Odoo is the world's easiest all-in-one management software.
It includes hundreds of business apps:
Hi, i need to make each user to only be able to see their own data. But currently all users can see contacts from other users and CRM from other users.
for example there are User A and User B. User A will only be able to see contacts and CRM from user A. User B will only be able to see contacts and CRM from user B.
How to make users only able to see their own Contacts and CRM? thank you
Hi,
Users are only able to see their Contacts by using the Record rule:
<record id="crm_record_rule_user" model="ir.rule">
<field name="name">Record Rule for crm user</field>
<field ref="model_[your_model_name]" name="model_id"/>
<field name="domain_force">[('related_partner_id', '=', user.id)] style="color:#e8bf6a;"></field>
<field name="groups" eval="[(4, ref('module_name.crm_user'))]"/>
</record>
Here the corresponding partner field refers to the user, so we can connect the user id with this field in the model. You can replace the 'related_partner' field with the res.partner field of this model.
Refer to this link:
https://www.cybrosys.com/odoo/odoo-books/odoo-16-development/security/record-rules/
Regards
To restrict users to only see their own Contacts and CRM, create Record Rules for Contacts (res.partner) and CRM (crm.lead) using the domain `('user_id', '=', user.id)`. Apply these rules under Settings > Technical > Security > Record Rules for the respective models.
To make users only able to see their own contacts and CRM, you can apply record rules in Odoo. Here are the steps to create record rules for Contacts and CRM modules:
Go to the "Settings" menu in Odoo and click on "Technical" to access the technical settings.
Under "Security," click on "Record Rules" to view the list of all the record rules in Odoo.
Click on "Create" to create a new record rule.
In the record rule form, specify the name of the record rule, the model for which the rule will apply (e.g., "Contacts" or "CRM"), and the domain filter that specifies which records should be visible to the user.
For example, to make User A only able to see contacts and CRM from user A, you can create a domain filter like this:
[('user_id', '=', user.id)]
Where user_id is the field that identifies the user who owns the record and user.id is the ID of the current user.
Specify the access rights for the record rule, such as read, write, and delete. In this case, you would want to allow read access only.
Click "Save" to save the record rule.
Repeat steps 3-6 for each model (Contacts, CRM) that you want to restrict access to.
Once you have created the record rules, each user will only be able to see their own contacts and CRM records. If a user tries to access records owned by another user, they will receive an access error message.
Create an account today to enjoy exclusive features and engage with our awesome community!
Registracija| Related Posts | Replies | Rodiniai | Veikla | |
|---|---|---|---|---|
|
2
spal. 25
|
590 | ||
|
1
spal. 25
|
566 | ||
|
2
spal. 25
|
721 | ||
|
1
geg. 25
|
2276 | ||
|
2
kov. 25
|
6705 |
1. Use the live chat to ask your questions.
2. The operator answers within a few minutes.
@Gando Loudo thank you, that works but it also applies to administrator.
any idea how to make it only applies to certain users (or type of users)?
ive tried added "group" to the record rule for contact. but it doesnt work for contacts. there's no "contacts" "application"
my bad. turns out @gando loudo's script only work for admin. while non admin got this error
Due to security restrictions, you are not allowed to access 'User' (res.users) records.
Records: test2 (id=7)
User: test2 (id=7)
This restriction is due to the following rules:
Contact your administrator to request access if necessary.
To restrict users to only see their own contacts and CRM records, you can use record rules in Odoo. Record rules allow you to restrict access to specific records based on certain conditions, such as the owner of the record.
Here's an example of how to create a record rule that restricts access to Contacts and CRM records based on the owner:
Go to Settings > Technical > Security > Record Rules.
Create a new record rule for the model you want to restrict access to (e.g. Contacts or CRM).
Set the Domain to ['|', ('user_id', '=', user.id), ('user_id', '=', False)]. This domain will restrict access to records where the user is the owner or the owner is not set.
Set the Apply for Read field to Yes to apply this rule when reading records.
Set the Apply for Write field to Yes to apply this rule when writing records.
Set the Groups field to the appropriate group(s) that should have this restriction applied to them.
With this record rule in place, users will only be able to see Contacts and CRM records that they own, or records where the owner is not set. Note that you will need to adjust the domain and group settings to fit your specific requirements.
Regarding the issue you mentioned with the script only working for administrators, you can modify the script to check if the current user has permission to read the res.users model before running the search. Here's an example:
python
from odoo import api, fields, models
class ResPartner(models.Model):
_inherit = 'res.partner'
@api.model
def search(self, args, offset=0, limit=None, order=None, count=False):
if self.env.user.has_group('base.group_user'):
# Only apply restriction for non-admin users
user_id = self.env.user.id
args += [('user_id', '=', user_id)]
return super().search(args, offset, limit, order, count)
In this modified code snippet, the has_group() method is used to check if the current user belongs to the base.group_user group, which includes all non-admin users. If the user has this group, the search will be restricted to records where the user is the owner. If the user does not have this group (i.e. they are an administrator), the search will return all records.
At the moment I have the same problem.
Thank you so much for you post, your post really help!!!
Bhavin Patel is a mastert!!!!