Multi-comapnies incorrect access right in view of partner list

Hello ,

I have fixed this issue in this following branch[6.0,6.1,trunk] :
6.0 := <email address hidden>
           rev no : 3651
6.1 := Revision ID: <email address hidden>
            Rev no : 4320
trunk := <email address hidden>
           Rev no : 4712

Thanks,
pna

Hi,

this fix has been tested and the result is OK.

Many thanks for your help

Rgds,

Damien D.

Hi again,

the fix is for partners. Is there a way to do this on all the object linked to company_A or company_B.
For example we would like to have the same result for product, accounting, warehouses,...

Thanks for your reply.

Rgs,

Damien D.

Hi again,

we found that your patch raised new bugs, please go the db I provided and:
 - connect as admin
 - check company of customer_B: you find company_B: OK
 - connect as salesB
 - check company of customer_B: you find company_B: OK
 - connect as salesAB
 - check company of customer_B: you find company_A: ERROR

Rgds,

Damien D.

Hello,

As far as I can tell this is not a bug, but the expected behavior with the default OpenERP configuration, especially when the two companies are unrelated (not a parent of each other)

Here is how multi-company works in OpenERP:
- a user can only see documents that belong to the company that is currently set as their "main company" in their user preferences or to a child company, plus documents that do not belong to any company (it actually depends on the security rules configured for that kind of document, but this is the normal behavior) ;
- the list of "allowed companies" for a user should *only ever* be used to let the user switch companies in their user preferences, and never to decide which documents should be visible to the user.

So when users have several companies in their "allowed companies", that does not mean they will see documents from all these companies all the time. They must only see the documents from their currently selected company (and its child companies). If they want to start seeing documents from another company, their have to switch their current company in their user preferences.

In a nutshell, a user who belongs to several companies has to choose in which company context they want to work, at all time, and they cannot mix these contexts.
This is critical to ensure that OpenERP stays usable in multi-company mode, otherwise users would mix data from different companies all the time, causing countless errors: for example when you have to select the value for a field (say, a product or a fiscal period) it's not easy to tell which possible value belongs to which company.

Hi,

many thanks Olivier for this very detailed post.

We did not see the way the module was designed. We did not see that current company of the user implies that this user we will work only with
 - objects of the company he is logged in
 - object of the child's company he is logged in
 - shared object.

In fact we thought that on each process and related object you can choose with which company you work. We thought this because, for example, when you are logged as admin you can go to sales > Create SO and choose between the list of companies. After reading your post I realise that when you are logged as saleAB (in my example) you can only create a SO for the company your are connected as (or switch company in your preference).

So I still have remarks:
 - Why is there a difference between saleAB and admin when creating a SO (for example)?
 - Even if a user has all companies there's no way for him to view all sales order in one list, which is generaly what a final user wants.
 - when you switch from one company to another: in the top of the screen the company's name is left unchanged and this may disturb the final user.

Rgds,