Tiny ERP new development in Security

Hello to All !!!

Tiny ERP have develop the new interesting features regarding security.
  • Field based Security
  • Work-flow Security
  • Security based Action
There ate 3 new and 1 in development total 4 new features related to the security.

Field based Security
one can define the groups attribute on the field, page, notebook, button, or any other tag and form parser will check the current user for the assigned groups and based on the user groups relation tiny will generate he view for current user, if user not have the access to any field, page, or notebook, these ll will automatically hidden from the user view as you can see billow



hare you can see there are few fields are hidden in partner contact and also one tab page is not accessible called "Extra Info" these are few lines written like as follows
page string="Extra Info" groups="base.group_admin"


Work-flow Security
this is a small and good feature, form the user side no need to change in any configuration tiny will automatically handle the things to make the work flow buttons enable or disable according to the work flow signal role's groups and current user's groups.

for example in Invoice object, one role is created to confirm the invoice called "Invoice Manager" if the current user is demo user and he does not have the role to confirm the invoice e-tiny will disable the Create button for demo user while creating the invoice view for demo user, you can see in next screen.




Security based Action (Report, Wizard)
a new field added to 2 objects ir.actions.report.xml and ir.actions.wizard to have a groups based security to perform this actions. if there is a groups assign in to Report or Wizard, only user related to this groups can be able to access the Report or Wizard as you can see 2 different forms for the demo user and for the admin user.

Admin menu
here admin can access the Report Overdue Payment and all wizard as admin groups is given to the this report, same way for the Wizards admin groups is set so that all the users who belongs to the admin groups they can access report and wizard.


Demo Menu
demo user is a Data entry user must not be able to access some Actions and Reports related to Accounting so for the same view he can not be able to perform such operations and not be able to


get full documentation from here

Comments

  1. AnonymousApril 10, 2008 at 6:14 PM

    Hi,

    Do you know when the improvements will be available?

    Greetings

    ReplyDelete
  2. Mantavya GajjarApril 10, 2008 at 6:27 PM

    Hello !!

    This is already Implemented on the Tiny ERP Trunk Version

    Please have a look at the Trunk Version

    Regards,
    M Gajjar

    ReplyDelete
  3. ZitaJuly 23, 2011 at 12:58 PM

    I would love to know more about programming.. I was not aware of ERP. After analyzing your post, i could get some knowledge about it. I appreciate for sharing this info.

    web domain registration

    ReplyDelete

Post a Comment

Popular posts from this blog

Implement OpenERP for Service company

Image
Team of Professionals Are you working for or running a professional service, like charted accounting, support center, annual maintenance / service contracts, etc. where you have to keep concentrate on your customer communication and service level, to make them satisfy and up to date with the real time updated information. OpenERP is ready to helps you in that case, the generic way of managing customer communications, keep track of projects, tasks and time management, Billing based on the tasks or projects or time spend which is base of any professional services, All this will give you a full control on your professional services. Some Problems Here are some questions which I would like to ask, before you look in to details of OpenERP, If any of the questions is a real problem for you, OpenERP is ready to help you with its open source business model which will offer you solution at comparatively very low cost. Are you professional service provider and you...
Read more

Command Line Mass Mailing Tool

Image
There are lots of tool for mass-mailing, but this tool is the tool for which i am talking about is based on command line. It is a very simple tool with as much as configurations for applications and mail framework properties. Application Settings All application configurations will be given through the  application.properties where you have to provide the settings like password, email list file, email file, return path, log file , debug option, mailer and mail format like text, html, etc.. Email Settings Email settings file mainly contains all email settings which required by the Java Mailing apis , you may fine complete properties list here. some of the important properties ate are host, port, user name etc.. Application folder - contains all files Setup Email List Application property `application.list` used to pass the email list to the application. This file heaving a very simple format one line is equals to one email address . it means if you wanted to send email ...
Read more

Server Action - Improvements

Hello to All, I am happy to Post this that we have revised the server action which is the interesting feature for the new version OpenEPR 5. We change the few configuration for the quick and easy configuration for some important functionalities. like Create Object, Write Object, Send Email, and the excellent is Multi Action to allows to execute the multiple server actions at the same time. Test it your self, get the new revised document that will helps you to configure the all the server action your self.
Read more