Odoo Help

0

"Odoo as a service in the cloud"

By
Sonia
on 2/21/16, 4:30 PM 727 views

How to manage users in a "Odoo as a service in the cloud" project to ensure multi-tenancy so that user X cannot see Y user data?

0
Dominique Chabord
On 2/22/16, 6:15 AM

Separate databases of separated users is not enough to ensure data privacy. You have to do more more in case you go this way, for example, disable administration of modules.
If data are reasonnably sensible, separating code, linux users and database roles may be acceptable.

It is the way the self-service free hosting http://sisalp.com works

If users have to be "state-of-the-art" protected, then container is a minimum (Docker, LXC, or OpenVZ)

 Of course, multicompany is not even an illusion of privacy.

You are right, of course. For us it is enough because our customers don't get admin rights and no direct access to the databases.

Ermin Trevisan
on 2/22/16, 8:17 AM
0

Ermin Trevisan

--Ermin Trevisan--
5399
| 6 5 7
Walchwil, Switzerland
--Ermin Trevisan--


Ermin Trevisan
On 2/22/16, 1:29 AM

Depends on how you try to achieve multi-tenancy. If you use separate databases for each tenant (which is the "normal" way), you don't have that problem. If you are using multi-company mode, define the "allowed companies" for each user accordingly. But I would not recommend this way.

About This Community

This platform is for beginners and experts willing to share their Odoo knowledge. It's not a forum to discuss ideas, but a knowledge base of questions and their answers.

Register

Odoo Training Center

Access to our E-learning platform and experience all Odoo Apps through learning videos, exercises and Quizz.

Test it now

Question tools

1 follower(s)

Stats

Asked: 2/21/16, 4:30 PM
Seen: 727 times
Last updated: 2/22/16, 6:15 AM