summaryrefslogtreecommitdiff
path: root/addons/sale_stock/controllers
diff options
context:
space:
mode:
Diffstat (limited to 'addons/sale_stock/controllers')
-rw-r--r--addons/sale_stock/controllers/__init__.py4
-rw-r--r--addons/sale_stock/controllers/portal.py38
2 files changed, 42 insertions, 0 deletions
diff --git a/addons/sale_stock/controllers/__init__.py b/addons/sale_stock/controllers/__init__.py
new file mode 100644
index 00000000..903b755e
--- /dev/null
+++ b/addons/sale_stock/controllers/__init__.py
@@ -0,0 +1,4 @@
+# -*- coding: utf-8 -*-
+# Part of Odoo. See LICENSE file for full copyright and licensing details.
+
+from . import portal
diff --git a/addons/sale_stock/controllers/portal.py b/addons/sale_stock/controllers/portal.py
new file mode 100644
index 00000000..7eec8e26
--- /dev/null
+++ b/addons/sale_stock/controllers/portal.py
@@ -0,0 +1,38 @@
+# -*- coding: utf-8 -*-
+# Part of Odoo. See LICENSE file for full copyright and licensing details.
+
+from odoo import exceptions
+from odoo.addons.sale.controllers.portal import CustomerPortal
+from odoo.http import request, route
+from odoo.tools import consteq
+
+
+class SaleStockPortal(CustomerPortal):
+
+ def _stock_picking_check_access(self, picking_id, access_token=None):
+ picking = request.env['stock.picking'].browse([picking_id])
+ picking_sudo = picking.sudo()
+ try:
+ picking.check_access_rights('read')
+ picking.check_access_rule('read')
+ except exceptions.AccessError:
+ if not access_token or not consteq(picking_sudo.sale_id.access_token, access_token):
+ raise
+ return picking_sudo
+
+ @route(['/my/picking/pdf/<int:picking_id>'], type='http', auth="public", website=True)
+ def portal_my_picking_report(self, picking_id, access_token=None, **kw):
+ """ Print delivery slip for customer, using either access rights or access token
+ to be sure customer has access """
+ try:
+ picking_sudo = self._stock_picking_check_access(picking_id, access_token=access_token)
+ except exceptions.AccessError:
+ return request.redirect('/my')
+
+ # print report as sudo, since it require access to product, taxes, payment term etc.. and portal does not have those access rights.
+ pdf = request.env.ref('stock.action_report_delivery').sudo()._render_qweb_pdf([picking_sudo.id])[0]
+ pdfhttpheaders = [
+ ('Content-Type', 'application/pdf'),
+ ('Content-Length', len(pdf)),
+ ]
+ return request.make_response(pdf, headers=pdfhttpheaders)
generated by cgit v1.2.3 (git 2.25.1) at 2026-05-25 09:44:33 +0000