Community mailing list archives

Re: Field Security in odoo v8??

mihir shah
- 02/16/2016 04:57:09
but in in following  link attribute is given read and write.

though it is not working. so read write attribute only works of version 7 code ??

On Tue, Feb 16, 2016 at 3:04 PM, Martin Trigaux <> wrote:
On 16/02/16 10:18, mihir shah wrote:
> I want to give fields level security in odoo v8,
> suppose certain fields should only be editable by certain group of user
> else it should be read only for all the users.

Short answer: you can't

The only built in mechanism for field level access is the attribute 
"groups" that you can set on your field definition.
e.g: fields.char("Private Key", groups="base.group_system")
If your user is not in the appropriate group, the field will not exists 
for him. This means that you will get an error "unknown field" if you 
try to render a view with this field present.
This is a bit touchy and I wouldn't advise it in most cases.

Another solution is to check what is done for the fields password and 
password_crypt in base and auth_crypt module 
(openerp.base.res.res_users.USER_PRIVATE_FIELDS) where the "read" method 
is overridden to prevent accessing the content of these fields but to 
avoid crashing if you try to display or access it.


Martin Trigaux

Post to:

Mihir Shah

*Please Don't print this email unless you really need to "Save Earth and Save Environment"