Odoo is the world's easiest all-in-one management software.
It includes hundreds of business apps:
This is a serious security concern, defining group access rights on menu items is not enough to restrict access to actions
How do you protect against this ? someone could just try action ids one by one until they find an existing action that gives him/her access to potentially private information.
I restricted access to a window action to a specific group, but I was still able to see it with a user that doesn't belong to that group.
Is this a bug? or am I missing something?
Erstellen Sie heute ein Konto, um exklusive Funktionen zu nutzen und mit unserer tollen Community zu interagieren!
Registrieren| Verknüpfte Beiträge | Antworten | Ansichten | Aktivität | |
|---|---|---|---|---|
|
1
Okt. 23
|
8983 | ||
|
|
0
März 15
|
4329 | ||
|
1
März 15
|
5670 | ||
|
0
März 25
|
1167 | ||
|
2
Okt. 24
|
2278 |
1. Use the live chat to ask your questions.
2. The operator answers within a few minutes.
