Reply to comment

Contact Form

Menu Level security In OpenERP V7

June 10, 2013 By Anoop P

Many of our customer reported a security issue in OpenERP through web browser. If we copy a Url from Admin, and login as another user, where that menu restricted, the restricted user will be able access that pages and work on it. This is an OpenERP issues, where the menus are only “hidden” and not “restricted” to users. This can be a security issue if the pages are registred in search engines or If someone who is expert in OpenERP access the data.

Our OpenERP V7 "web_menu_security" module restricts all the menus from user who have no permission to access that. The attempt will redirect the user to home page. You can use this module, without any configuration in the database.

Attachment	Size
web_menu_security.zip	3.84 KB

Your name: *

E-mail: *

The content of this field is kept private and will not be shown publicly.

Homepage:

Comment: *

Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
Web page addresses and e-mail addresses turn into links automatically.
Lines and paragraphs break automatically.
You can enable syntax highlighting of source code with the following tags: <code>, <blockcode>, <c>, <cpp>, <drupal5>, <drupal6>, <java>, <javascript>, <php>, <python>, <ruby>. The supported tag styles are: <foo>, [foo], [[foo]]. PHP source code can also be enclosed in <?php ... ?> or <% ... %>.

More information about formatting options

Notify me when new comments are posted

CAPTCHA

This question is for testing whether you are a human visitor and to prevent automated spam submissions.

What code is in the image?: *

Enter the characters shown in the image. Ignore spaces and be careful about upper and lower case.

India

.

UAE

Germany

Contact Form

Menu Level security In OpenERP V7

Reply

India

.

UAE

Germany​

Reply to comment

Contact Form

Menu Level security In OpenERP V7

Reply

Germany