odoo
/
odoo
2
0
Fork 0
Code Pull Requests Releases Activity

[FIX] website_quote: security fix, only salesman were able to read sale order options, while other users, like portal and public, obviously need to be able to read these options 

bzr revid: dle@openerp.com-20140410081445-mcg075upmujpr5w1
This commit is contained in:
Denis Ledoux 2014-04-10 10:14:45 +02:00
parent 7715bf1823
commit 9e1dc2a2bd
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
addons/website_quote/security/ir.model.access.csv
View File

@ -6,3 +6,4 @@ access_sale_quote_line_manager,sale.quote.line,model_sale_quote_line,base.group_
access_sale_quote_option,sale.quote.option,model_sale_quote_option,base.group_sale_salesman,1,0,0,0
access_sale_quote_option_manager,sale.quote.option,model_sale_quote_option,base.group_sale_manager,1,1,1,1
access_sale_order_option,sale.order.option,model_sale_order_option,base.group_sale_salesman,1,1,1,1
access_sale_order_option_all,sale.order.option,model_sale_order_option,,1,0,0,0

1 id name model_id:id group_id:id perm_read perm_write perm_create perm_unlink
6 access_sale_quote_option sale.quote.option model_sale_quote_option base.group_sale_salesman 1 0 0 0
7 access_sale_quote_option_manager sale.quote.option model_sale_quote_option base.group_sale_manager 1 1 1 1
8 access_sale_order_option sale.order.option model_sale_order_option base.group_sale_salesman 1 1 1 1
9 access_sale_order_option_all sale.order.option model_sale_order_option 1 0 0 0