Skip to Content
This question has been flagged
securitypythonxmlodoo17
4 Respostes
2066 Vistes
Avatar
Mariem.J

0

In a custom module , I add new field ir_attchment_ids . When connecting wih other user (not admin) , I got this error .

Uh-oh! Looks like you have stumbled upon some top-secret records.

Sorry, user (id=8) doesn't have 'read' access to:
- Attachment (ir.attachment)

If you really, really need access, perhaps you can win over your friendly administrator with a batch of freshly baked cookies.


Here is my code

Python :

class AddAttachment(models.Model):
    _name = "add.attachment"
    
     attachment_ids = fields.Many2many("ir.attachment", string="My Attachment")

XML :



    
        add.ttachment.form
        add.ttachment
        
            
                
                    
                         
                    
                
            
        
    
    
        add.ttachment.tree
        add.ttachment
        
            
              
            
        
    

    
        Add Attachment
        add.attachment
        tree,form

SECURITY

id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink
access_add_attachment,add.attachment,model_add_attachment,,1,1,1,1

Any idea please ? Thanks.

Avatar
Descartar
Avatar
Răzvan Anastasescu
Best Answer

This is a bug I've just found and reported to Odoo (link here)

Until Odoo will fix this, I've just applied a custom fix on my model in the create method like:

@api.model_create_multi
def create(self, vals_list):
    recs = super().create(vals_list)
    for rec in recs:
        rec.attachment_ids.update({
            'res_model': self._name,
            'res_id': rec.id,
        })
        return recs

You can retroactively fix existing records in the same manner through a similar script

Hope it helps ;)

Avatar
Descartar
Avatar
Jan Weigel
Best Answer

I have the same problem. Non-admin users get a read access error when trying to create a record in Odoo 17.
This is a bug which should be fixed asap.

How did you fix that?

Avatar
Descartar
Avatar
Bharti Gupta
Best Answer

But this is not working

Avatar
Descartar
Avatar
Dương Nguyễn
Best Answer 
id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink
access_add_attachment,add.attachment,model_add_attachment,,1,1,1,1

I think you should try to add base.group_user here or try to create a admin group for your module and add it to your security

Avatar
Descartar
Bharti Gupta

this is not working

Dương Nguyễn

you can try send your code to me so i can check when i free

Related Posts Respostes Vistes Activitat
How to add approval workflow OpenERP 7
security workflow python xml
Avatar
Avatar
1
de març 15
9401
Report text and header is overlaps when description is too long in QWeb report Invoice / Odoo 17
python xml qweb report odoo17
Avatar
0
de nov. 24
990
How to hide view.xml fields group in Account module with attr
python xml
Avatar
Avatar
Avatar
2
de des. 23
12543
How to enable customer visibility only for the contact that created it for sale user own document Solved
security sales python xml v14
Avatar
Avatar
1
de nov. 22
2937
how to remove first empty element from fields.selection Solved
python xml
Avatar
Avatar
Avatar
3
de jul. 22
22845