openerp-india team mailing list archive

Thread
Date

[Bug 1021378] Re: "create" permission in res.users dont work with other users, not admin

To: openerp-india@xxxxxxxxxxxxxxxxxxx
From: diassynthesis <diassynthesis@xxxxxxxxx>
Date: Thu, 21 Feb 2013 23:27:26 -0000
Reply-to: Bug 1021378 <1021378@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Hi everybody;

If we begin to play with record rules (and ACL) this can lead us to impossible situations in an endless way (due to the interaction between modules and the inheritance between objects, and the very large number of cases we can choose ).
Before doing that, be sure to be able to revert any change to his original state (Just in case !!!).

Also, patching code has never been "a simple walk", cause it can have an unkown and hidden "side effects". If it must be done, it must be done carefully and surely, All we can do is to backport any change (as done by Stefan), or on it's own development platform.
(Why not creating it's own branch if necessary).

Let's return to our issue, and going deeper in our investigations (concerning the solution in my previous comment)
Known that there is no control over what an IT Admin needs to put as access rights for a given user on a given production platform in a given company (there is no 2 identical installations of OpenERP or any other ERP), how can we deal with such a situation (i mean what if a user need to be at the same time a Portal user or an Anonymous user, should the IT admin affect to him the corresponding rights ? If, yes we will face the same error and the same Bug ).

And here is my question: Why an OpenERP user (Employee-user) need to be
a Portal user or an Anonymous user ?

Here is a BIG CONTRADICTION ! and a CONFLICT of access rights !!!

Please, keep on analysing this issue deeper.
We must close it asap.

Best regards.

--
You received this bug notification because you are a member of OpenERP
Indian Team, which is subscribed to OpenERP Server.
https://bugs.launchpad.net/bugs/1021378

Title:
"create" permission in res.users dont work with other users, not admin

Status in OpenERP Community Backports (Server):
Fix Released
Status in OpenERP Community Backports (Server) 7.0 series:
Fix Released
Status in OpenERP Server:
Fix Committed
Status in Therp Backports:
Fix Released
Status in Therp Backports server-6.1 series:
Fix Released

Bug description:
When you create a new user and give permissions: Administration: "access rights". This group "access rights" has create permission to res.users table.
Then login with this new user and try to create a new user, it dont work, the message is "Access Error Operation:Prohibited by the rules of access to or held in a document already removed (Operation: create, document type: res.users)"
The result I expected was create a new user, by using a user different to admin, that has "access rights" permissions.
The platform is ubuntu
The Openerp Version is 6.1 rev. 4196

To manage notifications about this bug go to:
https://bugs.launchpad.net/ocb-server/+bug/1021378/+subscriptions

References

[Bug 1021378] [NEW] "create" permission in res.users dont work with other users, not admin
From: Evelyn Martinez, 2012-07-05