudos

Go to answer
Raymond_Colbert
Champ on-the-rise
Champ on-the-rise
In response to Avinash_Mittapa

‎10-10-2023 10:02 AM

Hi @Avinash Mittapalli ,

 

What we ended up doing was advised by someone in our first line of support.
Make a copy of the web site on the web server.  Set up one web site with Virtual Print Driver enabled, set up the other with it disabled.  Give one URL to people using the VPD and the other URL to those not using it.
Hope this helps.

 

Ray

0 Kudos

Go to answer
Avinash_Mittapa
Champ on-the-rise
Champ on-the-rise
In response to Avinash_Mittapa

‎10-19-2023 08:51 AM

Thanks a lot for your inputs @Adam Shane & @Ray Colbert 

We have installed Desktop Host in User workstation and added whitelist address as web client i.p:8080 and web client url https://stageonbase.com and added load services on start up line as per MRG, but still we see error in web client.  

 

Is there something that I am missing with the configuration on onbase server or desktop host config in user machine. also fyi - vpd is latest version and print spooler is running and web client is on 22.1.3.1000.84a2a9d1c3fb467f85263f881604879f

0 Kudos

Go to answer
AdamShaneHyland
Employee
Employee
In response to Avinash_Mittapa

‎10-19-2023 10:18 AM

Hi @Avinash Mittapalli ,

The Desktop Host is an app running on the client workstation.  It should be accessible from browser as it makes local calls to the app running on the client workstation.  If you are encountering issues, I would check the the Desktop Host is installed and running on the client workstation.

 

I would expect that you would see errors in the Console or Network tabs of Developer Tools in the browser to help troubleshoot the issue.

 

Take care.

0 Kudos
Getting started

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2024 Khoros, LLC