mirror of
https://github.com/bringout/oca-report.git
synced 2026-04-18 16:02:02 +02:00
42 lines
1.2 KiB
Markdown
42 lines
1.2 KiB
Markdown
# Security
|
|
|
|
Access control and security definitions in report_async.
|
|
|
|
## Access Control Lists (ACLs)
|
|
|
|
Model access permissions defined in:
|
|
- **[ir.model.access.csv](../report_async/security/ir.model.access.csv)**
|
|
- 3 model access rules
|
|
|
|
## Record Rules
|
|
|
|
Row-level security rules defined in:
|
|
- **[ir_rule.xml](../report_async/security/ir_rule.xml)**
|
|
|
|
## Security Groups & Configuration
|
|
|
|
Security groups and permissions defined in:
|
|
- **[ir_rule.xml](../report_async/security/ir_rule.xml)**
|
|
|
|
```mermaid
|
|
graph TB
|
|
subgraph "Security Layers"
|
|
A[Users] --> B[Groups]
|
|
B --> C[Access Control Lists]
|
|
C --> D[Models]
|
|
B --> E[Record Rules]
|
|
E --> F[Individual Records]
|
|
end
|
|
```
|
|
|
|
Security files overview:
|
|
- **[ir.model.access.csv](../report_async/security/ir.model.access.csv)**
|
|
- Model access permissions (CRUD rights)
|
|
- **[ir_rule.xml](../report_async/security/ir_rule.xml)**
|
|
- Security groups, categories, and XML-based rules
|
|
|
|
Notes
|
|
- Access Control Lists define which groups can access which models
|
|
- Record Rules provide row-level security (filter records by user/group)
|
|
- Security groups organize users and define permission sets
|
|
- All security is enforced at the ORM level by Odoo
|