Ir al contenido
Menú
Se marcó esta pregunta

Hi all,

I've faced the problem between record rules and access rights. This is as below:

I have 1 groups "user" in my model with perm_read,perm_write,perm_create,perm_unlink as 1,1,1,0

I have 2 record rules for this group as:

edit only own record: 

  • domain_force: [('user_id','=',user.id)]

  • perm_read,perm_write,perm_create,perm_unlink as 1,1,1,0

Read only other record:

  • domain_force: [('user_id','!=',user.id)]

  • perm_read,perm_write,perm_create,perm_unlink as 1,0,0,0

My problem is: I can edit whole the record and it does not apply my created rules.

What's wrong with my setting?

Can anyone help me.

Many thanks in advance

Avatar
Descartar
Autor Mejor respuesta

I got the anwser:

Boolean fields (read, write, create, delete) of ir.rule mean Apply this rule for this kind of operation. They do not mean restrict access for this kind of operation. 

Avatar
Descartar

hey

the question remains anyway.

how can we restrict access for a special kind of operation ?

(restrict fields per user per object ?)

Publicaciones relacionadas Respuestas Vistas Actividad
1
jun 22
4273
2
ene 24
2365
2
feb 21
2177
2
jun 24
3068
0
feb 24
1147