Menu Level security In OpenERP V7

Many of our customer reported a security issue in OpenERP through web browser. If we copy a Url from Admin, and login as another user, where that menu restricted, the restricted user will be able access that pages and work on it. This is an OpenERP issues, where the menus are only “hidden” and not “restricted” to users. This can be a security issue if the pages are registred in search engines or If someone who is expert in OpenERP access the data.

Our OpenERP V7 “web_menu_security” module restricts all the menus from user who have no permission to access that. The attempt will redirect the user to home page. You can use this module, without any configuration in the database.

Comments

Anonymous: Zesty beanz is a website that has an importing information to different CSV file templates to a single. You need to check https://www.analyzedu.com/ and get new skill about the writing services. It includes the interesting module in Open ERP which can found useful recently for importing different CSV file templates to a single. Join it.".

Leave a Reply

Your email address will not be published. Required fields are marked *

  1. Frank says:
    August 11, 2013 at 6:10 pm

    This module seems not working. It causes blanks after I install it.

    Reply
    1. Anoop P says:
      August 12, 2013 at 2:12 pm

      Hi Frank,

      We checked and didn't found any issue. Could you please logout first and then login again.  

      Reply
  2. Anonymous says:
    February 19, 2014 at 5:13 pm

    I have save in addons folder & ticke technical feature box in user ,& i gad many time update amodule list , but not shown in module list

    Reply
  3. WASS says:
    January 26, 2015 at 5:28 pm

    Great work;
    Still a user can modify the ids in the url: for exemple an employee can view all the employees in the company via changing the id:
    localhost:xxxx/?db=test#id=1&view_type=form&model=hr.employee&action=156

    Reply
  4. Anonymous says:
    October 1, 2020 at 5:37 pm

    Zesty beanz is a website that has an importing information to different CSV file templates to a single. You need to check https://www.analyzedu.com/ and get new skill about the writing services. It includes the interesting module in Open ERP which can found useful recently for importing different CSV file templates to a single. Join it.

    Reply
© 2020 Zesty Beanz Pvt Ltd All Rights Reserved.