From b51db882547be8ee47712be124e150817e29c485 Mon Sep 17 00:00:00 2001
From: "Kevin.roche" <kevin.roche@akretion.com>
Date: Mon, 27 Jun 2022 17:16:43 +0200
Subject: [PATCH] [IMP] base_user_role show rules and access

---
 base_user_role/models/role.py | 36 +++++++++++++++++++++++++++++++++++
 base_user_role/views/role.xml | 26 +++++++++++++++++++++++++
 2 files changed, 62 insertions(+)

diff --git a/base_user_role/models/role.py b/base_user_role/models/role.py
index 30fb8096..20d00a79 100644
--- a/base_user_role/models/role.py
+++ b/base_user_role/models/role.py
@@ -26,6 +26,20 @@ class ResUsersRole(models.Model):
     user_ids = fields.One2many(
         comodel_name="res.users", string="Users list", compute="_compute_user_ids"
     )
+    rule_ids = fields.Many2many(
+        comodel_name="ir.rule",
+        compute="_compute_rule_ids",
+        string="Record Rules",
+        required=False,
+    )
+    rules_count = fields.Integer(compute="_compute_rule_ids")
+    model_access_ids = fields.Many2many(
+        comodel_name="ir.model.access",
+        compute="_compute_model_access_ids",
+        string="Access Rights",
+        required=False,
+    )
+    model_access_count = fields.Integer(compute="_compute_model_access_ids")
     group_category_id = fields.Many2one(
         related="group_id.category_id",
         default=lambda cls: cls.env.ref("base_user_role.ir_module_category_role").id,
@@ -39,6 +53,18 @@ class ResUsersRole(models.Model):
         for role in self.sudo() if self._bypass_rules() else self:
             role.user_ids = role.line_ids.mapped("user_id")
 
+    @api.depends("implied_ids", "implied_ids.model_access")
+    def _compute_model_access_ids(self):
+        for rec in self:
+            rec.model_access_ids = rec.implied_ids.model_access.ids
+            rec.model_access_count = len(rec.model_access_ids)
+
+    @api.depends("implied_ids", "implied_ids.rule_groups")
+    def _compute_rule_ids(self):
+        for rec in self:
+            rec.rule_ids = rec.implied_ids.rule_groups.ids
+            rec.rules_count = len(rec.rule_ids)
+
     @api.model
     def _bypass_rules(self):
         # Run methods as super user to avoid problems by "Administrator/Access Right"
@@ -88,6 +114,16 @@ class ResUsersRole(models.Model):
         logging.info("Update user roles")
         self.search([]).update_users()
 
+    def show_rule_ids(self):
+        action = self.env["ir.actions.actions"]._for_xml_id("base.action_rule")
+        action["domain"] = [("id", "in", self.rule_ids.ids)]
+        return action
+
+    def show_model_access_ids(self):
+        action = self.env["ir.actions.actions"]._for_xml_id("base.ir_access_act")
+        action["domain"] = [("id", "in", self.model_access_ids.ids)]
+        return action
+
 
 class ResUsersRoleLine(models.Model):
     _name = "res.users.role.line"
diff --git a/base_user_role/views/role.xml b/base_user_role/views/role.xml
index 40068651..5d8f3cbd 100644
--- a/base_user_role/views/role.xml
+++ b/base_user_role/views/role.xml
@@ -9,6 +9,32 @@
         <field name="arch" type="xml">
             <form>
                 <sheet>
+                     <div class="oe_button_box" name="button_box">
+                        <button
+                            name="show_model_access_ids"
+                            type="object"
+                            class="oe_stat_button"
+                            icon="fa-book"
+                        >
+                        <field
+                                name="model_access_count"
+                                widget="statinfo"
+                                string="Access Rights"
+                            />
+                        </button>
+                        <button
+                            name="show_rule_ids"
+                            type="object"
+                            class="oe_stat_button"
+                            icon="fa-server"
+                        >
+                        <field
+                                name="rules_count"
+                                widget="statinfo"
+                                string="Record Rules"
+                            />
+                        </button>
+                    </div>
                     <group>
                         <field name="name" />
                         <field name="group_id" required="0" readonly="1" />