| Availability |
Odoo Online
Odoo.sh
On Premise
|
| Odoo Apps Dependencies |
Discuss (mail)
|
| Lines of code | 2418 |
| Technical Name |
record_pin_protection |
| License | OPL-1 |
| Website | https://www.atharvasystem.com/odoo-development |
| Availability |
Odoo Online
Odoo.sh
On Premise
|
| Odoo Apps Dependencies |
Discuss (mail)
|
| Lines of code | 2418 |
| Technical Name |
record_pin_protection |
| License | OPL-1 |
| Website | https://www.atharvasystem.com/odoo-development |
Record PIN
Protection
Lock individual Odoo records behind a numeric PIN. Ensure sensitive data like salaries, contracts, confidential customers stays visible only to those who should see it.
See It
In Action
Watch how PIN protection works end-to-end in a real Odoo instance.
Key
Features
Model-level Configuration
Whitelist exactly which Odoo models support PIN protection. Protects against accidental use on system or transient models.
PIN Prompts on Open / Edit
A secure modal prompts the user before they can view or edit a protected record â configurable per-record.
3 Flexible Protection Modes
Choose View Only, Edit Only, or View & Edit protection â different records can have different modes.
Masked Fields in List & Kanban
Protected records show a padlock badge in List and Kanban views. Sensitive field values are masked until the PIN is verified.
Grace Period (Session Unlock)
After a correct PIN entry, the record stays unlocked for a configurable grace period (default 5 min) â no repeated prompts.
Attempt Limits & Lockout
Set a max number of failed PIN attempts before locking the user out for a configurable duration (default 5 attempts / 30 min).
Full Audit Log
Every PIN actionâset, unlock, failed, locked, resetâis logged with user, timestamp, and IP address for compliance tracking.
PBKDF2 Secure Hashing
PINs are never stored in plain text. The module uses PBKDF2-SHA256 with a unique salt per record â industry standard.
PIN Manager Role
Dedicated PIN Manager security group can bypass PIN prompts and reset PINs for other users â no admin rights needed.
How It
Works
Four simple steps from installation to a protected record.
Enable Models
Go to Settings PIN Protection Protected Models. Add any model (e.g. Employees, Sale Orders) to the whitelist to instantly enable security policies on them.
Protect a Record
Open any record of the enabled model. Click Action Enable PIN Protection. You can configure a secure 4â6 digit PIN and select exactly how strict the protection mode should be.
PIN Prompt Appears
The moment an unauthorized user attempts to open or edit the protected record, they are met with a secure numeric PIN modal. Failed login attempts are automatically tracked to prevent brute-forcing.
Unlock & Access
Entering the correct PIN temporarily unlocks the record for a secure grace period. Even from the List or Kanban views, visual padlock indicators ensure you always know what data is protected.
Protection
Modes
Pick the right level of protection for each record.
PIN required to open
The record is locked when first opened. Users must enter the PIN before they can read any data. Editing is freely allowed once unlocked.
PIN required to edit
Reading the record is unrestricted. The PIN is only prompted when the user tries to edit the record â preventing accidental changes.
PIN required for everything
Full lockdown. Users need the PIN to open the record and again (if grace period has expired) when trying to make changes.
Protection Mode Configuration Screen
Lockout &
Grace Period
Brute-Force Lockout
Each protected record has a configurable Max Attempts limit (default: 5). After that many consecutive failed PINs, the user is locked out for a set Lockout Duration (default: 30 minutes). Lockouts are per-user, not global.
Grace Period
After a successful PIN entry the session stores a time-stamped token. During the Grace Period (default: 5 minutes) the user can navigate freely without being prompted again.
Interface
Preview
Numeric PIN Entry Dialog
A clean, focused modal that prevents any interaction with the underlying record until the correct PIN is entered.
Padlock Indicator â List View
Protected records are immediately identifiable with a padlock badge in the list. Sensitive column values are masked.
Full
Audit Log
Every PIN-related event is logged automatically for compliance and security investigations.
You may also
like
Atharva System
Delivering high-quality Odoo solutions and productivity tools.
Odoo Proprietary License v1.0 This software and associated files (the "Software") may only be used (executed, modified, executed after modifications) if you have purchased a valid license from the authors, typically via Odoo Apps, or if you have received a written agreement from the authors of the Software (see the COPYRIGHT file). You may develop Odoo modules that use the Software as a library (typically by depending on it, importing it and using its resources), but without copying any source code or material from the Software. You may distribute those modules under the license of your choice, provided that this license is compatible with the terms of the Odoo Proprietary License (For example: LGPL, MIT, or proprietary licenses similar to this one). It is forbidden to publish, distribute, sublicense, or sell copies of the Software or modified copies of the Software. The above copyright notice and this permission notice must be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
Please log in to comment on this module