Account Password Manager
Manage user passwords in Odoo with controlled access, password generation, strength evaluation, secure password records, clipboard copy support, and audit logs for technical administrators.
Overview
Account Password Manager is designed for internal technical administration teams that need to support users with login, account access, password reset, and operational support requests.
The module adds a dedicated password management layer on top of Odoo users, with restricted access and traceable password-related actions.
Main Menu
The module is available from the technical settings menu:
Settings / Technical / Passwords- Password Records: managed password records linked to Odoo users.
- Password Logs: audit trail for password set, capture, and copy actions.
Access Control
The module uses a dedicated security group:
Password Manager / Technical AdministratorUsers in this group can:
- Access the password management menu.
- Open password records and password logs.
- Use the Set Password action on the user form.
- Open the password record through the user smart button.
- Copy managed passwords when operational support requires it.
Key Features
Set Password from User Form
Administrators can open the password wizard directly from the Odoo user form and either type a password manually or generate a strong password.
Password Smart Button
A smart button on the user form opens the managed password record linked to the selected user.
Automatic Password Capture
When a user is created or a password is changed through Odoo's standard password write flow, the module creates or updates the corresponding managed password record.
Password Strength Evaluation
The password wizard evaluates password strength as Weak, Medium, Strong, or Very Strong, and provides improvement suggestions when needed.
Copy Password with Audit Log
Passwords are not displayed in clear text on list views. Authorized users can copy passwords from the secured record form, and the copy action is logged.
Password Audit Logs
Important password-related actions are recorded with the user, action type, timestamp, and operator.
Captured Scenarios
| Scenario | Result |
|---|---|
| Administrator sets a password through the module wizard | Creates or updates the managed password record and logs the set password action. |
| Administrator creates a new user with a password | Automatically creates the password record for the new user. |
| Administrator changes a user password from the backend | Automatically updates the existing password record or creates one if needed. |
| User signs up through the website | If the signup flow writes the password through Odoo's standard password field, the password is captured. |
| User changes their own password | If the password change flow writes to Odoo's password field, the password record is updated. |
| Authorized user copies a password | Copies the password to the clipboard and creates an audit log entry. |
Password Record Status
| Status | Meaning |
|---|---|
| Managed | The password has been captured and can be copied by authorized administrators when needed. |
| Out of Sync | Reserved status for cases where a password change is detected but the new password value cannot be captured by the module. |
Operational Notes
- The module starts capturing passwords only after it is installed and active.
- Existing passwords cannot be recovered if Odoo already stores them only as hashes.
- Automatic capture only works for flows that write passwords through Odoo's ORM/password field.
- Access should be granted only to trusted technical administrators.
- Password copy logs should be reviewed according to the organization's internal security process.
| Availability |
Odoo Online
Odoo.sh
On Premise
|
| Lines of code | 666 |
| Technical Name |
max_account_password_manager |
| License | LGPL-3 |
| Website | https://maxsolution.com.vn |
Please log in to comment on this module