Hello all ,

I have created a new security group called Cashiers and i want to restrict access to customer invoices and customer refunds so the users with the cashiers group can only read  customer invoices and customer refund  .

however when that user clicks on account invoice they can still delete , write and create invoices , here below is the ir.model.access.csv file :

id,name,model_id/id,group_id/id,perm_read,perm_write,perm_create,perm_unlink

access_cm_cashier_account,camden.account.invoice,model_account_invoice,cashier_market_manager,1,0,0,0

Is there anything i did wrong why does it still allow users to create invoices ?