From 09fb84b61d20d7a1de8ec4b9e9e8a59fffdc4f1a Mon Sep 17 00:00:00 2001 From: OCA Bot Date: Tue, 8 Oct 2024 12:49:23 +0000 Subject: [PATCH 001/686] Initial commit --- .copier-answers.yml | 27 ++ .editorconfig | 20 + .eslintrc.yml | 188 +++++++++ .github/workflows/pre-commit.yml | 46 +++ .github/workflows/stale.yml | 69 ++++ .github/workflows/test.yml | 73 ++++ .gitignore | 88 ++++ .pre-commit-config.yaml | 127 ++++++ .prettierrc.yml | 8 + .pylintrc | 123 ++++++ .pylintrc-mandatory | 98 +++++ .ruff.toml | 30 ++ LICENSE | 661 +++++++++++++++++++++++++++++++ README.md | 37 ++ 14 files changed, 1595 insertions(+) create mode 100644 .copier-answers.yml create mode 100644 .editorconfig create mode 100644 .eslintrc.yml create mode 100644 .github/workflows/pre-commit.yml create mode 100644 .github/workflows/stale.yml create mode 100644 .github/workflows/test.yml create mode 100644 .gitignore create mode 100644 .pre-commit-config.yaml create mode 100644 .prettierrc.yml create mode 100644 .pylintrc create mode 100644 .pylintrc-mandatory create mode 100644 .ruff.toml create mode 100644 LICENSE create mode 100644 README.md diff --git a/.copier-answers.yml b/.copier-answers.yml new file mode 100644 index 0000000000..6b87a06b8c --- /dev/null +++ b/.copier-answers.yml @@ -0,0 +1,27 @@ +# Do NOT update manually; changes here will be overwritten by Copier +_commit: v1.26 +_src_path: git+https://github.com/OCA/oca-addons-repo-template +additional_ruff_rules: [] +ci: GitHub +convert_readme_fragments_to_markdown: true +enable_checklog_odoo: true +generate_requirements_txt: true +github_check_license: true +github_ci_extra_env: {} +github_enable_codecov: true +github_enable_makepot: true +github_enable_stale_action: true +github_enforce_dev_status_compatibility: true +include_wkhtmltopdf: false +odoo_test_flavor: Both +odoo_version: 18.0 +org_name: Odoo Community Association (OCA) +org_slug: OCA +rebel_module_groups: [] +repo_description: server-auth +repo_name: server-auth +repo_slug: server-auth +repo_website: https://github.com/OCA/server-auth +use_pyproject_toml: true +use_ruff: true + diff --git a/.editorconfig b/.editorconfig new file mode 100644 index 0000000000..bfd7ac53df --- /dev/null +++ b/.editorconfig @@ -0,0 +1,20 @@ +# Configuration for known file extensions +[*.{css,js,json,less,md,py,rst,sass,scss,xml,yaml,yml}] +charset = utf-8 +end_of_line = lf +indent_size = 4 +indent_style = space +insert_final_newline = true +trim_trailing_whitespace = true + +[*.{json,yml,yaml,rst,md}] +indent_size = 2 + +# Do not configure editor for libs and autogenerated content +[{*/static/{lib,src/lib}/**,*/static/description/index.html,*/readme/../README.rst}] +charset = unset +end_of_line = unset +indent_size = unset +indent_style = unset +insert_final_newline = false +trim_trailing_whitespace = false diff --git a/.eslintrc.yml b/.eslintrc.yml new file mode 100644 index 0000000000..0b38203958 --- /dev/null +++ b/.eslintrc.yml @@ -0,0 +1,188 @@ +env: + browser: true + es6: true + +# See https://github.com/OCA/odoo-community.org/issues/37#issuecomment-470686449 +parserOptions: + ecmaVersion: 2022 + +overrides: + - files: + - "**/*.esm.js" + parserOptions: + sourceType: module + +# Globals available in Odoo that shouldn't produce errorings +globals: + _: readonly + $: readonly + fuzzy: readonly + jQuery: readonly + moment: readonly + odoo: readonly + openerp: readonly + owl: readonly + luxon: readonly + +# Styling is handled by Prettier, so we only need to enable AST rules; +# see https://github.com/OCA/maintainer-quality-tools/pull/618#issuecomment-558576890 +rules: + accessor-pairs: warn + array-callback-return: warn + callback-return: warn + capitalized-comments: + - warn + - always + - ignoreConsecutiveComments: true + ignoreInlineComments: true + complexity: + - warn + - 15 + constructor-super: warn + dot-notation: warn + eqeqeq: warn + global-require: warn + handle-callback-err: warn + id-blacklist: warn + id-match: warn + init-declarations: error + max-depth: warn + max-nested-callbacks: warn + max-statements-per-line: warn + no-alert: warn + no-array-constructor: warn + no-caller: warn + no-case-declarations: warn + no-class-assign: warn + no-cond-assign: error + no-const-assign: error + no-constant-condition: warn + no-control-regex: warn + no-debugger: error + no-delete-var: warn + no-div-regex: warn + no-dupe-args: error + no-dupe-class-members: error + no-dupe-keys: error + no-duplicate-case: error + no-duplicate-imports: error + no-else-return: warn + no-empty-character-class: warn + no-empty-function: error + no-empty-pattern: error + no-empty: warn + no-eq-null: error + no-eval: error + no-ex-assign: error + no-extend-native: warn + no-extra-bind: warn + no-extra-boolean-cast: warn + no-extra-label: warn + no-fallthrough: warn + no-func-assign: error + no-global-assign: error + no-implicit-coercion: + - warn + - allow: ["~"] + no-implicit-globals: warn + no-implied-eval: warn + no-inline-comments: warn + no-inner-declarations: warn + no-invalid-regexp: warn + no-irregular-whitespace: warn + no-iterator: warn + no-label-var: warn + no-labels: warn + no-lone-blocks: warn + no-lonely-if: error + no-mixed-requires: error + no-multi-str: warn + no-native-reassign: error + no-negated-condition: warn + no-negated-in-lhs: error + no-new-func: warn + no-new-object: warn + no-new-require: warn + no-new-symbol: warn + no-new-wrappers: warn + no-new: warn + no-obj-calls: warn + no-octal-escape: warn + no-octal: warn + no-param-reassign: warn + no-path-concat: warn + no-process-env: warn + no-process-exit: warn + no-proto: warn + no-prototype-builtins: warn + no-redeclare: warn + no-regex-spaces: warn + no-restricted-globals: warn + no-restricted-imports: warn + no-restricted-modules: warn + no-restricted-syntax: warn + no-return-assign: error + no-script-url: warn + no-self-assign: warn + no-self-compare: warn + no-sequences: warn + no-shadow-restricted-names: warn + no-shadow: warn + no-sparse-arrays: warn + no-sync: warn + no-this-before-super: warn + no-throw-literal: warn + no-undef-init: warn + no-undef: error + no-unmodified-loop-condition: warn + no-unneeded-ternary: error + no-unreachable: error + no-unsafe-finally: error + no-unused-expressions: error + no-unused-labels: error + no-unused-vars: error + no-use-before-define: error + no-useless-call: warn + no-useless-computed-key: warn + no-useless-concat: warn + no-useless-constructor: warn + no-useless-escape: warn + no-useless-rename: warn + no-void: warn + no-with: warn + operator-assignment: [error, always] + prefer-const: warn + radix: warn + require-yield: warn + sort-imports: warn + spaced-comment: [error, always] + strict: [error, function] + use-isnan: error + valid-jsdoc: + - warn + - prefer: + arg: param + argument: param + augments: extends + constructor: class + exception: throws + func: function + method: function + prop: property + return: returns + virtual: abstract + yield: yields + preferType: + array: Array + bool: Boolean + boolean: Boolean + number: Number + object: Object + str: String + string: String + requireParamDescription: false + requireReturn: false + requireReturnDescription: false + requireReturnType: false + valid-typeof: warn + yoda: warn diff --git a/.github/workflows/pre-commit.yml b/.github/workflows/pre-commit.yml new file mode 100644 index 0000000000..b53a386cf5 --- /dev/null +++ b/.github/workflows/pre-commit.yml @@ -0,0 +1,46 @@ +name: pre-commit + +on: + pull_request: + branches: + - "18.0*" + push: + branches: + - "18.0" + - "18.0-ocabot-*" + +jobs: + pre-commit: + runs-on: ubuntu-22.04 + steps: + - uses: actions/checkout@v3 + - uses: actions/setup-python@v2 + with: + python-version: "3.11" + - name: Get python version + run: echo "PY=$(python -VV | sha256sum | cut -d' ' -f1)" >> $GITHUB_ENV + - uses: actions/cache@v1 + with: + path: ~/.cache/pre-commit + key: pre-commit|${{ env.PY }}|${{ hashFiles('.pre-commit-config.yaml') }} + - name: Install pre-commit + run: pip install pre-commit + - name: Run pre-commit + run: pre-commit run --all-files --show-diff-on-failure --color=always + env: + # Consider valid a PR that changes README fragments but doesn't + # change the README.rst file itself. It's not really a problem + # because the bot will update it anyway after merge. This way, we + # lower the barrier for functional contributors that want to fix the + # readme fragments, while still letting developers get README + # auto-generated (which also helps functionals when using runboat). + # DOCS https://pre-commit.com/#temporarily-disabling-hooks + SKIP: oca-gen-addon-readme + - name: Check that all files generated by pre-commit are in git + run: | + newfiles="$(git ls-files --others --exclude-from=.gitignore)" + if [ "$newfiles" != "" ] ; then + echo "Please check-in the following files:" + echo "$newfiles" + exit 1 + fi diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml new file mode 100644 index 0000000000..fa17fcd4e8 --- /dev/null +++ b/.github/workflows/stale.yml @@ -0,0 +1,69 @@ +name: Mark stale issues and pull requests + +on: + schedule: + - cron: "0 12 * * 0" + +jobs: + stale: + runs-on: ubuntu-latest + steps: + - name: Stale PRs and issues policy + uses: actions/stale@v9 + with: + repo-token: ${{ secrets.GITHUB_TOKEN }} + # General settings. + ascending: true + remove-stale-when-updated: true + # Pull Requests settings. + # 120+30 day stale policy for PRs + # * Except PRs marked as "no stale" + days-before-pr-stale: 120 + days-before-pr-close: 30 + exempt-pr-labels: "no stale" + stale-pr-label: "stale" + stale-pr-message: > + There hasn't been any activity on this pull request in the past 4 months, so + it has been marked as stale and it will be closed automatically if no + further activity occurs in the next 30 days. + + If you want this PR to never become stale, please ask a PSC member to apply + the "no stale" label. + # Issues settings. + # 180+30 day stale policy for open issues + # * Except Issues marked as "no stale" + days-before-issue-stale: 180 + days-before-issue-close: 30 + exempt-issue-labels: "no stale,needs more information" + stale-issue-label: "stale" + stale-issue-message: > + There hasn't been any activity on this issue in the past 6 months, so it has + been marked as stale and it will be closed automatically if no further + activity occurs in the next 30 days. + + If you want this issue to never become stale, please ask a PSC member to + apply the "no stale" label. + + # 15+30 day stale policy for issues pending more information + # * Issues that are pending more information + # * Except Issues marked as "no stale" + - name: Needs more information stale issues policy + uses: actions/stale@v9 + with: + repo-token: ${{ secrets.GITHUB_TOKEN }} + ascending: true + only-labels: "needs more information" + exempt-issue-labels: "no stale" + days-before-stale: 15 + days-before-close: 30 + days-before-pr-stale: -1 + days-before-pr-close: -1 + remove-stale-when-updated: true + stale-issue-label: "stale" + stale-issue-message: > + This issue needs more information and there hasn't been any activity + recently, so it has been marked as stale and it will be closed automatically + if no further activity occurs in the next 30 days. + + If you think this is a mistake, please ask a PSC member to remove the "needs + more information" label. diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml new file mode 100644 index 0000000000..6f4b2fd523 --- /dev/null +++ b/.github/workflows/test.yml @@ -0,0 +1,73 @@ +name: tests + +on: + pull_request: + branches: + - "18.0*" + push: + branches: + - "18.0" + - "18.0-ocabot-*" + +jobs: + unreleased-deps: + runs-on: ubuntu-latest + name: Detect unreleased dependencies + steps: + - uses: actions/checkout@v3 + - run: | + for reqfile in requirements.txt test-requirements.txt ; do + if [ -f ${reqfile} ] ; then + result=0 + # reject non-comment lines that contain a / (i.e. URLs, relative paths) + grep "^[^#].*/" ${reqfile} || result=$? + if [ $result -eq 0 ] ; then + echo "Unreleased dependencies found in ${reqfile}." + exit 1 + fi + fi + done + test: + runs-on: ubuntu-22.04 + container: ${{ matrix.container }} + name: ${{ matrix.name }} + strategy: + fail-fast: false + matrix: + include: + - container: ghcr.io/oca/oca-ci/py3.10-odoo18.0:latest + name: test with Odoo + - container: ghcr.io/oca/oca-ci/py3.10-ocb18.0:latest + name: test with OCB + makepot: "true" + services: + postgres: + image: postgres:12.0 + env: + POSTGRES_USER: odoo + POSTGRES_PASSWORD: odoo + POSTGRES_DB: odoo + ports: + - 5432:5432 + env: + OCA_ENABLE_CHECKLOG_ODOO: "1" + steps: + - uses: actions/checkout@v3 + with: + persist-credentials: false + - name: Install addons and dependencies + run: oca_install_addons + - name: Check licenses + run: manifestoo -d . check-licenses + - name: Check development status + run: manifestoo -d . check-dev-status --default-dev-status=Beta + - name: Initialize test db + run: oca_init_test_database + - name: Run tests + run: oca_run_tests + - uses: codecov/codecov-action@v4 + with: + token: ${{ secrets.CODECOV_TOKEN }} + - name: Update .pot files + run: oca_export_and_push_pot https://x-access-token:${{ secrets.GIT_PUSH_TOKEN }}@github.com/${{ github.repository }} + if: ${{ matrix.makepot == 'true' && github.event_name == 'push' && github.repository_owner == 'OCA' }} diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000000..6ec07a054b --- /dev/null +++ b/.gitignore @@ -0,0 +1,88 @@ +# Byte-compiled / optimized / DLL files +__pycache__/ +*.py[cod] +/.venv +/.pytest_cache +/.ruff_cache + +# C extensions +*.so + +# Distribution / packaging +.Python +env/ +bin/ +build/ +develop-eggs/ +dist/ +eggs/ +lib64/ +parts/ +sdist/ +var/ +*.egg-info/ +.installed.cfg +*.egg +*.eggs + +# Windows installers +*.msi + +# Debian packages +*.deb + +# Redhat packages +*.rpm + +# MacOS packages +*.dmg +*.pkg + +# Installer logs +pip-log.txt +pip-delete-this-directory.txt + +# Unit test / coverage reports +htmlcov/ +.tox/ +.coverage +.cache +nosetests.xml +coverage.xml + +# Translations +*.mo + +# Pycharm +.idea + +# Eclipse +.settings + +# Visual Studio cache/options directory +.vs/ +.vscode + +# OSX Files +.DS_Store + +# Django stuff: +*.log + +# Mr Developer +.mr.developer.cfg +.project +.pydevproject + +# Rope +.ropeproject + +# Sphinx documentation +docs/_build/ + +# Backup files +*~ +*.swp + +# OCA rules +!static/lib/ diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml new file mode 100644 index 0000000000..1a69c178f7 --- /dev/null +++ b/.pre-commit-config.yaml @@ -0,0 +1,127 @@ +exclude: | + (?x) + # NOT INSTALLABLE ADDONS + # END NOT INSTALLABLE ADDONS + # Files and folders generated by bots, to avoid loops + ^setup/|/static/description/index\.html$| + # We don't want to mess with tool-generated files + .svg$|/tests/([^/]+/)?cassettes/|^.copier-answers.yml$|^.github/| + # Maybe reactivate this when all README files include prettier ignore tags? + ^README\.md$| + # Library files can have extraneous formatting (even minimized) + /static/(src/)?lib/| + # Repos using Sphinx to generate docs don't need prettying + ^docs/_templates/.*\.html$| + # Don't bother non-technical authors with formatting issues in docs + readme/.*\.(rst|md)$| + # Ignore build and dist directories in addons + /build/|/dist/| + # Ignore test files in addons + /tests/samples/.*| + # You don't usually want a bot to modify your legal texts + (LICENSE.*|COPYING.*) +default_language_version: + python: python3 + node: "16.17.0" +repos: + - repo: local + hooks: + # These files are most likely copier diff rejection junks; if found, + # review them manually, fix the problem (if needed) and remove them + - id: forbidden-files + name: forbidden files + entry: found forbidden files; remove them + language: fail + files: "\\.rej$" + - id: en-po-files + name: en.po files cannot exist + entry: found a en.po file + language: fail + files: '[a-zA-Z0-9_]*/i18n/en\.po$' + - repo: https://github.com/sbidoul/whool + rev: v1.2 + hooks: + - id: whool-init + - repo: https://github.com/oca/maintainer-tools + rev: bf9ecb9938b6a5deca0ff3d870fbd3f33341fded + hooks: + # update the NOT INSTALLABLE ADDONS section above + - id: oca-update-pre-commit-excluded-addons + - id: oca-fix-manifest-website + args: ["https://github.com/OCA/server-auth"] + - id: oca-gen-addon-readme + args: + - --addons-dir=. + - --branch=18.0 + - --org-name=OCA + - --repo-name=server-auth + - --if-source-changed + - --keep-source-digest + - --convert-fragments-to-markdown + - id: oca-gen-external-dependencies + - repo: https://github.com/OCA/odoo-pre-commit-hooks + rev: v0.0.33 + hooks: + - id: oca-checks-odoo-module + - id: oca-checks-po + args: + - --disable=po-pretty-format + - repo: https://github.com/pre-commit/mirrors-prettier + rev: v2.7.1 + hooks: + - id: prettier + name: prettier (with plugin-xml) + additional_dependencies: + - "prettier@2.7.1" + - "@prettier/plugin-xml@2.2.0" + args: + - --plugin=@prettier/plugin-xml + files: \.(css|htm|html|js|json|jsx|less|md|scss|toml|ts|xml|yaml|yml)$ + - repo: https://github.com/pre-commit/mirrors-eslint + rev: v8.24.0 + hooks: + - id: eslint + verbose: true + args: + - --color + - --fix + - repo: https://github.com/pre-commit/pre-commit-hooks + rev: v4.6.0 + hooks: + - id: trailing-whitespace + # exclude autogenerated files + exclude: /README\.rst$|\.pot?$ + - id: end-of-file-fixer + # exclude autogenerated files + exclude: /README\.rst$|\.pot?$ + - id: debug-statements + - id: fix-encoding-pragma + args: ["--remove"] + - id: check-case-conflict + - id: check-docstring-first + - id: check-executables-have-shebangs + - id: check-merge-conflict + # exclude files where underlines are not distinguishable from merge conflicts + exclude: /README\.rst$|^docs/.*\.rst$ + - id: check-symlinks + - id: check-xml + - id: mixed-line-ending + args: ["--fix=lf"] + - repo: https://github.com/astral-sh/ruff-pre-commit + rev: v0.6.8 + hooks: + - id: ruff + args: [--fix, --exit-non-zero-on-fix] + - id: ruff-format + - repo: https://github.com/OCA/pylint-odoo + rev: v9.0.4 + hooks: + - id: pylint_odoo + name: pylint with optional checks + args: + - --rcfile=.pylintrc + - --exit-zero + verbose: true + - id: pylint_odoo + args: + - --rcfile=.pylintrc-mandatory diff --git a/.prettierrc.yml b/.prettierrc.yml new file mode 100644 index 0000000000..5b6d4b361a --- /dev/null +++ b/.prettierrc.yml @@ -0,0 +1,8 @@ +# Defaults for all prettier-supported languages. +# Prettier will complete this with settings from .editorconfig file. +bracketSpacing: false +printWidth: 88 +proseWrap: always +semi: true +trailingComma: "es5" +xmlWhitespaceSensitivity: "strict" diff --git a/.pylintrc b/.pylintrc new file mode 100644 index 0000000000..7c62b6d2ed --- /dev/null +++ b/.pylintrc @@ -0,0 +1,123 @@ + + +[MASTER] +load-plugins=pylint_odoo +score=n + +[ODOOLINT] +readme-template-url="https://github.com/OCA/maintainer-tools/blob/master/template/module/README.rst" +manifest-required-authors=Odoo Community Association (OCA) +manifest-required-keys=license +manifest-deprecated-keys=description,active +license-allowed=AGPL-3,GPL-2,GPL-2 or any later version,GPL-3,GPL-3 or any later version,LGPL-3 +valid-odoo-versions=18.0 + +[MESSAGES CONTROL] +disable=all + +# This .pylintrc contains optional AND mandatory checks and is meant to be +# loaded in an IDE to have it check everything, in the hope this will make +# optional checks more visible to contributors who otherwise never look at a +# green travis to see optional checks that failed. +# .pylintrc-mandatory containing only mandatory checks is used the pre-commit +# config as a blocking check. + +enable=anomalous-backslash-in-string, + api-one-deprecated, + api-one-multi-together, + assignment-from-none, + attribute-deprecated, + class-camelcase, + dangerous-default-value, + dangerous-view-replace-wo-priority, + development-status-allowed, + duplicate-id-csv, + duplicate-key, + duplicate-xml-fields, + duplicate-xml-record-id, + eval-referenced, + eval-used, + incoherent-interpreter-exec-perm, + license-allowed, + manifest-author-string, + manifest-deprecated-key, + manifest-required-author, + manifest-required-key, + manifest-version-format, + method-compute, + method-inverse, + method-required-super, + method-search, + openerp-exception-warning, + pointless-statement, + pointless-string-statement, + print-used, + redundant-keyword-arg, + redundant-modulename-xml, + reimported, + relative-import, + return-in-init, + rst-syntax-error, + sql-injection, + too-few-format-args, + translation-field, + translation-required, + unreachable, + use-vim-comment, + wrong-tabs-instead-of-spaces, + xml-syntax-error, + attribute-string-redundant, + character-not-valid-in-resource-link, + consider-merging-classes-inherited, + context-overridden, + create-user-wo-reset-password, + dangerous-filter-wo-user, + dangerous-qweb-replace-wo-priority, + deprecated-data-xml-node, + deprecated-openerp-xml-node, + duplicate-po-message-definition, + except-pass, + file-not-used, + invalid-commit, + manifest-maintainers-list, + missing-newline-extrafiles, + missing-readme, + missing-return, + odoo-addons-relative-import, + old-api7-method-defined, + po-msgstr-variables, + po-syntax-error, + renamed-field-parameter, + resource-not-exist, + str-format-used, + test-folder-imported, + translation-contains-variable, + translation-positional-used, + unnecessary-utf8-coding-comment, + website-manifest-key-not-valid-uri, + xml-attribute-translatable, + xml-deprecated-qweb-directive, + xml-deprecated-tree-attribute, + external-request-timeout, + # messages that do not cause the lint step to fail + consider-merging-classes-inherited, + create-user-wo-reset-password, + dangerous-filter-wo-user, + deprecated-module, + file-not-used, + invalid-commit, + missing-manifest-dependency, + missing-newline-extrafiles, + missing-readme, + no-utf8-coding-comment, + odoo-addons-relative-import, + old-api7-method-defined, + redefined-builtin, + too-complex, + unnecessary-utf8-coding-comment + + +[REPORTS] +msg-template={path}:{line}: [{msg_id}({symbol}), {obj}] {msg} +output-format=colorized +reports=no diff --git a/.pylintrc-mandatory b/.pylintrc-mandatory new file mode 100644 index 0000000000..018fd61cdd --- /dev/null +++ b/.pylintrc-mandatory @@ -0,0 +1,98 @@ + +[MASTER] +load-plugins=pylint_odoo +score=n + +[ODOOLINT] +readme-template-url="https://github.com/OCA/maintainer-tools/blob/master/template/module/README.rst" +manifest-required-authors=Odoo Community Association (OCA) +manifest-required-keys=license +manifest-deprecated-keys=description,active +license-allowed=AGPL-3,GPL-2,GPL-2 or any later version,GPL-3,GPL-3 or any later version,LGPL-3 +valid-odoo-versions=18.0 + +[MESSAGES CONTROL] +disable=all + +enable=anomalous-backslash-in-string, + api-one-deprecated, + api-one-multi-together, + assignment-from-none, + attribute-deprecated, + class-camelcase, + dangerous-default-value, + dangerous-view-replace-wo-priority, + development-status-allowed, + duplicate-id-csv, + duplicate-key, + duplicate-xml-fields, + duplicate-xml-record-id, + eval-referenced, + eval-used, + incoherent-interpreter-exec-perm, + license-allowed, + manifest-author-string, + manifest-deprecated-key, + manifest-required-author, + manifest-required-key, + manifest-version-format, + method-compute, + method-inverse, + method-required-super, + method-search, + openerp-exception-warning, + pointless-statement, + pointless-string-statement, + print-used, + redundant-keyword-arg, + redundant-modulename-xml, + reimported, + relative-import, + return-in-init, + rst-syntax-error, + sql-injection, + too-few-format-args, + translation-field, + translation-required, + unreachable, + use-vim-comment, + wrong-tabs-instead-of-spaces, + xml-syntax-error, + attribute-string-redundant, + character-not-valid-in-resource-link, + consider-merging-classes-inherited, + context-overridden, + create-user-wo-reset-password, + dangerous-filter-wo-user, + dangerous-qweb-replace-wo-priority, + deprecated-data-xml-node, + deprecated-openerp-xml-node, + duplicate-po-message-definition, + except-pass, + file-not-used, + invalid-commit, + manifest-maintainers-list, + missing-newline-extrafiles, + missing-readme, + missing-return, + odoo-addons-relative-import, + old-api7-method-defined, + po-msgstr-variables, + po-syntax-error, + renamed-field-parameter, + resource-not-exist, + str-format-used, + test-folder-imported, + translation-contains-variable, + translation-positional-used, + unnecessary-utf8-coding-comment, + website-manifest-key-not-valid-uri, + xml-attribute-translatable, + xml-deprecated-qweb-directive, + xml-deprecated-tree-attribute, + external-request-timeout + +[REPORTS] +msg-template={path}:{line}: [{msg_id}({symbol}), {obj}] {msg} +output-format=colorized +reports=no diff --git a/.ruff.toml b/.ruff.toml new file mode 100644 index 0000000000..0f1e35f248 --- /dev/null +++ b/.ruff.toml @@ -0,0 +1,30 @@ + +target-version = "py310" +fix = true + +[lint] +extend-select = [ + "B", + "C90", + "E501", # line too long (default 88) + "I", # isort + "UP", # pyupgrade +] +exclude = ["setup/*"] + +[format] +exclude = ["setup/*"] + +[lint.per-file-ignores] +"__init__.py" = ["F401", "I001"] # ignore unused and unsorted imports in __init__.py +"__manifest__.py" = ["B018"] # useless expression + +[lint.isort] +section-order = ["future", "standard-library", "third-party", "odoo", "odoo-addons", "first-party", "local-folder"] + +[lint.isort.sections] +"odoo" = ["odoo"] +"odoo-addons" = ["odoo.addons"] + +[lint.mccabe] +max-complexity = 16 diff --git a/LICENSE b/LICENSE new file mode 100644 index 0000000000..be3f7b28e5 --- /dev/null +++ b/LICENSE @@ -0,0 +1,661 @@ + GNU AFFERO GENERAL PUBLIC LICENSE + Version 3, 19 November 2007 + + Copyright (C) 2007 Free Software Foundation, Inc. + Everyone is permitted to copy and distribute verbatim copies + of this license document, but changing it is not allowed. + + Preamble + + The GNU Affero General Public License is a free, copyleft license for +software and other kinds of works, specifically designed to ensure +cooperation with the community in the case of network server software. + + The licenses for most software and other practical works are designed +to take away your freedom to share and change the works. By contrast, +our General Public Licenses are intended to guarantee your freedom to +share and change all versions of a program--to make sure it remains free +software for all its users. + + When we speak of free software, we are referring to freedom, not +price. Our General Public Licenses are designed to make sure that you +have the freedom to distribute copies of free software (and charge for +them if you wish), that you receive source code or can get it if you +want it, that you can change the software or use pieces of it in new +free programs, and that you know you can do these things. + + Developers that use our General Public Licenses protect your rights +with two steps: (1) assert copyright on the software, and (2) offer +you this License which gives you legal permission to copy, distribute +and/or modify the software. + + A secondary benefit of defending all users' freedom is that +improvements made in alternate versions of the program, if they +receive widespread use, become available for other developers to +incorporate. Many developers of free software are heartened and +encouraged by the resulting cooperation. However, in the case of +software used on network servers, this result may fail to come about. +The GNU General Public License permits making a modified version and +letting the public access it on a server without ever releasing its +source code to the public. + + The GNU Affero General Public License is designed specifically to +ensure that, in such cases, the modified source code becomes available +to the community. It requires the operator of a network server to +provide the source code of the modified version running there to the +users of that server. Therefore, public use of a modified version, on +a publicly accessible server, gives the public access to the source +code of the modified version. + + An older license, called the Affero General Public License and +published by Affero, was designed to accomplish similar goals. This is +a different license, not a version of the Affero GPL, but Affero has +released a new version of the Affero GPL which permits relicensing under +this license. + + The precise terms and conditions for copying, distribution and +modification follow. + + TERMS AND CONDITIONS + + 0. Definitions. + + "This License" refers to version 3 of the GNU Affero General Public License. + + "Copyright" also means copyright-like laws that apply to other kinds of +works, such as semiconductor masks. + + "The Program" refers to any copyrightable work licensed under this +License. Each licensee is addressed as "you". "Licensees" and +"recipients" may be individuals or organizations. + + To "modify" a work means to copy from or adapt all or part of the work +in a fashion requiring copyright permission, other than the making of an +exact copy. The resulting work is called a "modified version" of the +earlier work or a work "based on" the earlier work. + + A "covered work" means either the unmodified Program or a work based +on the Program. + + To "propagate" a work means to do anything with it that, without +permission, would make you directly or secondarily liable for +infringement under applicable copyright law, except executing it on a +computer or modifying a private copy. Propagation includes copying, +distribution (with or without modification), making available to the +public, and in some countries other activities as well. + + To "convey" a work means any kind of propagation that enables other +parties to make or receive copies. Mere interaction with a user through +a computer network, with no transfer of a copy, is not conveying. + + An interactive user interface displays "Appropriate Legal Notices" +to the extent that it includes a convenient and prominently visible +feature that (1) displays an appropriate copyright notice, and (2) +tells the user that there is no warranty for the work (except to the +extent that warranties are provided), that licensees may convey the +work under this License, and how to view a copy of this License. If +the interface presents a list of user commands or options, such as a +menu, a prominent item in the list meets this criterion. + + 1. Source Code. + + The "source code" for a work means the preferred form of the work +for making modifications to it. "Object code" means any non-source +form of a work. + + A "Standard Interface" means an interface that either is an official +standard defined by a recognized standards body, or, in the case of +interfaces specified for a particular programming language, one that +is widely used among developers working in that language. + + The "System Libraries" of an executable work include anything, other +than the work as a whole, that (a) is included in the normal form of +packaging a Major Component, but which is not part of that Major +Component, and (b) serves only to enable use of the work with that +Major Component, or to implement a Standard Interface for which an +implementation is available to the public in source code form. A +"Major Component", in this context, means a major essential component +(kernel, window system, and so on) of the specific operating system +(if any) on which the executable work runs, or a compiler used to +produce the work, or an object code interpreter used to run it. + + The "Corresponding Source" for a work in object code form means all +the source code needed to generate, install, and (for an executable +work) run the object code and to modify the work, including scripts to +control those activities. However, it does not include the work's +System Libraries, or general-purpose tools or generally available free +programs which are used unmodified in performing those activities but +which are not part of the work. For example, Corresponding Source +includes interface definition files associated with source files for +the work, and the source code for shared libraries and dynamically +linked subprograms that the work is specifically designed to require, +such as by intimate data communication or control flow between those +subprograms and other parts of the work. + + The Corresponding Source need not include anything that users +can regenerate automatically from other parts of the Corresponding +Source. + + The Corresponding Source for a work in source code form is that +same work. + + 2. Basic Permissions. + + All rights granted under this License are granted for the term of +copyright on the Program, and are irrevocable provided the stated +conditions are met. This License explicitly affirms your unlimited +permission to run the unmodified Program. The output from running a +covered work is covered by this License only if the output, given its +content, constitutes a covered work. This License acknowledges your +rights of fair use or other equivalent, as provided by copyright law. + + You may make, run and propagate covered works that you do not +convey, without conditions so long as your license otherwise remains +in force. You may convey covered works to others for the sole purpose +of having them make modifications exclusively for you, or provide you +with facilities for running those works, provided that you comply with +the terms of this License in conveying all material for which you do +not control copyright. Those thus making or running the covered works +for you must do so exclusively on your behalf, under your direction +and control, on terms that prohibit them from making any copies of +your copyrighted material outside their relationship with you. + + Conveying under any other circumstances is permitted solely under +the conditions stated below. Sublicensing is not allowed; section 10 +makes it unnecessary. + + 3. Protecting Users' Legal Rights From Anti-Circumvention Law. + + No covered work shall be deemed part of an effective technological +measure under any applicable law fulfilling obligations under article +11 of the WIPO copyright treaty adopted on 20 December 1996, or +similar laws prohibiting or restricting circumvention of such +measures. + + When you convey a covered work, you waive any legal power to forbid +circumvention of technological measures to the extent such circumvention +is effected by exercising rights under this License with respect to +the covered work, and you disclaim any intention to limit operation or +modification of the work as a means of enforcing, against the work's +users, your or third parties' legal rights to forbid circumvention of +technological measures. + + 4. Conveying Verbatim Copies. + + You may convey verbatim copies of the Program's source code as you +receive it, in any medium, provided that you conspicuously and +appropriately publish on each copy an appropriate copyright notice; +keep intact all notices stating that this License and any +non-permissive terms added in accord with section 7 apply to the code; +keep intact all notices of the absence of any warranty; and give all +recipients a copy of this License along with the Program. + + You may charge any price or no price for each copy that you convey, +and you may offer support or warranty protection for a fee. + + 5. Conveying Modified Source Versions. + + You may convey a work based on the Program, or the modifications to +produce it from the Program, in the form of source code under the +terms of section 4, provided that you also meet all of these conditions: + + a) The work must carry prominent notices stating that you modified + it, and giving a relevant date. + + b) The work must carry prominent notices stating that it is + released under this License and any conditions added under section + 7. This requirement modifies the requirement in section 4 to + "keep intact all notices". + + c) You must license the entire work, as a whole, under this + License to anyone who comes into possession of a copy. This + License will therefore apply, along with any applicable section 7 + additional terms, to the whole of the work, and all its parts, + regardless of how they are packaged. This License gives no + permission to license the work in any other way, but it does not + invalidate such permission if you have separately received it. + + d) If the work has interactive user interfaces, each must display + Appropriate Legal Notices; however, if the Program has interactive + interfaces that do not display Appropriate Legal Notices, your + work need not make them do so. + + A compilation of a covered work with other separate and independent +works, which are not by their nature extensions of the covered work, +and which are not combined with it such as to form a larger program, +in or on a volume of a storage or distribution medium, is called an +"aggregate" if the compilation and its resulting copyright are not +used to limit the access or legal rights of the compilation's users +beyond what the individual works permit. Inclusion of a covered work +in an aggregate does not cause this License to apply to the other +parts of the aggregate. + + 6. Conveying Non-Source Forms. + + You may convey a covered work in object code form under the terms +of sections 4 and 5, provided that you also convey the +machine-readable Corresponding Source under the terms of this License, +in one of these ways: + + a) Convey the object code in, or embodied in, a physical product + (including a physical distribution medium), accompanied by the + Corresponding Source fixed on a durable physical medium + customarily used for software interchange. + + b) Convey the object code in, or embodied in, a physical product + (including a physical distribution medium), accompanied by a + written offer, valid for at least three years and valid for as + long as you offer spare parts or customer support for that product + model, to give anyone who possesses the object code either (1) a + copy of the Corresponding Source for all the software in the + product that is covered by this License, on a durable physical + medium customarily used for software interchange, for a price no + more than your reasonable cost of physically performing this + conveying of source, or (2) access to copy the + Corresponding Source from a network server at no charge. + + c) Convey individual copies of the object code with a copy of the + written offer to provide the Corresponding Source. This + alternative is allowed only occasionally and noncommercially, and + only if you received the object code with such an offer, in accord + with subsection 6b. + + d) Convey the object code by offering access from a designated + place (gratis or for a charge), and offer equivalent access to the + Corresponding Source in the same way through the same place at no + further charge. You need not require recipients to copy the + Corresponding Source along with the object code. If the place to + copy the object code is a network server, the Corresponding Source + may be on a different server (operated by you or a third party) + that supports equivalent copying facilities, provided you maintain + clear directions next to the object code saying where to find the + Corresponding Source. Regardless of what server hosts the + Corresponding Source, you remain obligated to ensure that it is + available for as long as needed to satisfy these requirements. + + e) Convey the object code using peer-to-peer transmission, provided + you inform other peers where the object code and Corresponding + Source of the work are being offered to the general public at no + charge under subsection 6d. + + A separable portion of the object code, whose source code is excluded +from the Corresponding Source as a System Library, need not be +included in conveying the object code work. + + A "User Product" is either (1) a "consumer product", which means any +tangible personal property which is normally used for personal, family, +or household purposes, or (2) anything designed or sold for incorporation +into a dwelling. In determining whether a product is a consumer product, +doubtful cases shall be resolved in favor of coverage. For a particular +product received by a particular user, "normally used" refers to a +typical or common use of that class of product, regardless of the status +of the particular user or of the way in which the particular user +actually uses, or expects or is expected to use, the product. A product +is a consumer product regardless of whether the product has substantial +commercial, industrial or non-consumer uses, unless such uses represent +the only significant mode of use of the product. + + "Installation Information" for a User Product means any methods, +procedures, authorization keys, or other information required to install +and execute modified versions of a covered work in that User Product from +a modified version of its Corresponding Source. The information must +suffice to ensure that the continued functioning of the modified object +code is in no case prevented or interfered with solely because +modification has been made. + + If you convey an object code work under this section in, or with, or +specifically for use in, a User Product, and the conveying occurs as +part of a transaction in which the right of possession and use of the +User Product is transferred to the recipient in perpetuity or for a +fixed term (regardless of how the transaction is characterized), the +Corresponding Source conveyed under this section must be accompanied +by the Installation Information. But this requirement does not apply +if neither you nor any third party retains the ability to install +modified object code on the User Product (for example, the work has +been installed in ROM). + + The requirement to provide Installation Information does not include a +requirement to continue to provide support service, warranty, or updates +for a work that has been modified or installed by the recipient, or for +the User Product in which it has been modified or installed. Access to a +network may be denied when the modification itself materially and +adversely affects the operation of the network or violates the rules and +protocols for communication across the network. + + Corresponding Source conveyed, and Installation Information provided, +in accord with this section must be in a format that is publicly +documented (and with an implementation available to the public in +source code form), and must require no special password or key for +unpacking, reading or copying. + + 7. Additional Terms. + + "Additional permissions" are terms that supplement the terms of this +License by making exceptions from one or more of its conditions. +Additional permissions that are applicable to the entire Program shall +be treated as though they were included in this License, to the extent +that they are valid under applicable law. If additional permissions +apply only to part of the Program, that part may be used separately +under those permissions, but the entire Program remains governed by +this License without regard to the additional permissions. + + When you convey a copy of a covered work, you may at your option +remove any additional permissions from that copy, or from any part of +it. (Additional permissions may be written to require their own +removal in certain cases when you modify the work.) You may place +additional permissions on material, added by you to a covered work, +for which you have or can give appropriate copyright permission. + + Notwithstanding any other provision of this License, for material you +add to a covered work, you may (if authorized by the copyright holders of +that material) supplement the terms of this License with terms: + + a) Disclaiming warranty or limiting liability differently from the + terms of sections 15 and 16 of this License; or + + b) Requiring preservation of specified reasonable legal notices or + author attributions in that material or in the Appropriate Legal + Notices displayed by works containing it; or + + c) Prohibiting misrepresentation of the origin of that material, or + requiring that modified versions of such material be marked in + reasonable ways as different from the original version; or + + d) Limiting the use for publicity purposes of names of licensors or + authors of the material; or + + e) Declining to grant rights under trademark law for use of some + trade names, trademarks, or service marks; or + + f) Requiring indemnification of licensors and authors of that + material by anyone who conveys the material (or modified versions of + it) with contractual assumptions of liability to the recipient, for + any liability that these contractual assumptions directly impose on + those licensors and authors. + + All other non-permissive additional terms are considered "further +restrictions" within the meaning of section 10. If the Program as you +received it, or any part of it, contains a notice stating that it is +governed by this License along with a term that is a further +restriction, you may remove that term. If a license document contains +a further restriction but permits relicensing or conveying under this +License, you may add to a covered work material governed by the terms +of that license document, provided that the further restriction does +not survive such relicensing or conveying. + + If you add terms to a covered work in accord with this section, you +must place, in the relevant source files, a statement of the +additional terms that apply to those files, or a notice indicating +where to find the applicable terms. + + Additional terms, permissive or non-permissive, may be stated in the +form of a separately written license, or stated as exceptions; +the above requirements apply either way. + + 8. Termination. + + You may not propagate or modify a covered work except as expressly +provided under this License. Any attempt otherwise to propagate or +modify it is void, and will automatically terminate your rights under +this License (including any patent licenses granted under the third +paragraph of section 11). + + However, if you cease all violation of this License, then your +license from a particular copyright holder is reinstated (a) +provisionally, unless and until the copyright holder explicitly and +finally terminates your license, and (b) permanently, if the copyright +holder fails to notify you of the violation by some reasonable means +prior to 60 days after the cessation. + + Moreover, your license from a particular copyright holder is +reinstated permanently if the copyright holder notifies you of the +violation by some reasonable means, this is the first time you have +received notice of violation of this License (for any work) from that +copyright holder, and you cure the violation prior to 30 days after +your receipt of the notice. + + Termination of your rights under this section does not terminate the +licenses of parties who have received copies or rights from you under +this License. If your rights have been terminated and not permanently +reinstated, you do not qualify to receive new licenses for the same +material under section 10. + + 9. Acceptance Not Required for Having Copies. + + You are not required to accept this License in order to receive or +run a copy of the Program. Ancillary propagation of a covered work +occurring solely as a consequence of using peer-to-peer transmission +to receive a copy likewise does not require acceptance. However, +nothing other than this License grants you permission to propagate or +modify any covered work. These actions infringe copyright if you do +not accept this License. Therefore, by modifying or propagating a +covered work, you indicate your acceptance of this License to do so. + + 10. Automatic Licensing of Downstream Recipients. + + Each time you convey a covered work, the recipient automatically +receives a license from the original licensors, to run, modify and +propagate that work, subject to this License. You are not responsible +for enforcing compliance by third parties with this License. + + An "entity transaction" is a transaction transferring control of an +organization, or substantially all assets of one, or subdividing an +organization, or merging organizations. If propagation of a covered +work results from an entity transaction, each party to that +transaction who receives a copy of the work also receives whatever +licenses to the work the party's predecessor in interest had or could +give under the previous paragraph, plus a right to possession of the +Corresponding Source of the work from the predecessor in interest, if +the predecessor has it or can get it with reasonable efforts. + + You may not impose any further restrictions on the exercise of the +rights granted or affirmed under this License. For example, you may +not impose a license fee, royalty, or other charge for exercise of +rights granted under this License, and you may not initiate litigation +(including a cross-claim or counterclaim in a lawsuit) alleging that +any patent claim is infringed by making, using, selling, offering for +sale, or importing the Program or any portion of it. + + 11. Patents. + + A "contributor" is a copyright holder who authorizes use under this +License of the Program or a work on which the Program is based. The +work thus licensed is called the contributor's "contributor version". + + A contributor's "essential patent claims" are all patent claims +owned or controlled by the contributor, whether already acquired or +hereafter acquired, that would be infringed by some manner, permitted +by this License, of making, using, or selling its contributor version, +but do not include claims that would be infringed only as a +consequence of further modification of the contributor version. For +purposes of this definition, "control" includes the right to grant +patent sublicenses in a manner consistent with the requirements of +this License. + + Each contributor grants you a non-exclusive, worldwide, royalty-free +patent license under the contributor's essential patent claims, to +make, use, sell, offer for sale, import and otherwise run, modify and +propagate the contents of its contributor version. + + In the following three paragraphs, a "patent license" is any express +agreement or commitment, however denominated, not to enforce a patent +(such as an express permission to practice a patent or covenant not to +sue for patent infringement). To "grant" such a patent license to a +party means to make such an agreement or commitment not to enforce a +patent against the party. + + If you convey a covered work, knowingly relying on a patent license, +and the Corresponding Source of the work is not available for anyone +to copy, free of charge and under the terms of this License, through a +publicly available network server or other readily accessible means, +then you must either (1) cause the Corresponding Source to be so +available, or (2) arrange to deprive yourself of the benefit of the +patent license for this particular work, or (3) arrange, in a manner +consistent with the requirements of this License, to extend the patent +license to downstream recipients. "Knowingly relying" means you have +actual knowledge that, but for the patent license, your conveying the +covered work in a country, or your recipient's use of the covered work +in a country, would infringe one or more identifiable patents in that +country that you have reason to believe are valid. + + If, pursuant to or in connection with a single transaction or +arrangement, you convey, or propagate by procuring conveyance of, a +covered work, and grant a patent license to some of the parties +receiving the covered work authorizing them to use, propagate, modify +or convey a specific copy of the covered work, then the patent license +you grant is automatically extended to all recipients of the covered +work and works based on it. + + A patent license is "discriminatory" if it does not include within +the scope of its coverage, prohibits the exercise of, or is +conditioned on the non-exercise of one or more of the rights that are +specifically granted under this License. You may not convey a covered +work if you are a party to an arrangement with a third party that is +in the business of distributing software, under which you make payment +to the third party based on the extent of your activity of conveying +the work, and under which the third party grants, to any of the +parties who would receive the covered work from you, a discriminatory +patent license (a) in connection with copies of the covered work +conveyed by you (or copies made from those copies), or (b) primarily +for and in connection with specific products or compilations that +contain the covered work, unless you entered into that arrangement, +or that patent license was granted, prior to 28 March 2007. + + Nothing in this License shall be construed as excluding or limiting +any implied license or other defenses to infringement that may +otherwise be available to you under applicable patent law. + + 12. No Surrender of Others' Freedom. + + If conditions are imposed on you (whether by court order, agreement or +otherwise) that contradict the conditions of this License, they do not +excuse you from the conditions of this License. If you cannot convey a +covered work so as to satisfy simultaneously your obligations under this +License and any other pertinent obligations, then as a consequence you may +not convey it at all. For example, if you agree to terms that obligate you +to collect a royalty for further conveying from those to whom you convey +the Program, the only way you could satisfy both those terms and this +License would be to refrain entirely from conveying the Program. + + 13. Remote Network Interaction; Use with the GNU General Public License. + + Notwithstanding any other provision of this License, if you modify the +Program, your modified version must prominently offer all users +interacting with it remotely through a computer network (if your version +supports such interaction) an opportunity to receive the Corresponding +Source of your version by providing access to the Corresponding Source +from a network server at no charge, through some standard or customary +means of facilitating copying of software. This Corresponding Source +shall include the Corresponding Source for any work covered by version 3 +of the GNU General Public License that is incorporated pursuant to the +following paragraph. + + Notwithstanding any other provision of this License, you have +permission to link or combine any covered work with a work licensed +under version 3 of the GNU General Public License into a single +combined work, and to convey the resulting work. The terms of this +License will continue to apply to the part which is the covered work, +but the work with which it is combined will remain governed by version +3 of the GNU General Public License. + + 14. Revised Versions of this License. + + The Free Software Foundation may publish revised and/or new versions of +the GNU Affero General Public License from time to time. Such new versions +will be similar in spirit to the present version, but may differ in detail to +address new problems or concerns. + + Each version is given a distinguishing version number. If the +Program specifies that a certain numbered version of the GNU Affero General +Public License "or any later version" applies to it, you have the +option of following the terms and conditions either of that numbered +version or of any later version published by the Free Software +Foundation. If the Program does not specify a version number of the +GNU Affero General Public License, you may choose any version ever published +by the Free Software Foundation. + + If the Program specifies that a proxy can decide which future +versions of the GNU Affero General Public License can be used, that proxy's +public statement of acceptance of a version permanently authorizes you +to choose that version for the Program. + + Later license versions may give you additional or different +permissions. However, no additional obligations are imposed on any +author or copyright holder as a result of your choosing to follow a +later version. + + 15. Disclaimer of Warranty. + + THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY +APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT +HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY +OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, +THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR +PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM +IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF +ALL NECESSARY SERVICING, REPAIR OR CORRECTION. + + 16. Limitation of Liability. + + IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING +WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS +THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY +GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE +USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF +DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD +PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), +EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF +SUCH DAMAGES. + + 17. Interpretation of Sections 15 and 16. + + If the disclaimer of warranty and limitation of liability provided +above cannot be given local legal effect according to their terms, +reviewing courts shall apply local law that most closely approximates +an absolute waiver of all civil liability in connection with the +Program, unless a warranty or assumption of liability accompanies a +copy of the Program in return for a fee. + + END OF TERMS AND CONDITIONS + + How to Apply These Terms to Your New Programs + + If you develop a new program, and you want it to be of the greatest +possible use to the public, the best way to achieve this is to make it +free software which everyone can redistribute and change under these terms. + + To do so, attach the following notices to the program. It is safest +to attach them to the start of each source file to most effectively +state the exclusion of warranty; and each file should have at least +the "copyright" line and a pointer to where the full notice is found. + + + Copyright (C) + + This program is free software: you can redistribute it and/or modify + it under the terms of the GNU Affero General Public License as published by + the Free Software Foundation, either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU Affero General Public License for more details. + + You should have received a copy of the GNU Affero General Public License + along with this program. If not, see . + +Also add information on how to contact you by electronic and paper mail. + + If your software can interact with users remotely through a computer +network, you should also make sure that it provides a way for users to +get its source. For example, if your program is a web application, its +interface could display a "Source" link that leads users to an archive +of the code. There are many ways you could offer source, and different +solutions will be better for different programs; see section 13 for the +specific requirements. + + You should also get your employer (if you work as a programmer) or school, +if any, to sign a "copyright disclaimer" for the program, if necessary. +For more information on this, and how to apply and follow the GNU AGPL, see +. diff --git a/README.md b/README.md new file mode 100644 index 0000000000..197e076c91 --- /dev/null +++ b/README.md @@ -0,0 +1,37 @@ + +[![Runboat](https://img.shields.io/badge/runboat-Try%20me-875A7B.png)](https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=18.0) +[![Pre-commit Status](https://github.com/OCA/server-auth/actions/workflows/pre-commit.yml/badge.svg?branch=18.0)](https://github.com/OCA/server-auth/actions/workflows/pre-commit.yml?query=branch%3A18.0) +[![Build Status](https://github.com/OCA/server-auth/actions/workflows/test.yml/badge.svg?branch=18.0)](https://github.com/OCA/server-auth/actions/workflows/test.yml?query=branch%3A18.0) +[![codecov](https://codecov.io/gh/OCA/server-auth/branch/18.0/graph/badge.svg)](https://codecov.io/gh/OCA/server-auth) +[![Translation Status](https://translation.odoo-community.org/widgets/server-auth-18-0/-/svg-badge.svg)](https://translation.odoo-community.org/engage/server-auth-18-0/?utm_source=widget) + + + +# server-auth + +server-auth + + + + + +[//]: # (addons) + +This part will be replaced when running the oca-gen-addons-table script from OCA/maintainer-tools. + +[//]: # (end addons) + + + +## Licenses + +This repository is licensed under [AGPL-3.0](LICENSE). + +However, each module can have a totally different license, as long as they adhere to Odoo Community Association (OCA) +policy. Consult each module's `__manifest__.py` file, which contains a `license` key +that explains its license. + +---- +OCA, or the [Odoo Community Association](http://odoo-community.org/), is a nonprofit +organization whose mission is to support the collaborative development of Odoo features +and promote its widespread use. From 63017be7493b991e2d2ea9dcb35558c804e66972 Mon Sep 17 00:00:00 2001 From: Akim Juillerat Date: Thu, 18 Apr 2024 20:53:05 +0200 Subject: [PATCH 002/686] Add module base_user_empty_password --- base_user_empty_password/__init__.py | 2 ++ base_user_empty_password/__manifest__.py | 22 +++++++++++++ base_user_empty_password/models/__init__.py | 1 + base_user_empty_password/models/res_users.py | 25 +++++++++++++++ .../readme/CONTRIBUTORS.md | 1 + .../readme/DESCRIPTION.md | 3 ++ .../security/ir.model.access.csv | 2 ++ base_user_empty_password/views/res_users.xml | 15 +++++++++ base_user_empty_password/wizard/__init__.py | 1 + .../wizard/empty_password.py | 24 ++++++++++++++ .../wizard/empty_password.xml | 31 +++++++++++++++++++ 11 files changed, 127 insertions(+) create mode 100644 base_user_empty_password/__init__.py create mode 100644 base_user_empty_password/__manifest__.py create mode 100644 base_user_empty_password/models/__init__.py create mode 100644 base_user_empty_password/models/res_users.py create mode 100644 base_user_empty_password/readme/CONTRIBUTORS.md create mode 100644 base_user_empty_password/readme/DESCRIPTION.md create mode 100644 base_user_empty_password/security/ir.model.access.csv create mode 100644 base_user_empty_password/views/res_users.xml create mode 100644 base_user_empty_password/wizard/__init__.py create mode 100644 base_user_empty_password/wizard/empty_password.py create mode 100644 base_user_empty_password/wizard/empty_password.xml diff --git a/base_user_empty_password/__init__.py b/base_user_empty_password/__init__.py new file mode 100644 index 0000000000..9b4296142f --- /dev/null +++ b/base_user_empty_password/__init__.py @@ -0,0 +1,2 @@ +from . import models +from . import wizard diff --git a/base_user_empty_password/__manifest__.py b/base_user_empty_password/__manifest__.py new file mode 100644 index 0000000000..a85edc633c --- /dev/null +++ b/base_user_empty_password/__manifest__.py @@ -0,0 +1,22 @@ +# Copyright 2024 Camptocamp SA +# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl) +{ + "name": "Empty users password", + "summary": "Allows to empty password of users", + "version": "14.0.1.0.0", + "development_status": "Beta", + "category": "Uncategorized", + "website": "https://github.com/OCA/server-auth", + "author": "Camptocamp, Odoo Community Association (OCA)", + "maintainers": ["grindtildeath"], + "license": "AGPL-3", + "depends": [ + "base", + ], + "data": [ + # "data/ir_actions.xml", + "security/ir.model.access.csv", + "views/res_users.xml", + "wizard/empty_password.xml", + ], +} diff --git a/base_user_empty_password/models/__init__.py b/base_user_empty_password/models/__init__.py new file mode 100644 index 0000000000..8835165330 --- /dev/null +++ b/base_user_empty_password/models/__init__.py @@ -0,0 +1 @@ +from . import res_users diff --git a/base_user_empty_password/models/res_users.py b/base_user_empty_password/models/res_users.py new file mode 100644 index 0000000000..84cb481682 --- /dev/null +++ b/base_user_empty_password/models/res_users.py @@ -0,0 +1,25 @@ +# Copyright 2024 Camptocamp SA +# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl) +from odoo import fields, models + + +class ResUsers(models.Model): + _inherit = "res.users" + + has_password = fields.Boolean(compute="_compute_has_password") + + def _compute_has_password(self): + # Bypass ORM as password is always empty in cache + self.env.cr.execute( + """SELECT id, password FROM res_users WHERE id IN %s;""", (tuple(self.ids),) + ) + res = {row[0]: row[1] for row in self.env.cr.fetchall()} + for user in self: + user.has_password = bool(res.get(user.id)) + + def _empty_password(self): + # Update in DB to avoid using crypt context + self.env.cr.execute( + """UPDATE res_users SET password = %s WHERE id IN %s""", + ("", (tuple(self.ids),)), + ) diff --git a/base_user_empty_password/readme/CONTRIBUTORS.md b/base_user_empty_password/readme/CONTRIBUTORS.md new file mode 100644 index 0000000000..911d30d42f --- /dev/null +++ b/base_user_empty_password/readme/CONTRIBUTORS.md @@ -0,0 +1 @@ +- Akim Juillerat diff --git a/base_user_empty_password/readme/DESCRIPTION.md b/base_user_empty_password/readme/DESCRIPTION.md new file mode 100644 index 0000000000..cdb902d245 --- /dev/null +++ b/base_user_empty_password/readme/DESCRIPTION.md @@ -0,0 +1,3 @@ +This module provides a wizard to allow emptying users password field. + +This could be useful to force the user to use another sign on method than Odoo. diff --git a/base_user_empty_password/security/ir.model.access.csv b/base_user_empty_password/security/ir.model.access.csv new file mode 100644 index 0000000000..ca08092624 --- /dev/null +++ b/base_user_empty_password/security/ir.model.access.csv @@ -0,0 +1,2 @@ +id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink +access_empty_password_wizard,access_empty_password_wizard,model_empty_password_wizard,base.group_erp_manager,1,1,1,1 diff --git a/base_user_empty_password/views/res_users.xml b/base_user_empty_password/views/res_users.xml new file mode 100644 index 0000000000..83ef384cbb --- /dev/null +++ b/base_user_empty_password/views/res_users.xml @@ -0,0 +1,15 @@ + + + + res.users.form + res.users + + + + + + + + + + diff --git a/base_user_empty_password/wizard/__init__.py b/base_user_empty_password/wizard/__init__.py new file mode 100644 index 0000000000..00e7d95e31 --- /dev/null +++ b/base_user_empty_password/wizard/__init__.py @@ -0,0 +1 @@ +from . import empty_password diff --git a/base_user_empty_password/wizard/empty_password.py b/base_user_empty_password/wizard/empty_password.py new file mode 100644 index 0000000000..c1ddfa2f85 --- /dev/null +++ b/base_user_empty_password/wizard/empty_password.py @@ -0,0 +1,24 @@ +# Copyright 2024 Camptocamp SA +# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl) +from odoo import fields, models + + +class EmptyPasswordWizard(models.TransientModel): + _name = "empty.password.wizard" + _description = "Empty Password Wizard" + + user_ids = fields.Many2many( + "res.users", readonly=True, default=lambda w: w._default_user_ids() + ) + + def _default_user_ids(self): + return ( + self.env.context.get("active_model") == "res.users" + and self.env.context.get("active_ids") + or [] + ) + + def empty_password_button(self): + self.ensure_one() + self.user_ids._empty_password() + return {"type": "ir.actions.client", "tag": "reload"} diff --git a/base_user_empty_password/wizard/empty_password.xml b/base_user_empty_password/wizard/empty_password.xml new file mode 100644 index 0000000000..158f05b126 --- /dev/null +++ b/base_user_empty_password/wizard/empty_password.xml @@ -0,0 +1,31 @@ + + + + Empty Password + empty.password.wizard + +
+ +
+

Are you sure you want to empty password of selected users?

+
+
+
+ +
+ + + Empty Password + empty.password.wizard + form + new + + + From 2a5f61526dd89d4761fe5c9b6e607610ad0a9e4a Mon Sep 17 00:00:00 2001 From: oca-ci Date: Wed, 8 May 2024 07:08:24 +0000 Subject: [PATCH 003/686] [UPD] Update base_user_empty_password.pot --- .../i18n/base_user_empty_password.pot | 88 +++++++++++++++++++ 1 file changed, 88 insertions(+) create mode 100644 base_user_empty_password/i18n/base_user_empty_password.pot diff --git a/base_user_empty_password/i18n/base_user_empty_password.pot b/base_user_empty_password/i18n/base_user_empty_password.pot new file mode 100644 index 0000000000..ad4928560a --- /dev/null +++ b/base_user_empty_password/i18n/base_user_empty_password.pot @@ -0,0 +1,88 @@ +# Translation of Odoo Server. +# This file contains the translation of the following modules: +# * base_user_empty_password +# +msgid "" +msgstr "" +"Project-Id-Version: Odoo Server 14.0\n" +"Report-Msgid-Bugs-To: \n" +"Last-Translator: \n" +"Language-Team: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: \n" +"Plural-Forms: \n" + +#. module: base_user_empty_password +#: model_terms:ir.ui.view,arch_db:base_user_empty_password.empty_password_wizard_view +msgid "Are you sure you want to empty password of selected users?" +msgstr "" + +#. module: base_user_empty_password +#: model_terms:ir.ui.view,arch_db:base_user_empty_password.empty_password_wizard_view +msgid "Cancel" +msgstr "" + +#. module: base_user_empty_password +#: model:ir.model.fields,field_description:base_user_empty_password.field_empty_password_wizard__create_uid +msgid "Created by" +msgstr "" + +#. module: base_user_empty_password +#: model:ir.model.fields,field_description:base_user_empty_password.field_empty_password_wizard__create_date +msgid "Created on" +msgstr "" + +#. module: base_user_empty_password +#: model:ir.model.fields,field_description:base_user_empty_password.field_empty_password_wizard__display_name +#: model:ir.model.fields,field_description:base_user_empty_password.field_res_users__display_name +msgid "Display Name" +msgstr "" + +#. module: base_user_empty_password +#: model:ir.actions.act_window,name:base_user_empty_password.empty_password_wizard_action +#: model_terms:ir.ui.view,arch_db:base_user_empty_password.empty_password_wizard_view +msgid "Empty Password" +msgstr "" + +#. module: base_user_empty_password +#: model:ir.model,name:base_user_empty_password.model_empty_password_wizard +msgid "Empty Password Wizard" +msgstr "" + +#. module: base_user_empty_password +#: model:ir.model.fields,field_description:base_user_empty_password.field_res_users__has_password +msgid "Has Password" +msgstr "" + +#. module: base_user_empty_password +#: model:ir.model.fields,field_description:base_user_empty_password.field_empty_password_wizard__id +#: model:ir.model.fields,field_description:base_user_empty_password.field_res_users__id +msgid "ID" +msgstr "" + +#. module: base_user_empty_password +#: model:ir.model.fields,field_description:base_user_empty_password.field_empty_password_wizard____last_update +#: model:ir.model.fields,field_description:base_user_empty_password.field_res_users____last_update +msgid "Last Modified on" +msgstr "" + +#. module: base_user_empty_password +#: model:ir.model.fields,field_description:base_user_empty_password.field_empty_password_wizard__write_uid +msgid "Last Updated by" +msgstr "" + +#. module: base_user_empty_password +#: model:ir.model.fields,field_description:base_user_empty_password.field_empty_password_wizard__write_date +msgid "Last Updated on" +msgstr "" + +#. module: base_user_empty_password +#: model:ir.model.fields,field_description:base_user_empty_password.field_empty_password_wizard__user_ids +msgid "User" +msgstr "" + +#. module: base_user_empty_password +#: model:ir.model,name:base_user_empty_password.model_res_users +msgid "Users" +msgstr "" From 25a581322cf6293fc359072090985758bc55cb05 Mon Sep 17 00:00:00 2001 From: OCA-git-bot Date: Wed, 8 May 2024 07:14:48 +0000 Subject: [PATCH 004/686] [BOT] post-merge updates --- base_user_empty_password/README.rst | 87 ++++ .../static/description/icon.png | Bin 0 -> 9455 bytes .../static/description/index.html | 424 ++++++++++++++++++ 3 files changed, 511 insertions(+) create mode 100644 base_user_empty_password/README.rst create mode 100644 base_user_empty_password/static/description/icon.png create mode 100644 base_user_empty_password/static/description/index.html diff --git a/base_user_empty_password/README.rst b/base_user_empty_password/README.rst new file mode 100644 index 0000000000..a85c2d7b46 --- /dev/null +++ b/base_user_empty_password/README.rst @@ -0,0 +1,87 @@ +==================== +Empty users password +==================== + +.. + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! + !! This file is generated by oca-gen-addon-readme !! + !! changes will be overwritten. !! + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! + !! source digest: sha256:512d1e5b2dee0d04bf83cf2186bc757d4bc2e0f660342c92128bce2ba1bb571c + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! + +.. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png + :target: https://odoo-community.org/page/development-status + :alt: Beta +.. |badge2| image:: https://img.shields.io/badge/licence-AGPL--3-blue.png + :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html + :alt: License: AGPL-3 +.. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github + :target: https://github.com/OCA/server-auth/tree/14.0/base_user_empty_password + :alt: OCA/server-auth +.. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png + :target: https://translation.odoo-community.org/projects/server-auth-14-0/server-auth-14-0-base_user_empty_password + :alt: Translate me on Weblate +.. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png + :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=14.0 + :alt: Try me on Runboat + +|badge1| |badge2| |badge3| |badge4| |badge5| + +This module provides a wizard to allow emptying users password field. + +This could be useful to force the user to use another sign on method +than Odoo. + +**Table of contents** + +.. contents:: + :local: + +Bug Tracker +=========== + +Bugs are tracked on `GitHub Issues `_. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us to smash it by providing a detailed and welcomed +`feedback `_. + +Do not contact contributors directly about support or help with technical issues. + +Credits +======= + +Authors +------- + +* Camptocamp + +Contributors +------------ + +- Akim Juillerat akim.juilllerat@camptocamp.com + +Maintainers +----------- + +This module is maintained by the OCA. + +.. image:: https://odoo-community.org/logo.png + :alt: Odoo Community Association + :target: https://odoo-community.org + +OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use. + +.. |maintainer-grindtildeath| image:: https://github.com/grindtildeath.png?size=40px + :target: https://github.com/grindtildeath + :alt: grindtildeath + +Current `maintainer `__: + +|maintainer-grindtildeath| + +This module is part of the `OCA/server-auth `_ project on GitHub. + +You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/base_user_empty_password/static/description/icon.png b/base_user_empty_password/static/description/icon.png new file mode 100644 index 0000000000000000000000000000000000000000..3a0328b516c4980e8e44cdb63fd945757ddd132d GIT binary patch literal 9455 zcmW++2RxMjAAjx~&dlBk9S+%}OXg)AGE&Cb*&}d0jUxM@u(PQx^-s)697TX`ehR4?GS^qbkof1cslKgkU)h65qZ9Oc=ml_0temigYLJfnz{IDzUf>bGs4N!v3=Z3jMq&A#7%rM5eQ#dc?k~! zVpnB`o+K7|Al`Q_U;eD$B zfJtP*jH`siUq~{KE)`jP2|#TUEFGRryE2`i0**z#*^6~AI|YzIWy$Cu#CSLW3q=GA z6`?GZymC;dCPk~rBS%eCb`5OLr;RUZ;D`}um=H)BfVIq%7VhiMr)_#G0N#zrNH|__ zc+blN2UAB0=617@>_u;MPHN;P;N#YoE=)R#i$k_`UAA>WWCcEVMh~L_ zj--gtp&|K1#58Yz*AHCTMziU1Jzt_jG0I@qAOHsk$2}yTmVkBp_eHuY$A9)>P6o~I z%aQ?!(GqeQ-Y+b0I(m9pwgi(IIZZzsbMv+9w{PFtd_<_(LA~0H(xz{=FhLB@(1&qHA5EJw1>>=%q2f&^X>IQ{!GJ4e9U z&KlB)z(84HmNgm2hg2C0>WM{E(DdPr+EeU_N@57;PC2&DmGFW_9kP&%?X4}+xWi)( z;)z%wI5>D4a*5XwD)P--sPkoY(a~WBw;E~AW`Yue4kFa^LM3X`8x|}ZUeMnqr}>kH zG%WWW>3ml$Yez?i%)2pbKPI7?5o?hydokgQyZsNEr{a|mLdt;X2TX(#B1j35xPnPW z*bMSSOauW>o;*=kO8ojw91VX!qoOQb)zHJ!odWB}d+*K?#sY_jqPdg{Sm2HdYzdEx zOGVPhVRTGPtv0o}RfVP;Nd(|CB)I;*t&QO8h zFfekr30S!-LHmV_Su-W+rEwYXJ^;6&3|L$mMC8*bQptyOo9;>Qb9Q9`ySe3%V$A*9 zeKEe+b0{#KWGp$F+tga)0RtI)nhMa-K@JS}2krK~n8vJ=Ngm?R!9G<~RyuU0d?nz# z-5EK$o(!F?hmX*2Yt6+coY`6jGbb7tF#6nHA zuKk=GGJ;ZwON1iAfG$E#Y7MnZVmrY|j0eVI(DN_MNFJmyZ|;w4tf@=CCDZ#5N_0K= z$;R~bbk?}TpfDjfB&aiQ$VA}s?P}xPERJG{kxk5~R`iRS(SK5d+Xs9swCozZISbnS zk!)I0>t=A<-^z(cmSFz3=jZ23u13X><0b)P)^1T_))Kr`e!-pb#q&J*Q`p+B6la%C zuVl&0duN<;uOsB3%T9Fp8t{ED108<+W(nOZd?gDnfNBC3>M8WE61$So|P zVvqH0SNtDTcsUdzaMDpT=Ty0pDHHNL@Z0w$Y`XO z2M-_r1S+GaH%pz#Uy0*w$Vdl=X=rQXEzO}d6J^R6zjM1u&c9vYLvLp?W7w(?np9x1 zE_0JSAJCPB%i7p*Wvg)pn5T`8k3-uR?*NT|J`eS#_#54p>!p(mLDvmc-3o0mX*mp_ zN*AeS<>#^-{S%W<*mz^!X$w_2dHWpcJ6^j64qFBft-o}o_Vx80o0>}Du;>kLts;$8 zC`7q$QI(dKYG`Wa8#wl@V4jVWBRGQ@1dr-hstpQL)Tl+aqVpGpbSfN>5i&QMXfiZ> zaA?T1VGe?rpQ@;+pkrVdd{klI&jVS@I5_iz!=UMpTsa~mBga?1r}aRBm1WS;TT*s0f0lY=JBl66Upy)-k4J}lh=P^8(SXk~0xW=T9v*B|gzIhN z>qsO7dFd~mgxAy4V?&)=5ieYq?zi?ZEoj)&2o)RLy=@hbCRcfT5jigwtQGE{L*8<@Yd{zg;CsL5mvzfDY}P-wos_6PfprFVaeqNE%h zKZhLtcQld;ZD+>=nqN~>GvROfueSzJD&BE*}XfU|H&(FssBqY=hPCt`d zH?@s2>I(|;fcW&YM6#V#!kUIP8$Nkdh0A(bEVj``-AAyYgwY~jB zT|I7Bf@%;7aL7Wf4dZ%VqF$eiaC38OV6oy3Z#TER2G+fOCd9Iaoy6aLYbPTN{XRPz z;U!V|vBf%H!}52L2gH_+j;`bTcQRXB+y9onc^wLm5wi3-Be}U>k_u>2Eg$=k!(l@I zcCg+flakT2Nej3i0yn+g+}%NYb?ta;R?(g5SnwsQ49U8Wng8d|{B+lyRcEDvR3+`O{zfmrmvFrL6acVP%yG98X zo&+VBg@px@i)%o?dG(`T;n*$S5*rnyiR#=wW}}GsAcfyQpE|>a{=$Hjg=-*_K;UtD z#z-)AXwSRY?OPefw^iI+ z)AXz#PfEjlwTes|_{sB?4(O@fg0AJ^g8gP}ex9Ucf*@_^J(s_5jJV}c)s$`Myn|Kd z$6>}#q^n{4vN@+Os$m7KV+`}c%4)4pv@06af4-x5#wj!KKb%caK{A&Y#Rfs z-po?Dcb1({W=6FKIUirH&(yg=*6aLCekcKwyfK^JN5{wcA3nhO(o}SK#!CINhI`-I z1)6&n7O&ZmyFMuNwvEic#IiOAwNkR=u5it{B9n2sAJV5pNhar=j5`*N!Na;c7g!l$ z3aYBqUkqqTJ=Re-;)s!EOeij=7SQZ3Hq}ZRds%IM*PtM$wV z@;rlc*NRK7i3y5BETSKuumEN`Xu_8GP1Ri=OKQ$@I^ko8>H6)4rjiG5{VBM>B|%`&&s^)jS|-_95&yc=GqjNo{zFkw%%HHhS~e=s zD#sfS+-?*t|J!+ozP6KvtOl!R)@@-z24}`9{QaVLD^9VCSR2b`b!KC#o;Ki<+wXB6 zx3&O0LOWcg4&rv4QG0)4yb}7BFSEg~=IR5#ZRj8kg}dS7_V&^%#Do==#`u zpy6{ox?jWuR(;pg+f@mT>#HGWHAJRRDDDv~@(IDw&R>9643kK#HN`!1vBJHnC+RM&yIh8{gG2q zA%e*U3|N0XSRa~oX-3EAneep)@{h2vvd3Xvy$7og(sayr@95+e6~Xvi1tUqnIxoIH zVWo*OwYElb#uyW{Imam6f2rGbjR!Y3`#gPqkv57dB6K^wRGxc9B(t|aYDGS=m$&S!NmCtrMMaUg(c zc2qC=2Z`EEFMW-me5B)24AqF*bV5Dr-M5ig(l-WPS%CgaPzs6p_gnCIvTJ=Y<6!gT zVt@AfYCzjjsMEGi=rDQHo0yc;HqoRNnNFeWZgcm?f;cp(6CNylj36DoL(?TS7eU#+ z7&mfr#y))+CJOXQKUMZ7QIdS9@#-}7y2K1{8)cCt0~-X0O!O?Qx#E4Og+;A2SjalQ zs7r?qn0H044=sDN$SRG$arw~n=+T_DNdSrarmu)V6@|?1-ZB#hRn`uilTGPJ@fqEy zGt(f0B+^JDP&f=r{#Y_wi#AVDf-y!RIXU^0jXsFpf>=Ji*TeqSY!H~AMbJdCGLhC) zn7Rx+sXw6uYj;WRYrLd^5IZq@6JI1C^YkgnedZEYy<&4(z%Q$5yv#Boo{AH8n$a zhb4Y3PWdr269&?V%uI$xMcUrMzl=;w<_nm*qr=c3Rl@i5wWB;e-`t7D&c-mcQl7x! zZWB`UGcw=Y2=}~wzrfLx=uet<;m3~=8I~ZRuzvMQUQdr+yTV|ATf1Uuomr__nDf=X zZ3WYJtHp_ri(}SQAPjv+Y+0=fH4krOP@S&=zZ-t1jW1o@}z;xk8 z(Nz1co&El^HK^NrhVHa-_;&88vTU>_J33=%{if;BEY*J#1n59=07jrGQ#IP>@u#3A z;!q+E1Rj3ZJ+!4bq9F8PXJ@yMgZL;>&gYA0%_Kbi8?S=XGM~dnQZQ!yBSgcZhY96H zrWnU;k)qy`rX&&xlDyA%(a1Hhi5CWkmg(`Gb%m(HKi-7Z!LKGRP_B8@`7&hdDy5n= z`OIxqxiVfX@OX1p(mQu>0Ai*v_cTMiw4qRt3~NBvr9oBy0)r>w3p~V0SCm=An6@3n)>@z!|o-$HvDK z|3D2ZMJkLE5loMKl6R^ez@Zz%S$&mbeoqH5`Bb){Ei21q&VP)hWS2tjShfFtGE+$z zzCR$P#uktu+#!w)cX!lWN1XU%K-r=s{|j?)Akf@q#3b#{6cZCuJ~gCxuMXRmI$nGtnH+-h z+GEi!*X=AP<|fG`1>MBdTb?28JYc=fGvAi2I<$B(rs$;eoJCyR6_bc~p!XR@O-+sD z=eH`-ye})I5ic1eL~TDmtfJ|8`0VJ*Yr=hNCd)G1p2MMz4C3^Mj?7;!w|Ly%JqmuW zlIEW^Ft%z?*|fpXda>Jr^1noFZEwFgVV%|*XhH@acv8rdGxeEX{M$(vG{Zw+x(ei@ zmfXb22}8-?Fi`vo-YVrTH*C?a8%M=Hv9MqVH7H^J$KsD?>!SFZ;ZsvnHr_gn=7acz z#W?0eCdVhVMWN12VV^$>WlQ?f;P^{(&pYTops|btm6aj>_Uz+hqpGwB)vWp0Cf5y< zft8-je~nn?W11plq}N)4A{l8I7$!ks_x$PXW-2XaRFswX_BnF{R#6YIwMhAgd5F9X zGmwdadS6(a^fjHtXg8=l?Rc0Sm%hk6E9!5cLVloEy4eh(=FwgP`)~I^5~pBEWo+F6 zSf2ncyMurJN91#cJTy_u8Y}@%!bq1RkGC~-bV@SXRd4F{R-*V`bS+6;W5vZ(&+I<9$;-V|eNfLa5n-6% z2(}&uGRF;p92eS*sE*oR$@pexaqr*meB)VhmIg@h{uzkk$9~qh#cHhw#>O%)b@+(| z^IQgqzuj~Sk(J;swEM-3TrJAPCq9k^^^`q{IItKBRXYe}e0Tdr=Huf7da3$l4PdpwWDop%^}n;dD#K4s#DYA8SHZ z&1!riV4W4R7R#C))JH1~axJ)RYnM$$lIR%6fIVA@zV{XVyx}C+a-Dt8Y9M)^KU0+H zR4IUb2CJ{Hg>CuaXtD50jB(_Tcx=Z$^WYu2u5kubqmwp%drJ6 z?Fo40g!Qd<-l=TQxqHEOuPX0;^z7iX?Ke^a%XT<13TA^5`4Xcw6D@Ur&VT&CUe0d} z1GjOVF1^L@>O)l@?bD~$wzgf(nxX1OGD8fEV?TdJcZc2KoUe|oP1#=$$7ee|xbY)A zDZq+cuTpc(fFdj^=!;{k03C69lMQ(|>uhRfRu%+!k&YOi-3|1QKB z z?n?eq1XP>p-IM$Z^C;2L3itnbJZAip*Zo0aw2bs8@(s^~*8T9go!%dHcAz2lM;`yp zD=7&xjFV$S&5uDaiScyD?B-i1ze`+CoRtz`Wn+Zl&#s4&}MO{@N!ufrzjG$B79)Y2d3tBk&)TxUTw@QS0TEL_?njX|@vq?Uz(nBFK5Pq7*xj#u*R&i|?7+6# z+|r_n#SW&LXhtheZdah{ZVoqwyT{D>MC3nkFF#N)xLi{p7J1jXlmVeb;cP5?e(=f# zuT7fvjSbjS781v?7{)-X3*?>tq?)Yd)~|1{BDS(pqC zC}~H#WXlkUW*H5CDOo<)#x7%RY)A;ShGhI5s*#cRDA8YgqG(HeKDx+#(ZQ?386dv! zlXCO)w91~Vw4AmOcATuV653fa9R$fyK8ul%rG z-wfS zihugoZyr38Im?Zuh6@RcF~t1anQu7>#lPpb#}4cOA!EM11`%f*07RqOVkmX{p~KJ9 z^zP;K#|)$`^Rb{rnHGH{~>1(fawV0*Z#)}M`m8-?ZJV<+e}s9wE# z)l&az?w^5{)`S(%MRzxdNqrs1n*-=jS^_jqE*5XDrA0+VE`5^*p3CuM<&dZEeCjoz zR;uu_H9ZPZV|fQq`Cyw4nscrVwi!fE6ciMmX$!_hN7uF;jjKG)d2@aC4ropY)8etW=xJvni)8eHi`H$%#zn^WJ5NLc-rqk|u&&4Z6fD_m&JfSI1Bvb?b<*n&sfl0^t z=HnmRl`XrFvMKB%9}>PaA`m-fK6a0(8=qPkWS5bb4=v?XcWi&hRY?O5HdulRi4?fN zlsJ*N-0Qw+Yic@s0(2uy%F@ib;GjXt01Fmx5XbRo6+n|pP(&nodMoap^z{~q ziEeaUT@Mxe3vJSfI6?uLND(CNr=#^W<1b}jzW58bIfyWTDle$mmS(|x-0|2UlX+9k zQ^EX7Nw}?EzVoBfT(-LT|=9N@^hcn-_p&sqG z&*oVs2JSU+N4ZD`FhCAWaS;>|wH2G*Id|?pa#@>tyxX`+4HyIArWDvVrX)2WAOQff z0qyHu&-S@i^MS-+j--!pr4fPBj~_8({~e1bfcl0wI1kaoN>mJL6KUPQm5N7lB(ui1 zE-o%kq)&djzWJ}ob<-GfDlkB;F31j-VHKvQUGQ3sp`CwyGJk_i!y^sD0fqC@$9|jO zOqN!r!8-p==F@ZVP=U$qSpY(gQ0)59P1&t@y?5rvg<}E+GB}26NYPp4f2YFQrQtot5mn3wu_qprZ=>Ig-$ zbW26Ws~IgY>}^5w`vTB(G`PTZaDiGBo5o(tp)qli|NeV( z@H_=R8V39rt5J5YB2Ky?4eJJ#b`_iBe2ot~6%7mLt5t8Vwi^Jy7|jWXqa3amOIoRb zOr}WVFP--DsS`1WpN%~)t3R!arKF^Q$e12KEqU36AWwnCBICpH4XCsfnyrHr>$I$4 z!DpKX$OKLWarN7nv@!uIA+~RNO)l$$w}p(;b>mx8pwYvu;dD_unryX_NhT8*Tj>BTrTTL&!?O+%Rv;b?B??gSzdp?6Uug9{ zd@V08Z$BdI?fpoCS$)t4mg4rT8Q_I}h`0d-vYZ^|dOB*Q^S|xqTV*vIg?@fVFSmMpaw0qtTRbx} z({Pg?#{2`sc9)M5N$*N|4;^t$+QP?#mov zGVC@I*lBVrOU-%2y!7%)fAKjpEFsgQc4{amtiHb95KQEwvf<(3T<9-Zm$xIew#P22 zc2Ix|App^>v6(3L_MCU0d3W##AB0M~3D00EWoKZqsJYT(#@w$Y_H7G22M~ApVFTRHMI_3be)Lkn#0F*V8Pq zc}`Cjy$bE;FJ6H7p=0y#R>`}-m4(0F>%@P|?7fx{=R^uFdISRnZ2W_xQhD{YuR3t< z{6yxu=4~JkeA;|(J6_nv#>Nvs&FuLA&PW^he@t(UwFFE8)|a!R{`E`K`i^ZnyE4$k z;(749Ix|oi$c3QbEJ3b~D_kQsPz~fIUKym($a_7dJ?o+40*OLl^{=&oq$<#Q(yyrp z{J-FAniyAw9tPbe&IhQ|a`DqFTVQGQ&Gq3!C2==4x{6EJwiPZ8zub-iXoUtkJiG{} zPaR&}_fn8_z~(=;5lD-aPWD3z8PZS@AaUiomF!G8I}Mf>e~0g#BelA-5#`cj;O5>N Xviia!U7SGha1wx#SCgwmn*{w2TRX*I literal 0 HcmV?d00001 diff --git a/base_user_empty_password/static/description/index.html b/base_user_empty_password/static/description/index.html new file mode 100644 index 0000000000..c040865eba --- /dev/null +++ b/base_user_empty_password/static/description/index.html @@ -0,0 +1,424 @@ + + + + + +Empty users password + + + +
+

Empty users password

+ + +

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runboat

+

This module provides a wizard to allow emptying users password field.

+

This could be useful to force the user to use another sign on method +than Odoo.

+

Table of contents

+ +
+

Bug Tracker

+

Bugs are tracked on GitHub Issues. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us to smash it by providing a detailed and welcomed +feedback.

+

Do not contact contributors directly about support or help with technical issues.

+
+
+

Credits

+
+

Authors

+
    +
  • Camptocamp
    • +
+
+ +
+

Maintainers

+

This module is maintained by the OCA.

+Odoo Community Association +

OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use.

+

Current maintainer:

+

grindtildeath

+

This module is part of the OCA/server-auth project on GitHub.

+

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

+
+
+
+ + From 1069a5be6a6384b8852fd2445e58fbe2e4b0b065 Mon Sep 17 00:00:00 2001 From: "Laurent Mignon (ACSONE)" Date: Wed, 31 Jan 2018 17:30:50 +0100 Subject: [PATCH 005/686] New generic module du define REST services --- auth_api_key/models/__init__.py | 2 ++ 1 file changed, 2 insertions(+) create mode 100644 auth_api_key/models/__init__.py diff --git a/auth_api_key/models/__init__.py b/auth_api_key/models/__init__.py new file mode 100644 index 0000000000..01b3640a45 --- /dev/null +++ b/auth_api_key/models/__init__.py @@ -0,0 +1,2 @@ +from . import ir_http +from . import invader_entrypoint From cccbd8721f58e308ca07dcd3e53b30288744c1b3 Mon Sep 17 00:00:00 2001 From: "Laurent Mignon (ACSONE)" Date: Thu, 1 Feb 2018 00:20:26 +0100 Subject: [PATCH 006/686] auth_api_key: New module to provide authentication by api_key --- auth_api_key/README.rst | 85 +++++++++++++++++++++++ auth_api_key/__init__.py | 1 + auth_api_key/__manifest__.py | 22 ++++++ auth_api_key/models/__init__.py | 3 +- auth_api_key/models/auth_api_key.py | 49 +++++++++++++ auth_api_key/models/ir_http.py | 39 +++++++++++ auth_api_key/models/keychain_account.py | 21 ++++++ auth_api_key/security/auth_api_key.xml | 17 +++++ auth_api_key/static/description/icon.png | Bin 0 -> 9455 bytes auth_api_key/views/auth_api_key.xml | 51 ++++++++++++++ 10 files changed, 287 insertions(+), 1 deletion(-) create mode 100644 auth_api_key/README.rst create mode 100644 auth_api_key/__init__.py create mode 100644 auth_api_key/__manifest__.py create mode 100644 auth_api_key/models/auth_api_key.py create mode 100644 auth_api_key/models/ir_http.py create mode 100644 auth_api_key/models/keychain_account.py create mode 100644 auth_api_key/security/auth_api_key.xml create mode 100644 auth_api_key/static/description/icon.png create mode 100644 auth_api_key/views/auth_api_key.xml diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst new file mode 100644 index 0000000000..f562e2611f --- /dev/null +++ b/auth_api_key/README.rst @@ -0,0 +1,85 @@ +.. image:: https://img.shields.io/badge/licence-AGPL--3-blue.svg + :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html + :alt: License: AGPL-3 + +============ +Auth Api Key +============ + +Authenticate http requests from an API key + + +Configuration +============= + +The api key must be provided by the coniguration parameter named +'auth_api_key.api_key'. +To apply this authentication system to your http request you must set 'api_key' +as value for the 'auth' parameter of your route definition into your controller. + + :: + + class MyController(Controller): + + @route('/my_service', auth='api_key', ...) + def my_service(self, *args, **kwargs): + pass + +Usage +===== + +To use this module, you need to: + +#. Go to ... + +.. image:: https://odoo-community.org/website/image/ir.attachment/5784_f2813bd/datas + :alt: Try me on Runbot + :target: https://runbot.odoo-community.org/runbot/{repo_id}/{branch} + +.. repo_id is available in https://github.com/OCA/maintainer-tools/blob/master/tools/repos_with_ids.txt +.. branch is "8.0" for example + +Bug Tracker +=========== + +Bugs are tracked on `GitHub Issues +`_. In case of trouble, please +check there if your issue has already been reported. If you spotted it first, +help us smash it by providing detailed and welcomed feedback. + +Credits +======= + +Images +------ + +* Odoo Community Association: `Icon `_. + +Contributors +------------ + +* Firstname Lastname +* Second Person + +Funders +------- + +The development of this module has been financially supported by: + +* Company 1 name +* Company 2 name + +Maintainer +---------- + +.. image:: https://odoo-community.org/logo.png + :alt: Odoo Community Association + :target: https://odoo-community.org + +This module is maintained by the OCA. + +OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use. + +To contribute to this module, please visit https://odoo-community.org. diff --git a/auth_api_key/__init__.py b/auth_api_key/__init__.py new file mode 100644 index 0000000000..0650744f6b --- /dev/null +++ b/auth_api_key/__init__.py @@ -0,0 +1 @@ +from . import models diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py new file mode 100644 index 0000000000..8294eb056a --- /dev/null +++ b/auth_api_key/__manifest__.py @@ -0,0 +1,22 @@ +# -*- coding: utf-8 -*- +# Copyright 2018 ACSONE SA/NV +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +{ + 'name': 'Auth Api Key', + 'summary': """ + Authenticate http requests from an API key""", + 'version': '10.0.1.0.0', + 'license': 'AGPL-3', + 'author': 'ACSONE SA/NV,Odoo Community Association (OCA)', + 'website': 'https://acsone.eu/', + 'depends': [ + 'keychain' + ], + 'data': [ + 'security/auth_api_key.xml', + 'views/auth_api_key.xml', + ], + 'demo': [ + ], +} diff --git a/auth_api_key/models/__init__.py b/auth_api_key/models/__init__.py index 01b3640a45..389ec3bba5 100644 --- a/auth_api_key/models/__init__.py +++ b/auth_api_key/models/__init__.py @@ -1,2 +1,3 @@ from . import ir_http -from . import invader_entrypoint +from . import keychain_account +from . import auth_api_key diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py new file mode 100644 index 0000000000..2adf2c25bb --- /dev/null +++ b/auth_api_key/models/auth_api_key.py @@ -0,0 +1,49 @@ +# -*- coding: utf-8 -*- +# Copyright 2018 ACSONE SA/NV +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +from odoo import api, fields, models, tools + + +class AuthApiKey(models.Model): + _name = 'auth.api.key' + _inherit = 'keychain.backend' + _backend_name = 'auth_api_key' + + @api.model + def _default_user_id(self): + return self.env.user + + user_id = fields.Many2one( + 'res.users', + 'User', + required=True, + help="The user used to execute the code into Odoo when user is called " + "with this api key.", + default=_default_user_id + ) + + @api.multi + def _inverse_password(self): + self.retrieve_id_by_api_key.clear_cache(self) + ret = super(AuthApiKey, self)._inverse_password() + return ret + + @api.model + def retrieve_from_api_key(self, api_key): + return self.browse(self.retrieve_id_by_api_key().get(api_key, [])) + + @api.model + @tools.ormcache('self.env.uid', 'self._backend_name', 'self._name') + def retrieve_id_by_api_key(self): + keychain_account = self.env['keychain.account'] + keychain_accounts = keychain_account.search([ + ('namespace', '=', self._backend_name), + ('technical_name', 'like', self._name) + ]) + res = {} + for key in keychain_accounts: + _id = int(key.technical_name.split(',')[1]) + api_key = key.get_password() + res[api_key] = _id + return res diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py new file mode 100644 index 0000000000..5ae09d91d5 --- /dev/null +++ b/auth_api_key/models/ir_http.py @@ -0,0 +1,39 @@ +# -*- coding: utf-8 -*- +# Copyright 2018 ACSONE SA/NV +# Copyright 2017 Akretion (http://www.akretion.com). +# @author Sébastien BEAU +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +import logging + +from odoo.http import request +from odoo import models +from werkzeug.exceptions import Unauthorized + + +_logger = logging.getLogger(__name__) + + +class IrHttp(models.AbstractModel): + _inherit = 'ir.http' + + @classmethod + def _auth_method_api_key(cls): + headers = request.httprequest.environ + api_key = headers.get('HTTP_API_KEY') + if api_key: + request.uid = 1 + auth_api_key = request.env['auth.api.key'].retrieve_from_api_key( + api_key + ) + if api_key: + # reset _env on the request since we change the uid... + # the next call to env will instantiate an new + # odoo.api.Environment with the user defined on the + # auth.api_key + request._env = None + request.uid = auth_api_key.user_id.id + request.auth_api_key = auth_api_key + return True + _logger.error("Wrong HTTP_API_KEY, access denied") + raise Unauthorized("Access denied") diff --git a/auth_api_key/models/keychain_account.py b/auth_api_key/models/keychain_account.py new file mode 100644 index 0000000000..02f46c76a3 --- /dev/null +++ b/auth_api_key/models/keychain_account.py @@ -0,0 +1,21 @@ +# -*- coding: utf-8 -*- +# Copyright 2018 ACSONE SA/NV +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +from odoo import api, fields, models + + +class KeychainAccount(models.Model): + + _inherit = 'keychain.account' + + namespace = fields.Selection( + selection_add=[('auth_api_key', 'Search Engine Backend')]) + + @api.multi + def _auth_api_key_validate_data(self, data): + return True + + @api.multi + def _auth_api_key_init_data(self): + return {} diff --git a/auth_api_key/security/auth_api_key.xml b/auth_api_key/security/auth_api_key.xml new file mode 100644 index 0000000000..2ad7762da0 --- /dev/null +++ b/auth_api_key/security/auth_api_key.xml @@ -0,0 +1,17 @@ + + + + + + + auth.api.key access manage + + + + + + + + + diff --git a/auth_api_key/static/description/icon.png b/auth_api_key/static/description/icon.png new file mode 100644 index 0000000000000000000000000000000000000000..3a0328b516c4980e8e44cdb63fd945757ddd132d GIT binary patch literal 9455 zcmW++2RxMjAAjx~&dlBk9S+%}OXg)AGE&Cb*&}d0jUxM@u(PQx^-s)697TX`ehR4?GS^qbkof1cslKgkU)h65qZ9Oc=ml_0temigYLJfnz{IDzUf>bGs4N!v3=Z3jMq&A#7%rM5eQ#dc?k~! zVpnB`o+K7|Al`Q_U;eD$B zfJtP*jH`siUq~{KE)`jP2|#TUEFGRryE2`i0**z#*^6~AI|YzIWy$Cu#CSLW3q=GA z6`?GZymC;dCPk~rBS%eCb`5OLr;RUZ;D`}um=H)BfVIq%7VhiMr)_#G0N#zrNH|__ zc+blN2UAB0=617@>_u;MPHN;P;N#YoE=)R#i$k_`UAA>WWCcEVMh~L_ zj--gtp&|K1#58Yz*AHCTMziU1Jzt_jG0I@qAOHsk$2}yTmVkBp_eHuY$A9)>P6o~I z%aQ?!(GqeQ-Y+b0I(m9pwgi(IIZZzsbMv+9w{PFtd_<_(LA~0H(xz{=FhLB@(1&qHA5EJw1>>=%q2f&^X>IQ{!GJ4e9U z&KlB)z(84HmNgm2hg2C0>WM{E(DdPr+EeU_N@57;PC2&DmGFW_9kP&%?X4}+xWi)( z;)z%wI5>D4a*5XwD)P--sPkoY(a~WBw;E~AW`Yue4kFa^LM3X`8x|}ZUeMnqr}>kH zG%WWW>3ml$Yez?i%)2pbKPI7?5o?hydokgQyZsNEr{a|mLdt;X2TX(#B1j35xPnPW z*bMSSOauW>o;*=kO8ojw91VX!qoOQb)zHJ!odWB}d+*K?#sY_jqPdg{Sm2HdYzdEx zOGVPhVRTGPtv0o}RfVP;Nd(|CB)I;*t&QO8h zFfekr30S!-LHmV_Su-W+rEwYXJ^;6&3|L$mMC8*bQptyOo9;>Qb9Q9`ySe3%V$A*9 zeKEe+b0{#KWGp$F+tga)0RtI)nhMa-K@JS}2krK~n8vJ=Ngm?R!9G<~RyuU0d?nz# z-5EK$o(!F?hmX*2Yt6+coY`6jGbb7tF#6nHA zuKk=GGJ;ZwON1iAfG$E#Y7MnZVmrY|j0eVI(DN_MNFJmyZ|;w4tf@=CCDZ#5N_0K= z$;R~bbk?}TpfDjfB&aiQ$VA}s?P}xPERJG{kxk5~R`iRS(SK5d+Xs9swCozZISbnS zk!)I0>t=A<-^z(cmSFz3=jZ23u13X><0b)P)^1T_))Kr`e!-pb#q&J*Q`p+B6la%C zuVl&0duN<;uOsB3%T9Fp8t{ED108<+W(nOZd?gDnfNBC3>M8WE61$So|P zVvqH0SNtDTcsUdzaMDpT=Ty0pDHHNL@Z0w$Y`XO z2M-_r1S+GaH%pz#Uy0*w$Vdl=X=rQXEzO}d6J^R6zjM1u&c9vYLvLp?W7w(?np9x1 zE_0JSAJCPB%i7p*Wvg)pn5T`8k3-uR?*NT|J`eS#_#54p>!p(mLDvmc-3o0mX*mp_ zN*AeS<>#^-{S%W<*mz^!X$w_2dHWpcJ6^j64qFBft-o}o_Vx80o0>}Du;>kLts;$8 zC`7q$QI(dKYG`Wa8#wl@V4jVWBRGQ@1dr-hstpQL)Tl+aqVpGpbSfN>5i&QMXfiZ> zaA?T1VGe?rpQ@;+pkrVdd{klI&jVS@I5_iz!=UMpTsa~mBga?1r}aRBm1WS;TT*s0f0lY=JBl66Upy)-k4J}lh=P^8(SXk~0xW=T9v*B|gzIhN z>qsO7dFd~mgxAy4V?&)=5ieYq?zi?ZEoj)&2o)RLy=@hbCRcfT5jigwtQGE{L*8<@Yd{zg;CsL5mvzfDY}P-wos_6PfprFVaeqNE%h zKZhLtcQld;ZD+>=nqN~>GvROfueSzJD&BE*}XfU|H&(FssBqY=hPCt`d zH?@s2>I(|;fcW&YM6#V#!kUIP8$Nkdh0A(bEVj``-AAyYgwY~jB zT|I7Bf@%;7aL7Wf4dZ%VqF$eiaC38OV6oy3Z#TER2G+fOCd9Iaoy6aLYbPTN{XRPz z;U!V|vBf%H!}52L2gH_+j;`bTcQRXB+y9onc^wLm5wi3-Be}U>k_u>2Eg$=k!(l@I zcCg+flakT2Nej3i0yn+g+}%NYb?ta;R?(g5SnwsQ49U8Wng8d|{B+lyRcEDvR3+`O{zfmrmvFrL6acVP%yG98X zo&+VBg@px@i)%o?dG(`T;n*$S5*rnyiR#=wW}}GsAcfyQpE|>a{=$Hjg=-*_K;UtD z#z-)AXwSRY?OPefw^iI+ z)AXz#PfEjlwTes|_{sB?4(O@fg0AJ^g8gP}ex9Ucf*@_^J(s_5jJV}c)s$`Myn|Kd z$6>}#q^n{4vN@+Os$m7KV+`}c%4)4pv@06af4-x5#wj!KKb%caK{A&Y#Rfs z-po?Dcb1({W=6FKIUirH&(yg=*6aLCekcKwyfK^JN5{wcA3nhO(o}SK#!CINhI`-I z1)6&n7O&ZmyFMuNwvEic#IiOAwNkR=u5it{B9n2sAJV5pNhar=j5`*N!Na;c7g!l$ z3aYBqUkqqTJ=Re-;)s!EOeij=7SQZ3Hq}ZRds%IM*PtM$wV z@;rlc*NRK7i3y5BETSKuumEN`Xu_8GP1Ri=OKQ$@I^ko8>H6)4rjiG5{VBM>B|%`&&s^)jS|-_95&yc=GqjNo{zFkw%%HHhS~e=s zD#sfS+-?*t|J!+ozP6KvtOl!R)@@-z24}`9{QaVLD^9VCSR2b`b!KC#o;Ki<+wXB6 zx3&O0LOWcg4&rv4QG0)4yb}7BFSEg~=IR5#ZRj8kg}dS7_V&^%#Do==#`u zpy6{ox?jWuR(;pg+f@mT>#HGWHAJRRDDDv~@(IDw&R>9643kK#HN`!1vBJHnC+RM&yIh8{gG2q zA%e*U3|N0XSRa~oX-3EAneep)@{h2vvd3Xvy$7og(sayr@95+e6~Xvi1tUqnIxoIH zVWo*OwYElb#uyW{Imam6f2rGbjR!Y3`#gPqkv57dB6K^wRGxc9B(t|aYDGS=m$&S!NmCtrMMaUg(c zc2qC=2Z`EEFMW-me5B)24AqF*bV5Dr-M5ig(l-WPS%CgaPzs6p_gnCIvTJ=Y<6!gT zVt@AfYCzjjsMEGi=rDQHo0yc;HqoRNnNFeWZgcm?f;cp(6CNylj36DoL(?TS7eU#+ z7&mfr#y))+CJOXQKUMZ7QIdS9@#-}7y2K1{8)cCt0~-X0O!O?Qx#E4Og+;A2SjalQ zs7r?qn0H044=sDN$SRG$arw~n=+T_DNdSrarmu)V6@|?1-ZB#hRn`uilTGPJ@fqEy zGt(f0B+^JDP&f=r{#Y_wi#AVDf-y!RIXU^0jXsFpf>=Ji*TeqSY!H~AMbJdCGLhC) zn7Rx+sXw6uYj;WRYrLd^5IZq@6JI1C^YkgnedZEYy<&4(z%Q$5yv#Boo{AH8n$a zhb4Y3PWdr269&?V%uI$xMcUrMzl=;w<_nm*qr=c3Rl@i5wWB;e-`t7D&c-mcQl7x! zZWB`UGcw=Y2=}~wzrfLx=uet<;m3~=8I~ZRuzvMQUQdr+yTV|ATf1Uuomr__nDf=X zZ3WYJtHp_ri(}SQAPjv+Y+0=fH4krOP@S&=zZ-t1jW1o@}z;xk8 z(Nz1co&El^HK^NrhVHa-_;&88vTU>_J33=%{if;BEY*J#1n59=07jrGQ#IP>@u#3A z;!q+E1Rj3ZJ+!4bq9F8PXJ@yMgZL;>&gYA0%_Kbi8?S=XGM~dnQZQ!yBSgcZhY96H zrWnU;k)qy`rX&&xlDyA%(a1Hhi5CWkmg(`Gb%m(HKi-7Z!LKGRP_B8@`7&hdDy5n= z`OIxqxiVfX@OX1p(mQu>0Ai*v_cTMiw4qRt3~NBvr9oBy0)r>w3p~V0SCm=An6@3n)>@z!|o-$HvDK z|3D2ZMJkLE5loMKl6R^ez@Zz%S$&mbeoqH5`Bb){Ei21q&VP)hWS2tjShfFtGE+$z zzCR$P#uktu+#!w)cX!lWN1XU%K-r=s{|j?)Akf@q#3b#{6cZCuJ~gCxuMXRmI$nGtnH+-h z+GEi!*X=AP<|fG`1>MBdTb?28JYc=fGvAi2I<$B(rs$;eoJCyR6_bc~p!XR@O-+sD z=eH`-ye})I5ic1eL~TDmtfJ|8`0VJ*Yr=hNCd)G1p2MMz4C3^Mj?7;!w|Ly%JqmuW zlIEW^Ft%z?*|fpXda>Jr^1noFZEwFgVV%|*XhH@acv8rdGxeEX{M$(vG{Zw+x(ei@ zmfXb22}8-?Fi`vo-YVrTH*C?a8%M=Hv9MqVH7H^J$KsD?>!SFZ;ZsvnHr_gn=7acz z#W?0eCdVhVMWN12VV^$>WlQ?f;P^{(&pYTops|btm6aj>_Uz+hqpGwB)vWp0Cf5y< zft8-je~nn?W11plq}N)4A{l8I7$!ks_x$PXW-2XaRFswX_BnF{R#6YIwMhAgd5F9X zGmwdadS6(a^fjHtXg8=l?Rc0Sm%hk6E9!5cLVloEy4eh(=FwgP`)~I^5~pBEWo+F6 zSf2ncyMurJN91#cJTy_u8Y}@%!bq1RkGC~-bV@SXRd4F{R-*V`bS+6;W5vZ(&+I<9$;-V|eNfLa5n-6% z2(}&uGRF;p92eS*sE*oR$@pexaqr*meB)VhmIg@h{uzkk$9~qh#cHhw#>O%)b@+(| z^IQgqzuj~Sk(J;swEM-3TrJAPCq9k^^^`q{IItKBRXYe}e0Tdr=Huf7da3$l4PdpwWDop%^}n;dD#K4s#DYA8SHZ z&1!riV4W4R7R#C))JH1~axJ)RYnM$$lIR%6fIVA@zV{XVyx}C+a-Dt8Y9M)^KU0+H zR4IUb2CJ{Hg>CuaXtD50jB(_Tcx=Z$^WYu2u5kubqmwp%drJ6 z?Fo40g!Qd<-l=TQxqHEOuPX0;^z7iX?Ke^a%XT<13TA^5`4Xcw6D@Ur&VT&CUe0d} z1GjOVF1^L@>O)l@?bD~$wzgf(nxX1OGD8fEV?TdJcZc2KoUe|oP1#=$$7ee|xbY)A zDZq+cuTpc(fFdj^=!;{k03C69lMQ(|>uhRfRu%+!k&YOi-3|1QKB z z?n?eq1XP>p-IM$Z^C;2L3itnbJZAip*Zo0aw2bs8@(s^~*8T9go!%dHcAz2lM;`yp zD=7&xjFV$S&5uDaiScyD?B-i1ze`+CoRtz`Wn+Zl&#s4&}MO{@N!ufrzjG$B79)Y2d3tBk&)TxUTw@QS0TEL_?njX|@vq?Uz(nBFK5Pq7*xj#u*R&i|?7+6# z+|r_n#SW&LXhtheZdah{ZVoqwyT{D>MC3nkFF#N)xLi{p7J1jXlmVeb;cP5?e(=f# zuT7fvjSbjS781v?7{)-X3*?>tq?)Yd)~|1{BDS(pqC zC}~H#WXlkUW*H5CDOo<)#x7%RY)A;ShGhI5s*#cRDA8YgqG(HeKDx+#(ZQ?386dv! zlXCO)w91~Vw4AmOcATuV653fa9R$fyK8ul%rG z-wfS zihugoZyr38Im?Zuh6@RcF~t1anQu7>#lPpb#}4cOA!EM11`%f*07RqOVkmX{p~KJ9 z^zP;K#|)$`^Rb{rnHGH{~>1(fawV0*Z#)}M`m8-?ZJV<+e}s9wE# z)l&az?w^5{)`S(%MRzxdNqrs1n*-=jS^_jqE*5XDrA0+VE`5^*p3CuM<&dZEeCjoz zR;uu_H9ZPZV|fQq`Cyw4nscrVwi!fE6ciMmX$!_hN7uF;jjKG)d2@aC4ropY)8etW=xJvni)8eHi`H$%#zn^WJ5NLc-rqk|u&&4Z6fD_m&JfSI1Bvb?b<*n&sfl0^t z=HnmRl`XrFvMKB%9}>PaA`m-fK6a0(8=qPkWS5bb4=v?XcWi&hRY?O5HdulRi4?fN zlsJ*N-0Qw+Yic@s0(2uy%F@ib;GjXt01Fmx5XbRo6+n|pP(&nodMoap^z{~q ziEeaUT@Mxe3vJSfI6?uLND(CNr=#^W<1b}jzW58bIfyWTDle$mmS(|x-0|2UlX+9k zQ^EX7Nw}?EzVoBfT(-LT|=9N@^hcn-_p&sqG z&*oVs2JSU+N4ZD`FhCAWaS;>|wH2G*Id|?pa#@>tyxX`+4HyIArWDvVrX)2WAOQff z0qyHu&-S@i^MS-+j--!pr4fPBj~_8({~e1bfcl0wI1kaoN>mJL6KUPQm5N7lB(ui1 zE-o%kq)&djzWJ}ob<-GfDlkB;F31j-VHKvQUGQ3sp`CwyGJk_i!y^sD0fqC@$9|jO zOqN!r!8-p==F@ZVP=U$qSpY(gQ0)59P1&t@y?5rvg<}E+GB}26NYPp4f2YFQrQtot5mn3wu_qprZ=>Ig-$ zbW26Ws~IgY>}^5w`vTB(G`PTZaDiGBo5o(tp)qli|NeV( z@H_=R8V39rt5J5YB2Ky?4eJJ#b`_iBe2ot~6%7mLt5t8Vwi^Jy7|jWXqa3amOIoRb zOr}WVFP--DsS`1WpN%~)t3R!arKF^Q$e12KEqU36AWwnCBICpH4XCsfnyrHr>$I$4 z!DpKX$OKLWarN7nv@!uIA+~RNO)l$$w}p(;b>mx8pwYvu;dD_unryX_NhT8*Tj>BTrTTL&!?O+%Rv;b?B??gSzdp?6Uug9{ zd@V08Z$BdI?fpoCS$)t4mg4rT8Q_I}h`0d-vYZ^|dOB*Q^S|xqTV*vIg?@fVFSmMpaw0qtTRbx} z({Pg?#{2`sc9)M5N$*N|4;^t$+QP?#mov zGVC@I*lBVrOU-%2y!7%)fAKjpEFsgQc4{amtiHb95KQEwvf<(3T<9-Zm$xIew#P22 zc2Ix|App^>v6(3L_MCU0d3W##AB0M~3D00EWoKZqsJYT(#@w$Y_H7G22M~ApVFTRHMI_3be)Lkn#0F*V8Pq zc}`Cjy$bE;FJ6H7p=0y#R>`}-m4(0F>%@P|?7fx{=R^uFdISRnZ2W_xQhD{YuR3t< z{6yxu=4~JkeA;|(J6_nv#>Nvs&FuLA&PW^he@t(UwFFE8)|a!R{`E`K`i^ZnyE4$k z;(749Ix|oi$c3QbEJ3b~D_kQsPz~fIUKym($a_7dJ?o+40*OLl^{=&oq$<#Q(yyrp z{J-FAniyAw9tPbe&IhQ|a`DqFTVQGQ&Gq3!C2==4x{6EJwiPZ8zub-iXoUtkJiG{} zPaR&}_fn8_z~(=;5lD-aPWD3z8PZS@AaUiomF!G8I}Mf>e~0g#BelA-5#`cj;O5>N Xviia!U7SGha1wx#SCgwmn*{w2TRX*I literal 0 HcmV?d00001 diff --git a/auth_api_key/views/auth_api_key.xml b/auth_api_key/views/auth_api_key.xml new file mode 100644 index 0000000000..6937bab749 --- /dev/null +++ b/auth_api_key/views/auth_api_key.xml @@ -0,0 +1,51 @@ + + + + + + + auth.api.key.form (in auth_api_key) + auth.api.key + +
+ + +
+ + + + + + auth.api.key.tree (in auth_api_key) + auth.api.key + + + + + + + + + Auth Api Key + auth.api.key + tree,form + [] + {} + + + + Auth Api Key + + + + + + From 0fd65cd98427da4ae1ebc4e1f774cb2908c322a7 Mon Sep 17 00:00:00 2001 From: "Laurent Mignon (ACSONE)" Date: Fri, 2 Feb 2018 16:26:45 +0100 Subject: [PATCH 007/686] auth_api_key: Remove useless code --- auth_api_key/models/auth_api_key.py | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py index 2adf2c25bb..7528db41de 100644 --- a/auth_api_key/models/auth_api_key.py +++ b/auth_api_key/models/auth_api_key.py @@ -26,8 +26,7 @@ def _default_user_id(self): @api.multi def _inverse_password(self): self.retrieve_id_by_api_key.clear_cache(self) - ret = super(AuthApiKey, self)._inverse_password() - return ret + return super(AuthApiKey, self)._inverse_password() @api.model def retrieve_from_api_key(self, api_key): From b16d703a8672162afbb585f55c5e7f368c421356 Mon Sep 17 00:00:00 2001 From: "Denis Robinet (ACSONE)" Date: Mon, 19 Feb 2018 15:30:01 +0100 Subject: [PATCH 008/686] Update the auth_api_key for keychan 10.0.2 (renamed method) --- auth_api_key/models/auth_api_key.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py index 7528db41de..8a7d401712 100644 --- a/auth_api_key/models/auth_api_key.py +++ b/auth_api_key/models/auth_api_key.py @@ -43,6 +43,6 @@ def retrieve_id_by_api_key(self): res = {} for key in keychain_accounts: _id = int(key.technical_name.split(',')[1]) - api_key = key.get_password() + api_key = key._get_password() res[api_key] = _id return res From 84c36af683cfca6cc37a2b07fade94ac370586a3 Mon Sep 17 00:00:00 2001 From: "Denis Robinet (ACSONE)" Date: Mon, 19 Feb 2018 15:31:24 +0100 Subject: [PATCH 009/686] Fix the authentification method and show the user_id on the form --- auth_api_key/models/ir_http.py | 2 +- auth_api_key/views/auth_api_key.xml | 1 + 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py index 5ae09d91d5..6e77c0738b 100644 --- a/auth_api_key/models/ir_http.py +++ b/auth_api_key/models/ir_http.py @@ -26,7 +26,7 @@ def _auth_method_api_key(cls): auth_api_key = request.env['auth.api.key'].retrieve_from_api_key( api_key ) - if api_key: + if auth_api_key: # reset _env on the request since we change the uid... # the next call to env will instantiate an new # odoo.api.Environment with the user defined on the diff --git a/auth_api_key/views/auth_api_key.xml b/auth_api_key/views/auth_api_key.xml index 6937bab749..eca677d51e 100644 --- a/auth_api_key/views/auth_api_key.xml +++ b/auth_api_key/views/auth_api_key.xml @@ -15,6 +15,7 @@ + From 1fd62eca56be9aac20ac7467d5a522e9b9b923ac Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?S=C3=A9bastien=20BEAU?= Date: Sun, 25 Feb 2018 19:39:24 +0100 Subject: [PATCH 010/686] refactor code in order to use generic code from base_rest instead of custom one from shopinvader --- auth_api_key/models/ir_http.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py index 6e77c0738b..dd777c239a 100644 --- a/auth_api_key/models/ir_http.py +++ b/auth_api_key/models/ir_http.py @@ -8,7 +8,7 @@ from odoo.http import request from odoo import models -from werkzeug.exceptions import Unauthorized +from odoo.exceptions import AccessDenied _logger = logging.getLogger(__name__) @@ -36,4 +36,4 @@ def _auth_method_api_key(cls): request.auth_api_key = auth_api_key return True _logger.error("Wrong HTTP_API_KEY, access denied") - raise Unauthorized("Access denied") + raise AccessDenied() From e036e069ddfdd023dcf1523ff4f4426f9c93771a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?S=C3=A9bastien=20BEAU?= Date: Wed, 29 Aug 2018 09:05:14 +0200 Subject: [PATCH 011/686] fix wrong name in selection box --- auth_api_key/models/keychain_account.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/auth_api_key/models/keychain_account.py b/auth_api_key/models/keychain_account.py index 02f46c76a3..3c919fa458 100644 --- a/auth_api_key/models/keychain_account.py +++ b/auth_api_key/models/keychain_account.py @@ -10,7 +10,7 @@ class KeychainAccount(models.Model): _inherit = 'keychain.account' namespace = fields.Selection( - selection_add=[('auth_api_key', 'Search Engine Backend')]) + selection_add=[('auth_api_key', 'Authentification Api key')]) @api.multi def _auth_api_key_validate_data(self, data): From 828f08cb39f1ccf2de234a5881d1c08d86ea4a38 Mon Sep 17 00:00:00 2001 From: hparfr Date: Wed, 17 Oct 2018 12:51:51 +0200 Subject: [PATCH 012/686] Since keychain 10.0.2.0.1 there is a default validation method --- auth_api_key/models/keychain_account.py | 10 +--------- 1 file changed, 1 insertion(+), 9 deletions(-) diff --git a/auth_api_key/models/keychain_account.py b/auth_api_key/models/keychain_account.py index 3c919fa458..80168d751d 100644 --- a/auth_api_key/models/keychain_account.py +++ b/auth_api_key/models/keychain_account.py @@ -2,7 +2,7 @@ # Copyright 2018 ACSONE SA/NV # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). -from odoo import api, fields, models +from odoo import fields, models class KeychainAccount(models.Model): @@ -11,11 +11,3 @@ class KeychainAccount(models.Model): namespace = fields.Selection( selection_add=[('auth_api_key', 'Authentification Api key')]) - - @api.multi - def _auth_api_key_validate_data(self, data): - return True - - @api.multi - def _auth_api_key_init_data(self): - return {} From bbbd0d6a9d4a5e82fbc94fccb33d97361252d05f Mon Sep 17 00:00:00 2001 From: Quentin Groulard Date: Tue, 6 Nov 2018 12:34:52 +0100 Subject: [PATCH 013/686] Keychain removed Get rid of keychain dependency --- auth_api_key/__manifest__.py | 24 ++++------ auth_api_key/models/__init__.py | 1 - auth_api_key/models/auth_api_key.py | 61 ++++++++++--------------- auth_api_key/models/ir_http.py | 12 ++--- auth_api_key/models/keychain_account.py | 13 ------ auth_api_key/readme/CONFIGURE.rst | 2 + auth_api_key/readme/CONTRIBUTORS.rst | 4 ++ auth_api_key/readme/DESCRIPTION.rst | 1 + auth_api_key/readme/USAGE.rst | 9 ++++ auth_api_key/security/auth_api_key.xml | 17 ------- auth_api_key/tests/__init__.py | 1 + auth_api_key/tests/test_auth_api_key.py | 35 ++++++++++++++ auth_api_key/views/auth_api_key.xml | 52 --------------------- 13 files changed, 90 insertions(+), 142 deletions(-) delete mode 100644 auth_api_key/models/keychain_account.py create mode 100644 auth_api_key/readme/CONFIGURE.rst create mode 100644 auth_api_key/readme/CONTRIBUTORS.rst create mode 100644 auth_api_key/readme/DESCRIPTION.rst create mode 100644 auth_api_key/readme/USAGE.rst delete mode 100644 auth_api_key/security/auth_api_key.xml create mode 100644 auth_api_key/tests/__init__.py create mode 100644 auth_api_key/tests/test_auth_api_key.py delete mode 100644 auth_api_key/views/auth_api_key.xml diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py index 8294eb056a..7b68da7c41 100644 --- a/auth_api_key/__manifest__.py +++ b/auth_api_key/__manifest__.py @@ -3,20 +3,14 @@ # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). { - 'name': 'Auth Api Key', - 'summary': """ + "name": "Auth Api Key", + "summary": """ Authenticate http requests from an API key""", - 'version': '10.0.1.0.0', - 'license': 'AGPL-3', - 'author': 'ACSONE SA/NV,Odoo Community Association (OCA)', - 'website': 'https://acsone.eu/', - 'depends': [ - 'keychain' - ], - 'data': [ - 'security/auth_api_key.xml', - 'views/auth_api_key.xml', - ], - 'demo': [ - ], + "version": "10.0.1.0.0", + "license": "AGPL-3", + "author": "ACSONE SA/NV,Odoo Community Association (OCA)", + "website": "https://acsone.eu/", + "depends": ["server_environment"], + "data": [], + "demo": [], } diff --git a/auth_api_key/models/__init__.py b/auth_api_key/models/__init__.py index 389ec3bba5..dee3379fea 100644 --- a/auth_api_key/models/__init__.py +++ b/auth_api_key/models/__init__.py @@ -1,3 +1,2 @@ from . import ir_http -from . import keychain_account from . import auth_api_key diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py index 8a7d401712..733bd10f03 100644 --- a/auth_api_key/models/auth_api_key.py +++ b/auth_api_key/models/auth_api_key.py @@ -4,45 +4,32 @@ from odoo import api, fields, models, tools +from odoo.addons.server_environment import serv_config -class AuthApiKey(models.Model): - _name = 'auth.api.key' - _inherit = 'keychain.backend' - _backend_name = 'auth_api_key' +from odoo.exceptions import ValidationError, AccessError - @api.model - def _default_user_id(self): - return self.env.user - - user_id = fields.Many2one( - 'res.users', - 'User', - required=True, - help="The user used to execute the code into Odoo when user is called " - "with this api key.", - default=_default_user_id - ) - - @api.multi - def _inverse_password(self): - self.retrieve_id_by_api_key.clear_cache(self) - return super(AuthApiKey, self)._inverse_password() - @api.model - def retrieve_from_api_key(self, api_key): - return self.browse(self.retrieve_id_by_api_key().get(api_key, [])) +class AuthApiKey(models.TransientModel): + _name = "auth.api.key" @api.model - @tools.ormcache('self.env.uid', 'self._backend_name', 'self._name') - def retrieve_id_by_api_key(self): - keychain_account = self.env['keychain.account'] - keychain_accounts = keychain_account.search([ - ('namespace', '=', self._backend_name), - ('technical_name', 'like', self._name) - ]) - res = {} - for key in keychain_accounts: - _id = int(key.technical_name.split(',')[1]) - api_key = key._get_password() - res[api_key] = _id - return res + @tools.ormcache("api_key") + def _retrieve_uid_from_api_key(self, api_key): + if not self.env.user.has_group("base.group_system"): + raise AccessError("User is not allowed") + + for section in serv_config.sections(): + if section.startswith("api_key_") and serv_config.has_option( + section, "key" + ): + if api_key != serv_config.get(section, "key"): + continue + + login_name = serv_config.get(section, "user") + uid = self.env["res.users"].search([("login", "=", login_name)]).id + + if not uid: + raise ValidationError("No user found with login %s" % login_name) + + return uid + return False diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py index dd777c239a..dd1483a644 100644 --- a/auth_api_key/models/ir_http.py +++ b/auth_api_key/models/ir_http.py @@ -15,24 +15,22 @@ class IrHttp(models.AbstractModel): - _inherit = 'ir.http' + _inherit = "ir.http" @classmethod def _auth_method_api_key(cls): headers = request.httprequest.environ - api_key = headers.get('HTTP_API_KEY') + api_key = headers.get("HTTP_API_KEY") if api_key: request.uid = 1 - auth_api_key = request.env['auth.api.key'].retrieve_from_api_key( - api_key - ) - if auth_api_key: + uid = request.env["auth.api.key"].retrieve_uid_from_api_key(api_key) + if uid: # reset _env on the request since we change the uid... # the next call to env will instantiate an new # odoo.api.Environment with the user defined on the # auth.api_key request._env = None - request.uid = auth_api_key.user_id.id + request.uid = uid request.auth_api_key = auth_api_key return True _logger.error("Wrong HTTP_API_KEY, access denied") diff --git a/auth_api_key/models/keychain_account.py b/auth_api_key/models/keychain_account.py deleted file mode 100644 index 80168d751d..0000000000 --- a/auth_api_key/models/keychain_account.py +++ /dev/null @@ -1,13 +0,0 @@ -# -*- coding: utf-8 -*- -# Copyright 2018 ACSONE SA/NV -# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). - -from odoo import fields, models - - -class KeychainAccount(models.Model): - - _inherit = 'keychain.account' - - namespace = fields.Selection( - selection_add=[('auth_api_key', 'Authentification Api key')]) diff --git a/auth_api_key/readme/CONFIGURE.rst b/auth_api_key/readme/CONFIGURE.rst new file mode 100644 index 0000000000..0c2c0538e5 --- /dev/null +++ b/auth_api_key/readme/CONFIGURE.rst @@ -0,0 +1,2 @@ +The api key must be provided by the coniguration parameter named +'api_key_*.key', and the user under the same option 'api_key_*.user'. \ No newline at end of file diff --git a/auth_api_key/readme/CONTRIBUTORS.rst b/auth_api_key/readme/CONTRIBUTORS.rst new file mode 100644 index 0000000000..765b551496 --- /dev/null +++ b/auth_api_key/readme/CONTRIBUTORS.rst @@ -0,0 +1,4 @@ +* Denis Robinet <> +* Laurent Mignon <> +* Quentin Groulard <> +* Sébastien Beau <> \ No newline at end of file diff --git a/auth_api_key/readme/DESCRIPTION.rst b/auth_api_key/readme/DESCRIPTION.rst new file mode 100644 index 0000000000..dd9562ef54 --- /dev/null +++ b/auth_api_key/readme/DESCRIPTION.rst @@ -0,0 +1 @@ +Authenticate http requests from an API key. \ No newline at end of file diff --git a/auth_api_key/readme/USAGE.rst b/auth_api_key/readme/USAGE.rst new file mode 100644 index 0000000000..4464ca59c9 --- /dev/null +++ b/auth_api_key/readme/USAGE.rst @@ -0,0 +1,9 @@ +To apply this authentication system to your http request you must set 'api_key' +as value for the 'auth' parameter of your route definition into your controller. + + + class MyController(Controller): + + @route('/my_service', auth='api_key', ...) + def my_service(self, *args, **kwargs): + pass \ No newline at end of file diff --git a/auth_api_key/security/auth_api_key.xml b/auth_api_key/security/auth_api_key.xml deleted file mode 100644 index 2ad7762da0..0000000000 --- a/auth_api_key/security/auth_api_key.xml +++ /dev/null @@ -1,17 +0,0 @@ - - - - - - - auth.api.key access manage - - - - - - - - - diff --git a/auth_api_key/tests/__init__.py b/auth_api_key/tests/__init__.py new file mode 100644 index 0000000000..56e3e32a3a --- /dev/null +++ b/auth_api_key/tests/__init__.py @@ -0,0 +1 @@ +from . import test_auth_api_key diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py new file mode 100644 index 0000000000..dd43eb4f30 --- /dev/null +++ b/auth_api_key/tests/test_auth_api_key.py @@ -0,0 +1,35 @@ +from odoo.tests.common import TransactionCase +from odoo.addons.server_environment import serv_config +from odoo.exceptions import ValidationError, AccessError + + +class TestAuthApiKey(TransactionCase): + @classmethod + def setUpClass(cls, *args, **kwargs): + super(TestAuthApiKey, cls).setUpClass(*args, **kwargs) + + serv_config.add_section("api_key_good") + serv_config.set("api_key_good", "user", "demo") + serv_config.set("api_key_good", "key", "api_right_key") + serv_config.add_section("api_key_bad") + serv_config.set("api_key_bad", "user", "not_demo") + serv_config.set("api_key_bad", "key", "api_wrong_key") + + def test_lookup(self): + demo_user = self.env.ref("base.user_demo") + self.assertEqual( + self.env["auth.api.key"]._retrieve_uid_from_api_key("api_right_key"), + demo_user.id, + ) + + def test_wrong_key(self): + with self.assertRaises(ValidationError), self.env.cr.savepoint(): + self.env["auth.api.key"]._retrieve_uid_from_api_key("api_wrong_key") + + def test_user_not_allowed(self): + demo_user = self.env.ref("base.user_demo") + with self.assertRaises(AccessError), self.env.cr.savepoint(): + self.env["auth.api.key"].sudo(user=demo_user)._retrieve_uid_from_api_key( + "api_wrong_key" + ) + diff --git a/auth_api_key/views/auth_api_key.xml b/auth_api_key/views/auth_api_key.xml deleted file mode 100644 index eca677d51e..0000000000 --- a/auth_api_key/views/auth_api_key.xml +++ /dev/null @@ -1,52 +0,0 @@ - - - - - - - auth.api.key.form (in auth_api_key) - auth.api.key - -
- - -
- - - - - - auth.api.key.tree (in auth_api_key) - auth.api.key - - - - - - - - - Auth Api Key - auth.api.key - tree,form - [] - {} - - - - Auth Api Key - - - - - - From a50166442462bf62f33d5a6199770008718fa09a Mon Sep 17 00:00:00 2001 From: Quentin Groulard Date: Thu, 8 Nov 2018 11:06:58 +0100 Subject: [PATCH 014/686] Update Readme with more details --- auth_api_key/README.rst | 85 ---------------------------- auth_api_key/readme/CONFIGURE.rst | 10 +++- auth_api_key/readme/CONTRIBUTORS.rst | 8 +-- auth_api_key/readme/DESCRIPTION.rst | 6 +- 4 files changed, 17 insertions(+), 92 deletions(-) delete mode 100644 auth_api_key/README.rst diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst deleted file mode 100644 index f562e2611f..0000000000 --- a/auth_api_key/README.rst +++ /dev/null @@ -1,85 +0,0 @@ -.. image:: https://img.shields.io/badge/licence-AGPL--3-blue.svg - :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html - :alt: License: AGPL-3 - -============ -Auth Api Key -============ - -Authenticate http requests from an API key - - -Configuration -============= - -The api key must be provided by the coniguration parameter named -'auth_api_key.api_key'. -To apply this authentication system to your http request you must set 'api_key' -as value for the 'auth' parameter of your route definition into your controller. - - :: - - class MyController(Controller): - - @route('/my_service', auth='api_key', ...) - def my_service(self, *args, **kwargs): - pass - -Usage -===== - -To use this module, you need to: - -#. Go to ... - -.. image:: https://odoo-community.org/website/image/ir.attachment/5784_f2813bd/datas - :alt: Try me on Runbot - :target: https://runbot.odoo-community.org/runbot/{repo_id}/{branch} - -.. repo_id is available in https://github.com/OCA/maintainer-tools/blob/master/tools/repos_with_ids.txt -.. branch is "8.0" for example - -Bug Tracker -=========== - -Bugs are tracked on `GitHub Issues -`_. In case of trouble, please -check there if your issue has already been reported. If you spotted it first, -help us smash it by providing detailed and welcomed feedback. - -Credits -======= - -Images ------- - -* Odoo Community Association: `Icon `_. - -Contributors ------------- - -* Firstname Lastname -* Second Person - -Funders -------- - -The development of this module has been financially supported by: - -* Company 1 name -* Company 2 name - -Maintainer ----------- - -.. image:: https://odoo-community.org/logo.png - :alt: Odoo Community Association - :target: https://odoo-community.org - -This module is maintained by the OCA. - -OCA, or the Odoo Community Association, is a nonprofit organization whose -mission is to support the collaborative development of Odoo features and -promote its widespread use. - -To contribute to this module, please visit https://odoo-community.org. diff --git a/auth_api_key/readme/CONFIGURE.rst b/auth_api_key/readme/CONFIGURE.rst index 0c2c0538e5..0d403e1f65 100644 --- a/auth_api_key/readme/CONFIGURE.rst +++ b/auth_api_key/readme/CONFIGURE.rst @@ -1,2 +1,8 @@ -The api key must be provided by the coniguration parameter named -'api_key_*.key', and the user under the same option 'api_key_*.user'. \ No newline at end of file +The api key must be provided by the configuration parameter named +'api_key_*.key', and the user under the same option 'api_key_*.user'. + +For instance : + + [api_key_mykey] + key=my_api_key + user=my_user \ No newline at end of file diff --git a/auth_api_key/readme/CONTRIBUTORS.rst b/auth_api_key/readme/CONTRIBUTORS.rst index 765b551496..14d8f94b83 100644 --- a/auth_api_key/readme/CONTRIBUTORS.rst +++ b/auth_api_key/readme/CONTRIBUTORS.rst @@ -1,4 +1,4 @@ -* Denis Robinet <> -* Laurent Mignon <> -* Quentin Groulard <> -* Sébastien Beau <> \ No newline at end of file +* Denis Robinet +* Laurent Mignon +* Quentin Groulard +* Sébastien Beau \ No newline at end of file diff --git a/auth_api_key/readme/DESCRIPTION.rst b/auth_api_key/readme/DESCRIPTION.rst index dd9562ef54..575f75544b 100644 --- a/auth_api_key/readme/DESCRIPTION.rst +++ b/auth_api_key/readme/DESCRIPTION.rst @@ -1 +1,5 @@ -Authenticate http requests from an API key. \ No newline at end of file +Authenticate http requests from an API key. + +API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program's user. + +Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level. \ No newline at end of file From b5c91d077c6bdfddf16c1238a0440b08045f990c Mon Sep 17 00:00:00 2001 From: qgroulard <43472442+qgroulard@users.noreply.github.com> Date: Thu, 8 Nov 2018 11:22:06 +0100 Subject: [PATCH 015/686] Quick fix CONFIGURE.rst --- auth_api_key/readme/CONFIGURE.rst | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/auth_api_key/readme/CONFIGURE.rst b/auth_api_key/readme/CONFIGURE.rst index 0d403e1f65..5118d0b936 100644 --- a/auth_api_key/readme/CONFIGURE.rst +++ b/auth_api_key/readme/CONFIGURE.rst @@ -2,7 +2,7 @@ The api key must be provided by the configuration parameter named 'api_key_*.key', and the user under the same option 'api_key_*.user'. For instance : - +:: [api_key_mykey] key=my_api_key - user=my_user \ No newline at end of file + user=my_user From 750cbc16e0d1296d1a757dffcf6a341ba4ba4de6 Mon Sep 17 00:00:00 2001 From: qgroulard <43472442+qgroulard@users.noreply.github.com> Date: Thu, 8 Nov 2018 11:32:09 +0100 Subject: [PATCH 016/686] Developmet status: Beta --- auth_api_key/__manifest__.py | 1 + 1 file changed, 1 insertion(+) diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py index 7b68da7c41..c0680ffcc2 100644 --- a/auth_api_key/__manifest__.py +++ b/auth_api_key/__manifest__.py @@ -10,6 +10,7 @@ "license": "AGPL-3", "author": "ACSONE SA/NV,Odoo Community Association (OCA)", "website": "https://acsone.eu/", + "development_status": "Beta", "depends": ["server_environment"], "data": [], "demo": [], From c59dc5110e84041e8febfa0dc49048d0e0609ffd Mon Sep 17 00:00:00 2001 From: "Laurent Mignon (ACSONE)" Date: Tue, 13 Nov 2018 11:32:39 +0100 Subject: [PATCH 017/686] [FIX] auth_api_key: fix api and flake8 --- auth_api_key/README.rst | 108 +++++ auth_api_key/models/auth_api_key.py | 12 +- auth_api_key/models/ir_http.py | 5 +- auth_api_key/readme/CONFIGURE.rst | 4 +- auth_api_key/readme/USAGE.rst | 3 +- auth_api_key/static/description/index.html | 449 +++++++++++++++++++++ auth_api_key/tests/test_auth_api_key.py | 15 +- 7 files changed, 581 insertions(+), 15 deletions(-) create mode 100644 auth_api_key/README.rst create mode 100644 auth_api_key/static/description/index.html diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst new file mode 100644 index 0000000000..cbdf2d6b2d --- /dev/null +++ b/auth_api_key/README.rst @@ -0,0 +1,108 @@ +============ +Auth Api Key +============ + +.. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! + !! This file is generated by oca-gen-addon-readme !! + !! changes will be overwritten. !! + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! + +.. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png + :target: https://odoo-community.org/page/development-status + :alt: Beta +.. |badge2| image:: https://img.shields.io/badge/licence-AGPL--3-blue.png + :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html + :alt: License: AGPL-3 +.. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github + :target: https://github.com/OCA/server-auth/tree/10.0/auth_api_key + :alt: OCA/server-auth +.. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png + :target: https://translation.odoo-community.org/projects/server-auth-10-0/server-auth-10-0-auth_api_key + :alt: Translate me on Weblate +.. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png + :target: https://runbot.odoo-community.org/runbot/251/10.0 + :alt: Try me on Runbot + +|badge1| |badge2| |badge3| |badge4| |badge5| + +Authenticate http requests from an API key. + +API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program's user. + +Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level. + +**Table of contents** + +.. contents:: + :local: + +Configuration +============= + +The api key must be provided by the configuration parameter named +'api_key_*.key', and the user under the same option 'api_key_*.user'. + +For instance : + +.. code-block:: ini + + [api_key_mykey] + key=my_api_key + user=my_user + +Usage +===== + +To apply this authentication system to your http request you must set 'api_key' +as value for the 'auth' parameter of your route definition into your controller. + +.. code-block:: python + + class MyController(Controller): + + @route('/my_service', auth='api_key', ...) + def my_service(self, *args, **kwargs): + pass + +Bug Tracker +=========== + +Bugs are tracked on `GitHub Issues `_. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us smashing it by providing a detailed and welcomed +`feedback `_. + +Do not contact contributors directly about support or help with technical issues. + +Credits +======= + +Authors +~~~~~~~ + +* ACSONE SA/NV + +Contributors +~~~~~~~~~~~~ + +* Denis Robinet +* Laurent Mignon +* Quentin Groulard +* Sébastien Beau + +Maintainers +~~~~~~~~~~~ + +This module is maintained by the OCA. + +.. image:: https://odoo-community.org/logo.png + :alt: Odoo Community Association + :target: https://odoo-community.org + +OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use. + +This module is part of the `OCA/server-auth `_ project on GitHub. + +You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py index 733bd10f03..4b8efd52d8 100644 --- a/auth_api_key/models/auth_api_key.py +++ b/auth_api_key/models/auth_api_key.py @@ -2,7 +2,7 @@ # Copyright 2018 ACSONE SA/NV # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). -from odoo import api, fields, models, tools +from odoo import api, models, tools, _ from odoo.addons.server_environment import serv_config @@ -16,20 +16,22 @@ class AuthApiKey(models.TransientModel): @tools.ormcache("api_key") def _retrieve_uid_from_api_key(self, api_key): if not self.env.user.has_group("base.group_system"): - raise AccessError("User is not allowed") + raise AccessError(_("User is not allowed")) for section in serv_config.sections(): if section.startswith("api_key_") and serv_config.has_option( - section, "key" + section, "key" ): if api_key != serv_config.get(section, "key"): continue login_name = serv_config.get(section, "user") - uid = self.env["res.users"].search([("login", "=", login_name)]).id + uid = self.env["res.users"].search( + [("login", "=", login_name)]).id if not uid: - raise ValidationError("No user found with login %s" % login_name) + raise ValidationError( + _("No user found with login %s") % login_name) return uid return False diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py index dd1483a644..d79da075c8 100644 --- a/auth_api_key/models/ir_http.py +++ b/auth_api_key/models/ir_http.py @@ -23,7 +23,8 @@ def _auth_method_api_key(cls): api_key = headers.get("HTTP_API_KEY") if api_key: request.uid = 1 - uid = request.env["auth.api.key"].retrieve_uid_from_api_key(api_key) + uid = request.env["auth.api.key"]._retrieve_uid_from_api_key( + api_key) if uid: # reset _env on the request since we change the uid... # the next call to env will instantiate an new @@ -31,7 +32,7 @@ def _auth_method_api_key(cls): # auth.api_key request._env = None request.uid = uid - request.auth_api_key = auth_api_key + request.auth_api_key = api_key return True _logger.error("Wrong HTTP_API_KEY, access denied") raise AccessDenied() diff --git a/auth_api_key/readme/CONFIGURE.rst b/auth_api_key/readme/CONFIGURE.rst index 5118d0b936..d65bfb4dba 100644 --- a/auth_api_key/readme/CONFIGURE.rst +++ b/auth_api_key/readme/CONFIGURE.rst @@ -2,7 +2,9 @@ The api key must be provided by the configuration parameter named 'api_key_*.key', and the user under the same option 'api_key_*.user'. For instance : -:: + +.. code-block:: ini + [api_key_mykey] key=my_api_key user=my_user diff --git a/auth_api_key/readme/USAGE.rst b/auth_api_key/readme/USAGE.rst index 4464ca59c9..d8ff4460eb 100644 --- a/auth_api_key/readme/USAGE.rst +++ b/auth_api_key/readme/USAGE.rst @@ -1,9 +1,10 @@ To apply this authentication system to your http request you must set 'api_key' as value for the 'auth' parameter of your route definition into your controller. +.. code-block:: python class MyController(Controller): @route('/my_service', auth='api_key', ...) def my_service(self, *args, **kwargs): - pass \ No newline at end of file + pass diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html new file mode 100644 index 0000000000..c5d2d31987 --- /dev/null +++ b/auth_api_key/static/description/index.html @@ -0,0 +1,449 @@ + + + + + + +Auth Api Key + + + +
+

Auth Api Key

+ + +

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

+

Authenticate http requests from an API key.

+

API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program’s user.

+

Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.

+

Table of contents

+ +
+

Configuration

+

The api key must be provided by the configuration parameter named +‘api_key_*.key’, and the user under the same option ‘api_key_*.user’.

+

For instance :

+
+[api_key_mykey]
+key=my_api_key
+user=my_user
+
+
+
+

Usage

+

To apply this authentication system to your http request you must set ‘api_key’ +as value for the ‘auth’ parameter of your route definition into your controller.

+
+class MyController(Controller):
+
+    @route('/my_service', auth='api_key', ...)
+    def my_service(self, *args, **kwargs):
+        pass
+
+
+
+

Bug Tracker

+

Bugs are tracked on GitHub Issues. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us smashing it by providing a detailed and welcomed +feedback.

+

Do not contact contributors directly about support or help with technical issues.

+
+
+

Credits

+
+

Authors

+
    +
  • ACSONE SA/NV
    • +
+
+
+

Contributors

+ +
+
+

Maintainers

+

This module is maintained by the OCA.

+Odoo Community Association +

OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use.

+

This module is part of the OCA/server-auth project on GitHub.

+

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

+
+
+
+ + diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py index dd43eb4f30..284a5aeba9 100644 --- a/auth_api_key/tests/test_auth_api_key.py +++ b/auth_api_key/tests/test_auth_api_key.py @@ -1,3 +1,6 @@ +# -*- coding: utf-8 -*- +# Copyright 2018 ACSONE SA/NV +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). from odoo.tests.common import TransactionCase from odoo.addons.server_environment import serv_config from odoo.exceptions import ValidationError, AccessError @@ -18,18 +21,18 @@ def setUpClass(cls, *args, **kwargs): def test_lookup(self): demo_user = self.env.ref("base.user_demo") self.assertEqual( - self.env["auth.api.key"]._retrieve_uid_from_api_key("api_right_key"), + self.env["auth.api.key"]._retrieve_uid_from_api_key( + "api_right_key"), demo_user.id, ) def test_wrong_key(self): with self.assertRaises(ValidationError), self.env.cr.savepoint(): - self.env["auth.api.key"]._retrieve_uid_from_api_key("api_wrong_key") + self.env["auth.api.key"]._retrieve_uid_from_api_key( + "api_wrong_key") def test_user_not_allowed(self): demo_user = self.env.ref("base.user_demo") with self.assertRaises(AccessError), self.env.cr.savepoint(): - self.env["auth.api.key"].sudo(user=demo_user)._retrieve_uid_from_api_key( - "api_wrong_key" - ) - + self.env["auth.api.key"].sudo(user=demo_user).\ + _retrieve_uid_from_api_key("api_wrong_key") From 573ea22b4775de4835c57be446585b80841e4ad7 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?St=C3=A9phane=20Bidoul=20=28ACSONE=29?= Date: Tue, 20 Nov 2018 17:58:49 +0100 Subject: [PATCH 018/686] [MIG] server_auth from 10 to 12 --- auth_api_key/__manifest__.py | 2 +- auth_api_key/models/auth_api_key.py | 1 - auth_api_key/models/ir_http.py | 1 - auth_api_key/tests/test_auth_api_key.py | 1 - 4 files changed, 1 insertion(+), 4 deletions(-) diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py index c0680ffcc2..ae027c0310 100644 --- a/auth_api_key/__manifest__.py +++ b/auth_api_key/__manifest__.py @@ -6,7 +6,7 @@ "name": "Auth Api Key", "summary": """ Authenticate http requests from an API key""", - "version": "10.0.1.0.0", + "version": "12.0.1.0.0", "license": "AGPL-3", "author": "ACSONE SA/NV,Odoo Community Association (OCA)", "website": "https://acsone.eu/", diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py index 4b8efd52d8..387073c627 100644 --- a/auth_api_key/models/auth_api_key.py +++ b/auth_api_key/models/auth_api_key.py @@ -1,4 +1,3 @@ -# -*- coding: utf-8 -*- # Copyright 2018 ACSONE SA/NV # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py index d79da075c8..2a14cac38f 100644 --- a/auth_api_key/models/ir_http.py +++ b/auth_api_key/models/ir_http.py @@ -1,4 +1,3 @@ -# -*- coding: utf-8 -*- # Copyright 2018 ACSONE SA/NV # Copyright 2017 Akretion (http://www.akretion.com). # @author Sébastien BEAU diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py index 284a5aeba9..0e3c7d9f88 100644 --- a/auth_api_key/tests/test_auth_api_key.py +++ b/auth_api_key/tests/test_auth_api_key.py @@ -1,4 +1,3 @@ -# -*- coding: utf-8 -*- # Copyright 2018 ACSONE SA/NV # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). from odoo.tests.common import TransactionCase From 2c8648a73a951aaf2305f8209921bdaf63ce9e8b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?St=C3=A9phane=20Bidoul=20=28ACSONE=29?= Date: Tue, 20 Nov 2018 19:22:57 +0100 Subject: [PATCH 019/686] auth_api_key: add description to model --- auth_api_key/models/auth_api_key.py | 1 + 1 file changed, 1 insertion(+) diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py index 387073c627..b302d2da5b 100644 --- a/auth_api_key/models/auth_api_key.py +++ b/auth_api_key/models/auth_api_key.py @@ -10,6 +10,7 @@ class AuthApiKey(models.TransientModel): _name = "auth.api.key" + _description = "API Key Retriever" @api.model @tools.ormcache("api_key") From c5dc798dd7f27900e070b7f89c7e157633048cce Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?St=C3=A9phane=20Bidoul=20=28ACSONE=29?= Date: Wed, 21 Nov 2018 11:07:12 +0100 Subject: [PATCH 020/686] [CHG] auth_api_key is LGPL --- auth_api_key/__manifest__.py | 4 ++-- auth_api_key/models/auth_api_key.py | 2 +- auth_api_key/models/ir_http.py | 2 +- auth_api_key/tests/test_auth_api_key.py | 2 +- 4 files changed, 5 insertions(+), 5 deletions(-) diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py index ae027c0310..896e30b8a9 100644 --- a/auth_api_key/__manifest__.py +++ b/auth_api_key/__manifest__.py @@ -1,13 +1,13 @@ # -*- coding: utf-8 -*- # Copyright 2018 ACSONE SA/NV -# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). +# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl). { "name": "Auth Api Key", "summary": """ Authenticate http requests from an API key""", "version": "12.0.1.0.0", - "license": "AGPL-3", + "license": "LGPL-3", "author": "ACSONE SA/NV,Odoo Community Association (OCA)", "website": "https://acsone.eu/", "development_status": "Beta", diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py index b302d2da5b..b39735f2c3 100644 --- a/auth_api_key/models/auth_api_key.py +++ b/auth_api_key/models/auth_api_key.py @@ -1,5 +1,5 @@ # Copyright 2018 ACSONE SA/NV -# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). +# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl). from odoo import api, models, tools, _ diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py index 2a14cac38f..1e6638a07d 100644 --- a/auth_api_key/models/ir_http.py +++ b/auth_api_key/models/ir_http.py @@ -1,7 +1,7 @@ # Copyright 2018 ACSONE SA/NV # Copyright 2017 Akretion (http://www.akretion.com). # @author Sébastien BEAU -# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). +# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl). import logging diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py index 0e3c7d9f88..a187aed1b9 100644 --- a/auth_api_key/tests/test_auth_api_key.py +++ b/auth_api_key/tests/test_auth_api_key.py @@ -1,5 +1,5 @@ # Copyright 2018 ACSONE SA/NV -# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). +# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl). from odoo.tests.common import TransactionCase from odoo.addons.server_environment import serv_config from odoo.exceptions import ValidationError, AccessError From 65420d2c90d015c5234ced463114f417661b64d3 Mon Sep 17 00:00:00 2001 From: Andreas Perhab <38032588+ap-wtioit@users.noreply.github.com> Date: Fri, 30 Nov 2018 11:23:10 +0100 Subject: [PATCH 021/686] Use consteq to compare keys Co-Authored-By: qgroulard <43472442+qgroulard@users.noreply.github.com> --- auth_api_key/models/auth_api_key.py | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py index b39735f2c3..1c435a09f0 100644 --- a/auth_api_key/models/auth_api_key.py +++ b/auth_api_key/models/auth_api_key.py @@ -4,6 +4,7 @@ from odoo import api, models, tools, _ from odoo.addons.server_environment import serv_config +from odoo.tools import consteq from odoo.exceptions import ValidationError, AccessError @@ -22,7 +23,7 @@ def _retrieve_uid_from_api_key(self, api_key): if section.startswith("api_key_") and serv_config.has_option( section, "key" ): - if api_key != serv_config.get(section, "key"): + if not consteq(api_key, serv_config.get(section, "key")): continue login_name = serv_config.get(section, "user") From 637ba56e692afee27d79abbf2cbf71d27a8e1b9b Mon Sep 17 00:00:00 2001 From: OCA-git-bot Date: Thu, 14 Feb 2019 10:29:14 +0000 Subject: [PATCH 022/686] [UPD] README.rst --- auth_api_key/README.rst | 16 ++++++++-------- auth_api_key/static/description/index.html | 6 +++--- 2 files changed, 11 insertions(+), 11 deletions(-) diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst index cbdf2d6b2d..dc5e5bc240 100644 --- a/auth_api_key/README.rst +++ b/auth_api_key/README.rst @@ -10,17 +10,17 @@ Auth Api Key .. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png :target: https://odoo-community.org/page/development-status :alt: Beta -.. |badge2| image:: https://img.shields.io/badge/licence-AGPL--3-blue.png - :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html - :alt: License: AGPL-3 +.. |badge2| image:: https://img.shields.io/badge/licence-LGPL--3-blue.png + :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html + :alt: License: LGPL-3 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github - :target: https://github.com/OCA/server-auth/tree/10.0/auth_api_key + :target: https://github.com/OCA/server-auth/tree/12.0/auth_api_key :alt: OCA/server-auth .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png - :target: https://translation.odoo-community.org/projects/server-auth-10-0/server-auth-10-0-auth_api_key + :target: https://translation.odoo-community.org/projects/server-auth-12-0/server-auth-12-0-auth_api_key :alt: Translate me on Weblate .. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png - :target: https://runbot.odoo-community.org/runbot/251/10.0 + :target: https://runbot.odoo-community.org/runbot/251/12.0 :alt: Try me on Runbot |badge1| |badge2| |badge3| |badge4| |badge5| @@ -70,7 +70,7 @@ Bug Tracker Bugs are tracked on `GitHub Issues `_. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed -`feedback `_. +`feedback `_. Do not contact contributors directly about support or help with technical issues. @@ -103,6 +103,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose mission is to support the collaborative development of Odoo features and promote its widespread use. -This module is part of the `OCA/server-auth `_ project on GitHub. +This module is part of the `OCA/server-auth `_ project on GitHub. You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html index c5d2d31987..f70369a5af 100644 --- a/auth_api_key/static/description/index.html +++ b/auth_api_key/static/description/index.html @@ -367,7 +367,7 @@

Auth Api Key

!! This file is generated by oca-gen-addon-readme !! !! changes will be overwritten. !! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! --> -

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

+

Beta License: LGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

Authenticate http requests from an API key.

API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program’s user.

Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.

@@ -413,7 +413,7 @@

Bug Tracker

Bugs are tracked on GitHub Issues. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed -feedback.

+feedback.

Do not contact contributors directly about support or help with technical issues.

@@ -440,7 +440,7 @@

Maintainers

OCA, or the Odoo Community Association, is a nonprofit organization whose mission is to support the collaborative development of Odoo features and promote its widespread use.

-

This module is part of the OCA/server-auth project on GitHub.

+

This module is part of the OCA/server-auth project on GitHub.

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

From 14ef36836854b27248e9055174cc3183712902ee Mon Sep 17 00:00:00 2001 From: Mourad Date: Thu, 18 Jul 2019 13:47:24 +0200 Subject: [PATCH 023/686] [IMP] ADD possibility to save api keys in database by using server.env.mixin obj --- auth_api_key/models/auth_api_key.py | 62 +++++++++++++++++++++-------- 1 file changed, 45 insertions(+), 17 deletions(-) diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py index 1c435a09f0..8059bd304c 100644 --- a/auth_api_key/models/auth_api_key.py +++ b/auth_api_key/models/auth_api_key.py @@ -3,36 +3,64 @@ from odoo import api, models, tools, _ -from odoo.addons.server_environment import serv_config from odoo.tools import consteq from odoo.exceptions import ValidationError, AccessError -class AuthApiKey(models.TransientModel): +class AuthApiKey(models.Model): _name = "auth.api.key" + _inherit = "server.env.mixin" _description = "API Key Retriever" + name = fields.Char(required=True) + key = fields.Char(required=True) + user = fields.Char(required=True) + + _sql_constraints = [ + ('key_uniq', 'unique(key)', 'API Key Retriever must be unique !'), + ] + + @property + def _server_env_fields(self): + base_fields = super()._server_env_fields + api_key_fields = { + "key": {}, + "user": {}, + } + api_key_fields.update(base_fields) + return api_key_fields + @api.model @tools.ormcache("api_key") - def _retrieve_uid_from_api_key(self, api_key): + def _retrieve_api_key(self, api_key): if not self.env.user.has_group("base.group_system"): raise AccessError(_("User is not allowed")) + ap_keys = self.search([]) + # api key are a computed field in the context of server env + # so we can't use a domain in search method + key = False + for ap_key in ap_keys: + if consteq(api_key, ap_key.key): + key = ap_key + + if not key: + raise ValidationError( + _("The key %s is not defined") % api_key) - for section in serv_config.sections(): - if section.startswith("api_key_") and serv_config.has_option( - section, "key" - ): - if not consteq(api_key, serv_config.get(section, "key")): - continue + return key + + @api.model + @tools.ormcache("api_key") + def _retrieve_uid_from_api_key(self, api_key): + ap_key = self._retrieve_api_key(api_key) + uid = self.env["res.users"].search( + [("login", "=", ap_key.user)]).id - login_name = serv_config.get(section, "user") - uid = self.env["res.users"].search( - [("login", "=", login_name)]).id + if not uid: + raise ValidationError( + _("No user found with login %s") % login_name) - if not uid: - raise ValidationError( - _("No user found with login %s") % login_name) + return uid + return False - return uid - return False From 3d5484208a1ad0f2e13dffee993a72751541e303 Mon Sep 17 00:00:00 2001 From: Mourad Date: Thu, 18 Jul 2019 13:52:33 +0200 Subject: [PATCH 024/686] [FIX] login_name error --- auth_api_key/models/auth_api_key.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py index 8059bd304c..e767ff833a 100644 --- a/auth_api_key/models/auth_api_key.py +++ b/auth_api_key/models/auth_api_key.py @@ -59,7 +59,7 @@ def _retrieve_uid_from_api_key(self, api_key): if not uid: raise ValidationError( - _("No user found with login %s") % login_name) + _("No user found with login %s") % ap_key.user) return uid return False From 4e295fe027525f0735b795308a7cc4747c4b6e5c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?S=C3=A9bastien=20BEAU?= Date: Fri, 19 Jul 2019 17:13:54 +0200 Subject: [PATCH 025/686] [IMP] make auth_api_key compatible in multi-db Api key is now based on the new version of server env Key belong to a specifiv database that can be requested based on the domain name. Just setup the db_filter with "%d^" to filter based on domain name --- auth_api_key/__manifest__.py | 2 +- auth_api_key/models/auth_api_key.py | 64 +++++++++++------------ auth_api_key/models/ir_http.py | 8 +-- auth_api_key/security/ir.model.access.csv | 2 + 4 files changed, 39 insertions(+), 37 deletions(-) create mode 100644 auth_api_key/security/ir.model.access.csv diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py index 896e30b8a9..c75d1f01c0 100644 --- a/auth_api_key/__manifest__.py +++ b/auth_api_key/__manifest__.py @@ -12,6 +12,6 @@ "website": "https://acsone.eu/", "development_status": "Beta", "depends": ["server_environment"], - "data": [], + "data": ['security/ir.model.access.csv'], "demo": [], } diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py index e767ff833a..df979551d4 100644 --- a/auth_api_key/models/auth_api_key.py +++ b/auth_api_key/models/auth_api_key.py @@ -1,7 +1,7 @@ # Copyright 2018 ACSONE SA/NV # License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl). -from odoo import api, models, tools, _ +from odoo import api, fields, models, tools, _ from odoo.tools import consteq @@ -15,52 +15,52 @@ class AuthApiKey(models.Model): name = fields.Char(required=True) key = fields.Char(required=True) - user = fields.Char(required=True) - - _sql_constraints = [ - ('key_uniq', 'unique(key)', 'API Key Retriever must be unique !'), - ] + user_id = fields.Many2one( + comodel_name="res.users", + string="User", + required=True) @property def _server_env_fields(self): base_fields = super()._server_env_fields api_key_fields = { "key": {}, - "user": {}, } api_key_fields.update(base_fields) return api_key_fields @api.model - @tools.ormcache("api_key") - def _retrieve_api_key(self, api_key): + def _retrieve_api_key(self, key): + return self.browse(self._retrieve_api_key_id(key)) + + @api.model + @tools.ormcache("key") + def _retrieve_api_key_id(self, key): if not self.env.user.has_group("base.group_system"): raise AccessError(_("User is not allowed")) - ap_keys = self.search([]) - # api key are a computed field in the context of server env - # so we can't use a domain in search method - key = False - for ap_key in ap_keys: - if consteq(api_key, ap_key.key): - key = ap_key - - if not key: - raise ValidationError( - _("The key %s is not defined") % api_key) - - return key + for api_key in self.search([]): + if consteq(key, api_key.key): + return api_key.id + raise ValidationError(_("The key %s is not allowed") % key) @api.model - @tools.ormcache("api_key") - def _retrieve_uid_from_api_key(self, api_key): - ap_key = self._retrieve_api_key(api_key) - uid = self.env["res.users"].search( - [("login", "=", ap_key.user)]).id + @tools.ormcache("key") + def _retrieve_uid_from_api_key(self, key): + return self._retrieve_api_key(key).user_id.id - if not uid: - raise ValidationError( - _("No user found with login %s") % ap_key.user) + def _clear_key_cache(self): + self._retrieve_api_key_id.clear_cache() + self._retrieve_uid_from_api_key.clear_cache() - return uid - return False + @api.model + def create(self, vals): + record = super(AuthApikey, self).create(vals) + if 'key' in vals: + self._clear_key_cache() + return record + def write(self, vals): + super(AuthApikey, self).write(vals) + if 'key' in vals: + self._clear_key_cache() + return True diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py index 1e6638a07d..f28183abb0 100644 --- a/auth_api_key/models/ir_http.py +++ b/auth_api_key/models/ir_http.py @@ -22,16 +22,16 @@ def _auth_method_api_key(cls): api_key = headers.get("HTTP_API_KEY") if api_key: request.uid = 1 - uid = request.env["auth.api.key"]._retrieve_uid_from_api_key( - api_key) - if uid: + api = request.env["auth.api.key"]._retrieve_api_key(api_key) + if api: # reset _env on the request since we change the uid... # the next call to env will instantiate an new # odoo.api.Environment with the user defined on the # auth.api_key request._env = None - request.uid = uid + request.uid = api.user_id.id request.auth_api_key = api_key + request.auth_api_key_id = api.id return True _logger.error("Wrong HTTP_API_KEY, access denied") raise AccessDenied() diff --git a/auth_api_key/security/ir.model.access.csv b/auth_api_key/security/ir.model.access.csv new file mode 100644 index 0000000000..b964d8c1de --- /dev/null +++ b/auth_api_key/security/ir.model.access.csv @@ -0,0 +1,2 @@ +id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink +access_auth_api_key,access_auth_api_key,model_auth_api_key,base.group_system,1,1,1,1 From dc93895908d7619e7280ddc883dcc1726e074bda Mon Sep 17 00:00:00 2001 From: OCA-git-bot Date: Mon, 29 Jul 2019 03:37:25 +0000 Subject: [PATCH 026/686] [UPD] README.rst --- auth_api_key/static/description/index.html | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html index f70369a5af..8a5bd04cac 100644 --- a/auth_api_key/static/description/index.html +++ b/auth_api_key/static/description/index.html @@ -3,7 +3,7 @@ - + Auth Api Key + + +
+

Authentication OpenID Connect

+ + +

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

+

This module allows users to login through an OpenID Connect provider using the +authorization code flow or implicit flow.

+

Note the implicit flow is not recommended because it exposes access tokens to +the browser and in http logs.

+

Table of contents

+ +
+

Installation

+

This module depends on the python-jose +library, not to be confused with jose which is also available on PyPI.

+
+
+

Configuration

+
+

Setup for Microsoft Azure

+

Example configuration with OpenID Connect implicit flow. +This configuration is not recommended because it exposes the access token +to the client, and in logs.

+
+
# configure a new web application in Azure with OpenID and implicit flow (see
+
the provider documentation)
+
# in this application the redirect url must be be “<url of your
+
server>/auth_oauth/signin” and of course this URL should be reachable from +Azure
+
# create a new authentication provider in Odoo with the following
+
parameters (see the portal documentation +for more information):
+
+
    +
  • Provider Name: Azure
    • +
  • Auth Flow: OpenID Connect
    • +
  • Client ID: use the value of the OAuth2 autorization endoing (v2) from the Azure Endpoints list
    • +
  • Body: Azure SSO
    • +
  • Authentication URL: use the value of “OAuth2 autorization endpoint (v2)” from the Azure endpoints list
    • +
  • Scope: openid email
    • +
  • Validation URL: use the value of “OAuth2 token endpoint (v2)” from the Azure endpoints list
    • +
  • Allowed: yes
    • +
+
+
+

Setup for Keycloak

+

Example configuration with OpenID Connect authorization code flow.

+

In Keycloak:

+

# configure a new Client +# make sure Authorization Code Flow is Enabled. +# configure the client Access Type as “confidential” and take note of the client secret in the Credentials tab +# configure the redirect url to be “<url of your server>/auth_oauth/signin”

+

In Odoo, create a new Oauth Provider with the following parameters:

+
    +
  • Provider name: Keycloak (or any name you like that identify your keycloak +provider)
    • +
  • Auth Flow: OpenID Connect (authorization code flow)
    • +
  • Client ID: the same Client ID you entered when configuring the client in Keycloak
    • +
  • Client Secret: found in keycloak on the client Credentials tab
    • +
  • Allowed: yes
    • +
  • Body: the link text to appear on the login page, such as Login with Keycloak
    • +
  • Scope: openid email
    • +
  • Authentication URL: The “authorization_endpoint” URL found in the +OpenID Endpoint Configuration of your Keycloak realm
    • +
  • Token URL: The “token_endpoint” URL found in the +OpenID Endpoint Configuration of your Keycloak realm
    • +
  • JWKS URL: The “jwks_uri” URL found in the +OpenID Endpoint Configuration of your Keycloak realm
    • +
+
+
+
+

Usage

+

On the login page, click on the authentication provider you configured.

+
+
+

Known issues / Roadmap

+
    +
  • When going to the login screen, check for a existing token and do a direct login without the clicking on the SSO link
    • +
  • When doing a logout an extra option to also logout at the SSO provider.
    • +
+
+
+

Changelog

+
+

13.0.1.0.0 2020-04-10

+
    +
  • Odoo 13 migration, add authorization code flow.
    • +
+
+
+

10.0.1.0.0 2018-10-05

+
    +
  • Initial implementation
    • +
+
+
+
+

Bug Tracker

+

Bugs are tracked on GitHub Issues. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us smashing it by providing a detailed and welcomed +feedback.

+

Do not contact contributors directly about support or help with technical issues.

+
+
+

Credits

+
+

Authors

+
    +
  • ICTSTUDIO
    • +
  • André Schenkels
    • +
  • ACSONE SA/NV
    • +
+
+
+

Contributors

+ +
+
+

Maintainers

+

This module is maintained by the OCA.

+Odoo Community Association +

OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use.

+

Current maintainer:

+

sbidoul

+

This module is part of the OCA/server-auth project on GitHub.

+

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

+
+
+
+ + From 94767df5057b02f3fe3f26ea35e038a672691337 Mon Sep 17 00:00:00 2001 From: Chafique Date: Fri, 10 Dec 2021 16:07:12 +0100 Subject: [PATCH 100/686] [MIG] auth_oidc: Migration to 14.0 --- auth_oidc/README.rst | 15 +++-- auth_oidc/__manifest__.py | 2 +- auth_oidc/i18n/auth_oidc.pot | 20 +++++- auth_oidc/readme/HISTORY.rst | 5 ++ auth_oidc/static/description/index.html | 71 +++++++++++---------- auth_oidc/tests/test_auth_oidc_auth_code.py | 3 +- 6 files changed, 76 insertions(+), 40 deletions(-) diff --git a/auth_oidc/README.rst b/auth_oidc/README.rst index 932ffea7b0..04ab9a1a2e 100644 --- a/auth_oidc/README.rst +++ b/auth_oidc/README.rst @@ -14,13 +14,13 @@ Authentication OpenID Connect :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html :alt: License: AGPL-3 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github - :target: https://github.com/OCA/server-auth/tree/13.0/auth_oidc + :target: https://github.com/OCA/server-auth/tree/14.0/auth_oidc :alt: OCA/server-auth .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png - :target: https://translation.odoo-community.org/projects/server-auth-13-0/server-auth-13-0-auth_oidc + :target: https://translation.odoo-community.org/projects/server-auth-14-0/server-auth-14-0-auth_oidc :alt: Translate me on Weblate .. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png - :target: https://runbot.odoo-community.org/runbot/251/13.0 + :target: https://runbot.odoo-community.org/runbot/251/14.0 :alt: Try me on Runbot |badge1| |badge2| |badge3| |badge4| |badge5| @@ -116,6 +116,11 @@ Known issues / Roadmap Changelog ========= +14.0.1.0.0 2021-12-10 +~~~~~~~~~~~~~~~~~~~~~ + +* Odoo 14 migration + 13.0.1.0.0 2020-04-10 ~~~~~~~~~~~~~~~~~~~~~ @@ -132,7 +137,7 @@ Bug Tracker Bugs are tracked on `GitHub Issues `_. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed -`feedback `_. +`feedback `_. Do not contact contributors directly about support or help with technical issues. @@ -173,6 +178,6 @@ Current `maintainer `__: |maintainer-sbidoul| -This module is part of the `OCA/server-auth `_ project on GitHub. +This module is part of the `OCA/server-auth `_ project on GitHub. You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_oidc/__manifest__.py b/auth_oidc/__manifest__.py index b30efbb0ca..ebf94f0bbb 100644 --- a/auth_oidc/__manifest__.py +++ b/auth_oidc/__manifest__.py @@ -4,7 +4,7 @@ { "name": "Authentication OpenID Connect", - "version": "13.0.1.0.1", + "version": "14.0.1.0.1", "license": "AGPL-3", "author": ( "ICTSTUDIO, André Schenkels, " diff --git a/auth_oidc/i18n/auth_oidc.pot b/auth_oidc/i18n/auth_oidc.pot index 4150f1a674..a687a98816 100644 --- a/auth_oidc/i18n/auth_oidc.pot +++ b/auth_oidc/i18n/auth_oidc.pot @@ -4,7 +4,7 @@ # msgid "" msgstr "" -"Project-Id-Version: Odoo Server 13.0\n" +"Project-Id-Version: Odoo Server 14.0\n" "Report-Msgid-Bugs-To: \n" "Last-Translator: \n" "Language-Team: \n" @@ -28,11 +28,29 @@ msgstr "" msgid "Code Verifier" msgstr "" +#. module: auth_oidc +#: model:ir.model.fields,field_description:auth_oidc.field_auth_oauth_provider__display_name +#: model:ir.model.fields,field_description:auth_oidc.field_res_users__display_name +msgid "Display Name" +msgstr "" + +#. module: auth_oidc +#: model:ir.model.fields,field_description:auth_oidc.field_auth_oauth_provider__id +#: model:ir.model.fields,field_description:auth_oidc.field_res_users__id +msgid "ID" +msgstr "" + #. module: auth_oidc #: model:ir.model.fields,field_description:auth_oidc.field_auth_oauth_provider__jwks_uri msgid "JWKS URL" msgstr "" +#. module: auth_oidc +#: model:ir.model.fields,field_description:auth_oidc.field_auth_oauth_provider____last_update +#: model:ir.model.fields,field_description:auth_oidc.field_res_users____last_update +msgid "Last Modified on" +msgstr "" + #. module: auth_oidc #: model:ir.model.fields.selection,name:auth_oidc.selection__auth_oauth_provider__flow__access_token msgid "OAuth2" diff --git a/auth_oidc/readme/HISTORY.rst b/auth_oidc/readme/HISTORY.rst index f831ce0e6d..33b336582e 100644 --- a/auth_oidc/readme/HISTORY.rst +++ b/auth_oidc/readme/HISTORY.rst @@ -1,3 +1,8 @@ +14.0.1.0.0 2021-12-10 +~~~~~~~~~~~~~~~~~~~~~ + +* Odoo 14 migration + 13.0.1.0.0 2020-04-10 ~~~~~~~~~~~~~~~~~~~~~ diff --git a/auth_oidc/static/description/index.html b/auth_oidc/static/description/index.html index a820198809..c744fd4f07 100644 --- a/auth_oidc/static/description/index.html +++ b/auth_oidc/static/description/index.html @@ -367,7 +367,7 @@

Authentication OpenID Connect

!! This file is generated by oca-gen-addon-readme !! !! changes will be overwritten. !! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! --> -

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

+

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

This module allows users to login through an OpenID Connect provider using the authorization code flow or implicit flow.

Note the implicit flow is not recommended because it exposes access tokens to @@ -375,37 +375,38 @@

Authentication OpenID Connect

Table of contents

-

Installation

+

Installation

This module depends on the python-jose library, not to be confused with jose which is also available on PyPI.

-

Configuration

+

Configuration

-

Setup for Microsoft Azure

+

Setup for Microsoft Azure

Example configuration with OpenID Connect implicit flow. This configuration is not recommended because it exposes the access token to the client, and in logs.

@@ -431,7 +432,7 @@

Setup for Microsoft Azure

-

Setup for Keycloak

+

Setup for Keycloak

Example configuration with OpenID Connect authorization code flow.

In Keycloak:

# configure a new Client @@ -458,43 +459,49 @@

Setup for Keycloak

-

Usage

+

Usage

On the login page, click on the authentication provider you configured.

-

Known issues / Roadmap

+

Known issues / Roadmap

  • When going to the login screen, check for a existing token and do a direct login without the clicking on the SSO link
  • When doing a logout an extra option to also logout at the SSO provider.
-

Changelog

+

Changelog

-

13.0.1.0.0 2020-04-10

+

14.0.1.0.0 2021-12-10

    -
  • Odoo 13 migration, add authorization code flow.
    • +
  • Odoo 14 migration
-

10.0.1.0.0 2018-10-05

+

13.0.1.0.0 2020-04-10

+
    +
  • Odoo 13 migration, add authorization code flow.
    • +
+
+
+

10.0.1.0.0 2018-10-05

  • Initial implementation
-

Bug Tracker

+

Bug Tracker

Bugs are tracked on GitHub Issues. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed -feedback.

+feedback.

Do not contact contributors directly about support or help with technical issues.

-

Credits

+

Credits

-

Authors

+

Authors

  • ICTSTUDIO
  • André Schenkels
    • @@ -502,14 +509,14 @@

    Authors

-

Maintainers

+

Maintainers

This module is maintained by the OCA.

Odoo Community Association

OCA, or the Odoo Community Association, is a nonprofit organization whose @@ -517,7 +524,7 @@

Maintainers

promote its widespread use.

Current maintainer:

sbidoul

-

This module is part of the OCA/server-auth project on GitHub.

+

This module is part of the OCA/server-auth project on GitHub.

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

diff --git a/auth_oidc/tests/test_auth_oidc_auth_code.py b/auth_oidc/tests/test_auth_oidc_auth_code.py index 623fa4b2cf..f608d02dde 100644 --- a/auth_oidc/tests/test_auth_oidc_auth_code.py +++ b/auth_oidc/tests/test_auth_oidc_auth_code.py @@ -7,9 +7,10 @@ import odoo from odoo.tests import common -from odoo.addons.auth_oidc.controllers.main import OpenIDLogin from odoo.addons.website.tools import MockRequest as _MockRequest +from ..controllers.main import OpenIDLogin + BASE_URL = "http://localhost:%s" % odoo.tools.config["http_port"] From b0c8ef9a7c771527453766a1bd220dd5e51f250f Mon Sep 17 00:00:00 2001 From: Florian Mounier Date: Mon, 14 Mar 2022 10:43:33 +0100 Subject: [PATCH 101/686] [FIX] auth_oidc: Fix werkzeug deprecated warning for url_encode, url decode --- auth_oidc/__manifest__.py | 2 +- auth_oidc/controllers/main.py | 6 +++--- auth_oidc/i18n/auth_oidc.pot | 8 ++++---- 3 files changed, 8 insertions(+), 8 deletions(-) diff --git a/auth_oidc/__manifest__.py b/auth_oidc/__manifest__.py index ebf94f0bbb..dcb25ec54f 100644 --- a/auth_oidc/__manifest__.py +++ b/auth_oidc/__manifest__.py @@ -4,7 +4,7 @@ { "name": "Authentication OpenID Connect", - "version": "14.0.1.0.1", + "version": "14.0.1.0.2", "license": "AGPL-3", "author": ( "ICTSTUDIO, André Schenkels, " diff --git a/auth_oidc/controllers/main.py b/auth_oidc/controllers/main.py index dbc7dac69c..0c0861e6da 100644 --- a/auth_oidc/controllers/main.py +++ b/auth_oidc/controllers/main.py @@ -7,7 +7,7 @@ import logging import secrets -import werkzeug.utils +from werkzeug.urls import url_decode, url_encode from odoo.addons.auth_oauth.controllers.main import OAuthLogin @@ -20,7 +20,7 @@ def list_providers(self): for provider in providers: flow = provider.get("flow") if flow in ("id_token", "id_token_code"): - params = werkzeug.url_decode(provider["auth_link"].split("?")[-1]) + params = url_decode(provider["auth_link"].split("?")[-1]) # nonce params["nonce"] = secrets.token_urlsafe() # response_type @@ -45,6 +45,6 @@ def list_providers(self): params["scope"] = provider["scope"] # auth link that the user will click provider["auth_link"] = "{}?{}".format( - provider["auth_endpoint"], werkzeug.url_encode(params) + provider["auth_endpoint"], url_encode(params) ) return providers diff --git a/auth_oidc/i18n/auth_oidc.pot b/auth_oidc/i18n/auth_oidc.pot index a687a98816..256f1ca81b 100644 --- a/auth_oidc/i18n/auth_oidc.pot +++ b/auth_oidc/i18n/auth_oidc.pot @@ -111,13 +111,13 @@ msgid "" msgstr "" #. module: auth_oidc -#: model:ir.model,name:auth_oidc.model_res_users -msgid "Users" +#: model:ir.model.fields,field_description:auth_oidc.field_auth_oauth_provider__validation_endpoint +msgid "UserInfo URL" msgstr "" #. module: auth_oidc -#: model:ir.model.fields,field_description:auth_oidc.field_auth_oauth_provider__validation_endpoint -msgid "Validation URL" +#: model:ir.model,name:auth_oidc.model_res_users +msgid "Users" msgstr "" #. module: auth_oidc From cb28f540f5cc76126d92deb1ecd7cf8ba51c19fe Mon Sep 17 00:00:00 2001 From: Karl Southern Date: Thu, 7 Jul 2022 12:07:09 +0100 Subject: [PATCH 102/686] [MIG] auth_oidc: Migration to 15.0 --- auth_oidc/README.rst | 10 +++++----- auth_oidc/__manifest__.py | 2 +- auth_oidc/i18n/auth_oidc.pot | 20 +------------------- auth_oidc/static/description/index.html | 6 +++--- 4 files changed, 10 insertions(+), 28 deletions(-) diff --git a/auth_oidc/README.rst b/auth_oidc/README.rst index 04ab9a1a2e..3c6265151c 100644 --- a/auth_oidc/README.rst +++ b/auth_oidc/README.rst @@ -14,13 +14,13 @@ Authentication OpenID Connect :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html :alt: License: AGPL-3 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github - :target: https://github.com/OCA/server-auth/tree/14.0/auth_oidc + :target: https://github.com/OCA/server-auth/tree/15.0/auth_oidc :alt: OCA/server-auth .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png - :target: https://translation.odoo-community.org/projects/server-auth-14-0/server-auth-14-0-auth_oidc + :target: https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_oidc :alt: Translate me on Weblate .. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png - :target: https://runbot.odoo-community.org/runbot/251/14.0 + :target: https://runbot.odoo-community.org/runbot/251/15.0 :alt: Try me on Runbot |badge1| |badge2| |badge3| |badge4| |badge5| @@ -137,7 +137,7 @@ Bug Tracker Bugs are tracked on `GitHub Issues `_. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed -`feedback `_. +`feedback `_. Do not contact contributors directly about support or help with technical issues. @@ -178,6 +178,6 @@ Current `maintainer `__: |maintainer-sbidoul| -This module is part of the `OCA/server-auth `_ project on GitHub. +This module is part of the `OCA/server-auth `_ project on GitHub. You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_oidc/__manifest__.py b/auth_oidc/__manifest__.py index dcb25ec54f..cdbf492ec0 100644 --- a/auth_oidc/__manifest__.py +++ b/auth_oidc/__manifest__.py @@ -4,7 +4,7 @@ { "name": "Authentication OpenID Connect", - "version": "14.0.1.0.2", + "version": "15.0.1.0.0", "license": "AGPL-3", "author": ( "ICTSTUDIO, André Schenkels, " diff --git a/auth_oidc/i18n/auth_oidc.pot b/auth_oidc/i18n/auth_oidc.pot index 256f1ca81b..a6146631d4 100644 --- a/auth_oidc/i18n/auth_oidc.pot +++ b/auth_oidc/i18n/auth_oidc.pot @@ -4,7 +4,7 @@ # msgid "" msgstr "" -"Project-Id-Version: Odoo Server 14.0\n" +"Project-Id-Version: Odoo Server 15.0\n" "Report-Msgid-Bugs-To: \n" "Last-Translator: \n" "Language-Team: \n" @@ -28,29 +28,11 @@ msgstr "" msgid "Code Verifier" msgstr "" -#. module: auth_oidc -#: model:ir.model.fields,field_description:auth_oidc.field_auth_oauth_provider__display_name -#: model:ir.model.fields,field_description:auth_oidc.field_res_users__display_name -msgid "Display Name" -msgstr "" - -#. module: auth_oidc -#: model:ir.model.fields,field_description:auth_oidc.field_auth_oauth_provider__id -#: model:ir.model.fields,field_description:auth_oidc.field_res_users__id -msgid "ID" -msgstr "" - #. module: auth_oidc #: model:ir.model.fields,field_description:auth_oidc.field_auth_oauth_provider__jwks_uri msgid "JWKS URL" msgstr "" -#. module: auth_oidc -#: model:ir.model.fields,field_description:auth_oidc.field_auth_oauth_provider____last_update -#: model:ir.model.fields,field_description:auth_oidc.field_res_users____last_update -msgid "Last Modified on" -msgstr "" - #. module: auth_oidc #: model:ir.model.fields.selection,name:auth_oidc.selection__auth_oauth_provider__flow__access_token msgid "OAuth2" diff --git a/auth_oidc/static/description/index.html b/auth_oidc/static/description/index.html index c744fd4f07..737081829c 100644 --- a/auth_oidc/static/description/index.html +++ b/auth_oidc/static/description/index.html @@ -367,7 +367,7 @@

Authentication OpenID Connect

!! This file is generated by oca-gen-addon-readme !! !! changes will be overwritten. !! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! --> -

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

+

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

This module allows users to login through an OpenID Connect provider using the authorization code flow or implicit flow.

Note the implicit flow is not recommended because it exposes access tokens to @@ -495,7 +495,7 @@

Bug Tracker

Bugs are tracked on GitHub Issues. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed -feedback.

+feedback.

Do not contact contributors directly about support or help with technical issues.

@@ -524,7 +524,7 @@

Maintainers

promote its widespread use.

Current maintainer:

sbidoul

-

This module is part of the OCA/server-auth project on GitHub.

+

This module is part of the OCA/server-auth project on GitHub.

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

From 748cd1e8b77ac4412eee040f4b3e9f31011a7843 Mon Sep 17 00:00:00 2001 From: djaen Date: Fri, 27 Jan 2023 17:54:08 +0100 Subject: [PATCH 103/686] [16.0][MIG] auth_oidc: Migration to 16.0 --- auth_oidc/README.rst | 24 ++++--- auth_oidc/__manifest__.py | 2 +- auth_oidc/i18n/auth_oidc.pot | 10 +-- auth_oidc/models/auth_oauth_provider.py | 2 +- auth_oidc/models/res_users.py | 1 + auth_oidc/readme/CONTRIBUTORS.rst | 1 + auth_oidc/static/description/index.html | 87 +++++++++++++------------ 7 files changed, 68 insertions(+), 59 deletions(-) diff --git a/auth_oidc/README.rst b/auth_oidc/README.rst index 3c6265151c..6cafbe6c07 100644 --- a/auth_oidc/README.rst +++ b/auth_oidc/README.rst @@ -2,10 +2,13 @@ Authentication OpenID Connect ============================= -.. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! +.. + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !! This file is generated by oca-gen-addon-readme !! !! changes will be overwritten. !! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! + !! source digest: sha256:0e77943e35a7d7c6fb3b6f9e5753d5870e6023f5614e17f7bc0c32522086c49a + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! .. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png :target: https://odoo-community.org/page/development-status @@ -14,16 +17,16 @@ Authentication OpenID Connect :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html :alt: License: AGPL-3 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github - :target: https://github.com/OCA/server-auth/tree/15.0/auth_oidc + :target: https://github.com/OCA/server-auth/tree/16.0/auth_oidc :alt: OCA/server-auth .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png - :target: https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_oidc + :target: https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_oidc :alt: Translate me on Weblate -.. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png - :target: https://runbot.odoo-community.org/runbot/251/15.0 - :alt: Try me on Runbot +.. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png + :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=16.0 + :alt: Try me on Runboat -|badge1| |badge2| |badge3| |badge4| |badge5| +|badge1| |badge2| |badge3| |badge4| |badge5| This module allows users to login through an OpenID Connect provider using the authorization code flow or implicit flow. @@ -136,8 +139,8 @@ Bug Tracker Bugs are tracked on `GitHub Issues `_. In case of trouble, please check there if your issue has already been reported. -If you spotted it first, help us smashing it by providing a detailed and welcomed -`feedback `_. +If you spotted it first, help us to smash it by providing a detailed and welcomed +`feedback `_. Do not contact contributors directly about support or help with technical issues. @@ -156,6 +159,7 @@ Contributors * Alexandre Fayolle * Stéphane Bidoul +* David Jaen Maintainers ~~~~~~~~~~~ @@ -178,6 +182,6 @@ Current `maintainer `__: |maintainer-sbidoul| -This module is part of the `OCA/server-auth `_ project on GitHub. +This module is part of the `OCA/server-auth `_ project on GitHub. You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_oidc/__manifest__.py b/auth_oidc/__manifest__.py index cdbf492ec0..845d7a27db 100644 --- a/auth_oidc/__manifest__.py +++ b/auth_oidc/__manifest__.py @@ -4,7 +4,7 @@ { "name": "Authentication OpenID Connect", - "version": "15.0.1.0.0", + "version": "16.0.1.0.0", "license": "AGPL-3", "author": ( "ICTSTUDIO, André Schenkels, " diff --git a/auth_oidc/i18n/auth_oidc.pot b/auth_oidc/i18n/auth_oidc.pot index a6146631d4..0dc7d5e576 100644 --- a/auth_oidc/i18n/auth_oidc.pot +++ b/auth_oidc/i18n/auth_oidc.pot @@ -4,7 +4,7 @@ # msgid "" msgstr "" -"Project-Id-Version: Odoo Server 15.0\n" +"Project-Id-Version: Odoo Server 16.0\n" "Report-Msgid-Bugs-To: \n" "Last-Translator: \n" "Language-Team: \n" @@ -93,13 +93,13 @@ msgid "" msgstr "" #. module: auth_oidc -#: model:ir.model.fields,field_description:auth_oidc.field_auth_oauth_provider__validation_endpoint -msgid "UserInfo URL" +#: model:ir.model,name:auth_oidc.model_res_users +msgid "User" msgstr "" #. module: auth_oidc -#: model:ir.model,name:auth_oidc.model_res_users -msgid "Users" +#: model:ir.model.fields,field_description:auth_oidc.field_auth_oauth_provider__validation_endpoint +msgid "UserInfo URL" msgstr "" #. module: auth_oidc diff --git a/auth_oidc/models/auth_oauth_provider.py b/auth_oidc/models/auth_oauth_provider.py index 6a40e87ed6..b969fa3e8d 100644 --- a/auth_oidc/models/auth_oauth_provider.py +++ b/auth_oidc/models/auth_oauth_provider.py @@ -48,7 +48,7 @@ class AuthOauthProvider(models.Model): @tools.ormcache("self.jwks_uri", "kid") def _get_key(self, kid): - r = requests.get(self.jwks_uri) + r = requests.get(self.jwks_uri, timeout=10) r.raise_for_status() response = r.json() for key in response["keys"]: diff --git a/auth_oidc/models/res_users.py b/auth_oidc/models/res_users.py index c487504e2a..a1be73ec88 100644 --- a/auth_oidc/models/res_users.py +++ b/auth_oidc/models/res_users.py @@ -37,6 +37,7 @@ def _auth_oauth_get_tokens_auth_code_flow(self, oauth_provider, params): redirect_uri=request.httprequest.url_root + "auth_oauth/signin", ), auth=auth, + timeout=10, ) response.raise_for_status() response_json = response.json() diff --git a/auth_oidc/readme/CONTRIBUTORS.rst b/auth_oidc/readme/CONTRIBUTORS.rst index d721552d86..303011adb2 100644 --- a/auth_oidc/readme/CONTRIBUTORS.rst +++ b/auth_oidc/readme/CONTRIBUTORS.rst @@ -1,2 +1,3 @@ * Alexandre Fayolle * Stéphane Bidoul +* David Jaen diff --git a/auth_oidc/static/description/index.html b/auth_oidc/static/description/index.html index 737081829c..384f6ddcff 100644 --- a/auth_oidc/static/description/index.html +++ b/auth_oidc/static/description/index.html @@ -1,20 +1,20 @@ - + - + Authentication OpenID Connect + + +
+

Auth API key group

+ + +

Alpha License: LGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

+

Allow grouping API keys together.

+

Grouping per se does nothing. This feature is supposed to be used by other modules +to limit access to services or records based on groups of keys.

+
+

Important

+

This is an alpha version, the data model and design can change at any time without warning. +Only for development or testing purpose, do not use in production. +More details on development status

+
+

Table of contents

+ +
+

Bug Tracker

+

Bugs are tracked on GitHub Issues. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us smashing it by providing a detailed and welcomed +feedback.

+

Do not contact contributors directly about support or help with technical issues.

+
+
+

Credits

+
+

Authors

+
    +
  • Camptcamp
    • +
+
+ +
+

Maintainers

+

This module is maintained by the OCA.

+Odoo Community Association +

OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use.

+

Current maintainer:

+

simahawk

+

This module is part of the OCA/server-auth project on GitHub.

+

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

+
+
+
+ + diff --git a/auth_api_key_group/tests/__init__.py b/auth_api_key_group/tests/__init__.py new file mode 100644 index 0000000000..f831d70c99 --- /dev/null +++ b/auth_api_key_group/tests/__init__.py @@ -0,0 +1 @@ +from . import test_auth_api_key_group diff --git a/auth_api_key_group/tests/test_auth_api_key_group.py b/auth_api_key_group/tests/test_auth_api_key_group.py new file mode 100644 index 0000000000..bd39230f65 --- /dev/null +++ b/auth_api_key_group/tests/test_auth_api_key_group.py @@ -0,0 +1,46 @@ +# Copyright 2021 Camptcamp SA +# @author: Simone Orsi +# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl). + + +from odoo.tests.common import SavepointCase + + +class TestAuthApiKey(SavepointCase): + @classmethod + def setUpClass(cls, *args, **kwargs): + super().setUpClass(*args, **kwargs) + cls.AuthApiKey = cls.env["auth.api.key"] + cls.AuthApiKeyGroup = cls.env["auth.api.key.group"] + cls.demo_user = cls.env.ref("base.user_demo") + cls.api_key1 = cls.AuthApiKey.create( + {"name": "One", "user_id": cls.demo_user.id, "key": "one"} + ) + cls.api_key2 = cls.AuthApiKey.create( + {"name": "Two", "user_id": cls.demo_user.id, "key": "two"} + ) + cls.api_key3 = cls.AuthApiKey.create( + {"name": "Three", "user_id": cls.demo_user.id, "key": "three"} + ) + cls.api_key_group1 = cls.AuthApiKeyGroup.create( + { + "name": "G One", + "code": "g-one", + "auth_api_key_ids": [(6, 0, (cls.api_key1 + cls.api_key2).ids)], + } + ) + cls.api_key_group2 = cls.AuthApiKeyGroup.create( + { + "name": "G Two", + "code": "g-two", + "auth_api_key_ids": [(6, 0, cls.api_key3.ids)], + } + ) + + def test_relations(self): + self.assertIn(self.api_key_group1, self.api_key1.auth_api_key_group_ids) + self.assertIn(self.api_key_group1, self.api_key2.auth_api_key_group_ids) + self.assertNotIn(self.api_key_group1, self.api_key3.auth_api_key_group_ids) + self.assertIn(self.api_key_group2, self.api_key3.auth_api_key_group_ids) + self.assertNotIn(self.api_key_group2, self.api_key1.auth_api_key_group_ids) + self.assertNotIn(self.api_key_group2, self.api_key1.auth_api_key_group_ids) diff --git a/auth_api_key_group/views/auth_api_key_group_view.xml b/auth_api_key_group/views/auth_api_key_group_view.xml new file mode 100644 index 0000000000..267284d851 --- /dev/null +++ b/auth_api_key_group/views/auth_api_key_group_view.xml @@ -0,0 +1,44 @@ + + + + auth.api.key.group.form (in auth_api_key_group) + auth.api.key.group + +
+ + +
+ + + + auth.api.key.group.tree (in auth_api_key_group) + auth.api.key.group + + + + + + + + + Auth Api Key Groups + auth.api.key.group + tree,form + [] + {} + + + Auth Api Key Groups + + + + + diff --git a/auth_api_key_group/views/auth_api_key_view.xml b/auth_api_key_group/views/auth_api_key_view.xml new file mode 100644 index 0000000000..a7c7192f29 --- /dev/null +++ b/auth_api_key_group/views/auth_api_key_view.xml @@ -0,0 +1,12 @@ + + + + auth.api.key + + + + + + + + From 2437e0f9bda3bfb24e15c9a782e987d5d793f96c Mon Sep 17 00:00:00 2001 From: Maksym Yankin Date: Tue, 30 Nov 2021 18:48:48 +0200 Subject: [PATCH 133/686] [MIG] auth_api_key_group: Migration to 15.0 --- auth_api_key_group/README.rst | 10 +++++----- auth_api_key_group/__manifest__.py | 2 +- auth_api_key_group/i18n/auth_api_key_group.pot | 5 +---- auth_api_key_group/static/description/index.html | 6 +++--- auth_api_key_group/tests/test_auth_api_key_group.py | 4 ++-- 5 files changed, 12 insertions(+), 15 deletions(-) diff --git a/auth_api_key_group/README.rst b/auth_api_key_group/README.rst index a2d8c22c6a..2d0181b8ab 100644 --- a/auth_api_key_group/README.rst +++ b/auth_api_key_group/README.rst @@ -14,13 +14,13 @@ Auth API key group :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html :alt: License: LGPL-3 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github - :target: https://github.com/OCA/server-auth/tree/14.0/auth_api_key_group + :target: https://github.com/OCA/server-auth/tree/15.0/auth_api_key_group :alt: OCA/server-auth .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png - :target: https://translation.odoo-community.org/projects/server-auth-14-0/server-auth-14-0-auth_api_key_group + :target: https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_api_key_group :alt: Translate me on Weblate .. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png - :target: https://runbot.odoo-community.org/runbot/251/14.0 + :target: https://runbot.odoo-community.org/runbot/251/15.0 :alt: Try me on Runbot |badge1| |badge2| |badge3| |badge4| |badge5| @@ -46,7 +46,7 @@ Bug Tracker Bugs are tracked on `GitHub Issues `_. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed -`feedback `_. +`feedback `_. Do not contact contributors directly about support or help with technical issues. @@ -84,6 +84,6 @@ Current `maintainer `__: |maintainer-simahawk| -This module is part of the `OCA/server-auth `_ project on GitHub. +This module is part of the `OCA/server-auth `_ project on GitHub. You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_api_key_group/__manifest__.py b/auth_api_key_group/__manifest__.py index 7def149530..97df614ef3 100644 --- a/auth_api_key_group/__manifest__.py +++ b/auth_api_key_group/__manifest__.py @@ -10,7 +10,7 @@ Grouping per se does nothing. This feature is supposed to be used by other modules to limit access to services or records based on groups of keys. """, - "version": "14.0.1.0.1", + "version": "15.0.1.0.0", "development_status": "Alpha", "license": "LGPL-3", "website": "https://github.com/OCA/server-auth", diff --git a/auth_api_key_group/i18n/auth_api_key_group.pot b/auth_api_key_group/i18n/auth_api_key_group.pot index 60028aefa3..05a8812a79 100644 --- a/auth_api_key_group/i18n/auth_api_key_group.pot +++ b/auth_api_key_group/i18n/auth_api_key_group.pot @@ -4,7 +4,7 @@ # msgid "" msgstr "" -"Project-Id-Version: Odoo Server 14.0\n" +"Project-Id-Version: Odoo Server 15.0\n" "Report-Msgid-Bugs-To: \n" "Last-Translator: \n" "Language-Team: \n" @@ -55,19 +55,16 @@ msgid "Created on" msgstr "" #. module: auth_api_key_group -#: model:ir.model.fields,field_description:auth_api_key_group.field_auth_api_key__display_name #: model:ir.model.fields,field_description:auth_api_key_group.field_auth_api_key_group__display_name msgid "Display Name" msgstr "" #. module: auth_api_key_group -#: model:ir.model.fields,field_description:auth_api_key_group.field_auth_api_key__id #: model:ir.model.fields,field_description:auth_api_key_group.field_auth_api_key_group__id msgid "ID" msgstr "" #. module: auth_api_key_group -#: model:ir.model.fields,field_description:auth_api_key_group.field_auth_api_key____last_update #: model:ir.model.fields,field_description:auth_api_key_group.field_auth_api_key_group____last_update msgid "Last Modified on" msgstr "" diff --git a/auth_api_key_group/static/description/index.html b/auth_api_key_group/static/description/index.html index 17fb24a6ee..937b94ec67 100644 --- a/auth_api_key_group/static/description/index.html +++ b/auth_api_key_group/static/description/index.html @@ -367,7 +367,7 @@

Auth API key group

!! This file is generated by oca-gen-addon-readme !! !! changes will be overwritten. !! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! --> -

Alpha License: LGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

+

Alpha License: LGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

Allow grouping API keys together.

Grouping per se does nothing. This feature is supposed to be used by other modules to limit access to services or records based on groups of keys.

@@ -394,7 +394,7 @@

Bug Tracker

Bugs are tracked on GitHub Issues. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed -feedback.

+feedback.

Do not contact contributors directly about support or help with technical issues.

@@ -420,7 +420,7 @@

Maintainers

promote its widespread use.

Current maintainer:

simahawk

-

This module is part of the OCA/server-auth project on GitHub.

+

This module is part of the OCA/server-auth project on GitHub.

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

diff --git a/auth_api_key_group/tests/test_auth_api_key_group.py b/auth_api_key_group/tests/test_auth_api_key_group.py index bd39230f65..75581bbf16 100644 --- a/auth_api_key_group/tests/test_auth_api_key_group.py +++ b/auth_api_key_group/tests/test_auth_api_key_group.py @@ -3,10 +3,10 @@ # License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl). -from odoo.tests.common import SavepointCase +from odoo.tests.common import TransactionCase -class TestAuthApiKey(SavepointCase): +class TestAuthApiKey(TransactionCase): @classmethod def setUpClass(cls, *args, **kwargs): super().setUpClass(*args, **kwargs) From df6acf89ecb7155bade4a3cd23b1668711679014 Mon Sep 17 00:00:00 2001 From: sbejaoui Date: Tue, 1 Aug 2023 21:38:34 +0200 Subject: [PATCH 134/686] [16.0][MIG] - auth_api_key_group --- auth_api_key_group/__manifest__.py | 3 +-- auth_api_key_group/i18n/auth_api_key_group.pot | 2 +- 2 files changed, 2 insertions(+), 3 deletions(-) diff --git a/auth_api_key_group/__manifest__.py b/auth_api_key_group/__manifest__.py index 97df614ef3..8ac634aad9 100644 --- a/auth_api_key_group/__manifest__.py +++ b/auth_api_key_group/__manifest__.py @@ -10,8 +10,7 @@ Grouping per se does nothing. This feature is supposed to be used by other modules to limit access to services or records based on groups of keys. """, - "version": "15.0.1.0.0", - "development_status": "Alpha", + "version": "16.0.1.0.0", "license": "LGPL-3", "website": "https://github.com/OCA/server-auth", "author": "Camptcamp,Odoo Community Association (OCA)", diff --git a/auth_api_key_group/i18n/auth_api_key_group.pot b/auth_api_key_group/i18n/auth_api_key_group.pot index 05a8812a79..2aff7a6ef4 100644 --- a/auth_api_key_group/i18n/auth_api_key_group.pot +++ b/auth_api_key_group/i18n/auth_api_key_group.pot @@ -4,7 +4,7 @@ # msgid "" msgstr "" -"Project-Id-Version: Odoo Server 15.0\n" +"Project-Id-Version: Odoo Server 16.0\n" "Report-Msgid-Bugs-To: \n" "Last-Translator: \n" "Language-Team: \n" From 376e092fab2a31aca52c4d4866b9ab210d7f8b59 Mon Sep 17 00:00:00 2001 From: OCA-git-bot Date: Fri, 22 Mar 2024 19:56:33 +0000 Subject: [PATCH 135/686] [BOT] post-merge updates --- auth_api_key_group/README.rst | 32 +++++++------ .../static/description/index.html | 45 +++++++++---------- 2 files changed, 35 insertions(+), 42 deletions(-) diff --git a/auth_api_key_group/README.rst b/auth_api_key_group/README.rst index 2d0181b8ab..ed4520bd51 100644 --- a/auth_api_key_group/README.rst +++ b/auth_api_key_group/README.rst @@ -2,39 +2,37 @@ Auth API key group ================== -.. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! +.. + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !! This file is generated by oca-gen-addon-readme !! !! changes will be overwritten. !! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! + !! source digest: sha256:e231a34a3fe2c3a2a8c78305131ba9e90af3725f3cf0b0878d313439f511f6fe + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -.. |badge1| image:: https://img.shields.io/badge/maturity-Alpha-red.png +.. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png :target: https://odoo-community.org/page/development-status - :alt: Alpha + :alt: Beta .. |badge2| image:: https://img.shields.io/badge/licence-LGPL--3-blue.png :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html :alt: License: LGPL-3 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github - :target: https://github.com/OCA/server-auth/tree/15.0/auth_api_key_group + :target: https://github.com/OCA/server-auth/tree/16.0/auth_api_key_group :alt: OCA/server-auth .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png - :target: https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_api_key_group + :target: https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_api_key_group :alt: Translate me on Weblate -.. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png - :target: https://runbot.odoo-community.org/runbot/251/15.0 - :alt: Try me on Runbot +.. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png + :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=16.0 + :alt: Try me on Runboat -|badge1| |badge2| |badge3| |badge4| |badge5| +|badge1| |badge2| |badge3| |badge4| |badge5| Allow grouping API keys together. Grouping per se does nothing. This feature is supposed to be used by other modules to limit access to services or records based on groups of keys. -.. IMPORTANT:: - This is an alpha version, the data model and design can change at any time without warning. - Only for development or testing purpose, do not use in production. - `More details on development status `_ - **Table of contents** .. contents:: @@ -45,8 +43,8 @@ Bug Tracker Bugs are tracked on `GitHub Issues `_. In case of trouble, please check there if your issue has already been reported. -If you spotted it first, help us smashing it by providing a detailed and welcomed -`feedback `_. +If you spotted it first, help us to smash it by providing a detailed and welcomed +`feedback `_. Do not contact contributors directly about support or help with technical issues. @@ -84,6 +82,6 @@ Current `maintainer `__: |maintainer-simahawk| -This module is part of the `OCA/server-auth `_ project on GitHub. +This module is part of the `OCA/server-auth `_ project on GitHub. You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_api_key_group/static/description/index.html b/auth_api_key_group/static/description/index.html index 937b94ec67..2a52d4df14 100644 --- a/auth_api_key_group/static/description/index.html +++ b/auth_api_key_group/static/description/index.html @@ -1,20 +1,19 @@ - - + Auth API key group + + +
+

Auth API key server environment

+ + +

Alpha License: LGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

+

Configure api keys via server env.

+

This can be very useful to avoid mixing your keys between your various +environments when restoring databases. All you have to do is to add a new +section to your configuration file according to the following convention:

+
+[api_key_<Record Name>]
+key=my_api_key
+
+
+

Important

+

This is an alpha version, the data model and design can change at any time without warning. +Only for development or testing purpose, do not use in production. +More details on development status

+
+

Table of contents

+ +
+

Bug Tracker

+

Bugs are tracked on GitHub Issues. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us smashing it by providing a detailed and welcomed +feedback.

+

Do not contact contributors directly about support or help with technical issues.

+
+
+

Credits

+
+

Authors

+
    +
  • Camptocamp
    • +
+
+ +
+

Maintainers

+

This module is maintained by the OCA.

+Odoo Community Association +

OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use.

+

This module is part of the OCA/server-auth project on GitHub.

+

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

+
+
+
+ + diff --git a/auth_api_key_server_env/tests/__init__.py b/auth_api_key_server_env/tests/__init__.py new file mode 100644 index 0000000000..56e3e32a3a --- /dev/null +++ b/auth_api_key_server_env/tests/__init__.py @@ -0,0 +1 @@ +from . import test_auth_api_key diff --git a/auth_api_key_server_env/tests/test_auth_api_key.py b/auth_api_key_server_env/tests/test_auth_api_key.py new file mode 100644 index 0000000000..e533c0a993 --- /dev/null +++ b/auth_api_key_server_env/tests/test_auth_api_key.py @@ -0,0 +1,32 @@ +# Copyright 2018 ACSONE SA/NV +# Copyright 2021 Camptocamp SA +# @author: Simone Orsi +# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl). +from odoo.exceptions import ValidationError +from odoo.tests.common import SavepointCase + +from odoo.addons.server_environment import serv_config + + +class TestAuthApiKey(SavepointCase): + @classmethod + def setUpClass(cls, *args, **kwargs): + super().setUpClass(*args, **kwargs) + cls.AuthApiKey = cls.env["auth.api.key"] + cls.demo_user = cls.env.ref("base.user_demo") + cls.api_key_from_env = cls.AuthApiKey.create( + {"name": "from_env", "key": "dummy", "user_id": cls.demo_user.id} + ) + cls.api_key_from_env.refresh() + serv_config.add_section("api_key_from_env") + serv_config.set("api_key_from_env", "key", "api_key_from_env") + + def test_lookup_key_from_env(self): + self.assertEqual( + self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key_from_env"), + self.demo_user.id, + ) + with self.assertRaises(ValidationError): + # dummy key must be replace with the one from env and + # therefore should be unusable + self.env["auth.api.key"]._retrieve_uid_from_api_key("dummy") From 74595f221cee6c292566446260eccd988b347b3a Mon Sep 17 00:00:00 2001 From: OCA-git-bot Date: Mon, 27 Sep 2021 08:24:46 +0000 Subject: [PATCH 148/686] [ADD] icon.png --- .../static/description/icon.png | Bin 0 -> 9455 bytes 1 file changed, 0 insertions(+), 0 deletions(-) create mode 100644 auth_api_key_server_env/static/description/icon.png diff --git a/auth_api_key_server_env/static/description/icon.png b/auth_api_key_server_env/static/description/icon.png new file mode 100644 index 0000000000000000000000000000000000000000..3a0328b516c4980e8e44cdb63fd945757ddd132d GIT binary patch literal 9455 zcmW++2RxMjAAjx~&dlBk9S+%}OXg)AGE&Cb*&}d0jUxM@u(PQx^-s)697TX`ehR4?GS^qbkof1cslKgkU)h65qZ9Oc=ml_0temigYLJfnz{IDzUf>bGs4N!v3=Z3jMq&A#7%rM5eQ#dc?k~! zVpnB`o+K7|Al`Q_U;eD$B zfJtP*jH`siUq~{KE)`jP2|#TUEFGRryE2`i0**z#*^6~AI|YzIWy$Cu#CSLW3q=GA z6`?GZymC;dCPk~rBS%eCb`5OLr;RUZ;D`}um=H)BfVIq%7VhiMr)_#G0N#zrNH|__ zc+blN2UAB0=617@>_u;MPHN;P;N#YoE=)R#i$k_`UAA>WWCcEVMh~L_ zj--gtp&|K1#58Yz*AHCTMziU1Jzt_jG0I@qAOHsk$2}yTmVkBp_eHuY$A9)>P6o~I z%aQ?!(GqeQ-Y+b0I(m9pwgi(IIZZzsbMv+9w{PFtd_<_(LA~0H(xz{=FhLB@(1&qHA5EJw1>>=%q2f&^X>IQ{!GJ4e9U z&KlB)z(84HmNgm2hg2C0>WM{E(DdPr+EeU_N@57;PC2&DmGFW_9kP&%?X4}+xWi)( z;)z%wI5>D4a*5XwD)P--sPkoY(a~WBw;E~AW`Yue4kFa^LM3X`8x|}ZUeMnqr}>kH zG%WWW>3ml$Yez?i%)2pbKPI7?5o?hydokgQyZsNEr{a|mLdt;X2TX(#B1j35xPnPW z*bMSSOauW>o;*=kO8ojw91VX!qoOQb)zHJ!odWB}d+*K?#sY_jqPdg{Sm2HdYzdEx zOGVPhVRTGPtv0o}RfVP;Nd(|CB)I;*t&QO8h zFfekr30S!-LHmV_Su-W+rEwYXJ^;6&3|L$mMC8*bQptyOo9;>Qb9Q9`ySe3%V$A*9 zeKEe+b0{#KWGp$F+tga)0RtI)nhMa-K@JS}2krK~n8vJ=Ngm?R!9G<~RyuU0d?nz# z-5EK$o(!F?hmX*2Yt6+coY`6jGbb7tF#6nHA zuKk=GGJ;ZwON1iAfG$E#Y7MnZVmrY|j0eVI(DN_MNFJmyZ|;w4tf@=CCDZ#5N_0K= z$;R~bbk?}TpfDjfB&aiQ$VA}s?P}xPERJG{kxk5~R`iRS(SK5d+Xs9swCozZISbnS zk!)I0>t=A<-^z(cmSFz3=jZ23u13X><0b)P)^1T_))Kr`e!-pb#q&J*Q`p+B6la%C zuVl&0duN<;uOsB3%T9Fp8t{ED108<+W(nOZd?gDnfNBC3>M8WE61$So|P zVvqH0SNtDTcsUdzaMDpT=Ty0pDHHNL@Z0w$Y`XO z2M-_r1S+GaH%pz#Uy0*w$Vdl=X=rQXEzO}d6J^R6zjM1u&c9vYLvLp?W7w(?np9x1 zE_0JSAJCPB%i7p*Wvg)pn5T`8k3-uR?*NT|J`eS#_#54p>!p(mLDvmc-3o0mX*mp_ zN*AeS<>#^-{S%W<*mz^!X$w_2dHWpcJ6^j64qFBft-o}o_Vx80o0>}Du;>kLts;$8 zC`7q$QI(dKYG`Wa8#wl@V4jVWBRGQ@1dr-hstpQL)Tl+aqVpGpbSfN>5i&QMXfiZ> zaA?T1VGe?rpQ@;+pkrVdd{klI&jVS@I5_iz!=UMpTsa~mBga?1r}aRBm1WS;TT*s0f0lY=JBl66Upy)-k4J}lh=P^8(SXk~0xW=T9v*B|gzIhN z>qsO7dFd~mgxAy4V?&)=5ieYq?zi?ZEoj)&2o)RLy=@hbCRcfT5jigwtQGE{L*8<@Yd{zg;CsL5mvzfDY}P-wos_6PfprFVaeqNE%h zKZhLtcQld;ZD+>=nqN~>GvROfueSzJD&BE*}XfU|H&(FssBqY=hPCt`d zH?@s2>I(|;fcW&YM6#V#!kUIP8$Nkdh0A(bEVj``-AAyYgwY~jB zT|I7Bf@%;7aL7Wf4dZ%VqF$eiaC38OV6oy3Z#TER2G+fOCd9Iaoy6aLYbPTN{XRPz z;U!V|vBf%H!}52L2gH_+j;`bTcQRXB+y9onc^wLm5wi3-Be}U>k_u>2Eg$=k!(l@I zcCg+flakT2Nej3i0yn+g+}%NYb?ta;R?(g5SnwsQ49U8Wng8d|{B+lyRcEDvR3+`O{zfmrmvFrL6acVP%yG98X zo&+VBg@px@i)%o?dG(`T;n*$S5*rnyiR#=wW}}GsAcfyQpE|>a{=$Hjg=-*_K;UtD z#z-)AXwSRY?OPefw^iI+ z)AXz#PfEjlwTes|_{sB?4(O@fg0AJ^g8gP}ex9Ucf*@_^J(s_5jJV}c)s$`Myn|Kd z$6>}#q^n{4vN@+Os$m7KV+`}c%4)4pv@06af4-x5#wj!KKb%caK{A&Y#Rfs z-po?Dcb1({W=6FKIUirH&(yg=*6aLCekcKwyfK^JN5{wcA3nhO(o}SK#!CINhI`-I z1)6&n7O&ZmyFMuNwvEic#IiOAwNkR=u5it{B9n2sAJV5pNhar=j5`*N!Na;c7g!l$ z3aYBqUkqqTJ=Re-;)s!EOeij=7SQZ3Hq}ZRds%IM*PtM$wV z@;rlc*NRK7i3y5BETSKuumEN`Xu_8GP1Ri=OKQ$@I^ko8>H6)4rjiG5{VBM>B|%`&&s^)jS|-_95&yc=GqjNo{zFkw%%HHhS~e=s zD#sfS+-?*t|J!+ozP6KvtOl!R)@@-z24}`9{QaVLD^9VCSR2b`b!KC#o;Ki<+wXB6 zx3&O0LOWcg4&rv4QG0)4yb}7BFSEg~=IR5#ZRj8kg}dS7_V&^%#Do==#`u zpy6{ox?jWuR(;pg+f@mT>#HGWHAJRRDDDv~@(IDw&R>9643kK#HN`!1vBJHnC+RM&yIh8{gG2q zA%e*U3|N0XSRa~oX-3EAneep)@{h2vvd3Xvy$7og(sayr@95+e6~Xvi1tUqnIxoIH zVWo*OwYElb#uyW{Imam6f2rGbjR!Y3`#gPqkv57dB6K^wRGxc9B(t|aYDGS=m$&S!NmCtrMMaUg(c zc2qC=2Z`EEFMW-me5B)24AqF*bV5Dr-M5ig(l-WPS%CgaPzs6p_gnCIvTJ=Y<6!gT zVt@AfYCzjjsMEGi=rDQHo0yc;HqoRNnNFeWZgcm?f;cp(6CNylj36DoL(?TS7eU#+ z7&mfr#y))+CJOXQKUMZ7QIdS9@#-}7y2K1{8)cCt0~-X0O!O?Qx#E4Og+;A2SjalQ zs7r?qn0H044=sDN$SRG$arw~n=+T_DNdSrarmu)V6@|?1-ZB#hRn`uilTGPJ@fqEy zGt(f0B+^JDP&f=r{#Y_wi#AVDf-y!RIXU^0jXsFpf>=Ji*TeqSY!H~AMbJdCGLhC) zn7Rx+sXw6uYj;WRYrLd^5IZq@6JI1C^YkgnedZEYy<&4(z%Q$5yv#Boo{AH8n$a zhb4Y3PWdr269&?V%uI$xMcUrMzl=;w<_nm*qr=c3Rl@i5wWB;e-`t7D&c-mcQl7x! zZWB`UGcw=Y2=}~wzrfLx=uet<;m3~=8I~ZRuzvMQUQdr+yTV|ATf1Uuomr__nDf=X zZ3WYJtHp_ri(}SQAPjv+Y+0=fH4krOP@S&=zZ-t1jW1o@}z;xk8 z(Nz1co&El^HK^NrhVHa-_;&88vTU>_J33=%{if;BEY*J#1n59=07jrGQ#IP>@u#3A z;!q+E1Rj3ZJ+!4bq9F8PXJ@yMgZL;>&gYA0%_Kbi8?S=XGM~dnQZQ!yBSgcZhY96H zrWnU;k)qy`rX&&xlDyA%(a1Hhi5CWkmg(`Gb%m(HKi-7Z!LKGRP_B8@`7&hdDy5n= z`OIxqxiVfX@OX1p(mQu>0Ai*v_cTMiw4qRt3~NBvr9oBy0)r>w3p~V0SCm=An6@3n)>@z!|o-$HvDK z|3D2ZMJkLE5loMKl6R^ez@Zz%S$&mbeoqH5`Bb){Ei21q&VP)hWS2tjShfFtGE+$z zzCR$P#uktu+#!w)cX!lWN1XU%K-r=s{|j?)Akf@q#3b#{6cZCuJ~gCxuMXRmI$nGtnH+-h z+GEi!*X=AP<|fG`1>MBdTb?28JYc=fGvAi2I<$B(rs$;eoJCyR6_bc~p!XR@O-+sD z=eH`-ye})I5ic1eL~TDmtfJ|8`0VJ*Yr=hNCd)G1p2MMz4C3^Mj?7;!w|Ly%JqmuW zlIEW^Ft%z?*|fpXda>Jr^1noFZEwFgVV%|*XhH@acv8rdGxeEX{M$(vG{Zw+x(ei@ zmfXb22}8-?Fi`vo-YVrTH*C?a8%M=Hv9MqVH7H^J$KsD?>!SFZ;ZsvnHr_gn=7acz z#W?0eCdVhVMWN12VV^$>WlQ?f;P^{(&pYTops|btm6aj>_Uz+hqpGwB)vWp0Cf5y< zft8-je~nn?W11plq}N)4A{l8I7$!ks_x$PXW-2XaRFswX_BnF{R#6YIwMhAgd5F9X zGmwdadS6(a^fjHtXg8=l?Rc0Sm%hk6E9!5cLVloEy4eh(=FwgP`)~I^5~pBEWo+F6 zSf2ncyMurJN91#cJTy_u8Y}@%!bq1RkGC~-bV@SXRd4F{R-*V`bS+6;W5vZ(&+I<9$;-V|eNfLa5n-6% z2(}&uGRF;p92eS*sE*oR$@pexaqr*meB)VhmIg@h{uzkk$9~qh#cHhw#>O%)b@+(| z^IQgqzuj~Sk(J;swEM-3TrJAPCq9k^^^`q{IItKBRXYe}e0Tdr=Huf7da3$l4PdpwWDop%^}n;dD#K4s#DYA8SHZ z&1!riV4W4R7R#C))JH1~axJ)RYnM$$lIR%6fIVA@zV{XVyx}C+a-Dt8Y9M)^KU0+H zR4IUb2CJ{Hg>CuaXtD50jB(_Tcx=Z$^WYu2u5kubqmwp%drJ6 z?Fo40g!Qd<-l=TQxqHEOuPX0;^z7iX?Ke^a%XT<13TA^5`4Xcw6D@Ur&VT&CUe0d} z1GjOVF1^L@>O)l@?bD~$wzgf(nxX1OGD8fEV?TdJcZc2KoUe|oP1#=$$7ee|xbY)A zDZq+cuTpc(fFdj^=!;{k03C69lMQ(|>uhRfRu%+!k&YOi-3|1QKB z z?n?eq1XP>p-IM$Z^C;2L3itnbJZAip*Zo0aw2bs8@(s^~*8T9go!%dHcAz2lM;`yp zD=7&xjFV$S&5uDaiScyD?B-i1ze`+CoRtz`Wn+Zl&#s4&}MO{@N!ufrzjG$B79)Y2d3tBk&)TxUTw@QS0TEL_?njX|@vq?Uz(nBFK5Pq7*xj#u*R&i|?7+6# z+|r_n#SW&LXhtheZdah{ZVoqwyT{D>MC3nkFF#N)xLi{p7J1jXlmVeb;cP5?e(=f# zuT7fvjSbjS781v?7{)-X3*?>tq?)Yd)~|1{BDS(pqC zC}~H#WXlkUW*H5CDOo<)#x7%RY)A;ShGhI5s*#cRDA8YgqG(HeKDx+#(ZQ?386dv! zlXCO)w91~Vw4AmOcATuV653fa9R$fyK8ul%rG z-wfS zihugoZyr38Im?Zuh6@RcF~t1anQu7>#lPpb#}4cOA!EM11`%f*07RqOVkmX{p~KJ9 z^zP;K#|)$`^Rb{rnHGH{~>1(fawV0*Z#)}M`m8-?ZJV<+e}s9wE# z)l&az?w^5{)`S(%MRzxdNqrs1n*-=jS^_jqE*5XDrA0+VE`5^*p3CuM<&dZEeCjoz zR;uu_H9ZPZV|fQq`Cyw4nscrVwi!fE6ciMmX$!_hN7uF;jjKG)d2@aC4ropY)8etW=xJvni)8eHi`H$%#zn^WJ5NLc-rqk|u&&4Z6fD_m&JfSI1Bvb?b<*n&sfl0^t z=HnmRl`XrFvMKB%9}>PaA`m-fK6a0(8=qPkWS5bb4=v?XcWi&hRY?O5HdulRi4?fN zlsJ*N-0Qw+Yic@s0(2uy%F@ib;GjXt01Fmx5XbRo6+n|pP(&nodMoap^z{~q ziEeaUT@Mxe3vJSfI6?uLND(CNr=#^W<1b}jzW58bIfyWTDle$mmS(|x-0|2UlX+9k zQ^EX7Nw}?EzVoBfT(-LT|=9N@^hcn-_p&sqG z&*oVs2JSU+N4ZD`FhCAWaS;>|wH2G*Id|?pa#@>tyxX`+4HyIArWDvVrX)2WAOQff z0qyHu&-S@i^MS-+j--!pr4fPBj~_8({~e1bfcl0wI1kaoN>mJL6KUPQm5N7lB(ui1 zE-o%kq)&djzWJ}ob<-GfDlkB;F31j-VHKvQUGQ3sp`CwyGJk_i!y^sD0fqC@$9|jO zOqN!r!8-p==F@ZVP=U$qSpY(gQ0)59P1&t@y?5rvg<}E+GB}26NYPp4f2YFQrQtot5mn3wu_qprZ=>Ig-$ zbW26Ws~IgY>}^5w`vTB(G`PTZaDiGBo5o(tp)qli|NeV( z@H_=R8V39rt5J5YB2Ky?4eJJ#b`_iBe2ot~6%7mLt5t8Vwi^Jy7|jWXqa3amOIoRb zOr}WVFP--DsS`1WpN%~)t3R!arKF^Q$e12KEqU36AWwnCBICpH4XCsfnyrHr>$I$4 z!DpKX$OKLWarN7nv@!uIA+~RNO)l$$w}p(;b>mx8pwYvu;dD_unryX_NhT8*Tj>BTrTTL&!?O+%Rv;b?B??gSzdp?6Uug9{ zd@V08Z$BdI?fpoCS$)t4mg4rT8Q_I}h`0d-vYZ^|dOB*Q^S|xqTV*vIg?@fVFSmMpaw0qtTRbx} z({Pg?#{2`sc9)M5N$*N|4;^t$+QP?#mov zGVC@I*lBVrOU-%2y!7%)fAKjpEFsgQc4{amtiHb95KQEwvf<(3T<9-Zm$xIew#P22 zc2Ix|App^>v6(3L_MCU0d3W##AB0M~3D00EWoKZqsJYT(#@w$Y_H7G22M~ApVFTRHMI_3be)Lkn#0F*V8Pq zc}`Cjy$bE;FJ6H7p=0y#R>`}-m4(0F>%@P|?7fx{=R^uFdISRnZ2W_xQhD{YuR3t< z{6yxu=4~JkeA;|(J6_nv#>Nvs&FuLA&PW^he@t(UwFFE8)|a!R{`E`K`i^ZnyE4$k z;(749Ix|oi$c3QbEJ3b~D_kQsPz~fIUKym($a_7dJ?o+40*OLl^{=&oq$<#Q(yyrp z{J-FAniyAw9tPbe&IhQ|a`DqFTVQGQ&Gq3!C2==4x{6EJwiPZ8zub-iXoUtkJiG{} zPaR&}_fn8_z~(=;5lD-aPWD3z8PZS@AaUiomF!G8I}Mf>e~0g#BelA-5#`cj;O5>N Xviia!U7SGha1wx#SCgwmn*{w2TRX*I literal 0 HcmV?d00001 From 3a839aeec534e9ff3a83de1b173ee9341d1a8e99 Mon Sep 17 00:00:00 2001 From: OCA-git-bot Date: Mon, 27 Sep 2021 08:24:46 +0000 Subject: [PATCH 149/686] auth_api_key_server_env 14.0.1.0.1 --- auth_api_key_server_env/__manifest__.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/auth_api_key_server_env/__manifest__.py b/auth_api_key_server_env/__manifest__.py index df51a909ce..3e7c7f029c 100644 --- a/auth_api_key_server_env/__manifest__.py +++ b/auth_api_key_server_env/__manifest__.py @@ -11,7 +11,7 @@ environments when restoring databases. All you have to do is to add a new section to your configuration file according to the following convention: """, - "version": "14.0.1.0.0", + "version": "14.0.1.0.1", "development_status": "Alpha", "license": "LGPL-3", "website": "https://github.com/OCA/server-auth", From c074c06be42902c22364bc4ef04a2d7d10213478 Mon Sep 17 00:00:00 2001 From: Maksym Yankin Date: Fri, 26 Nov 2021 18:21:08 +0200 Subject: [PATCH 150/686] [MIG] auth_api_key_server_env: Migration to 15.0 --- auth_api_key_server_env/README.rst | 10 +++++----- auth_api_key_server_env/__manifest__.py | 2 +- .../i18n/auth_api_key_server_env.pot | 2 +- auth_api_key_server_env/static/description/index.html | 6 +++--- auth_api_key_server_env/tests/test_auth_api_key.py | 4 ++-- 5 files changed, 12 insertions(+), 12 deletions(-) diff --git a/auth_api_key_server_env/README.rst b/auth_api_key_server_env/README.rst index ae726190fa..605a2b9d90 100644 --- a/auth_api_key_server_env/README.rst +++ b/auth_api_key_server_env/README.rst @@ -14,13 +14,13 @@ Auth API key server environment :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html :alt: License: LGPL-3 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github - :target: https://github.com/OCA/server-auth/tree/14.0/auth_api_key_server_env + :target: https://github.com/OCA/server-auth/tree/15.0/auth_api_key_server_env :alt: OCA/server-auth .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png - :target: https://translation.odoo-community.org/projects/server-auth-14-0/server-auth-14-0-auth_api_key_server_env + :target: https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_api_key_server_env :alt: Translate me on Weblate .. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png - :target: https://runbot.odoo-community.org/runbot/251/14.0 + :target: https://runbot.odoo-community.org/runbot/251/15.0 :alt: Try me on Runbot |badge1| |badge2| |badge3| |badge4| |badge5| @@ -52,7 +52,7 @@ Bug Tracker Bugs are tracked on `GitHub Issues `_. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed -`feedback `_. +`feedback `_. Do not contact contributors directly about support or help with technical issues. @@ -82,6 +82,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose mission is to support the collaborative development of Odoo features and promote its widespread use. -This module is part of the `OCA/server-auth `_ project on GitHub. +This module is part of the `OCA/server-auth `_ project on GitHub. You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_api_key_server_env/__manifest__.py b/auth_api_key_server_env/__manifest__.py index 3e7c7f029c..fc221d6197 100644 --- a/auth_api_key_server_env/__manifest__.py +++ b/auth_api_key_server_env/__manifest__.py @@ -11,7 +11,7 @@ environments when restoring databases. All you have to do is to add a new section to your configuration file according to the following convention: """, - "version": "14.0.1.0.1", + "version": "15.0.1.0.0", "development_status": "Alpha", "license": "LGPL-3", "website": "https://github.com/OCA/server-auth", diff --git a/auth_api_key_server_env/i18n/auth_api_key_server_env.pot b/auth_api_key_server_env/i18n/auth_api_key_server_env.pot index 8165ada556..a079a8c7f9 100644 --- a/auth_api_key_server_env/i18n/auth_api_key_server_env.pot +++ b/auth_api_key_server_env/i18n/auth_api_key_server_env.pot @@ -4,7 +4,7 @@ # msgid "" msgstr "" -"Project-Id-Version: Odoo Server 14.0\n" +"Project-Id-Version: Odoo Server 15.0\n" "Report-Msgid-Bugs-To: \n" "Last-Translator: \n" "Language-Team: \n" diff --git a/auth_api_key_server_env/static/description/index.html b/auth_api_key_server_env/static/description/index.html index b7eb6a720a..843968400c 100644 --- a/auth_api_key_server_env/static/description/index.html +++ b/auth_api_key_server_env/static/description/index.html @@ -367,7 +367,7 @@

Auth API key server environment

!! This file is generated by oca-gen-addon-readme !! !! changes will be overwritten. !! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! --> -

Alpha License: LGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

+

Alpha License: LGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

Configure api keys via server env.

This can be very useful to avoid mixing your keys between your various environments when restoring databases. All you have to do is to add a new @@ -399,7 +399,7 @@

Bug Tracker

Bugs are tracked on GitHub Issues. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed -feedback.

+feedback.

Do not contact contributors directly about support or help with technical issues.

@@ -423,7 +423,7 @@

Maintainers

OCA, or the Odoo Community Association, is a nonprofit organization whose mission is to support the collaborative development of Odoo features and promote its widespread use.

-

This module is part of the OCA/server-auth project on GitHub.

+

This module is part of the OCA/server-auth project on GitHub.

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

diff --git a/auth_api_key_server_env/tests/test_auth_api_key.py b/auth_api_key_server_env/tests/test_auth_api_key.py index e533c0a993..4121cc3a5f 100644 --- a/auth_api_key_server_env/tests/test_auth_api_key.py +++ b/auth_api_key_server_env/tests/test_auth_api_key.py @@ -3,12 +3,12 @@ # @author: Simone Orsi # License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl). from odoo.exceptions import ValidationError -from odoo.tests.common import SavepointCase +from odoo.tests.common import TransactionCase from odoo.addons.server_environment import serv_config -class TestAuthApiKey(SavepointCase): +class TestAuthApiKey(TransactionCase): @classmethod def setUpClass(cls, *args, **kwargs): super().setUpClass(*args, **kwargs) From 795bbca12696629ba93a6a40f184fc18aafdd4f1 Mon Sep 17 00:00:00 2001 From: oca-ci Date: Tue, 30 Nov 2021 14:47:52 +0000 Subject: [PATCH 151/686] [UPD] Update auth_api_key_server_env.pot --- .../i18n/auth_api_key_server_env.pot | 15 --------------- 1 file changed, 15 deletions(-) diff --git a/auth_api_key_server_env/i18n/auth_api_key_server_env.pot b/auth_api_key_server_env/i18n/auth_api_key_server_env.pot index a079a8c7f9..c9ac92d62f 100644 --- a/auth_api_key_server_env/i18n/auth_api_key_server_env.pot +++ b/auth_api_key_server_env/i18n/auth_api_key_server_env.pot @@ -18,21 +18,6 @@ msgstr "" msgid "API Key" msgstr "" -#. module: auth_api_key_server_env -#: model:ir.model.fields,field_description:auth_api_key_server_env.field_auth_api_key__display_name -msgid "Display Name" -msgstr "" - -#. module: auth_api_key_server_env -#: model:ir.model.fields,field_description:auth_api_key_server_env.field_auth_api_key__id -msgid "ID" -msgstr "" - -#. module: auth_api_key_server_env -#: model:ir.model.fields,field_description:auth_api_key_server_env.field_auth_api_key____last_update -msgid "Last Modified on" -msgstr "" - #. module: auth_api_key_server_env #: model:ir.model.fields,field_description:auth_api_key_server_env.field_auth_api_key__server_env_defaults msgid "Server Env Defaults" From fae32305207b3a0aa0d922b7f150d8f862ace626 Mon Sep 17 00:00:00 2001 From: Florian da Costa Date: Fri, 30 Dec 2022 16:10:11 +0100 Subject: [PATCH 152/686] [16.0][MIG] Migrate auth_api_key_server_env to v16 --- auth_api_key_server_env/__manifest__.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/auth_api_key_server_env/__manifest__.py b/auth_api_key_server_env/__manifest__.py index fc221d6197..9a178dc898 100644 --- a/auth_api_key_server_env/__manifest__.py +++ b/auth_api_key_server_env/__manifest__.py @@ -11,7 +11,7 @@ environments when restoring databases. All you have to do is to add a new section to your configuration file according to the following convention: """, - "version": "15.0.1.0.0", + "version": "16.0.1.0.0", "development_status": "Alpha", "license": "LGPL-3", "website": "https://github.com/OCA/server-auth", From 78cce2f384f3cb5697a77b3bff8d7cb4f437a35f Mon Sep 17 00:00:00 2001 From: Florian da Costa Date: Fri, 8 Sep 2023 13:52:51 +0200 Subject: [PATCH 153/686] [IMP] auth_api_key_server_env: use tech_name --- .../migrations/16.0.1.0.0/post-migration.py | 10 ++++++++++ auth_api_key_server_env/models/auth_api_key.py | 7 ++----- auth_api_key_server_env/readme/CONTRIBUTORS.rst | 1 + auth_api_key_server_env/readme/DESCRIPTION.rst | 2 +- auth_api_key_server_env/tests/test_auth_api_key.py | 11 ++++++++--- 5 files changed, 22 insertions(+), 9 deletions(-) create mode 100644 auth_api_key_server_env/migrations/16.0.1.0.0/post-migration.py diff --git a/auth_api_key_server_env/migrations/16.0.1.0.0/post-migration.py b/auth_api_key_server_env/migrations/16.0.1.0.0/post-migration.py new file mode 100644 index 0000000000..e590eae6fa --- /dev/null +++ b/auth_api_key_server_env/migrations/16.0.1.0.0/post-migration.py @@ -0,0 +1,10 @@ +from odoo import SUPERUSER_ID, api + + +def migrate(cr, version): + env = api.Environment(cr, SUPERUSER_ID, {}) + keys = env["auth.api.key"].search( + [("tech_name", "=", False), ("name", "!=", False)] + ) + for key in keys: + key.write({"tech_name": key._normalize_tech_name(key.name)}) diff --git a/auth_api_key_server_env/models/auth_api_key.py b/auth_api_key_server_env/models/auth_api_key.py index baabfde16e..4e30d81011 100644 --- a/auth_api_key_server_env/models/auth_api_key.py +++ b/auth_api_key_server_env/models/auth_api_key.py @@ -10,20 +10,17 @@ class AuthApiKey(models.Model): _name = "auth.api.key" - _inherit = ["auth.api.key", "server.env.mixin"] + _inherit = ["auth.api.key", "server.env.techname.mixin", "server.env.mixin"] def _server_env_section_name(self): """Name of the section in the configuration files - We override the default implementation to keep the compatibility with the previous implementation of auth_api_key. The section name into the configuration file must be formatted as - 'api_key_{name}' - """ self.ensure_one() - return "api_key_{}".format(self.name) + return "api_key_{}".format(getattr(self, self._server_env_section_name_field)) @property def _server_env_fields(self): diff --git a/auth_api_key_server_env/readme/CONTRIBUTORS.rst b/auth_api_key_server_env/readme/CONTRIBUTORS.rst index f1c71bce18..bf905a1e0d 100644 --- a/auth_api_key_server_env/readme/CONTRIBUTORS.rst +++ b/auth_api_key_server_env/readme/CONTRIBUTORS.rst @@ -1 +1,2 @@ * Simone Orsi +* Florian da Costa diff --git a/auth_api_key_server_env/readme/DESCRIPTION.rst b/auth_api_key_server_env/readme/DESCRIPTION.rst index 1dc7bf00af..a1f43f857e 100644 --- a/auth_api_key_server_env/readme/DESCRIPTION.rst +++ b/auth_api_key_server_env/readme/DESCRIPTION.rst @@ -6,5 +6,5 @@ section to your configuration file according to the following convention: .. code-block:: ini - [api_key_] + [api_key_] key=my_api_key diff --git a/auth_api_key_server_env/tests/test_auth_api_key.py b/auth_api_key_server_env/tests/test_auth_api_key.py index 4121cc3a5f..cded35ecd8 100644 --- a/auth_api_key_server_env/tests/test_auth_api_key.py +++ b/auth_api_key_server_env/tests/test_auth_api_key.py @@ -15,11 +15,16 @@ def setUpClass(cls, *args, **kwargs): cls.AuthApiKey = cls.env["auth.api.key"] cls.demo_user = cls.env.ref("base.user_demo") cls.api_key_from_env = cls.AuthApiKey.create( - {"name": "from_env", "key": "dummy", "user_id": cls.demo_user.id} + { + "name": "From Env", + "key": "dummy", + "user_id": cls.demo_user.id, + "tech_name": "test_env", + } ) cls.api_key_from_env.refresh() - serv_config.add_section("api_key_from_env") - serv_config.set("api_key_from_env", "key", "api_key_from_env") + serv_config.add_section("api_key_test_env") + serv_config.set("api_key_test_env", "key", "api_key_from_env") def test_lookup_key_from_env(self): self.assertEqual( From f52aa8fac625b080b50ea154c362c77650e48b36 Mon Sep 17 00:00:00 2001 From: oca-ci Date: Sat, 9 Sep 2023 13:46:29 +0000 Subject: [PATCH 154/686] [UPD] Update auth_api_key_server_env.pot --- .../i18n/auth_api_key_server_env.pot | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) diff --git a/auth_api_key_server_env/i18n/auth_api_key_server_env.pot b/auth_api_key_server_env/i18n/auth_api_key_server_env.pot index c9ac92d62f..09a9616d72 100644 --- a/auth_api_key_server_env/i18n/auth_api_key_server_env.pot +++ b/auth_api_key_server_env/i18n/auth_api_key_server_env.pot @@ -4,7 +4,7 @@ # msgid "" msgstr "" -"Project-Id-Version: Odoo Server 15.0\n" +"Project-Id-Version: Odoo Server 16.0\n" "Report-Msgid-Bugs-To: \n" "Last-Translator: \n" "Language-Team: \n" @@ -22,3 +22,13 @@ msgstr "" #: model:ir.model.fields,field_description:auth_api_key_server_env.field_auth_api_key__server_env_defaults msgid "Server Env Defaults" msgstr "" + +#. module: auth_api_key_server_env +#: model:ir.model.fields,field_description:auth_api_key_server_env.field_auth_api_key__tech_name +msgid "Tech Name" +msgstr "" + +#. module: auth_api_key_server_env +#: model:ir.model.fields,help:auth_api_key_server_env.field_auth_api_key__tech_name +msgid "Unique name for technical purposes. Eg: server env keys." +msgstr "" From d8873e03e24fb012bcd7b8154ae9ff6f3ac3c572 Mon Sep 17 00:00:00 2001 From: OCA-git-bot Date: Sat, 9 Sep 2023 13:49:45 +0000 Subject: [PATCH 155/686] [UPD] README.rst --- auth_api_key_server_env/README.rst | 26 ++++++----- .../static/description/index.html | 43 ++++++++++--------- 2 files changed, 38 insertions(+), 31 deletions(-) diff --git a/auth_api_key_server_env/README.rst b/auth_api_key_server_env/README.rst index 605a2b9d90..00d59120d9 100644 --- a/auth_api_key_server_env/README.rst +++ b/auth_api_key_server_env/README.rst @@ -2,10 +2,13 @@ Auth API key server environment =============================== -.. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! +.. + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !! This file is generated by oca-gen-addon-readme !! !! changes will be overwritten. !! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! + !! source digest: sha256:7b7d72b7fe47a8aad3083f27767d93c4b0d78764c3faf6304d8ad2756ba201bf + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! .. |badge1| image:: https://img.shields.io/badge/maturity-Alpha-red.png :target: https://odoo-community.org/page/development-status @@ -14,16 +17,16 @@ Auth API key server environment :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html :alt: License: LGPL-3 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github - :target: https://github.com/OCA/server-auth/tree/15.0/auth_api_key_server_env + :target: https://github.com/OCA/server-auth/tree/16.0/auth_api_key_server_env :alt: OCA/server-auth .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png - :target: https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_api_key_server_env + :target: https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_api_key_server_env :alt: Translate me on Weblate -.. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png - :target: https://runbot.odoo-community.org/runbot/251/15.0 - :alt: Try me on Runbot +.. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png + :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=16.0 + :alt: Try me on Runboat -|badge1| |badge2| |badge3| |badge4| |badge5| +|badge1| |badge2| |badge3| |badge4| |badge5| Configure api keys via server env. @@ -33,7 +36,7 @@ section to your configuration file according to the following convention: .. code-block:: ini - [api_key_] + [api_key_] key=my_api_key .. IMPORTANT:: @@ -51,8 +54,8 @@ Bug Tracker Bugs are tracked on `GitHub Issues `_. In case of trouble, please check there if your issue has already been reported. -If you spotted it first, help us smashing it by providing a detailed and welcomed -`feedback `_. +If you spotted it first, help us to smash it by providing a detailed and welcomed +`feedback `_. Do not contact contributors directly about support or help with technical issues. @@ -68,6 +71,7 @@ Contributors ~~~~~~~~~~~~ * Simone Orsi +* Florian da Costa Maintainers ~~~~~~~~~~~ @@ -82,6 +86,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose mission is to support the collaborative development of Odoo features and promote its widespread use. -This module is part of the `OCA/server-auth `_ project on GitHub. +This module is part of the `OCA/server-auth `_ project on GitHub. You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_api_key_server_env/static/description/index.html b/auth_api_key_server_env/static/description/index.html index 843968400c..d3c23db379 100644 --- a/auth_api_key_server_env/static/description/index.html +++ b/auth_api_key_server_env/static/description/index.html @@ -1,20 +1,20 @@ - + - + Auth API key server environment + + +
+

Inactive Sessions Timeout

+ + +

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

+

This module was written to be able to kill(logout) all inactive sessions since +a given delay. On each request the server checks if the session is yet valid +regarding the expiration delay. If not a clean logout is operated.

+

Table of contents

+ +
+

Configuration

+

Two system parameters are available:

+
    +
  • inactive_session_time_out_delay: validity of a session in seconds +(default = 2 Hours)
    • +
  • inactive_session_time_out_ignored_url: technical urls where the check +does not occur
    • +
+
+
+

Usage

+

Setup the session parameters as described above.

+
+
+

Bug Tracker

+

Bugs are tracked on GitHub Issues. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us smashing it by providing a detailed and welcomed +feedback.

+

Do not contact contributors directly about support or help with technical issues.

+
+
+

Credits

+
+

Authors

+
    +
  • ACSONE SA/NV
    • +
  • Dhinesh D
    • +
  • Jesse Morgan
    • +
  • LasLabs
    • +
+
+
+

Contributors

+ +
+
+

Maintainers

+

This module is maintained by the OCA.

+Odoo Community Association +

OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use.

+

This module is part of the OCA/server-auth project on GitHub.

+

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

+
+
+
+ + diff --git a/auth_session_timeout/tests/.DS_Store b/auth_session_timeout/tests/.DS_Store deleted file mode 100644 index d149aa691288b78a6aa0423741f33331bf095944..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 6148 zcmeHKJ5B>J5S@V(kC?h>kbUFKT}xX4kjhv>djdcfYbEq7Mdw zfnXpQ2nK%60Pbv&`NA;zU?3O>2HqKv^C6)LX2)WvM+Z7B0f6$1R)H?Hg!m-K>{tx3 z0%3Cnnk##W!RC(nb%7 diff --git a/auth_session_timeout/tests/test_res_users.py b/auth_session_timeout/tests/test_res_users.py index 632021aab8..81081b0a27 100644 --- a/auth_session_timeout/tests/test_res_users.py +++ b/auth_session_timeout/tests/test_res_users.py @@ -2,11 +2,13 @@ # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html). import mock +import time from contextlib import contextmanager from odoo.tools.misc import mute_logger from odoo.tests.common import TransactionCase +from odoo.http import SessionExpiredException class EndTestException(Exception): @@ -70,7 +72,8 @@ def test_session_validity_logout(self): get_params = assets['http'].request.env[''].get_session_parameters get_params.return_value = -9999, [] assets['getmtime'].return_value = 0 - self._auth_timeout_check(assets['http']) + with self.assertRaises(SessionExpiredException): + self._auth_timeout_check(assets['http']) assets['http'].request.session.logout.assert_called_once_with( keep_db=True, ) @@ -80,6 +83,7 @@ def test_session_validity_updates_utime(self): with self._mock_assets(['http', 'getmtime', 'utime']) as assets: get_params = assets['http'].request.env[''].get_session_parameters get_params.return_value = 9999, [] + assets['getmtime'].return_value = time.time() self._auth_timeout_check(assets['http']) assets['utime'].assert_called_once_with( assets['http'].root.session_store.get_session_filename(), @@ -93,8 +97,8 @@ def test_session_validity_os_error_guard(self): get_params = assets['http'].request.env[''].get_session_parameters get_params.return_value = 0, [] assets['getmtime'].side_effect = OSError - res = self._auth_timeout_check(assets['http']) - self.assertFalse(res) + with self.assertRaises(SessionExpiredException): + self._auth_timeout_check(assets['http']) def test_on_timeout_session_loggedout(self): with self._mock_assets(['http', 'getmtime']) as assets: @@ -103,5 +107,6 @@ def test_on_timeout_session_loggedout(self): assets['http'].request.session.dbname = self.env.cr.dbname assets['http'].request.session.sid = 123 assets['http'].request.session.logout = mock.Mock() - self.ResUsers._auth_timeout_check() + with self.assertRaises(SessionExpiredException): + self.ResUsers._auth_timeout_check() self.assertTrue(assets['http'].request.session.logout.called) From 988608e504e43e0a237de3257ec58518b2a65d6a Mon Sep 17 00:00:00 2001 From: Jaime Arroyo Date: Thu, 6 Jun 2019 12:40:32 +0200 Subject: [PATCH 175/686] [12.0][MIG] auth_session_timeout --- auth_session_timeout/README.rst | 10 +++++----- auth_session_timeout/__manifest__.py | 4 ++-- auth_session_timeout/static/description/index.html | 8 ++++---- 3 files changed, 11 insertions(+), 11 deletions(-) diff --git a/auth_session_timeout/README.rst b/auth_session_timeout/README.rst index 030dbb9a09..692cd5eb97 100644 --- a/auth_session_timeout/README.rst +++ b/auth_session_timeout/README.rst @@ -14,13 +14,13 @@ Inactive Sessions Timeout :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html :alt: License: AGPL-3 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github - :target: https://github.com/OCA/server-auth/tree/11.0/auth_session_timeout + :target: https://github.com/OCA/server-auth/tree/12.0/auth_session_timeout :alt: OCA/server-auth .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png - :target: https://translation.odoo-community.org/projects/server-auth-11-0/server-auth-11-0-auth_session_timeout + :target: https://translation.odoo-community.org/projects/server-auth-12-0/server-auth-12-0-auth_session_timeout :alt: Translate me on Weblate .. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png - :target: https://runbot.odoo-community.org/runbot/251/11.0 + :target: https://runbot.odoo-community.org/runbot/251/12.0 :alt: Try me on Runbot |badge1| |badge2| |badge3| |badge4| |badge5| @@ -59,7 +59,7 @@ Bug Tracker Bugs are tracked on `GitHub Issues `_. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed -`feedback `_. +`feedback `_. Do not contact contributors directly about support or help with technical issues. @@ -97,6 +97,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose mission is to support the collaborative development of Odoo features and promote its widespread use. -This module is part of the `OCA/server-auth `_ project on GitHub. +This module is part of the `OCA/server-auth `_ project on GitHub. You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_session_timeout/__manifest__.py b/auth_session_timeout/__manifest__.py index ab4ccdb704..81f85f4dbd 100644 --- a/auth_session_timeout/__manifest__.py +++ b/auth_session_timeout/__manifest__.py @@ -11,9 +11,9 @@ "LasLabs, " "Odoo Community Association (OCA)", 'maintainer': 'Odoo Community Association (OCA)', - 'website': "http://acsone.eu", + 'website': "http://www.github.com/OCA/server-auth", 'category': 'Tools', - 'version': '11.0.1.0.0', + 'version': '12.0.1.0.0', 'license': 'AGPL-3', 'data': [ 'data/ir_config_parameter_data.xml' diff --git a/auth_session_timeout/static/description/index.html b/auth_session_timeout/static/description/index.html index 327f75f97b..525a3ca2d8 100644 --- a/auth_session_timeout/static/description/index.html +++ b/auth_session_timeout/static/description/index.html @@ -3,7 +3,7 @@ - + Inactive Sessions Timeout + + +
+

Base User Show Email

+ + +

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

+

In recent Odoo versions, the login field is tightly linked to the email field +(the field is displayed with an “Email” label, and it will populate the email of the user if it contains an “@” character).

+

Yet for the users who uses a distinct login and email, this is confusing.

+

The goal of this module is to untangle (a bit) these two fields. Here are the changes:

+
    +
  • +
    In the res.users form view:
    +
      +
    • Display a “Login” label instead of “Email” on the login field
      • +
    • Show the currently invisible email field and its label
      • +
    +
    +
    +
    • +
  • +
    In the res.users tree view:
    +
      +
    • Display the email field next to the login field
      • +
    +
    +
    +
    • +
  • Change the login layout to prompt for a “Login” instead of an “Email” (compatible with the web_enterprise layout)
    • +
+

Table of contents

+ +
+

Bug Tracker

+

Bugs are tracked on GitHub Issues. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us smashing it by providing a detailed and welcomed +feedback.

+

Do not contact contributors directly about support or help with technical issues.

+
+
+

Credits

+
+

Authors

+
    +
  • Camptocamp
    • +
+
+ +
+

Maintainers

+

This module is maintained by the OCA.

+Odoo Community Association +

OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use.

+

This module is part of the OCA/server-auth project on GitHub.

+

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

+
+
+
+ + diff --git a/base_user_show_email/views/login_layout.xml b/base_user_show_email/views/login_layout.xml new file mode 100644 index 0000000000..91ca74b4ec --- /dev/null +++ b/base_user_show_email/views/login_layout.xml @@ -0,0 +1,11 @@ + + + + diff --git a/base_user_show_email/views/res_users_view.xml b/base_user_show_email/views/res_users_view.xml new file mode 100644 index 0000000000..c53dab8012 --- /dev/null +++ b/base_user_show_email/views/res_users_view.xml @@ -0,0 +1,31 @@ + + + + res.users.show_email.form + res.users + + + + Login + + + + + + + + + + + res.users.show_email.tree + res.users + + + + + + + + From d9c85dd1eeeb7765c3878e4726f26db1f5f5634b Mon Sep 17 00:00:00 2001 From: OCA-git-bot Date: Mon, 29 Jul 2019 03:37:25 +0000 Subject: [PATCH 208/686] [UPD] README.rst --- base_user_show_email/static/description/index.html | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/base_user_show_email/static/description/index.html b/base_user_show_email/static/description/index.html index c700625ca0..ec080b7bbf 100644 --- a/base_user_show_email/static/description/index.html +++ b/base_user_show_email/static/description/index.html @@ -3,7 +3,7 @@ - + Base User Show Email + + +
+

Auth Oidc Environment

+ + +

Beta License: AGPL-3 OCA/server-env Translate me on Weblate Try me on Runbot

+

this module allows to use server env for OIDC configuration

+

Table of contents

+ +
+

Configuration

+

To configure this module, you need to:

+

Create a module server_environment_file with a cfg file or set the environment variable SERVER_ENV_CONFIG with the following section:

+

[auth_oauth_provider.<name>]

+

Where <name> is optional and must be equal to the name field you defined in Odoo for the IDP.

+

Example of configuration

+

[auth_oauth_provider.azure]

+

client_id=… +client_secret=…

+
+
+

Usage

+

Once configured, Odoo will read the Auth Providers values from the configuration.

+
+
+

Bug Tracker

+

Bugs are tracked on GitHub Issues. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us smashing it by providing a detailed and welcomed +feedback.

+

Do not contact contributors directly about support or help with technical issues.

+
+
+

Credits

+
+

Authors

+
    +
  • ACSONE SA/NV
    • +
+
+
+

Contributors

+ +
+
+

Maintainers

+

This module is maintained by the OCA.

+Odoo Community Association +

OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use.

+

This module is part of the OCA/server-env project on GitHub.

+

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

+
+
+
+ + diff --git a/auth_oidc_environment/tests/__init__.py b/auth_oidc_environment/tests/__init__.py new file mode 100644 index 0000000000..c25a516081 --- /dev/null +++ b/auth_oidc_environment/tests/__init__.py @@ -0,0 +1 @@ +from . import test_auth_oidc_environment diff --git a/auth_oidc_environment/tests/test_auth_oidc_environment.py b/auth_oidc_environment/tests/test_auth_oidc_environment.py new file mode 100644 index 0000000000..641fb6a9af --- /dev/null +++ b/auth_oidc_environment/tests/test_auth_oidc_environment.py @@ -0,0 +1,29 @@ +# Copyright 2023 ACSONE SA/NV +# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl). + +from unittest.mock import patch + +from odoo.tools.config import config as odoo_config + +from odoo.addons.server_environment import server_env +from odoo.addons.server_environment.tests.common import ServerEnvironmentCase + + +@patch.dict(odoo_config.options, {"running_env": "testing"}) +class TestEnvironmentVariables(ServerEnvironmentCase): + def test_env_variables(self): + env_var = ( + "[auth_oauth_provider.sample]\n" "client_id=foo\n" "client_secret=bar\n" + ) + with self.set_config_dir(None), self.set_env_variables(env_var): + parser = server_env._load_config() + self.assertEqual( + list(parser.keys()), ["DEFAULT", "auth_oauth_provider.sample"] + ) + self.assertDictEqual( + dict(parser["auth_oauth_provider.sample"].items()), + { + "client_id": "foo", + "client_secret": "bar", + }, + ) From 1c5e6471c974f887afed753a91ed642551e74f1d Mon Sep 17 00:00:00 2001 From: oca-ci Date: Wed, 4 Oct 2023 07:03:49 +0000 Subject: [PATCH 234/686] [UPD] Update auth_oidc_environment.pot --- .../i18n/auth_oidc_environment.pot | 24 +++++++++++++++++++ 1 file changed, 24 insertions(+) create mode 100644 auth_oidc_environment/i18n/auth_oidc_environment.pot diff --git a/auth_oidc_environment/i18n/auth_oidc_environment.pot b/auth_oidc_environment/i18n/auth_oidc_environment.pot new file mode 100644 index 0000000000..c975dbe527 --- /dev/null +++ b/auth_oidc_environment/i18n/auth_oidc_environment.pot @@ -0,0 +1,24 @@ +# Translation of Odoo Server. +# This file contains the translation of the following modules: +# * auth_oidc_environment +# +msgid "" +msgstr "" +"Project-Id-Version: Odoo Server 16.0\n" +"Report-Msgid-Bugs-To: \n" +"Last-Translator: \n" +"Language-Team: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: \n" +"Plural-Forms: \n" + +#. module: auth_oidc_environment +#: model:ir.model,name:auth_oidc_environment.model_auth_oauth_provider +msgid "OAuth2 provider" +msgstr "" + +#. module: auth_oidc_environment +#: model:ir.model.fields,field_description:auth_oidc_environment.field_auth_oauth_provider__server_env_defaults +msgid "Server Env Defaults" +msgstr "" From 79367888ece34cd3b7a11fa02af502acf54dac68 Mon Sep 17 00:00:00 2001 From: OCA-git-bot Date: Wed, 4 Oct 2023 07:07:06 +0000 Subject: [PATCH 235/686] [BOT] post-merge updates --- auth_oidc_environment/README.rst | 29 ++++++----- .../static/description/index.html | 48 ++++++++++--------- 2 files changed, 41 insertions(+), 36 deletions(-) diff --git a/auth_oidc_environment/README.rst b/auth_oidc_environment/README.rst index 3f98096a27..e3ffc623d6 100644 --- a/auth_oidc_environment/README.rst +++ b/auth_oidc_environment/README.rst @@ -2,10 +2,13 @@ Auth Oidc Environment ===================== -.. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! +.. + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !! This file is generated by oca-gen-addon-readme !! !! changes will be overwritten. !! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! + !! source digest: sha256:18aa5a39b1804e3212b277bcc74b32f2297dca10bf1d3192c5fd659082b81150 + !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! .. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png :target: https://odoo-community.org/page/development-status @@ -13,17 +16,17 @@ Auth Oidc Environment .. |badge2| image:: https://img.shields.io/badge/licence-AGPL--3-blue.png :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html :alt: License: AGPL-3 -.. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--env-lightgray.png?logo=github - :target: https://github.com/OCA/server-env/tree/16.0/auth_oidc_environment - :alt: OCA/server-env +.. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github + :target: https://github.com/OCA/server-auth/tree/16.0/auth_oidc_environment + :alt: OCA/server-auth .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png - :target: https://translation.odoo-community.org/projects/server-env-16-0/server-env-16-0-auth_oidc_environment + :target: https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_oidc_environment :alt: Translate me on Weblate -.. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png - :target: https://runbot.odoo-community.org/runbot/254/16.0 - :alt: Try me on Runbot +.. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png + :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=16.0 + :alt: Try me on Runboat -|badge1| |badge2| |badge3| |badge4| |badge5| +|badge1| |badge2| |badge3| |badge4| |badge5| this module allows to use server env for OIDC configuration @@ -58,10 +61,10 @@ Once configured, Odoo will read the Auth Providers values from the configuration Bug Tracker =========== -Bugs are tracked on `GitHub Issues `_. +Bugs are tracked on `GitHub Issues `_. In case of trouble, please check there if your issue has already been reported. -If you spotted it first, help us smashing it by providing a detailed and welcomed -`feedback `_. +If you spotted it first, help us to smash it by providing a detailed and welcomed +`feedback `_. Do not contact contributors directly about support or help with technical issues. @@ -91,6 +94,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose mission is to support the collaborative development of Odoo features and promote its widespread use. -This module is part of the `OCA/server-env `_ project on GitHub. +This module is part of the `OCA/server-auth `_ project on GitHub. You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_oidc_environment/static/description/index.html b/auth_oidc_environment/static/description/index.html index 052a3b8d9c..bdde833938 100644 --- a/auth_oidc_environment/static/description/index.html +++ b/auth_oidc_environment/static/description/index.html @@ -1,20 +1,20 @@ - + - + Auth Oidc Environment + + +
+

Authentification - System Administrator Passkey

+ + +

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

+

This module extends the functionality of users module to support loging in +with an extra system administrator password in other user accounts.

+
    +
  • System Administrator has now the possibility to login in with any login
    • +
  • According to the configuration, Odoo will send a mail to user and admin to +indicate them
    • +
+

Table of contents

+ +
+

Configuration

+

To enable this feature, once the module installed, you have to add the +following keys in your odoo.cfg configuration file.

+
    +
  • auth_admin_passkey_password. The password that allows user to logging in +with any login. If not set, the feature is disabled.
    • +
  • auth_admin_passkey_send_to_user (default True), if enabled, an email +will be send to the user, if his account has been used by the +System Administrator.
    • +
  • auth_admin_passkey_sysadmin_email. If set, an email will be sent to this +mail.
    • +
  • auth_admin_passkey_sysadmin_lang. the language (exemple en_US), used for +the mail sent to the System Administrator. If not set, the language of the +SUPERUSER_ID user will be used.
    • +
+

typical Dev / Test configuration section

+

No keys to add.

+

typical Production configuration section

+
+auth_admin_passkey_password = PASSKEY_PASSWORD
+auth_admin_passkey_send_to_user = True
+auth_admin_passkey_sysadmin_email = SYSADMIN_PASSWORD
+auth_admin_passkey_sysadmin_lang = SYSADMIN_LANG
+
+
+
+

Bug Tracker

+

Bugs are tracked on GitHub Issues. +In case of trouble, please check there if your issue has already been reported. +If you spotted it first, help us smashing it by providing a detailed and welcomed +feedback.

+

Do not contact contributors directly about support or help with technical issues.

+
+
+

Credits

+
+

Authors

+
    +
  • GRAP
    • +
+
+ +
+

Maintainers

+

This module is maintained by the OCA.

+Odoo Community Association +

OCA, or the Odoo Community Association, is a nonprofit organization whose +mission is to support the collaborative development of Odoo features and +promote its widespread use.

+

This module is part of the OCA/server-auth project on GitHub.

+

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

+
+
+
+ + From ce06bd52f7114f0d736584e750f2b15b3db6aedf Mon Sep 17 00:00:00 2001 From: Bole Date: Wed, 13 Nov 2019 15:15:43 +0000 Subject: [PATCH 295/686] Translated using Weblate (Croatian) Currently translated at 100.0% (11 of 11 strings) Translation: server-auth-12.0/server-auth-12.0-auth_admin_passkey Translate-URL: https://translation.odoo-community.org/projects/server-auth-12-0/server-auth-12-0-auth_admin_passkey/hr/ --- auth_admin_passkey/i18n/hr.po | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/auth_admin_passkey/i18n/hr.po b/auth_admin_passkey/i18n/hr.po index d068e32df8..a7dbd4a38e 100644 --- a/auth_admin_passkey/i18n/hr.po +++ b/auth_admin_passkey/i18n/hr.po @@ -10,15 +10,16 @@ msgstr "" "Project-Id-Version: Odoo Server 10.0\n" "Report-Msgid-Bugs-To: \n" "POT-Creation-Date: 2018-03-02 18:39+0000\n" -"PO-Revision-Date: 2018-03-02 18:39+0000\n" -"Last-Translator: Bole , 2018\n" +"PO-Revision-Date: 2019-11-13 17:34+0000\n" +"Last-Translator: Bole \n" "Language-Team: Croatian (https://www.transifex.com/oca/teams/23907/hr/)\n" "Language: hr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: \n" -"Plural-Forms: nplurals=3; plural=n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" -"%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2;\n" +"Plural-Forms: nplurals=3; plural=n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=" +"4 && (n%100<10 || n%100>=20) ? 1 : 2;\n" +"X-Generator: Weblate 3.8\n" #. module: auth_admin_passkey #: code:addons/auth_admin_passkey/models/res_users.py:64 @@ -62,7 +63,7 @@ msgstr "Korišten ključ" #. module: auth_admin_passkey #: model:ir.model.fields,field_description:auth_admin_passkey.field_base_config_settings_auth_admin_passkey_send_to_admin msgid "Send email to admin user." -msgstr "Pošalji mail administratoru" +msgstr "Pošalji mail administratoru." #. module: auth_admin_passkey #: model:ir.model.fields,field_description:auth_admin_passkey.field_base_config_settings_auth_admin_passkey_send_to_user From 7df09542960f7b46302380d5e74b2d65360a137f Mon Sep 17 00:00:00 2001 From: Rodrigo Macedo Date: Sun, 24 Nov 2019 17:04:54 +0000 Subject: [PATCH 296/686] Translated using Weblate (Portuguese (Brazil)) Currently translated at 100.0% (11 of 11 strings) Translation: server-auth-12.0/server-auth-12.0-auth_admin_passkey Translate-URL: https://translation.odoo-community.org/projects/server-auth-12-0/server-auth-12-0-auth_admin_passkey/pt_BR/ --- auth_admin_passkey/i18n/pt_BR.po | 25 +++++++++++++++++-------- 1 file changed, 17 insertions(+), 8 deletions(-) diff --git a/auth_admin_passkey/i18n/pt_BR.po b/auth_admin_passkey/i18n/pt_BR.po index b2506f9585..62283bfa91 100644 --- a/auth_admin_passkey/i18n/pt_BR.po +++ b/auth_admin_passkey/i18n/pt_BR.po @@ -9,15 +9,16 @@ msgstr "" "Project-Id-Version: Odoo Server 10.0\n" "Report-Msgid-Bugs-To: \n" "POT-Creation-Date: 2017-08-01 02:43+0000\n" -"PO-Revision-Date: 2017-08-01 02:43+0000\n" -"Last-Translator: OCA Transbot , 2017\n" -"Language-Team: Portuguese (Brazil) (https://www.transifex.com/oca/" -"teams/23907/pt_BR/)\n" +"PO-Revision-Date: 2019-11-24 19:58+0000\n" +"Last-Translator: Rodrigo Macedo \n" +"Language-Team: Portuguese (Brazil) (https://www.transifex.com/oca/teams/" +"23907/pt_BR/)\n" "Language: pt_BR\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: \n" -"Plural-Forms: nplurals=2; plural=(n > 1);\n" +"Plural-Forms: nplurals=2; plural=n > 1;\n" +"X-Generator: Weblate 3.8\n" #. module: auth_admin_passkey #: code:addons/auth_admin_passkey/models/res_users.py:64 @@ -38,11 +39,19 @@ msgid "" "- Login date : %s\n" "\n" msgstr "" +"O usuário administrador usou sua senha para fazer login com '%s'.\n" +"\n" +"\n" +"\n" +"Informações técnicas abaixo:\n" +"\n" +"- Data de login : %s\n" +"\n" #. module: auth_admin_passkey #: model:ir.ui.view,arch_db:auth_admin_passkey.view_res_config_settings msgid "Passkey" -msgstr "Passkey" +msgstr "Chave de acesso" #. module: auth_admin_passkey #: code:addons/auth_admin_passkey/models/res_users.py:38 @@ -53,7 +62,7 @@ msgstr "Passkey usada" #. module: auth_admin_passkey #: model:ir.model.fields,field_description:auth_admin_passkey.field_base_config_settings_auth_admin_passkey_send_to_admin msgid "Send email to admin user." -msgstr "Enviar email para usuário administrador" +msgstr "Enviar e-mail para usuário administrador." #. module: auth_admin_passkey #: model:ir.model.fields,field_description:auth_admin_passkey.field_base_config_settings_auth_admin_passkey_send_to_user @@ -92,4 +101,4 @@ msgstr "[AVISO] Odoo Risco de Segurança" #. module: auth_admin_passkey #: model:ir.model,name:auth_admin_passkey.model_base_config_settings msgid "base.config.settings" -msgstr "" +msgstr "base.config.settings" From dd3ceb57f003a1ca3cb7f1b31044f2e368e0cb8e Mon Sep 17 00:00:00 2001 From: Ruchir Shukla Date: Fri, 2 Oct 2020 15:05:08 +0530 Subject: [PATCH 297/686] [IMP] : black, isort, prettier --- auth_admin_passkey/__manifest__.py | 20 ++-- auth_admin_passkey/models/res_users.py | 35 +++--- .../tests/test_auth_admin_passkey.py | 38 ++++--- auth_admin_passkey/tests/test_ui.py | 107 +++++++++--------- 4 files changed, 98 insertions(+), 102 deletions(-) diff --git a/auth_admin_passkey/__manifest__.py b/auth_admin_passkey/__manifest__.py index 8f3d944dcb..d81a697e89 100644 --- a/auth_admin_passkey/__manifest__.py +++ b/auth_admin_passkey/__manifest__.py @@ -3,15 +3,13 @@ # License AGPL-3 - See http://www.gnu.org/licenses/agpl-3.0.html { - 'name': 'Authentification - System Administrator Passkey', - 'summary': "Allows system administrator to authenticate with any account", - 'version': '12.0.1.0.0', - 'category': 'base', - 'author': "GRAP,Odoo Community Association (OCA)", - 'website': 'https://www.github.com/OCA/server-auth', - 'license': 'AGPL-3', - 'depends': [ - 'mail', - ], - 'installable': True, + "name": "Authentification - System Administrator Passkey", + "summary": "Allows system administrator to authenticate with any account", + "version": "13.0.1.0.0", + "category": "base", + "author": "GRAP,Odoo Community Association (OCA)", + "website": "https://www.github.com/OCA/server-auth", + "license": "AGPL-3", + "depends": ["mail"], + "installable": True, } diff --git a/auth_admin_passkey/models/res_users.py b/auth_admin_passkey/models/res_users.py index 215d39120e..473be230c7 100644 --- a/auth_admin_passkey/models/res_users.py +++ b/auth_admin_passkey/models/res_users.py @@ -2,10 +2,10 @@ # @author Sylvain LE GAL (https://twitter.com/legalsylvain) # License AGPL-3 - See http://www.gnu.org/licenses/agpl-3.0.html -from datetime import datetime import logging +from datetime import datetime -from odoo import _, api, exceptions, models, SUPERUSER_ID +from odoo import SUPERUSER_ID, _, api, exceptions, models from odoo.tools import config logger = logging.getLogger(__name__) @@ -18,32 +18,29 @@ class ResUsers(models.Model): def _send_email_passkey(self, login_user): """ Send a email to the system administrator and / or the user to inform passkey use.""" - MailMail = self.env['mail.mail'].sudo() + MailMail = self.env["mail.mail"].sudo() admin_user = self.sudo().browse(SUPERUSER_ID) - send_to_user = config.get('auth_admin_passkey_send_to_user', True) - sysadmin_email = config.get('auth_admin_passkey_sysadmin_email', False) + send_to_user = config.get("auth_admin_passkey_send_to_user", True) + sysadmin_email = config.get("auth_admin_passkey_sysadmin_email", False) mails = [] if sysadmin_email: - lang = config.get( - 'auth_admin_passkey_sysadmin_lang', admin_user.lang) - mails.append({'email': sysadmin_email, 'lang': lang}) + lang = config.get("auth_admin_passkey_sysadmin_lang", admin_user.lang) + mails.append({"email": sysadmin_email, "lang": lang}) if send_to_user and login_user.email: - mails.append({'email': login_user.email, 'lang': login_user.lang}) + mails.append({"email": login_user.email, "lang": login_user.lang}) for mail in mails: subject, body_html = self._prepare_email_passkey(login_user) - MailMail.create({ - 'email_to': mail['email'], - 'subject': subject, - 'body_html': body_html - }) + MailMail.create( + {"email_to": mail["email"], "subject": subject, "body_html": body_html} + ) @api.model def _prepare_email_passkey(self, login_user): - subject = _('Passkey used') + subject = _("Passkey used") body = _( "System Administrator user used his passkey to login" " with %(login)s." @@ -51,8 +48,8 @@ def _prepare_email_passkey(self, login_user): "Technicals informations belows : \n\n" "- Login date : %(login_date)s\n\n" ) % { - 'login': login_user.login, - 'login_date': datetime.now().strftime("%Y-%m-%d %H:%M:%S"), + "login": login_user.login, + "login_date": datetime.now().strftime("%Y-%m-%d %H:%M:%S"), } return subject, "
%s
" % body @@ -62,11 +59,11 @@ def _check_credentials(self, password): except exceptions.AccessDenied: # Just be sure that parent methods aren't wrong - users = self.sudo().search([('id', '=', self._uid)]) + users = self.sudo().search([("id", "=", self._uid)]) if not users: raise - file_password = config.get('auth_admin_passkey_password', False) + file_password = config.get("auth_admin_passkey_password", False) if password and file_password == password: self._send_email_passkey(users[0]) else: diff --git a/auth_admin_passkey/tests/test_auth_admin_passkey.py b/auth_admin_passkey/tests/test_auth_admin_passkey.py index 77f9ba091f..b9c9f08bc1 100644 --- a/auth_admin_passkey/tests/test_auth_admin_passkey.py +++ b/auth_admin_passkey/tests/test_auth_admin_passkey.py @@ -3,8 +3,8 @@ # License AGPL-3 - See http://www.gnu.org/licenses/agpl-3.0.html from odoo import exceptions -from odoo.tools import config from odoo.tests import common +from odoo.tools import config @common.post_install(True) @@ -14,21 +14,23 @@ class TestAuthAdminPasskey(common.TransactionCase): def setUp(self): super(TestAuthAdminPasskey, self).setUp() - self.ResUsers = self.env['res.users'] + self.ResUsers = self.env["res.users"] self.db = self.env.cr.dbname - self.user_login = 'auth_admin_passkey_user' - self.user_password = 'Auth_admin_passkey_password*1' - self.sysadmin_passkey = 'SysAdminPasskeyPa$$w0rd' - self.bad_password = 'Bad_password*000001' - self.bad_login = 'bad_login' - - user = self.ResUsers.create({ - 'login': self.user_login, - 'password': self.user_password, - 'name': 'auth_admin_passkey User' - }) + self.user_login = "auth_admin_passkey_user" + self.user_password = "Auth_admin_passkey_password*1" + self.sysadmin_passkey = "SysAdminPasskeyPa$$w0rd" + self.bad_password = "Bad_password*000001" + self.bad_login = "bad_login" + + user = self.ResUsers.create( + { + "login": self.user_login, + "password": self.user_password, + "name": "auth_admin_passkey User", + } + ) self.user = user.sudo(user) def test_01_normal_login_succeed(self): @@ -40,14 +42,13 @@ def test_02_normal_login_fail(self): def test_03_normal_login_passkey_fail(self): # This should failed, because feature is disabled - config['auth_admin_passkey_password'] = False + config["auth_admin_passkey_password"] = False with self.assertRaises(exceptions.AccessDenied): - self.user._check_credentials( - self.sysadmin_passkey) + self.user._check_credentials(self.sysadmin_passkey) def test_04_normal_login_passkey_succeed(self): # This should succeed, because feature is enabled - config['auth_admin_passkey_password'] = self.sysadmin_passkey + config["auth_admin_passkey_password"] = self.sysadmin_passkey self.user._check_credentials(self.sysadmin_passkey) def test_05_passkey_login_passkey_succeed(self): @@ -55,4 +56,5 @@ def test_05_passkey_login_passkey_succeed(self): Test the correct behaviour of login with 'bad_login' / 'admin'""" with self.assertRaises(exceptions.AccessDenied): self.ResUsers.authenticate( - self.db, self.bad_login, self.sysadmin_passkey, {}) + self.db, self.bad_login, self.sysadmin_passkey, {} + ) diff --git a/auth_admin_passkey/tests/test_ui.py b/auth_admin_passkey/tests/test_ui.py index b1fec4c3a5..791f9bd353 100644 --- a/auth_admin_passkey/tests/test_ui.py +++ b/auth_admin_passkey/tests/test_ui.py @@ -3,41 +3,41 @@ # License AGPL-3 - See http://www.gnu.org/licenses/agpl-3.0.html from lxml import html - from werkzeug.test import Client from werkzeug.wrappers import BaseResponse -from odoo.tests import common from odoo.service import wsgi_server +from odoo.tests import common from odoo.tools import config @common.post_install(True) class TestUI(common.HttpCase): - def setUp(self): super(TestUI, self).setUp() with self.registry.cursor() as test_cursor: env = self.env(test_cursor) - self.user_login = 'auth_admin_passkey_user' - self.user_password = 'Auth_admin_passkey_password*1' - self.sysadmin_passkey = 'SysAdminPasskeyPa$$w0rd' - self.bad_password = 'Bad_password*000001' - self.bad_login = 'bad_login' + self.user_login = "auth_admin_passkey_user" + self.user_password = "Auth_admin_passkey_password*1" + self.sysadmin_passkey = "SysAdminPasskeyPa$$w0rd" + self.bad_password = "Bad_password*000001" + self.bad_login = "bad_login" - self.user = env['res.users'].create({ - 'login': self.user_login, - 'password': self.user_password, - 'name': 'auth_admin_passkey User' - }) + self.user = env["res.users"].create( + { + "login": self.user_login, + "password": self.user_password, + "name": "auth_admin_passkey User", + } + ) self.dbname = env.cr.dbname - self.werkzeug_environ = {'REMOTE_ADDR': '127.0.0.1'} + self.werkzeug_environ = {"REMOTE_ADDR": "127.0.0.1"} self.test_client = Client(wsgi_server.application, BaseResponse) - self.test_client.get('/web/session/logout') + self.test_client.get("/web/session/logout") def html_doc(self, response): """Get an HTML LXML document.""" @@ -46,95 +46,94 @@ def html_doc(self, response): def csrf_token(self, response): """Get a valid CSRF token.""" doc = self.html_doc(response) - return doc.xpath("//input[@name='csrf_token']")[0].get('value') + return doc.xpath("//input[@name='csrf_token']")[0].get("value") def get_request(self, url, data=None): - return self.test_client.get( - url, query_string=data, follow_redirects=True) + return self.test_client.get(url, query_string=data, follow_redirects=True) def post_request(self, url, data=None): return self.test_client.post( - url, data=data, follow_redirects=True, - environ_base=self.werkzeug_environ) + url, data=data, follow_redirects=True, environ_base=self.werkzeug_environ + ) def test_01_normal_login_succeed(self): # Our user wants to go to backoffice part of Odoo - response = self.get_request('/web/', data={'db': self.dbname}) + response = self.get_request("/web/", data={"db": self.dbname}) # He notices that his redirected to login page as not authenticated - self.assertIn('oe_login_form', response.data.decode('utf8')) + self.assertIn("oe_login_form", response.data.decode("utf8")) # He needs to enters his credentials and submit the form data = { - 'login': self.user_login, - 'password': self.user_password, - 'csrf_token': self.csrf_token(response), - 'db': self.dbname + "login": self.user_login, + "password": self.user_password, + "csrf_token": self.csrf_token(response), + "db": self.dbname, } - response = self.post_request('/web/login/', data=data) + response = self.post_request("/web/login/", data=data) # He notices that his redirected to backoffice - self.assertNotIn('oe_login_form', response.data.decode('utf8')) + self.assertNotIn("oe_login_form", response.data.decode("utf8")) def test_02_normal_login_fail(self): # Our user wants to go to backoffice part of Odoo - response = self.get_request('/web/', data={'db': self.dbname}) + response = self.get_request("/web/", data={"db": self.dbname}) # He notices that he's redirected to login page as not authenticated - self.assertIn('oe_login_form', response.data.decode('utf8')) + self.assertIn("oe_login_form", response.data.decode("utf8")) # He needs to enter his credentials and submit the form data = { - 'login': self.user_login, - 'password': self.bad_password, - 'csrf_token': self.csrf_token(response), - 'db': self.dbname + "login": self.user_login, + "password": self.bad_password, + "csrf_token": self.csrf_token(response), + "db": self.dbname, } - response = self.post_request('/web/login/', data=data) + response = self.post_request("/web/login/", data=data) # He mistyped his password so he's redirected to login page again - self.assertIn('Wrong login/password', response.data.decode('utf8')) + self.assertIn("Wrong login/password", response.data.decode("utf8")) def test_03_passkey_login_succeed(self): # We enable auth_admin_passkey feature - config['auth_admin_passkey_password'] = self.sysadmin_passkey + config["auth_admin_passkey_password"] = self.sysadmin_passkey # Our passkey user wants to go to backoffice part of Odoo - response = self.get_request('/web/', data={'db': self.dbname}) + response = self.get_request("/web/", data={"db": self.dbname}) # He notices that he's redirected to login page as not authenticated - self.assertIn('oe_login_form', response.data.decode('utf8')) + self.assertIn("oe_login_form", response.data.decode("utf8")) # He needs to enter his credentials and submit the form data = { - 'login': self.user_login, - 'password': self.sysadmin_passkey, - 'csrf_token': self.csrf_token(response), - 'db': self.dbname + "login": self.user_login, + "password": self.sysadmin_passkey, + "csrf_token": self.csrf_token(response), + "db": self.dbname, } - response = self.post_request('/web/login/', data=data) + response = self.post_request("/web/login/", data=data) # He notices that his redirected to backoffice - self.assertNotIn('oe_login_form', response.data.decode('utf8')) + self.assertNotIn("oe_login_form", response.data.decode("utf8")) def test_04_passkey_login_fail(self): # We disable auth_admin_passkey feature - config['auth_admin_passkey_password'] = False + config["auth_admin_passkey_password"] = False # Our passkey user wants to go to backoffice part of Odoo - response = self.get_request('/web/', data={'db': self.dbname}) + response = self.get_request("/web/", data={"db": self.dbname}) # He notices that he's redirected to login page as not authenticated - self.assertIn('oe_login_form', response.data.decode('utf8')) + self.assertIn("oe_login_form", response.data.decode("utf8")) # He needs to enter his credentials and submit the form data = { - 'login': self.user_login, - 'password': self.sysadmin_passkey, - 'csrf_token': self.csrf_token(response), - 'db': self.dbname + "login": self.user_login, + "password": self.sysadmin_passkey, + "csrf_token": self.csrf_token(response), + "db": self.dbname, } - response = self.post_request('/web/login/', data=data) + response = self.post_request("/web/login/", data=data) # Passkey feature is disabled so he's redirected to login page again - self.assertIn('Wrong login/password', response.data.decode('utf8')) + self.assertIn("Wrong login/password", response.data.decode("utf8")) From 8c72f3bd86e9e6cc22ad75622d160e9e81083e37 Mon Sep 17 00:00:00 2001 From: Ruchir Shukla Date: Fri, 2 Oct 2020 15:07:35 +0530 Subject: [PATCH 298/686] [MIG]auth_admin_passkey Migrate to 13 --- auth_admin_passkey/README.rst | 10 +++--- auth_admin_passkey/models/res_users.py | 6 ++-- .../static/description/index.html | 36 ++++--------------- .../tests/test_auth_admin_passkey.py | 2 +- 4 files changed, 16 insertions(+), 38 deletions(-) diff --git a/auth_admin_passkey/README.rst b/auth_admin_passkey/README.rst index 1acf3c3cc4..204a1c70fb 100644 --- a/auth_admin_passkey/README.rst +++ b/auth_admin_passkey/README.rst @@ -14,13 +14,13 @@ Authentification - System Administrator Passkey :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html :alt: License: AGPL-3 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github - :target: https://github.com/OCA/server-auth/tree/12.0/auth_admin_passkey + :target: https://github.com/OCA/server-auth/tree/13.0/auth_admin_passkey :alt: OCA/server-auth .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png - :target: https://translation.odoo-community.org/projects/server-auth-12-0/server-auth-12-0-auth_admin_passkey + :target: https://translation.odoo-community.org/projects/server-auth-13-0/server-auth-13-0-auth_admin_passkey :alt: Translate me on Weblate .. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png - :target: https://runbot.odoo-community.org/runbot/251/12.0 + :target: https://runbot.odoo-community.org/runbot/251/13.0 :alt: Try me on Runbot |badge1| |badge2| |badge3| |badge4| |badge5| @@ -80,7 +80,7 @@ Bug Tracker Bugs are tracked on `GitHub Issues `_. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed -`feedback `_. +`feedback `_. Do not contact contributors directly about support or help with technical issues. @@ -112,6 +112,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose mission is to support the collaborative development of Odoo features and promote its widespread use. -This module is part of the `OCA/server-auth `_ project on GitHub. +This module is part of the `OCA/server-auth `_ project on GitHub. You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute. diff --git a/auth_admin_passkey/models/res_users.py b/auth_admin_passkey/models/res_users.py index 473be230c7..a7813b7a1c 100644 --- a/auth_admin_passkey/models/res_users.py +++ b/auth_admin_passkey/models/res_users.py @@ -18,9 +18,9 @@ class ResUsers(models.Model): def _send_email_passkey(self, login_user): """ Send a email to the system administrator and / or the user to inform passkey use.""" - MailMail = self.env["mail.mail"].sudo() + MailMail = self.env["mail.mail"].with_user(SUPERUSER_ID) - admin_user = self.sudo().browse(SUPERUSER_ID) + admin_user = self.with_user(SUPERUSER_ID).browse(SUPERUSER_ID) send_to_user = config.get("auth_admin_passkey_send_to_user", True) sysadmin_email = config.get("auth_admin_passkey_sysadmin_email", False) @@ -59,7 +59,7 @@ def _check_credentials(self, password): except exceptions.AccessDenied: # Just be sure that parent methods aren't wrong - users = self.sudo().search([("id", "=", self._uid)]) + users = self.with_user(SUPERUSER_ID).search([("id", "=", self._uid)]) if not users: raise diff --git a/auth_admin_passkey/static/description/index.html b/auth_admin_passkey/static/description/index.html index dadacd840c..936ae9adeb 100644 --- a/auth_admin_passkey/static/description/index.html +++ b/auth_admin_passkey/static/description/index.html @@ -3,13 +3,13 @@ - + Authentification - System Administrator Passkey + + + + + + + + + + + + + + + + + + + + + + + + + + + + + image/svg+xml + + + + + Openclipart + + + + 2007-02-06T06:13:53 + Thumbtack note with message "E-mail!" + https://openclipart.org/detail/3040/thumbtack-note-email-by-zeimusu + + + zeimusu + + + + + bulletin + email + memo + note + thumbtack + thumbtack note + + + + + + + + + + + diff --git a/auth_signup_verify_email/tests/__init__.py b/auth_signup_verify_email/tests/__init__.py new file mode 100644 index 0000000000..8858be4966 --- /dev/null +++ b/auth_signup_verify_email/tests/__init__.py @@ -0,0 +1,5 @@ +# -*- coding: utf-8 -*- +# © 2016 Jairo Llopis +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +from . import test_verify_email diff --git a/auth_signup_verify_email/tests/test_verify_email.py b/auth_signup_verify_email/tests/test_verify_email.py new file mode 100644 index 0000000000..a3649cd7de --- /dev/null +++ b/auth_signup_verify_email/tests/test_verify_email.py @@ -0,0 +1,72 @@ +# -*- coding: utf-8 -*- +# © 2016 Jairo Llopis +# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). + +from urllib import urlencode +from lxml.html import document_fromstring +from openerp import _ +from openerp.tests.common import HttpCase + + +class UICase(HttpCase): + def setUp(self): + super(UICase, self).setUp() + self.icp = self.env["ir.config_parameter"] + self.old_allow_uninvited = self.icp.get_param( + "auth_signup.allow_uninvited") + self.icp.set_param("auth_signup.allow_uninvited", "True") + + # Workaround https://github.com/odoo/odoo/issues/12237 + self.cr.commit() + + self.data = { + "csrf_token": self.csrf_token(), + "name": "Somebody", + } + self.msg = { + "badmail": _("That does not seem to be an email address."), + "failure": _( + "Something went wrong, please try again later or contact us."), + "success": _("Check your email to activate your account!"), + } + + def tearDown(self): + """Workaround https://github.com/odoo/odoo/issues/12237.""" + super(UICase, self).tearDown() + self.icp.set_param( + "auth_signup.allow_uninvited", self.old_allow_uninvited) + self.cr.commit() + + def html_doc(self, url="/web/signup", data=None, timeout=10): + """Get an HTML LXML document.""" + if data: + data = bytes(urlencode(data)) + return document_fromstring(self.url_open(url, data, timeout).read()) + + def csrf_token(self): + """Get a valid CSRF token.""" + doc = self.html_doc() + return doc.xpath("//input[@name='csrf_token']")[0].get("value") + + def search_text(self, doc, text): + """Search for any element containing the text.""" + return doc.xpath("//*[contains(text(), '%s')]" % text) + + def test_bad_email(self): + """Test rejection of bad emails.""" + self.data["login"] = "bad email" + doc = self.html_doc(data=self.data) + self.assertTrue(self.search_text(doc, self.msg["badmail"])) + + def test_good_email(self): + """Test acceptance of good emails. + + This test could lead to success if your SMTP settings are correct, or + to failure otherwise. Any case is expected, since tests usually run + under unconfigured demo instances. + """ + self.data["login"] = "good@example.com" + doc = self.html_doc(data=self.data) + self.assertTrue( + self.search_text(doc, self.msg["failure"]) or + self.search_text(doc, self.msg["success"])) diff --git a/auth_signup_verify_email/views/signup.xml b/auth_signup_verify_email/views/signup.xml new file mode 100644 index 0000000000..cc81fcccf2 --- /dev/null +++ b/auth_signup_verify_email/views/signup.xml @@ -0,0 +1,20 @@ + + + + + + + From 84a62a174c2f91cbca36ae9d906112185ccf97ad Mon Sep 17 00:00:00 2001 From: vincent Date: Fri, 27 Jan 2017 16:35:47 +0100 Subject: [PATCH 398/686] [MIG][10] auth_signup_verify_email * Module set to installable * Odoo don't let signup without password --- .../{__openerp__.py => __manifest__.py} | 4 ++-- auth_signup_verify_email/controllers/main.py | 6 +++--- 2 files changed, 5 insertions(+), 5 deletions(-) rename auth_signup_verify_email/{__openerp__.py => __manifest__.py} (92%) diff --git a/auth_signup_verify_email/__openerp__.py b/auth_signup_verify_email/__manifest__.py similarity index 92% rename from auth_signup_verify_email/__openerp__.py rename to auth_signup_verify_email/__manifest__.py index 6ac75954b6..3908671e10 100644 --- a/auth_signup_verify_email/__openerp__.py +++ b/auth_signup_verify_email/__manifest__.py @@ -4,7 +4,7 @@ { "name": "Verify email at signup", "summary": "Force uninvited users to use a good email for signup", - "version": "9.0.1.0.0", + "version": "10.0.1.0.0", "category": "Authentication", "website": "http://www.tecnativa.com", "author": "Antiun Ingeniería S.L., " @@ -12,7 +12,7 @@ "Odoo Community Association (OCA)", "license": "AGPL-3", "application": False, - "installable": True, + 'installable': True, "external_dependencies": { "python": [ "lxml", diff --git a/auth_signup_verify_email/controllers/main.py b/auth_signup_verify_email/controllers/main.py index 506e937444..0fb5e06638 100644 --- a/auth_signup_verify_email/controllers/main.py +++ b/auth_signup_verify_email/controllers/main.py @@ -3,8 +3,8 @@ # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html). import logging -from openerp import _, http -from openerp.addons.auth_signup.controllers.main import AuthSignupHome +from odoo import _, http +from odoo.addons.auth_signup.controllers.main import AuthSignupHome _logger = logging.getLogger(__name__) @@ -34,7 +34,7 @@ def passwordless_signup(self, values): values["email"] = values.get("login") # Remove password - values["password"] = False + values["password"] = "" sudo_users = (http.request.env["res.users"] .with_context(create_user=True).sudo()) From 6c28a54d01c3ec2430749ab7cbcff1746ce47f84 Mon Sep 17 00:00:00 2001 From: OCA Transbot Date: Sun, 12 Jun 2016 12:55:45 -0400 Subject: [PATCH 399/686] OCA Transbot updated translations from Transifex --- auth_signup_verify_email/i18n/de.po | 23 +++++---------- auth_signup_verify_email/i18n/es.po | 24 +++++---------- auth_signup_verify_email/i18n/fr.po | 41 ++++++++++++++++++++++++++ auth_signup_verify_email/i18n/hr.po | 40 +++++++++++++++++++++++++ auth_signup_verify_email/i18n/hr_HR.po | 40 +++++++++++++++++++++++++ auth_signup_verify_email/i18n/it.po | 23 +++++---------- auth_signup_verify_email/i18n/ro.po | 41 ++++++++++++++++++++++++++ auth_signup_verify_email/i18n/sl.po | 23 +++++---------- auth_signup_verify_email/i18n/tr.po | 23 +++++---------- 9 files changed, 202 insertions(+), 76 deletions(-) create mode 100644 auth_signup_verify_email/i18n/fr.po create mode 100644 auth_signup_verify_email/i18n/hr.po create mode 100644 auth_signup_verify_email/i18n/hr_HR.po create mode 100644 auth_signup_verify_email/i18n/ro.po diff --git a/auth_signup_verify_email/i18n/de.po b/auth_signup_verify_email/i18n/de.po index 367716b401..d378fe7e65 100644 --- a/auth_signup_verify_email/i18n/de.po +++ b/auth_signup_verify_email/i18n/de.po @@ -6,12 +6,12 @@ # Rudolf Schnapka , 2016 msgid "" msgstr "" -"Project-Id-Version: server-tools (8.0)\n" +"Project-Id-Version: server-tools (9.0)\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2016-01-19 14:44+0000\n" -"PO-Revision-Date: 2016-01-18 13:24+0000\n" -"Last-Translator: Rudolf Schnapka \n" -"Language-Team: German (http://www.transifex.com/oca/OCA-server-tools-8-0/language/de/)\n" +"POT-Creation-Date: 2016-06-09 12:31+0000\n" +"PO-Revision-Date: 2016-05-31 14:47+0000\n" +"Last-Translator: OCA Transbot \n" +"Language-Team: German (http://www.transifex.com/oca/OCA-server-tools-9-0/language/de/)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: \n" @@ -20,28 +20,21 @@ msgstr "" #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:54 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:30 #, python-format msgid "Check your email to activate your account!" msgstr "Prüfen Sie Ihre Email, um Ihr Konto zu aktivieren." #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:50 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:28 #, python-format msgid "Something went wrong, please try again later or contact us." msgstr "Etwas ist schief gelaufen, bitte später nochmal versuchen oden an uns wenden." #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:31 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:27 #, python-format msgid "That does not seem to be an email address." msgstr "Das schein keine Email-Adresse zu sein." - -#. module: auth_signup_verify_email -#: view:website:auth_signup.fields -msgid "email" -msgstr "EMail" - -#. module: auth_signup_verify_email -#: view:website:auth_signup.fields -msgid "only_passwords" -msgstr "" diff --git a/auth_signup_verify_email/i18n/es.po b/auth_signup_verify_email/i18n/es.po index c170d4fc5c..08ca0a8704 100644 --- a/auth_signup_verify_email/i18n/es.po +++ b/auth_signup_verify_email/i18n/es.po @@ -4,15 +4,14 @@ # # Translators: # Antonio Trueba, 2016 -# Antonio Trueba, 2016 msgid "" msgstr "" -"Project-Id-Version: server-tools (8.0)\n" +"Project-Id-Version: server-tools (9.0)\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2016-01-19 14:44+0000\n" -"PO-Revision-Date: 2016-02-16 15:15+0000\n" -"Last-Translator: Antonio Trueba\n" -"Language-Team: Spanish (http://www.transifex.com/oca/OCA-server-tools-8-0/language/es/)\n" +"POT-Creation-Date: 2016-06-09 12:31+0000\n" +"PO-Revision-Date: 2016-05-31 14:47+0000\n" +"Last-Translator: OCA Transbot \n" +"Language-Team: Spanish (http://www.transifex.com/oca/OCA-server-tools-9-0/language/es/)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: \n" @@ -21,28 +20,21 @@ msgstr "" #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:54 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:30 #, python-format msgid "Check your email to activate your account!" msgstr "Revise su correo para activar su cuenta." #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:50 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:28 #, python-format msgid "Something went wrong, please try again later or contact us." msgstr "Algo ha ido mal, por favor inténtelo de nuevo más tarde o contáctenos." #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:31 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:27 #, python-format msgid "That does not seem to be an email address." msgstr "Eso no parece una dirección de email válida." - -#. module: auth_signup_verify_email -#: view:website:auth_signup.fields -msgid "email" -msgstr "email" - -#. module: auth_signup_verify_email -#: view:website:auth_signup.fields -msgid "only_passwords" -msgstr "" diff --git a/auth_signup_verify_email/i18n/fr.po b/auth_signup_verify_email/i18n/fr.po new file mode 100644 index 0000000000..1798756c61 --- /dev/null +++ b/auth_signup_verify_email/i18n/fr.po @@ -0,0 +1,41 @@ +# Translation of Odoo Server. +# This file contains the translation of the following modules: +# * auth_signup_verify_email +# +# Translators: +# Alexandre Papin , 2017 +msgid "" +msgstr "" +"Project-Id-Version: Odoo Server 10.0\n" +"Report-Msgid-Bugs-To: \n" +"POT-Creation-Date: 2017-03-18 02:19+0000\n" +"PO-Revision-Date: 2017-03-18 02:19+0000\n" +"Last-Translator: Alexandre Papin , 2017\n" +"Language-Team: French (https://www.transifex.com/oca/teams/23907/fr/)\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: \n" +"Language: fr\n" +"Plural-Forms: nplurals=2; plural=(n > 1);\n" + +#. module: auth_signup_verify_email +#: code:addons/auth_signup_verify_email/controllers/main.py:54 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:30 +#, python-format +msgid "Check your email to activate your account!" +msgstr "Un email vous à été envoyé pour activer votre compte." + +#. module: auth_signup_verify_email +#: code:addons/auth_signup_verify_email/controllers/main.py:50 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:28 +#, python-format +msgid "Something went wrong, please try again later or contact us." +msgstr "" +"Une erreur est survenue, veuillez réessayer plus tard ou contactez nous." + +#. module: auth_signup_verify_email +#: code:addons/auth_signup_verify_email/controllers/main.py:31 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:27 +#, python-format +msgid "That does not seem to be an email address." +msgstr "Veuillez fournir une adresse email valide." diff --git a/auth_signup_verify_email/i18n/hr.po b/auth_signup_verify_email/i18n/hr.po new file mode 100644 index 0000000000..1b97b61ec3 --- /dev/null +++ b/auth_signup_verify_email/i18n/hr.po @@ -0,0 +1,40 @@ +# Translation of Odoo Server. +# This file contains the translation of the following modules: +# * auth_signup_verify_email +# +# Translators: +# Bole , 2017 +msgid "" +msgstr "" +"Project-Id-Version: Odoo Server 10.0\n" +"Report-Msgid-Bugs-To: \n" +"POT-Creation-Date: 2017-05-10 00:47+0000\n" +"PO-Revision-Date: 2017-05-10 00:47+0000\n" +"Last-Translator: Bole , 2017\n" +"Language-Team: Croatian (https://www.transifex.com/oca/teams/23907/hr/)\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: \n" +"Language: hr\n" +"Plural-Forms: nplurals=3; plural=n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2;\n" + +#. module: auth_signup_verify_email +#: code:addons/auth_signup_verify_email/controllers/main.py:54 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:30 +#, python-format +msgid "Check your email to activate your account!" +msgstr "Provjerite svoj e-mail za aktivaciu računa!" + +#. module: auth_signup_verify_email +#: code:addons/auth_signup_verify_email/controllers/main.py:50 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:28 +#, python-format +msgid "Something went wrong, please try again later or contact us." +msgstr "Nešto nije u redu, molimo pokušajte ponovo ili nas kontaktirajte." + +#. module: auth_signup_verify_email +#: code:addons/auth_signup_verify_email/controllers/main.py:31 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:27 +#, python-format +msgid "That does not seem to be an email address." +msgstr "Ovo ne izgleda kao e-mail adresa." diff --git a/auth_signup_verify_email/i18n/hr_HR.po b/auth_signup_verify_email/i18n/hr_HR.po new file mode 100644 index 0000000000..cb4d2e312d --- /dev/null +++ b/auth_signup_verify_email/i18n/hr_HR.po @@ -0,0 +1,40 @@ +# Translation of Odoo Server. +# This file contains the translation of the following modules: +# * auth_signup_verify_email +# +# Translators: +# Bole , 2016 +msgid "" +msgstr "" +"Project-Id-Version: server-tools (9.0)\n" +"Report-Msgid-Bugs-To: \n" +"POT-Creation-Date: 2016-06-29 00:48+0000\n" +"PO-Revision-Date: 2016-06-13 08:38+0000\n" +"Last-Translator: Bole \n" +"Language-Team: Croatian (Croatia) (http://www.transifex.com/oca/OCA-server-tools-9-0/language/hr_HR/)\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: \n" +"Language: hr_HR\n" +"Plural-Forms: nplurals=3; plural=n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2;\n" + +#. module: auth_signup_verify_email +#: code:addons/auth_signup_verify_email/controllers/main.py:54 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:30 +#, python-format +msgid "Check your email to activate your account!" +msgstr "Provjerite svoj mail za aktiviranje računa" + +#. module: auth_signup_verify_email +#: code:addons/auth_signup_verify_email/controllers/main.py:50 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:28 +#, python-format +msgid "Something went wrong, please try again later or contact us." +msgstr "Nešto nije u redu, molimo pokušajte se prijaviti kasnije ili nas kontaktirajte." + +#. module: auth_signup_verify_email +#: code:addons/auth_signup_verify_email/controllers/main.py:31 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:27 +#, python-format +msgid "That does not seem to be an email address." +msgstr "Ovo ne izgleda kao valjana mail adresa." diff --git a/auth_signup_verify_email/i18n/it.po b/auth_signup_verify_email/i18n/it.po index 75bd3e908e..e3198c1d31 100644 --- a/auth_signup_verify_email/i18n/it.po +++ b/auth_signup_verify_email/i18n/it.po @@ -6,12 +6,12 @@ # Paolo Valier, 2016 msgid "" msgstr "" -"Project-Id-Version: server-tools (8.0)\n" +"Project-Id-Version: server-tools (9.0)\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2016-03-17 15:36+0000\n" -"PO-Revision-Date: 2016-03-13 08:59+0000\n" -"Last-Translator: Paolo Valier\n" -"Language-Team: Italian (http://www.transifex.com/oca/OCA-server-tools-8-0/language/it/)\n" +"POT-Creation-Date: 2016-06-09 12:31+0000\n" +"PO-Revision-Date: 2016-05-31 14:47+0000\n" +"Last-Translator: OCA Transbot \n" +"Language-Team: Italian (http://www.transifex.com/oca/OCA-server-tools-9-0/language/it/)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: \n" @@ -20,28 +20,21 @@ msgstr "" #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:54 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:30 #, python-format msgid "Check your email to activate your account!" msgstr "Controlla la tua email per attivare il tuo account!" #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:50 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:28 #, python-format msgid "Something went wrong, please try again later or contact us." msgstr "Qualcosa non è funzionato, prego provare più tardi altrimenti mettiti in contatto con noi." #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:31 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:27 #, python-format msgid "That does not seem to be an email address." msgstr "Questo non sembra essere un indirizzo email valido." - -#. module: auth_signup_verify_email -#: view:website:auth_signup.fields -msgid "email" -msgstr "email" - -#. module: auth_signup_verify_email -#: view:website:auth_signup.fields -msgid "only_passwords" -msgstr "" diff --git a/auth_signup_verify_email/i18n/ro.po b/auth_signup_verify_email/i18n/ro.po new file mode 100644 index 0000000000..561d092360 --- /dev/null +++ b/auth_signup_verify_email/i18n/ro.po @@ -0,0 +1,41 @@ +# Translation of Odoo Server. +# This file contains the translation of the following modules: +# * auth_signup_verify_email +# +# Translators: +# Daniel Schweiger , 2017 +msgid "" +msgstr "" +"Project-Id-Version: Odoo Server 10.0\n" +"Report-Msgid-Bugs-To: \n" +"POT-Creation-Date: 2017-06-22 01:11+0000\n" +"PO-Revision-Date: 2017-06-22 01:11+0000\n" +"Last-Translator: Daniel Schweiger , 2017\n" +"Language-Team: Romanian (https://www.transifex.com/oca/teams/23907/ro/)\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: \n" +"Language: ro\n" +"Plural-Forms: nplurals=3; plural=(n==1?0:(((n%100>19)||((n%100==0)&&(n!=0)))?2:1));\n" + +#. module: auth_signup_verify_email +#: code:addons/auth_signup_verify_email/controllers/main.py:54 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:30 +#, python-format +msgid "Check your email to activate your account!" +msgstr "Ati primit un email pentru activarea acestui cont!" + +#. module: auth_signup_verify_email +#: code:addons/auth_signup_verify_email/controllers/main.py:50 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:28 +#, python-format +msgid "Something went wrong, please try again later or contact us." +msgstr "" +"Sa produs o eroare, va rugam sa incercati mai tarziu sau contacteaza-ne." + +#. module: auth_signup_verify_email +#: code:addons/auth_signup_verify_email/controllers/main.py:31 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:27 +#, python-format +msgid "That does not seem to be an email address." +msgstr "Nu ati introdus o directie email corespunzatoare." diff --git a/auth_signup_verify_email/i18n/sl.po b/auth_signup_verify_email/i18n/sl.po index 612e35cc63..bdfb829c5e 100644 --- a/auth_signup_verify_email/i18n/sl.po +++ b/auth_signup_verify_email/i18n/sl.po @@ -6,12 +6,12 @@ # Matjaž Mozetič , 2015 msgid "" msgstr "" -"Project-Id-Version: server-tools (8.0)\n" +"Project-Id-Version: server-tools (9.0)\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2015-11-27 14:01+0000\n" -"PO-Revision-Date: 2015-11-13 11:44+0000\n" -"Last-Translator: Matjaž Mozetič \n" -"Language-Team: Slovenian (http://www.transifex.com/oca/OCA-server-tools-8-0/language/sl/)\n" +"POT-Creation-Date: 2016-06-09 12:31+0000\n" +"PO-Revision-Date: 2016-05-31 14:47+0000\n" +"Last-Translator: OCA Transbot \n" +"Language-Team: Slovenian (http://www.transifex.com/oca/OCA-server-tools-9-0/language/sl/)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: \n" @@ -20,28 +20,21 @@ msgstr "" #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:54 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:30 #, python-format msgid "Check your email to activate your account!" msgstr "Preverite svojo e-pošto za aktiviranje računa!" #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:50 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:28 #, python-format msgid "Something went wrong, please try again later or contact us." msgstr "Nekaj je narobe. Ponovno poskusite kasneje ali pa stopite v stik z nami." #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:31 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:27 #, python-format msgid "That does not seem to be an email address." msgstr "Kaže, da to ni e-poštni naslov." - -#. module: auth_signup_verify_email -#: view:website:auth_signup.fields -msgid "email" -msgstr "e-pošta" - -#. module: auth_signup_verify_email -#: view:website:auth_signup.fields -msgid "only_passwords" -msgstr "only_passwords" diff --git a/auth_signup_verify_email/i18n/tr.po b/auth_signup_verify_email/i18n/tr.po index a41abef839..b6fbbab043 100644 --- a/auth_signup_verify_email/i18n/tr.po +++ b/auth_signup_verify_email/i18n/tr.po @@ -6,12 +6,12 @@ # Ahmet Altınışık , 2016 msgid "" msgstr "" -"Project-Id-Version: server-tools (8.0)\n" +"Project-Id-Version: server-tools (9.0)\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2016-01-19 14:44+0000\n" -"PO-Revision-Date: 2016-01-31 14:58+0000\n" -"Last-Translator: Ahmet Altınışık \n" -"Language-Team: Turkish (http://www.transifex.com/oca/OCA-server-tools-8-0/language/tr/)\n" +"POT-Creation-Date: 2016-06-09 12:31+0000\n" +"PO-Revision-Date: 2016-05-31 14:47+0000\n" +"Last-Translator: OCA Transbot \n" +"Language-Team: Turkish (http://www.transifex.com/oca/OCA-server-tools-9-0/language/tr/)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: \n" @@ -20,28 +20,21 @@ msgstr "" #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:54 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:30 #, python-format msgid "Check your email to activate your account!" msgstr "Hesabınızı aktive etmek için e-postanızı kontrol edin!" #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:50 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:28 #, python-format msgid "Something went wrong, please try again later or contact us." msgstr "Bişeyler ters gitti. Lütfen sonra tekrar deneyin ya da bize ulaşın." #. module: auth_signup_verify_email #: code:addons/auth_signup_verify_email/controllers/main.py:31 +#: code:addons/auth_signup_verify_email/tests/test_verify_email.py:27 #, python-format msgid "That does not seem to be an email address." msgstr "Bu bir e-posta adresi gözükmüyor." - -#. module: auth_signup_verify_email -#: view:website:auth_signup.fields -msgid "email" -msgstr "eposta" - -#. module: auth_signup_verify_email -#: view:website:auth_signup.fields -msgid "only_passwords" -msgstr "sadece_parolalar" From f799750bfea0b5f174e5e141d21804c08ffb92c5 Mon Sep 17 00:00:00 2001 From: Simone Orsi Date: Mon, 22 Jan 2018 18:30:09 +0100 Subject: [PATCH 400/686] [MIG][11] auth_signup_verify_email --- auth_signup_verify_email/README.rst | 18 +++++++------- auth_signup_verify_email/__init__.py | 3 +-- auth_signup_verify_email/__manifest__.py | 16 ++++++------- .../controllers/__init__.py | 3 +-- auth_signup_verify_email/controllers/main.py | 24 +++++++++++-------- auth_signup_verify_email/tests/__init__.py | 2 +- .../tests/test_verify_email.py | 15 ++++++------ auth_signup_verify_email/views/signup.xml | 6 ++--- 8 files changed, 42 insertions(+), 45 deletions(-) diff --git a/auth_signup_verify_email/README.rst b/auth_signup_verify_email/README.rst index 041de578ee..e7ebc18d56 100644 --- a/auth_signup_verify_email/README.rst +++ b/auth_signup_verify_email/README.rst @@ -6,16 +6,16 @@ Verify email at signup ====================== -This module extends the functionality of public sign up, and forces users to +This module extends the functionality of public sign up to force users to provide a valid email address. -To achieve this requirement, the user does not need to provide a password at -sign up, but when logging in later for the first time. +To achieve this, users are not required to provide a password at +sign up: they are asked for only at first login attempt. Installation ============ -* Install validate_email_ with ``pip install validate_email`` or equivalent. +* Install `validate_email `_ with ``pip install validate_email`` or equivalent. Configuration ============= @@ -24,8 +24,7 @@ To configure this module, you need to: * `Properly configure your outgoing email server(s) `_. -* Go to *Settings > General Settings* and enable *Allow - external users to sign up*. +* Go to *Settings > General Settings -> General settings*, search for the *Users* section and enable *Free sign up* in *Customer account*. Usage ===== @@ -37,7 +36,7 @@ To use this module, you need to: .. image:: https://odoo-community.org/website/image/ir.attachment/5784_f2813bd/datas :alt: Try me on Runbot - :target: https://runbot.odoo-community.org/runbot/149/9.0 + :target: https://runbot.odoo-community.org/runbot/149/11.0 Known issues / Roadmap ====================== @@ -51,7 +50,7 @@ Bug Tracker Bugs are tracked on `GitHub Issues `_. In case of trouble, please check there if your issue has already been reported. If you spotted it first, -help us smashing it by providing a detailed and welcomed feedback. +help us smash it by providing detailed and welcomed feedback. Credits @@ -68,6 +67,7 @@ Contributors * Rafael Blasco * Jairo Llopis +* Simone Orsi Maintainer ---------- @@ -83,5 +83,3 @@ mission is to support the collaborative development of Odoo features and promote its widespread use. To contribute to this module, please visit https://odoo-community.org. - -.. _validate_email: https://pypi.python.org/pypi/validate_email diff --git a/auth_signup_verify_email/__init__.py b/auth_signup_verify_email/__init__.py index 35233d377a..54d1454ece 100644 --- a/auth_signup_verify_email/__init__.py +++ b/auth_signup_verify_email/__init__.py @@ -1,5 +1,4 @@ -# -*- coding: utf-8 -*- -# © 2015 Antiun Ingeniería, S.L. +# Copyright 2015 Antiun Ingeniería, S.L. # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html). from . import controllers diff --git a/auth_signup_verify_email/__manifest__.py b/auth_signup_verify_email/__manifest__.py index 3908671e10..a965fefa4d 100644 --- a/auth_signup_verify_email/__manifest__.py +++ b/auth_signup_verify_email/__manifest__.py @@ -1,28 +1,26 @@ -# -*- coding: utf-8 -*- -# © 2015 Antiun Ingeniería, S.L. +# Copyright 2015 Antiun Ingeniería, S.L. # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html). { "name": "Verify email at signup", "summary": "Force uninvited users to use a good email for signup", - "version": "10.0.1.0.0", + "version": "11.0.1.0.0", "category": "Authentication", - "website": "http://www.tecnativa.com", + "website": "https://github.com/OCA/server-auth", "author": "Antiun Ingeniería S.L., " "Tecnativa, " "Odoo Community Association (OCA)", "license": "AGPL-3", - "application": False, - 'installable': True, + "depends": [ + "auth_signup", + ], "external_dependencies": { "python": [ "lxml", "validate_email", ], }, - "depends": [ - "auth_signup", - ], "data": [ "views/signup.xml", ], + 'installable': True, } diff --git a/auth_signup_verify_email/controllers/__init__.py b/auth_signup_verify_email/controllers/__init__.py index d10129bede..437ebe48e0 100644 --- a/auth_signup_verify_email/controllers/__init__.py +++ b/auth_signup_verify_email/controllers/__init__.py @@ -1,5 +1,4 @@ -# -*- coding: utf-8 -*- -# © 2015 Antiun Ingeniería, S.L. +# Copyright 2015 Antiun Ingeniería, S.L. # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html). from . import main diff --git a/auth_signup_verify_email/controllers/main.py b/auth_signup_verify_email/controllers/main.py index 0fb5e06638..38ad7e4742 100644 --- a/auth_signup_verify_email/controllers/main.py +++ b/auth_signup_verify_email/controllers/main.py @@ -1,9 +1,9 @@ -# -*- coding: utf-8 -*- -# © 2015 Antiun Ingeniería, S.L. +# Copyright 2015 Antiun Ingeniería, S.L. # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html). import logging from odoo import _, http +from odoo.http import request from odoo.addons.auth_signup.controllers.main import AuthSignupHome _logger = logging.getLogger(__name__) @@ -15,11 +15,12 @@ class SignupVerifyEmail(AuthSignupHome): + @http.route() def web_auth_signup(self, *args, **kw): - if (http.request.params.get("login") and - not http.request.params.get("password")): - return self.passwordless_signup(http.request.params) + if (request.params.get("login") and + not request.params.get("password")): + return self.passwordless_signup(request.params) else: return super(SignupVerifyEmail, self).web_auth_signup(*args, **kw) @@ -29,17 +30,20 @@ def passwordless_signup(self, values): # Check good format of e-mail if not validate_email(values.get("login", "")): qcontext["error"] = _("That does not seem to be an email address.") - return http.request.render("auth_signup.signup", qcontext) + return request.render("auth_signup.signup", qcontext) elif not values.get("email"): values["email"] = values.get("login") + # preserve user lang + values['lang'] = request.lang + # Remove password values["password"] = "" - sudo_users = (http.request.env["res.users"] + sudo_users = (request.env["res.users"] .with_context(create_user=True).sudo()) try: - with http.request.cr.savepoint(): + with request.cr.savepoint(): sudo_users.signup(values, qcontext.get("token")) sudo_users.reset_password(values.get("login")) except Exception as error: @@ -49,7 +53,7 @@ def passwordless_signup(self, values): # Agnostic message for security qcontext["error"] = _( "Something went wrong, please try again later or contact us.") - return http.request.render("auth_signup.signup", qcontext) + return request.render("auth_signup.signup", qcontext) qcontext["message"] = _("Check your email to activate your account!") - return http.request.render("auth_signup.reset_password", qcontext) + return request.render("auth_signup.reset_password", qcontext) diff --git a/auth_signup_verify_email/tests/__init__.py b/auth_signup_verify_email/tests/__init__.py index 8858be4966..bed770df15 100644 --- a/auth_signup_verify_email/tests/__init__.py +++ b/auth_signup_verify_email/tests/__init__.py @@ -1,5 +1,5 @@ # -*- coding: utf-8 -*- -# © 2016 Jairo Llopis +# Copyright 2016 Jairo Llopis # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). from . import test_verify_email diff --git a/auth_signup_verify_email/tests/test_verify_email.py b/auth_signup_verify_email/tests/test_verify_email.py index a3649cd7de..244535f321 100644 --- a/auth_signup_verify_email/tests/test_verify_email.py +++ b/auth_signup_verify_email/tests/test_verify_email.py @@ -1,11 +1,10 @@ -# -*- coding: utf-8 -*- -# © 2016 Jairo Llopis +# Copyright 2016 Jairo Llopis # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). -from urllib import urlencode from lxml.html import document_fromstring -from openerp import _ -from openerp.tests.common import HttpCase +from odoo import _ +from odoo.tests.common import HttpCase +from odoo.tools.misc import mute_logger class UICase(HttpCase): @@ -39,9 +38,8 @@ def tearDown(self): def html_doc(self, url="/web/signup", data=None, timeout=10): """Get an HTML LXML document.""" - if data: - data = bytes(urlencode(data)) - return document_fromstring(self.url_open(url, data, timeout).read()) + resp = self.url_open(url, data=data, timeout=timeout) + return document_fromstring(resp.content) def csrf_token(self): """Get a valid CSRF token.""" @@ -58,6 +56,7 @@ def test_bad_email(self): doc = self.html_doc(data=self.data) self.assertTrue(self.search_text(doc, self.msg["badmail"])) + @mute_logger('odoo.addons.auth_signup_verify_email.controllers.main') def test_good_email(self): """Test acceptance of good emails. diff --git a/auth_signup_verify_email/views/signup.xml b/auth_signup_verify_email/views/signup.xml index cc81fcccf2..0a55571a4b 100644 --- a/auth_signup_verify_email/views/signup.xml +++ b/auth_signup_verify_email/views/signup.xml @@ -1,14 +1,14 @@ -