| Thread Previous • Date Previous • Date Next • Thread Next |
On 2014-02-05 13:01, Alan Lord wrote:
IMO we need a o2m relation (similar to ir_access) for every group associated to an individual attachment with individual permissions for each document I do not think that it is possible to automatically assign access rights in many cases as these rights depend on the content of the document (example HR) For this the "ADD" attachment must be extended to allow this specification after file selection.On 01/02/14 10:57, Ferdinand Gassauer wrote:On 2014-02-01 13:46, Frédéric Clementi wrote: another big issue are attachments access rights - i just give 2 examples * attached documents (invoice-pdf) may not be deleted/altered manually - as fiscal law requires reproduction during a long period * confidential documents attached to employee records must only be visible for the HR groupGlad someone else noticed this: https://bugs.launchpad.net/openobject-server/+bug/969198
see document/static/src/js/document.jsTo just prevent the deletion of invoice-pdf attachments automatic access rights are obviously possible Nevertheless a group which may delete invoice pdfs must exists to purge past years. purging past years is a very complicated matter (must avoid data inconsistency) which is not addressed yet AFAIK.
Cheers Al _______________________________________________ Mailing list: https://launchpad.net/~openerp-community Post to : openerp-community@xxxxxxxxxxxxxxxxxxx Unsubscribe : https://launchpad.net/~openerp-community More help : https://help.launchpad.net/ListHelp
-- Ferdinand
| Thread Previous • Date Previous • Date Next • Thread Next |
