oca/oca-ocb-hr
2
0
Fork 0
mirror of https://github.com/bringout/oca-ocb-hr.git synced 2026-04-21 11:12:03 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions
oca-ocb-hr/odoo-bringout-oca-ocb-hr/hr/security/hr_security.xml
Ernad Husremovic e1d89e11e3 19.0 vanilla
2026-03-09 09:31:00 +01:00

124 lines
6 KiB
XML
Raw Permalink Blame History

<?xml version="1.0" encoding="utf-8"?>
<odoo>
<record model="res.groups.privilege" id="res_groups_privilege_employees">
<field name="name">Employees</field>
<field name="sequence">9</field>
<field name="category_id" ref="base.module_category_human_resources"/>
</record>
<record id="group_hr_user" model="res.groups">
<field name="name">Officer: Manage all employees</field>
<field name="sequence">10</field>
<field name="privilege_id" ref="res_groups_privilege_employees"/>
<field name="implied_ids" eval="[(6, 0, [ref('base.group_user')])]"/>
<field name="comment">The user will be able to create and edit employees.</field>
</record>
<record id="group_hr_manager" model="res.groups">
<field name="name">Administrator</field>
<field name="sequence">20</field>
<field name="comment">The user will have access to the human resources configuration as well as statistic reports.</field>
<field name="privilege_id" ref="res_groups_privilege_employees"/>
<field name="implied_ids" eval="[(4, ref('group_hr_user'))]"/>
<field name="user_ids" eval="[(4, ref('base.user_root')), (4, ref('base.user_admin'))]"/>
</record>
<data noupdate="1">
<record id="hr_employee_comp_rule" model="ir.rule">
<field name="name">Employee multi company rule</field>
<field name="model_id" ref="model_hr_employee"/>
<field name="domain_force">['|', '|', '|',
('company_id', 'in', company_ids + [False]),
('parent_id.user_id', '=', user.id),
('id', '=', user.employee_id.parent_id.id),
('user_id', '=', user.id)
]</field>
</record>
<record id="hr_dept_comp_rule" model="ir.rule">
<field name="name">Department multi company rule</field>
<field name="model_id" ref="model_hr_department"/>
<field name="domain_force">[('company_id', 'in', company_ids + [False])]</field>
</record>
<record id="hr_employee_public_comp_rule" model="ir.rule">
<field name="name">Employee multi company rule</field>
<field name="model_id" ref="model_hr_employee_public"/>
<field name="domain_force">['|', '|', '|',
('company_id', 'in', company_ids + [False]),
('parent_id.user_id', '=', user.id),
('id', '=', user.employee_id.parent_id.id),
('user_id', '=', user.id)
]</field>
</record>
<record id="hr_job_comp_rule" model="ir.rule">
<field name="name">Job multi company rule</field>
<field name="model_id" ref="model_hr_job"/>
<field name="domain_force">[('company_id', 'in', company_ids + [False])]</field>
</record>
<record id="ir_rule_res_partner_bank_internal_users" model="ir.rule">
<field name="name">HR: Prevent non HR officers from accessing employee bank accounts</field>
<field name="model_id" ref="base.model_res_partner_bank"/>
<field name="domain_force">[('partner_id.employee_ids', '=', False)]</field>
<field name="groups" eval="[(4, ref('base.group_user'))]"/>
</record>
<record id="ir_rule_res_partner_bank_employees" model="ir.rule">
<field name="name">HR: Allow HR officers from accessing employee bank accounts</field>
<field name="model_id" ref="base.model_res_partner_bank"/>
<field name="domain_force">[(1, '=', 1)]</field>
<field name="groups" eval="[(4, ref('hr.group_hr_user'))]"/>
</record>
<record id="ir_rule_hr_contract_type_multi_company" model="ir.rule">
<field name="name">HR Contract Type: Multi Company</field>
<field name="model_id" ref="model_hr_contract_type"/>
<field name="domain_force">['|', ('country_id', '=', False), ('country_id', 'in', user.env.companies.country_id.ids)]</field>
</record>
<record id="mail_plan_rule_group_hr_manager" model="ir.rule">
<field name="name">Manager can edit employee plan</field>
<field name="groups" eval="[(4, ref('group_hr_manager'))]"/>
<field name="model_id" ref="mail.model_mail_activity_plan"/>
<field name="domain_force">[('res_model', '=', 'hr.employee')]</field>
<field name="perm_read" eval="False"/>
</record>
<record id="mail_plan_templates_rule_group_hr_manager" model="ir.rule">
<field name="name">Manager can edit employee plan template</field>
<field name="groups" eval="[(4, ref('group_hr_manager'))]"/>
<field name="model_id" ref="mail.model_mail_activity_plan_template"/>
<field name="domain_force">[('plan_id.res_model', '=', 'hr.employee')]</field>
<field name="perm_read" eval="False"/>
</record>
<record id="ir_rule_hr_departure_reason_multi_company" model="ir.rule">
<field name="name">Departure Reason: multi company</field>
<field name="model_id" ref="model_hr_departure_reason"/>
<field name="domain_force">[('country_code', 'in', user.env.companies.mapped('country_code') + [False])]</field>
</record>
<record id="ir_rule_hr_contract_manager" model="ir.rule">
<field name="name">HR Contract: Contract Manager</field>
<field name="model_id" ref="model_hr_version"/>
<field name="groups" eval="[(4, ref('group_hr_manager'))]"/>
<field name="domain_force">[(1, '=', 1)]</field>
</record>
<record id="ir_rule_hr_contract_multi_company" model="ir.rule">
<field name="name">HR Contract: Multi Company</field>
<field name="model_id" ref="model_hr_version"/>
<field name="domain_force">[('company_id', 'in', company_ids)]</field>
</record>
<record id="ir_rule_hr_payroll_structure_type_multi_company" model="ir.rule">
<field name="name">HR Payroll Structure Type: Multi Company</field>
<field name="model_id" ref="model_hr_payroll_structure_type"/>
<field name="global" eval="True"/>
<field name="domain_force">['|', ('country_id', '=', False), ('country_id', 'in', user.env.companies.mapped('country_id').ids)]</field>
</record>
</data>
</odoo>
Reference in a new issue View git blame Copy permalink