I want to prevent a user/group from editing a Purchase Order based on whether the partner reference field is blank or not. I tried to create a non global record rule with the following domain rule:
[('partner_ref', '=', False)]
applied to create, write and delete. As expected, the user can't create, delete or change a purchase order with a non blank partner reference. But, if the user create a record with a blank partner reference, save it, and then edit, he can save it with a non blank field, which is not what I want. How can I prevent that?
Set the permission for particular user or group in ir.model.access.csv under security.
They already have all model access permissions, in addition to those I want to limit based on a specific field value, hence the use of Record Rules.