OCA / mis-builder

Management Information System reports for Odoo: easily build super fast, beautiful, custom reports such as P&L, Balance Sheets and more.

GNU Affero General Public License v3.0

147 stars 310 forks source link

Migration to version 18.0 #639

Open OCA-git-bot opened 1 month ago

OCA-git-bot commented 1 month ago

Todo

https://github.com/OCA/maintainer-tools/wiki/Migration-to-version-18.0

Modules to migrate

[ ] mis_builder
[ ] mis_builder_budget
[ ] mis_builder_demo

Missing module? Check https://github.com/OCA/maintainer-tools/wiki/%5BFAQ%5D-Missing-modules-in-migration-issue-list

sbidoul commented 3 weeks ago

For v18, I would like to create new security groups, and use these instead of the accounting groups to control access to MIS reports and templates:

MIS Report Viewer: ro access to MIS Reports
MIS Report Administrator: rw access to MIS Reports
MIS Report Template Administrator: rw access to templates and styles

For budgets:

MIS Budget Viewer: ro access to MIS Budgets
MIS Budget Administrator: rw access to MIS Budgets

pedrobaeza commented 2 weeks ago

On the budgets part: does it make sense to not access MIS budgets, but see the results in a MIS report? I consider OK to have a rw access group, but ro should be the MIS base one.

sbidoul commented 2 weeks ago

It is actually possible to view MIS Reports without access to account.move.line. So, in the same spirit, since budget information can be sensitive data, I'd say it's worth a separate security group. Viewer of MIS Reports will then not be able to view reports involving budget data, but other reports will work.

pedrobaeza commented 2 weeks ago

I think it will be weird to access the report, but not to be able to preview it/export it. Let's block it by access rules (or inheriting the _check_access method) for not viewing them in the list.

chaule97 commented 1 week ago

working on mis_builder