Ir al contenido
Menú
Se marcó esta pregunta

Hi all,

I've faced the problem between record rules and access rights. This is as below:

I have 1 groups "user" in my model with perm_read,perm_write,perm_create,perm_unlink as 1,1,1,0

I have 2 record rules for this group as:

edit only own record: 

  • domain_force: [('user_id','=',user.id)]

  • perm_read,perm_write,perm_create,perm_unlink as 1,1,1,0

Read only other record:

  • domain_force: [('user_id','!=',user.id)]

  • perm_read,perm_write,perm_create,perm_unlink as 1,0,0,0

My problem is: I can edit whole the record and it does not apply my created rules.

What's wrong with my setting?

Can anyone help me.

Many thanks in advance

Avatar
Descartar
Autor Mejor respuesta

I got the anwser:

Boolean fields (read, write, create, delete) of ir.rule mean Apply this rule for this kind of operation. They do not mean restrict access for this kind of operation. 

Avatar
Descartar

hey

the question remains anyway.

how can we restrict access for a special kind of operation ?

(restrict fields per user per object ?)

Publicaciones relacionadas Respuestas Vistas Actividad
1
jun 22
4349
2
ene 24
2502
2
feb 21
2293
2
jun 24
3287
0
feb 24
1240