diff options
| author | stephanchrst <stephanchrst@gmail.com> | 2022-05-10 21:51:50 +0700 |
|---|---|---|
| committer | stephanchrst <stephanchrst@gmail.com> | 2022-05-10 21:51:50 +0700 |
| commit | 3751379f1e9a4c215fb6eb898b4ccc67659b9ace (patch) | |
| tree | a44932296ef4a9b71d5f010906253d8c53727726 /addons/payment/security | |
| parent | 0a15094050bfde69a06d6eff798e9a8ddf2b8c21 (diff) | |
initial commit 2
Diffstat (limited to 'addons/payment/security')
| -rw-r--r-- | addons/payment/security/ir.model.access.csv | 15 | ||||
| -rw-r--r-- | addons/payment/security/payment_security.xml | 31 |
2 files changed, 46 insertions, 0 deletions
diff --git a/addons/payment/security/ir.model.access.csv b/addons/payment/security/ir.model.access.csv new file mode 100644 index 00000000..47374731 --- /dev/null +++ b/addons/payment/security/ir.model.access.csv @@ -0,0 +1,15 @@ +id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink +payment_acquirer_all,payment.acquirer.all,model_payment_acquirer,,1,0,0,0 +payment_acquirer_system,payment.acquirer.system,model_payment_acquirer,base.group_system,1,1,1,1 +payment_transaction_all,payment.transaction.all,model_payment_transaction,,1,0,0,0 +payment_transaction_user,payment.transaction.user,model_payment_transaction,base.group_user,1,1,1,0 +payment_transaction_system,payment.transaction.system,model_payment_transaction,base.group_system,1,1,1,1 +payment_method_all,payment.token.all,model_payment_token,,1,0,0,0 +payment_method_user,payment.token.user,model_payment_token,base.group_user,1,1,1,1 +payment_method_portal,payment.token.portal,model_payment_token,base.group_portal,1,1,1,1 +payment_method_system,payment.token.system,model_payment_token,base.group_system,1,1,1,1 +payment_icon_all,payment.icon.all,model_payment_icon,,1,0,0,0 +payment_icon_user,payment.icon.user,model_payment_icon,base.group_user,1,1,1,0 +payment_icon_system,payment.icon.system,model_payment_icon,base.group_system,1,1,1,1 +access_payment_acquirer_onboarding_wizard,access.payment.acquirer.onboarding.wizard,model_payment_acquirer_onboarding_wizard,base.group_system,1,1,1,0 +access_payment_link_wizard,access.payment.link.wizard,model_payment_link_wizard,account.group_account_user,1,1,1,0 diff --git a/addons/payment/security/payment_security.xml b/addons/payment/security/payment_security.xml new file mode 100644 index 00000000..e51b25f9 --- /dev/null +++ b/addons/payment/security/payment_security.xml @@ -0,0 +1,31 @@ +<?xml version="1.0" encoding="utf-8"?> +<odoo noupdate="1"> + + <record id="payment_transaction_user_rule" model="ir.rule"> + <field name="name">Access own payment transaction only</field> + <field name="model_id" ref="payment.model_payment_transaction"/> + <field name="domain_force">['|',('partner_id','=',False), ('partner_id','=',user.partner_id.id) ]</field> + <field name="groups" eval="[(4, ref('base.group_user')), (4, ref('base.group_portal')), (4, ref('base.group_public'))]"/> + </record> + <record id="payment_token_user_rule" model="ir.rule"> + <field name="name">Access own payment tokens only</field> + <field name="model_id" ref="payment.model_payment_token"/> + <field name="domain_force">[('partner_id', 'child_of', user.partner_id.commercial_partner_id.id)]</field> + <field name="groups" eval="[(4, ref('base.group_user')), (4, ref('base.group_portal')), (4, ref('base.group_public'))]"/> + </record> + + <record id="payment_transaction_billing_rule" model="ir.rule"> + <field name="name">Access every payment transaction</field> + <field name="model_id" ref="payment.model_payment_transaction"/> + <field name="domain_force">[(1, '=', 1)]</field> + <field name="groups" eval="[(4, ref('account.group_account_invoice'))]"/> + </record> + + <record id="payment_token_salesman_rule" model="ir.rule"> + <field name="name">Access every payment token</field> + <field name="model_id" ref="payment.model_payment_token"/> + <field name="domain_force">[(1, '=', 1)]</field> + <field name="groups" eval="[(4, ref('account.group_account_invoice'))]"/> + </record> + +</odoo> |