跳至內容
此問題已被標幟
settingsaccessrightsadministrator
2 回覆
3791 瀏覽次數
頭像
Mihail Tsvetkov

The issue described below is experienced on Odoo 12 CE.

The default Administrator, who is created upon DB creation is of type Administrator/Settings. For simplicity we name it User1. User1 creates User2. User1 gives Administrator/Access Rights to User2. Now User2 is able to:

- Delete User 1 ?!?!

- Self promote to Administrator/Settings ?!?!

How can we prevent User2 from both actions above and thus secure User1?

Thank you in advance for any suggestions.

頭像
捨棄
頭像
Mihail Tsvetkov
作者 最佳答案

Balvant, you are wrong my friend! I have tested it 100 times and it always happens. Now check the screen shots in the exact order. Fresh Odoo12 CE. At the end Administrator is deleted and gone...

https://prnt.sc/przud5
https://prnt.sc/przums
https://prnt.sc/przuyv
https://prnt.sc/przvax
https://prnt.sc/przvmv
https://prnt.sc/przvz8
https://prnt.sc/przw8y
https://prnt.sc/przwhy

So, please feedback is necessary...how to secure Administrator account !!!

頭像
捨棄
頭像
Balvant Ramani
最佳答案

There is no chance to Delete Administrative account in odoo. Odoo does not allow. so don't worry about it

頭像
捨棄
相關帖文 回覆 瀏覽次數 活動
Admin rights changed in error 已解決
rights administrator
頭像
頭像
2
10月 24
1235
Custom Access Rights are not visible in normal mode, Only visible under Developer mode (v16)
access rights
頭像
0
8月 23
8
How to learn Access Rights
access rights
頭像
頭像
頭像
2
11月 22
3229
In a project only the admin can see the team members but the user can't
access rights
頭像
頭像
2
3月 15
4476
The requested operation cannot be completed due to security restrictions. Please contact your system administrator. document type: users, operation:read.
error access rights
頭像
頭像
1
3月 22
3195