Access Control Studio for Odoo — No-Code Access Rights Manager
by WebbyCrown Solutions https://www.webbycrown.com$ 228.12
Access Control Studio for Odoo
All-in-one, no-code access management — menus, models, fields, buttons, views, domain rules & more.
Centralized access profiles — assign by user or group, enforce on server and in the web client.
Module overview
What this module adds
A dedicated access.control.profile workspace on standard Odoo: menu & submenu hiding, per-model CRUD (create, edit, delete, archive, duplicate), import / export / spreadsheet controls, view type & action hiding, field invisible / readonly / required rules with conditional domains, domain access synced to ir.rule, button, tab & kanban link hiding, search panel & filter UI restrictions, chatter controls, global user flags (read-only, login block, debug off, module ops block, RPC block), profile import/export (JSON + CSV), Test as User wizard, default internal/portal profiles, Kanban profile view, advanced search & group by, and multi-language support (EN, FR, ES, DE, AR, ZH).
Core capabilities
| Menu access: hide any menu/submenu; optional apps menu hide | Model access: CRUD, import/export, spreadsheet, views, actions, reports |
| Field access: invisible, readonly, required, external link, relation domain | Advanced fields: conditional rules, remove-create, enforce on create/write RPC |
| Domain access: custom domains, date presets, env user, soft restrict, hierarchy | Button/tab access: object buttons, smart buttons, notebook tabs, kanban links |
| Search UI: filters, group-by, favorites, custom filter, search panel sidebar | Chatter: hide send, log note, activity, followers, attachments per model or global |
Depends: base, web, mail, base_import, spreadsheet · Server + JS enforcement · Demo profiles included |
|
Technical highlights
Unified access.control.resolver with session payload |
Server hooks on create, write, unlink, exports, RPC |
Domain lines auto-sync to dedicated ir.rule groups |
| Web client patches: forms, lists, kanban, chatter, search, actions |
| LGPL-3 · Odoo 17 · WebbyCrown Solutions |
Key benefits
- No-code setup: Configure permissions from one app — no XML, manual record rules, or technical Odoo security expertise required.
- Real enforcement: Rules apply server-side and in the web UI — not cosmetic hiding alone.
- Flexible assignment: Assign profiles to individual users, security groups, or companies — with default profiles for new internal and portal users.
- Migrate & audit: Import/export full profiles as JSON; export CSV summaries; chatter audit on profiles.
- Manager UX: Test as User wizard, Kanban profile board, rich filters, group-by, and search panel for large rule sets.
Profile tabs & main features
Global & user settings
- Read-only user, disable login, hide apps menu, disable developer mode.
- Block module install/upgrade/uninstall; block external XML-RPC / JSON-RPC.
- Global hide: create, edit, delete, duplicate, archive, import, export, spreadsheet, add property.
- Global chatter: hide send message, log notes, activities; full chatter hide.
- Default for internal users / default for portal users — auto-assign on user creation.
Menu, model & field access
- Menu access: pick menus to hide; server-side
ir.ui.menuenforcement. - Model access: per-model CRUD, import/export, spreadsheet, hidden view types, actions, reports.
- Field access: invisible, readonly, required, remove external link, relation domain, conditional attributes.
- Advanced: remove-create on relational fields; conditional required on
create(); export field filtering.
Domain, button, search & chatter
- Domain access: restrict create/write/delete; read-only model; custom domains; date presets; env user; soft restrict; hierarchy.
- Button / tab access: hide object buttons, smart buttons, notebook tabs, kanban links; discover wizard.
- Search panel access: hide filters, group-by, favorites, custom filter/group-by, search panel sidebar.
- Chatter access: per-model or global — send, log note, activity, followers, attachments.
Tools, views & administration
- Access Profiles: Kanban, list, and form views with advanced filters, group-by, and search panel.
- Test as User: managers preview the UI as another user with one-click exit.
- Import / Export: JSON full profile export; CSV summary; xmlid mapping on import.
- Security groups: ACS User, ACS Manager, ACS Admin — admins bypass all restrictions.
- Demo data: 13 sample profiles covering menus, domains, chatter, search, buttons, and assignment types.
FAQs
Who should use Access Control Studio?
IT admins, Odoo implementers, and business owners who need fine-grained UI and data access control per user or group — without writing custom modules or record rules for every scenario.
Does this replace Odoo security groups?
No — it complements standard Odoo ACLs and groups. ACS adds a no-code layer for UI hiding, field rules, and domain restrictions. Domain lines sync to ir.rule for record-level enforcement where configured.
Is enforcement server-side?
Yes. CRUD, import/export, RPC, chatter posts, button calls, and domain rules are enforced on the server. The web client patches align the UI with the same rules for a consistent experience.
Does it work with Odoo Enterprise spreadsheet?
Yes. Spreadsheet insert and refresh restrictions are enforced server-side when the spreadsheet module is installed (included as a dependency).
Is demo data included?
Yes. Optional demo XML loads sample access profiles (restricted user, read-only template, domain rules, chatter, search UI, buttons, company scope, and more). Install with demo enabled for a populated trial database.
Explore our other addons
Contact & support
Questions?
Sales: +91 (942) 867-7503
Website: webbycrown.com
Please log in to comment on this module