Skip to Content

DW Authentication

by
Odoo
v 19.0 Third Party 7
Download for v 19.0 Deploy on Odoo.sh
Availability
Odoo Online
Odoo.sh
On Premise
Odoo Apps Dependencies Discuss (mail)
Lines of code 2442
Technical Name docuware_authentication
LicenseLGPL-3
Websitehttps://www.codebar.ch
You bought this module and need support? Click here!
Availability
Odoo Online
Odoo.sh
On Premise
Odoo Apps Dependencies Discuss (mail)
Lines of code 2442
Technical Name docuware_authentication
LicenseLGPL-3
Websitehttps://www.codebar.ch

DocuWare Authentication

OAuth2 with DocuWare Identity, token handling, and REST API access.

codebar Solutions AG

docuware_authentication is the foundation that other DocuWare connector modules build on. It owns the connection, credentials, OAuth2 flow, REST client, and an immutable audit log — so business-level connectors can stay focused on data. It does not push any data on its own; companion modules (e.g. docuware_masterdata) provide the business-level synchronization.

What’s in the box

OAuth2 with auto-discovery

Authorization Code + refresh token — the only flow DocuWare Cloud reliably exposes for the docuware.platform scope. The authorization and token URLs are auto-discovered from the DocuWare Identity Service; no manual entry.

Secrets gated to admins

Tokens and client secret are restricted to base.group_system at the field level, so regular DocuWare users never see them.

Immutable sync log

dw.log records every connection event and cannot be edited or deleted from the UI. Useful for audits and troubleshooting.

How it works

  1. Register a Web (Authorization Code) application in DocuWare Identity. Redirect URI: <your-odoo-base-url>/docuware/oauth/callback. Scopes: docuware.platform openid dwprofile offline_access.
  2. In Odoo, set web.base.url to your full external URL so DocuWare can reach the OAuth callback at /docuware/oauth/callback.
  3. Create a record under DocuWare → Connections: name, Platform URL (e.g. https://yourorg.docuware.cloud), Client ID and Client Secret. Save — the OAuth authorization and token URLs are auto-discovered on first authorize and cached on the record.
  4. Click Authorize, sign in once on DocuWare, and Odoo persists the refresh token.
  5. Click Sync to enqueue a probe job that verifies the connection and writes the result to the Sync Log.

Requirements

  • Odoo: 19.0
  • Python: requests (declared as an external dependency)
  • Odoo modules: base, mail, web. OCA queue_job is an optional soft dependency: install it with a running worker for asynchronous execution; without it, jobs run inline in the request thread.
  • A DocuWare tenant with the Identity service enabled

Permissions

  • docuware_authentication.group_docuware_authentication — full CRUD on dw.connection; read access on dw.log.
  • base.group_system — the only group that can read OAuth secrets and tokens (orthogonal, enforced at the field level).

Privacy & telemetry

Sentry telemetry is off by default. It activates only when an administrator pastes a Sentry DSN under Settings → DocuWare → Telemetry and saves. Configuration is per database, stored as ir.config_parameter records. There are no environment variables to set and nothing is sent on a fresh install.

The sentry-sdk library is an optional dependency: it is not installed with this module. To forward events to Sentry, install it in Odoo’s Python environment (pip install sentry-sdk), restart Odoo, then configure the DSN. The telemetry screen shows whether the SDK is installed; without it, nothing is sent.

What is sent when telemetry is active

  • Unhandled exceptions raised inside the connector
  • DocuWare sync errors with stack traces and error messages
  • Connection identifiers and sync metadata
  • IP addresses and user identifiers only when the “Send PII” toggle is explicitly enabled

OAuth tokens, refresh tokens, and client secrets are never sent.

Where it goes

Events are forwarded to the Sentry project that you control via the DSN you paste. codebar Solutions AG receives nothing unless you point the DSN at one of our projects.

Setup walkthrough

Assign access, optional telemetry, authorize the connection, then use DocuWare → Connections and the sync log.

User access rights

Grant DocuWare Authentication / companion groups under Settings → Users as needed.

Odoo user form: access rights for DocuWare Authentication and Master Data

Telemetry (optional)

Settings → DocuWare → Telemetry — off until you save a DSN.

DocuWare settings: optional Sentry telemetry

Authorize connection

Start OAuth from the connection form.

DocuWare connection: Authorize action

DocuWare sign-in

DocuWare Identity sign-in during authorization

Authorized

After login, the connection holds a refresh token (secrets remain admin-only).

Connection form after successful authorization

Connections

DocuWare Connections list

Sync log

DocuWare sync log entries

License & support

Released under LGPL-3.0-or-later .

Built and maintained by codebar Solutions AG. Support: helpdesk@codebar.ch.

Privacy: see codebar.ch for our data protection notice.

Please log in to comment on this module

  • The author can leave a single reply to each comment.
  • This section is meant to ask simple questions or leave a rating. Every report of a problem experienced while using the module should be addressed to the author directly (refer to the following point).
  • If you want to start a discussion with the author, please use the developer contact information. They can usually be found in the description.
Please choose a rating from 1 to 5 for this module.