← Back to team overview

openerp-india team mailing list archive

  1. openerp-india team
  2. Mailing list archive
  3. Message #20781

[Bug 1094212] Re: partner search & record rules & muliticompanies

  Thread PreviousDate PreviousThread Next 
The problem:

The result of cr.execute is bad (why hasn't everyone at openerp been
brainwashed yet?) because it will contain results not appropriate for
the current user (because of un-applied record rules)

The solution:

After we fetched the result cr.execute I now force the search to be
executed (unconditionally) which is no problem even if "args" was not
passed (see beginning of function where it is set to [] if it was None).
Doing this search it will pass all the ids we have found so far but will
also apply or record rules, thus filtering out the unreadable partner
ids in the process.


** Also affects: openobject-server/7.0
   Importance: Undecided
       Status: New

-- 
You received this bug notification because you are a member of OpenERP
Indian Team, which is subscribed to OpenERP Server.
https://bugs.launchpad.net/bugs/1094212

Title:
  partner search & record rules & muliticompanies

Status in OpenERP Server:
  Confirmed
Status in OpenERP Server 7.0 series:
  New

Bug description:
  The search function of the partner view don't work when there is a
  acces rules change.

  For example, in a multi compagnies context: if there is a access rules change on "res.partner company" like: 
  only see the partner of your company and his childs: ['|',('company_id','child_of',[user.company_id.id]),('company_id','=',False)]

  Before the access rules was : "res.partner company"
  ['|','|',('company_id.child_ids','child_of',[user.company_id.id]),('company_id','child_of',[user.company_id.id]),('company_id','=',False)]

  the access rules work fine, a user in a new company can see only the
  partner of his company, BUT

  the search function of the tree form always return an "access denied", so it's not possible to filter the partner list.
  The message is:

  Access Denied
  The requested operation cannot be completed due to security restrictions. Please contact your system administrator.
  (Document type: Partner, Operation: read) 

  
  It's problably the "name_search" function in partner class who don't take care of access rule.

To manage notifications about this bug go to:
https://bugs.launchpad.net/openobject-server/+bug/1094212/+subscriptions

References

  Thread PreviousDate PreviousThread Next