Skip to Content

Restrict Access Right User from increasing Access Level

by
Odoo

10.00

v 16.0 Third Party
Availability
Odoo Online
Odoo.sh
On Premise
Lines of code 26
Technical Name restrict_access_right_user
LicenseOPL-1
Websitehttps://straitcoders.com/
Versions 16.0 17.0 18.0
You bought this module and need support? Click here!
Availability
Odoo Online
Odoo.sh
On Premise
Lines of code 26
Technical Name restrict_access_right_user
LicenseOPL-1
Websitehttps://straitcoders.com/
Versions 16.0 17.0 18.0

Prevent Privilege Escalation

Restrict "Access Rights" users from granting "Settings" access



Watch Complete Demo here:- YouTube Demo Video

Enhanced Security for Your Odoo Instance

Maintain control over who has the highest level of access

This module adds a crucial security layer to your Odoo system. It prevents users who have been granted "Access Rights" from elevating their own or other users' privileges to the "Settings" level.
Prevents an 'Access Rights' user from accidentally lowering their own access level.
By blocking this action, you can ensure that only true administrators (users with "Settings" access) can grant the highest level of permissions, preventing unauthorized privilege escalation.

How It Works

Simple, effective, and transparent

When a user with only "Access Rights" attempts to save a user form after changing the access level to "Settings", the module will raise a clear and informative error message, blocking the change.

This happens silently in the background and doesn't interfere with any other user management tasks.

Easy to Install and Use

No configuration needed

Simply install the module, and the restriction will be active immediately. There are no settings to configure.

Check Out Our Other Odoo Apps

HR Employee ID Card

HR Employee ID Card
HR Employee ID Card

HR Blood Group Profile

About Us

Strait Coders specializes in developing powerful and user-friendly Odoo apps for HR and business automation. Our team ensures high-quality, scalable, and secure modules to meet your business needs.

Visit our website

Strait Coders Logo

Check out our Youtube

Youtube video link

Welcome to the Restrict Access Right User Documentation!

Overview

The Restrict Access Right User module is a security enhancement for Odoo that prevents privilege escalation. It specifically blocks users who have "Access Rights" administrative privileges from granting themselves or other users the higher "Settings" privilege level. This ensures a stricter separation of duties and enhances the overall security of your Odoo instance.

Features

  • Prevent Privilege Escalation: Blocks 'Access Rights' users from creating or promoting any user to the 'Settings' level.
  • Protect System Administrators: An 'Access Rights' user cannot edit or modify a user who already has 'Settings' access.
  • Self-Protection: Prevents an 'Access Rights' user from accidentally lowering their own access level.
  • Transparent Operation: Works in the background by overriding the create and write methods of user records.
  • Informative Feedback: Raises clear, understandable error messages when a restricted action is attempted.
  • Zero Configuration: No setup is required. The restrictions are active immediately after installation.

Prerequisites

  • Odoo version: 16.0 or later
  • Installed modules: base (core Odoo module)
  • Administrator access to the Odoo instance for installation.

Installation

Follow these steps to install the module:

  1. Download the Module: - Obtain the module files from the Odoo App Store. - Place the restrict_access_right_user folder in your Odoo addons directory.
  2. Update the Modules List: - Log in to your Odoo instance as an administrator. - Activate developer mode. - Navigate to the Apps menu. - Click on Update Apps List.
  3. Install the Module: - In the Apps menu, Remove default filter and search for Restrict Access Right User. - Click Install.

Configuration

No configuration is needed. The module works out of the box.

Usage

The module's restrictions are applied automatically. If a user with only "Access Rights" privileges attempts to perform a forbidden action (e.g., change a user's administration level to "Settings"), Odoo will block the operation and display an error message explaining the restriction.

License

This module is licensed under the OPL-1 (Odoo Proprietary License v1.0). See the Odoo App Store page for more details.

Support

For issues, feature requests, or support, please contact the module author at: straitcoders@gmail.com

Odoo Proprietary License v1.0

This software and associated files (the "Software") may only be used (executed,
modified, executed after modifications) if you have purchased a valid license
from the authors, typically via Odoo Apps, or if you have received a written
agreement from the authors of the Software (see the COPYRIGHT file).

You may develop Odoo modules that use the Software as a library (typically
by depending on it, importing it and using its resources), but without copying
any source code or material from the Software. You may distribute those
modules under the license of your choice, provided that this license is
compatible with the terms of the Odoo Proprietary License (For example:
LGPL, MIT, or proprietary licenses similar to this one).

It is forbidden to publish, distribute, sublicense, or sell copies of the Software
or modified copies of the Software.

The above copyright notice and this permission notice must be included in all
copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE,
ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
DEALINGS IN THE SOFTWARE.

Please log in to comment on this module

  • The author can leave a single reply to each comment.
  • This section is meant to ask simple questions or leave a rating. Every report of a problem experienced while using the module should be addressed to the author directly (refer to the following point).
  • If you want to start a discussion with the author or have a question related to your purchase, please use the support page.