openerp-india team mailing list archive

Thread
Date

[Bug 950482] Re: [Trunk/6.1]No security (access rights) for Report Designer

To: openerp-india@xxxxxxxxxxxxxxxxxxx
From: Réal Carbonneau <950482@xxxxxxxxxxxxxxxxxx>
Date: Mon, 12 Mar 2012 15:23:28 -0000
Reply-to: Bug 950482 <950482@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Here are some more details about the problem:
1) Even if the user has no access, he can still open report with the OpenERP Report Designer, this should not be permitted and an error message should be given
2) If the user does not have the appropriate rights, the save of a modify report when doing "Send to the server" seems to fail, but without providing an error message.  Thus an error message should be added indicating that the user does not have the rights to modify the report.

-- 
You received this bug notification because you are a member of OpenERP
Indian Team, which is subscribed to OpenERP Addons.
https://bugs.launchpad.net/bugs/950482

Title:
  [Trunk/6.1]No security (access rights) for Report Designer

Status in OpenERP Addons (modules):
  Confirmed

Bug description:
  The report designer does not have any security built in.  Any user can
  modify reports.

  To reproduce:
  1) create a user with no "Access Groups"
  2) Use Open Office OpenERP Report Designer to modify reports.

  There should be some security limiting who can modify reports.

  Version 6.0.3

To manage notifications about this bug go to:
https://bugs.launchpad.net/openobject-addons/+bug/950482/+subscriptions

References

[Bug 950482] [NEW] No security (access rights) for Report Designer
From: Réal Carbonneau, 2012-03-09