server-tools/base_user_role_company/models/role.py


								# Copyright (C) 2021 Open Source Integrators

								# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).


								from odoo import _, api, fields, models

								from odoo.exceptions import ValidationError


								class ResUsersRoleLine(models.Model):

								    _inherit = "res.users.role.line"


								    company_id = fields.Many2one(

								        "res.company",

								        "Company",

								        help="If set, this role only applies when this is the main company selected."

								        " Otherwise it applies to all companies.",

								    )

								    active_role = fields.Boolean(string="Active Role", default=True)


								    @api.constrains("user_id", "company_id")

								    def _check_company(self):

								        for record in self:

								            if (

								                record.company_id

								                and record.company_id != record.user_id.company_id

								                and record.company_id not in record.user_id.company_ids

								            ):

								                raise ValidationError(

								                    _('User "{}" does not have access to the company "{}"').format(

								                        record.user_id.name, record.company_id.name

								                    )

								                )


								    _sql_constraints = [

								        (

								            "user_role_uniq",

								            "unique (user_id,role_id,company_id)",

								            "Roles can be assigned to a user only once at a time",

								        )

								    ]


								class ResUsers(models.Model):

								    _inherit = "res.users"


								    def _get_enabled_roles(self):

								        res = super()._get_enabled_roles()

								        return res.filtered("active_role")


								    @api.model

								    def _set_session_active_roles(self, cids):

								        """

								        Based on the selected companies (cids),

								        calculate the roles to enable.

								        A role should be enabled only when it applies to all selected companies.

								        """

								        for role_line in self.env.user.role_line_ids:

								            if not role_line.company_id:

								                role_line.active_role = True

								            elif role_line.company_id.id in cids:

								                is_on_companies = self.env.user.role_line_ids.filtered(

								                    lambda x: x.role_id == role_line.role_id and x.company_id.id in cids

								                )

								                role_line.active_role = len(is_on_companies) == len(cids)

								            else:

								                role_line.active_role = False