On 2018-01-25 16:27, Sergi Almacellas Abellana wrote: > El 25/01/18 a les 16:13, Luciano Rossi ha escrit: > >> > >> If the idea is to prevent removal of existing groups I will probably > >> make the current user groups readonly and add a function field which is > >> empty by default and it's used to add new groups to the user. > >> > > > > It's a good idea. Perhaps the function field should not be empty. May > > be, it could retrieve only the groups that the user has, but that are > > allowed to add or remove it. > > If you can apply a domain to filter the group of records that the user > is allowed to write and modify, you can add a new Many2Many fields which > writes to the same relation but applying a filter on target records with > the filter attribute: > > http://doc.tryton.org/4.6/trytond/doc/ref/models/fields.html?highlight=filter#trytond.model.fields.Many2Many.filter
I do not think such design will enforce any security. -- Cédric Krier - B2CK SPRL Email/Jabber: [email protected] Tel: +32 472 54 46 59 Website: http://www.b2ck.com/ -- You received this message because you are subscribed to the Google Groups "tryton" group. To view this discussion on the web visit https://groups.google.com/d/msgid/tryton/20180125154558.GJ23162%40kei.
