OCA
/
data-protection
5
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
94 Commits
10 Branches
0 Tags
1.3 MiB
Tree: a04df43828
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'a04df43828'
${ noResults }
data-protection/privacy_consent/models/mail_mail.py

65 lines
2.3 KiB
Raw Normal View History

privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
[MIG] privacy_consent: Migrate to v12 - Partner's `opt_out` no longer exists. Using `mail.blacklist` now. - Tests updated to support that change. - Test workarounds removed. - Duplicated-field-name-in-model warning removed. - Use create multi where possible.
5 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
[FIX] privacy_consent: do not mark as sent if mail failed Due to a bug present in the `_postprocess_sent_message` code, if a consent wasn't successfully sent, still the consent got marked as sent. It should stay as draft. Modify tests to test this new behavior. @Tecnativa TT24457
4 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
[FIX] privacy_consent: do not mark as sent if mail failed Due to a bug present in the `_postprocess_sent_message` code, if a consent wasn't successfully sent, still the consent got marked as sent. It should stay as draft. Modify tests to test this new behavior. @Tecnativa TT24457
4 years ago
[MIG] privacy_consent: Migrate to v12 - Partner's `opt_out` no longer exists. Using `mail.blacklist` now. - Tests updated to support that change. - Test workarounds removed. - Duplicated-field-name-in-model warning removed. - Use create multi where possible.
5 years ago
[FIX] privacy_consent: do not mark as sent if mail failed Due to a bug present in the `_postprocess_sent_message` code, if a consent wasn't successfully sent, still the consent got marked as sent. It should stay as draft. Modify tests to test this new behavior. @Tecnativa TT24457
4 years ago
[MIG] privacy_consent: Migrate to v12 - Partner's `opt_out` no longer exists. Using `mail.blacklist` now. - Tests updated to support that change. - Test workarounds removed. - Duplicated-field-name-in-model warning removed. - Use create multi where possible.
5 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
[FIX] privacy_consent: make it work, basically Some little nasty details were overlooked in the v12 migration, which rendered the module basically useless: - The wizard used to ask for consent in manual activities did not fill the placeholders, resulting in an awkward UX. - The sent mails **did not have the token** to authenticate and actually allow accepting or rejecting. These buttons returned a 500 error. - Once the token is added, the form was ugly. - Sadly, some tests were testing the how and not the what. It is understandable due to the complexity of testing the what, even more without the `Form` utility, new on v12. These are fixed now too. @Tecnativa TT25868
4 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
[FIX] privacy_consent: make it work, basically Some little nasty details were overlooked in the v12 migration, which rendered the module basically useless: - The wizard used to ask for consent in manual activities did not fill the placeholders, resulting in an awkward UX. - The sent mails **did not have the token** to authenticate and actually allow accepting or rejecting. These buttons returned a 500 error. - Once the token is added, the form was ugly. - Sadly, some tests were testing the how and not the what. It is understandable due to the complexity of testing the what, even more without the `Form` utility, new on v12. These are fixed now too. @Tecnativa TT25868
4 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
privacy_consent: Avoid race condition with mail queue cron Before this patch, all privacy consent emails were forced to be sent under a context with `mark_consent_sent=True` to track the state change and trigger the attached server action. When using the automatic mode, if a separate cron job started running the mail queue, it could happen that mails were being sent from that another worker, losing the context key and, as such, being sent without token and without being marked as sent nor executing the attached server action (if any). To avoid this problem, now the context dependency is removed. After all, the `mail.mail` object is only created when sending in `mass_mail` model, so other kind of notifications or messages are not affected. When a mail of type `mass_mail` is sent, we can assume that it is asking for consent and we can move draft consent requests to sent.
6 years ago
privacy_consent: Privacy explicit consent tracking tools (#11)
6 years ago
  1. # Copyright 2018 Tecnativa - Jairo Llopis
  2. # License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
  4. from odoo import models
  7. class MailMail(models.Model):
  8. _inherit = "mail.mail"
  10. def _postprocess_sent_message(self, success_pids, failure_reason=False,
  11. failure_type=None):
  12. """Write consent status after sending message."""
  13. # Know if mail was successfully sent to a privacy consent
  14. if (
  15. self.mail_message_id.model == "privacy.consent"
  16. and self.state == "sent"
  17. and success_pids
  18. and not failure_reason
  19. and not failure_type
  20. ):
  21. # Get related consent
  22. consent = self.env["privacy.consent"].browse(
  23. self.mail_message_id.res_id,
  24. self._prefetch,
  25. )
  26. # Set as sent if needed
  27. if (
  28. consent.state == "draft"
  29. and consent.partner_id.id in {par.id for par in success_pids}
  30. ):
  31. consent.write({
  32. "state": "sent",
  33. })
  34. return super()._postprocess_sent_message(
  35. success_pids=success_pids,
  36. failure_reason=failure_reason,
  37. failure_type=failure_type,
  38. )
  40. def _send_prepare_body(self):
  41. """Replace privacy consent magic links.
  43. This replacement is done here instead of directly writing it into
  44. the ``mail.template`` to avoid writing the tokeinzed URL
  45. in the mail thread for the ``privacy.consent`` record,
  46. which would enable any reader of such thread to impersonate the
  47. subject and choose in its behalf.
  48. """
  49. result = super(MailMail, self)._send_prepare_body()
  50. # Avoid polluting other model mails
  51. if self.model != "privacy.consent":
  52. return result
  53. # Tokenize consent links
  54. consent = self.env["privacy.consent"] \
  55. .browse(self.mail_message_id.res_id) \
  56. .with_prefetch(self._prefetch)
  57. result = result.replace(
  58. "/privacy/consent/accept/",
  59. consent._url(True),
  60. )
  61. result = result.replace(
  62. "/privacy/consent/reject/",
  63. consent._url(False),
  64. )
  65. return result