mirror of https://github.com/OCA/web.git
41 lines
1.4 KiB
Python
41 lines
1.4 KiB
Python
# Copyright 2016 Camptocamp SA
|
|
# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
|
|
|
|
from odoo import exceptions, models
|
|
|
|
|
|
class Base(models.AbstractModel):
|
|
""" The base model, which is implicitly inherited by all models. """
|
|
|
|
_inherit = "base"
|
|
|
|
def check_access_rule_all(self, operations=None):
|
|
"""Verifies that the operation given by ``operations`` is allowed for
|
|
the user according to ir.rules.
|
|
|
|
If ``operations`` is empty, it returns the result for all actions.
|
|
|
|
:param operation: a list of ``read``, ``create``, ``write``, ``unlink``
|
|
:return: {operation: access} (access is a boolean)
|
|
"""
|
|
if not operations or not any(operations):
|
|
operations = ["read", "create", "write", "unlink"]
|
|
result = {}
|
|
for operation in operations:
|
|
try:
|
|
self.check_access_rule(operation)
|
|
except exceptions.AccessError:
|
|
result[operation] = False
|
|
if (
|
|
self.is_transient()
|
|
or self.ids
|
|
and self.env.user.has_group("base.user_admin")
|
|
):
|
|
# If we call check_access_rule() without id, it will try to
|
|
# run a SELECT without ID which will crash, so we just blindly
|
|
# allow the operations
|
|
result[operation] = True
|
|
else:
|
|
result[operation] = False
|
|
return result
|