Successfully reported this slideshow.

OpenERP - Security in OpenERP

11,353 views

Published on

Published in: Business, Technology

OpenERP - Security in OpenERP

  1. 1. Security in OpenERP Harshad Modi & Raphael ColletOpenERP 6.1. Offer compléter Nom du fichier – à
  2. 2. Overview - sales tool for partners who can propose to their customers. 2-4 slides/big feature.OpenERP 6.1. Offer compléter Nom du fichier – à
  3. 3. Authentication Process - sales tool for partners who can propose to their customers. 2-4 slides/big feature. • OpenERP Authentication Handler Plain password (default) o o Encrypted password (base_crypt) • Third Party Authentication Handler (LDAP, OpenID)OpenERP 6.1. Offer compléter Nom du fichier – à
  4. 4. Connect with OpenIdOpenERP 6.1. Offer compléter Nom du fichier – à
  5. 5. Connect with LDAPOpenERP 6.1. Offer compléter Nom du fichier – à
  6. 6. Data Level SecurityOpenERP 6.1. Offer compléter Nom du fichier – à
  7. 7. Data Level SecurityOpenERP 6.1. Offer compléter Nom du fichier – à
  8. 8. Example: Customer Group!record {model: res.groups, id: base.group_sale_customer}: name: Customer category_id: base.module_category_sales_managementExample: Saleman Group!record {model: res.groups, id: base.group_sale_salesman}: name: Sales Person category_id: base.module_category_sales_management implied_ids: - base.group_sale_customerExample: User!record {model: res.users, id: user_john}: name: Mr.John groups_id: base.group_sale_saleman OpenERP 6.1. Offer compléter Nom du fichier – à
  9. 9. Record Rules • Rule Definition o Condition for restrict access to subset of records o On Access Rights (Create, Read, Write, Delete) • Global or Group SpecificOpenERP 6.1. Offer compléter Nom du fichier – à
  10. 10. Example: !record {model: ir.rule, id:sale_order_personal_rule}: name: Personal Orders model_id: model_sale_order domain_force: [|,(user_id,=,user.id), (user_id,=,False)] groups: - base.group_sale_salemanOpenERP 6.1. Offer compléter Nom du fichier – à
  11. 11. UI Level Security Restrict Menu to groups of users!record {model: ir.ui.menu, id:menu_sale_order}: name: Configuration parent: base.menu_sales sequence: 4 groups: - base.base.group_sale_managerRestrict Workflow Transition to groups of users!record {model:workflow.transition, id:trans_draft_router}: act_from: act_draft act_to: act_router signal: order_confirm group: - base.group_sale_customer - base.group_sale_saleman - base.base.group_sale_managerRestrict/Hide Fields in Forms to groups of users<field name="product_uom" string="UoM" groups="product.group_uom"/>OpenERP 6.1. Offer compléter Nom du fichier – à
  12. 12. Portal and Share • Portal Define Portal group   Configured Record Rules and Access Rights • Share Record Access  Create on-the-fly user from email address  Create on-the-fly group with specific record rulesOpenERP 6.1. Offer compléter Nom du fichier – à

×