audrius/account-financial-tools
1
0
Fork 0
mirror of https://github.com/OCA/account-financial-tools.git synced 2025-02-02 12:47:26 +02:00
Code Issues Packages Projects Releases Wiki Activity

[FIX] fix security issue on account_invoice

Browse Source 
This fix seems ugly, but I cant figure why I've a security error when an invoice is  displayed for a user without right on credit_control despite the attribute 'groups' declared on the field definition in the form view
This commit is contained in:
Laurent Mignon
2015-06-26 14:26:28 +02:00
committed by Pedro M. Baeza
parent 12e5862bb2
commit ff9882bd0d
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
account_credit_control/invoice.py
View File

@@ -34,6 +34,9 @@ class AccountInvoice(models.Model):
"setting.",
readonly=True,
copy=False,
groups="account_credit_control.group_account_credit_control_manager,"
"account_credit_control.group_account_credit_control_user,"
"account_credit_control.group_account_credit_control_info",
)
credit_control_line_ids = fields.One2many(