Browse Source

[REF] Server Environment: restrict access to server config to allowed users

New security group restricting access to server config
Admin is part of the group by default
pull/1383/head
Thomas Binsfeld 6 years ago
parent
commit
c72297864f
  1. 1
      server_environment/__openerp__.py
  2. 10
      server_environment/security/res_groups.xml
  3. 5
      server_environment/serv_config.py

1
server_environment/__openerp__.py

@ -29,6 +29,7 @@
"license": "GPL-3 or any later version", "license": "GPL-3 or any later version",
"category": "Tools", "category": "Tools",
"data": [ "data": [
'security/res_groups.xml',
'serv_config.xml', 'serv_config.xml',
], ],
'installable': True, 'installable': True,

10
server_environment/security/res_groups.xml

@ -0,0 +1,10 @@
<?xml version="1.0"?>
<odoo>
<record model="res.groups" id="has_server_configuration_access">
<field name="name">View Server Environment Configuration</field>
<field name="users" eval="[(4, ref('base.user_root'))]"/>
</record>
</odoo>

5
server_environment/serv_config.py

@ -248,6 +248,11 @@ class ServerConfiguration(models.TransientModel):
def default_get(self, cr, uid, fields_list, context=None): def default_get(self, cr, uid, fields_list, context=None):
res = {} res = {}
current_user = self.pool['res.users'].browse(
cr, uid, uid, context=context)
if not current_user.has_group(
'server_environment.has_server_configuration_access'):
return res
for key in self._conf_defaults: for key in self._conf_defaults:
if 'passw' in key and not self.show_passwords: if 'passw' in key and not self.show_passwords:
res[key] = '**********' res[key] = '**********'

Loading…
Cancel
Save