This is because on settings->groups-> HR officer has a following record rule: Employee Payslip ['|', ('employee_id.user_id', '=', user.id), ('employee_id.department_id.manager_id.user_id', '=', user.id)] (this means that only employee whose payslip it is can edit or create it or the manager of the department where employee belongs to can edit it. Note: you have to define Manager of department from HR->configuration->Departments->select department->select manager) and because also Manager inherits from officer same rule restricts both user groups Manager and Officer.
If you don't want this restriction you can deactivate this record rule from Settings->Security->Record rules
For our case we are changed the security to :
<record id="hr_payroll.property_rule_manager_payslip" model="ir.rule"> <field name="name">Employee Payslip</field> <field model="ir.model" name="model_id" ref="model_hr_payslip"/> <field name="domain_force">[(1, '=', 1)]</field> <field name="groups" eval="[(4,ref('base.group_hr_manager'))]"/> </record>
I explain :
If a user is a HR Manager so he can generate ans see all payslip (our vision)
So create/overwrite an other
rule in the securtity with this information:
- domain =
[(1, '=', 1)]
- groups =
- model = 'hr.payslip'
I see thuis more logic
Please try to give a substantial answer. If you wanted to comment on the question or answer, just use the commenting tool. Please remember that you can always revise your answers - no need to answer the same question twice. Also, please don't forget to vote - it really helps to select the best questions and answers!
About This Community
|Asked: 8/16/13, 7:41 AM|
|Seen: 4083 times|
|Last updated: 3/16/15, 8:10 AM|