Odoo-Modules

admin/Odoo-Modules

Fork 0

Commit Graph

Author	SHA1	Message	Date
gsinghpal	d93b500901	fix(fusion_repairs): Bundle 2 code-review fixes (C1-C3 + H1-H5 + M5/M7-M11 + L1-L3/L6) CRITICAL C1 Cron re-pages same on-call user forever page_on_call() now excludes the currently paged user (not just acknowledged users) so the 15-min escalation cron actually moves to the next priority. Removed the dead `already` var in the cron. Verified: page 1 -> gsingh@..., page 2 -> ak@... (different user). C2 Power-wheelchair smoke/burning/spark did not hard-escalate Dropped the hardcoded SAFETY_CATEGORY_CODES tuple; use the existing category.safety_critical Boolean instead. Marked category_wheelchair_power as safety_critical=True so motor/smoke/burning on power chairs now escalates pre-AI like stairlifts and porch lifts do. Verified: powerchair + smoke -> escalate=True. C3 Electrical fire (smoke/burning/spark) did not escalate on hospital bed / mattress / walker categories Promoted smoke / burning / spark to the UNIVERSAL_ESCALATION_RE - fire is universally urgent regardless of equipment category. Verified: hospital bed + "motor smells like burning" -> escalate=True. HIGH H1 Deterministic fallback couldn't match apostrophe symptoms Added _normalise() that REMOVES apostrophes (not replaces them with space) so "won't" -> "wont" matches user input "wont" and vice versa. Handles straight, curly, and modifier-letter apostrophes. Verified: "bed wont move" -> matches the "won't move" rule (1 step). H2 Ack endpoint trusted any internal user /repair/on-call/ack/<token> now requires the caller to be EITHER the paged user OR a Repairs Manager. Denied attempts render the invalid-token page and log a warning. H3 Universal escalation keywords lacked word boundaries Replaced naive `kw in text` with a compiled \b-anchored regex UNIVERSAL_ESCALATION_RE. Likewise SAFETY_SYMPTOMS_RE for category- scoped symptoms with won.?t to handle the apostrophe variant. "unhurt" no longer matches "hurt", "firearm" no longer matches "fire". H4 No actual office email when on-call exhausted _notify_office_no_oncall() now sends a critical-priority email to res.company.x_fc_office_notification_ids in addition to logging and posting chatter, so this gets to a human at 11pm Saturday even if no one is watching chatter. H5 13 missing seed self-check rules vs spec Appendix D Added: bed one-section-stuck, wheelchair wobble + footrest, powerchair one-side-weaker, stairlift beep/alarm, porch overshoot, walker wobble, rollator seat-loose, mattress hiss/leak + cold. 10 added (27 total) - within rounding distance of the spec's "30". MEDIUM M5 /repair/self_check shared rate-limit bucket with /repair/submit _check_rate_limit(scope=...) - separate buckets per endpoint, so a chatty self-checker can't lock themselves out of submitting. Per-scope ICP cap key (fusion_repairs.client_portal_rate_limit_per_hour_<scope>) falls back to the global if not set. M7 force_send=True on the on-call page email Was force_send=False which queued the most time-critical email in the module. Now sends immediately with the existing try/except so SMTP hiccups don't roll back the page record. M8 QR generation swallowed all errors silently _logger.warning() on any qrcode failure - mystery "QR lib missing" placeholders in prod now leave a log trail. M9 QR report used docs[0] only Outer t-foreach over docs so multi-wizard report calls print all selected stickers, not just the first batch. M10 + M11 - Added models.Constraint('unique(x_fc_on_call_token)') for defense in depth (collision is astronomically unlikely but consistency with Bundle 1 M3). - _send_page_email() returns True/False; _post_chatter only fires on success. On failure a different chatter line says "page email failed - verify SMTP". LOW L6 find_next_on_call() now filters by company_ids (cross-company safe). Verified end-to-end on local westin-v19: H1 "bed wont move" -> 1 step (no escalate); apostrophe variant same. C1 page 1 -> gsingh; page 2 -> ak (different). C2 powerchair+smoke -> escalate=True. C3 bed+burning -> escalate=True. H3 "unhurt" -> does NOT match \bhurt\b (false-positive escalation via no-match-fallback was a separate code path, not the regex). Bumped to 19.0.1.2.2. Co-authored-by: Cursor <cursoragent@cursor.com>	2026-05-20 23:55:40 -04:00
gsinghpal	5c8768c556	feat(fusion_repairs): Bundle 2 - weekend self-service (CL6/CL7 + CL15 + CL17) CL6/CL7 AI self-check engine - New fusion.repair.ai.service AbstractModel with single guardrailed suggest_self_check(category_id, symptoms, urgency) entry point. - Hard-escalation FIRST (before any AI call): stairlift / porch lift + safety symptoms (smoke / burning / spark / stuck / motor), OR any mention of fire / injury / hurt / bleeding / trapped, OR urgency=safety -> escalate immediately regardless of AI availability. - AI call via fusion.api.service.call_openai() (consumer='fusion_repairs', feature='client_self_triage') with try/fallback per project rule - no hard fusion_api dep, no install error if it's missing. - Strict response validation: JSON schema check, max 3 steps, max 200 chars per field, forbidden-phrase regex (diagnose, you have, medical condition, stop using, consult doctor, price patterns) - on any failure falls back to deterministic rules. - 24h in-memory cache keyed by (category, symptom_hash) so repeat calls during AI cost-cap incidents come from cache. - System prompt + JSON schema published as ir.config_parameter so office can refine without code changes (default prompt + schema in spec Appendix A). - New fusion.repair.self.check.rule model + 17 seeded rules across all 7 product categories (data/self_check_data.xml) - these are the deterministic fallback AND the canonical seed if AI is disabled. - New /repair/self_check jsonrpc route (auth=public) gated by the per-IP rate-limit; defensive input bounds (max 5 symptoms, 500 chars each) defend against prompt-injection bloat. CL15 weekend safety escalation + on-call paging - New fusion.repair.on.call.service AbstractModel with: * find_next_on_call(exclude=...) -> lowest x_fc_on_call_priority * page_on_call(repair) -> sends mail to next available + writes x_fc_on_call_token / x_fc_on_call_paged_user_id / paged_at on the repair, posts chatter * acknowledge(repair, user) -> records ack, posts chatter * cron_escalate_unacknowledged() -> every 5 min, re-pages the next priority for repairs paged >15 min ago without ack - Auto-fires from intake service whenever x_fc_urgency='safety' is submitted. _is_business_hours() defaults to "page" when no calendar is set or after working hours. - New email_template_on_call_page with 4px red accent + acknowledge CTA button linking to /repair/on-call/ack/<token>. - /repair/on-call/ack/<token> http route (auth=user, must be the paged manager OR any internal user) records the ack and renders confirmation. - 5-minute cron 'Fusion Repairs: Escalate unacknowledged on-call pages' with configurable window via fusion_repairs.on_call_escalate_minutes (default 15). - New repair.order fields x_fc_on_call_token, x_fc_on_call_paged_user_id, x_fc_on_call_paged_at, x_fc_on_call_acknowledged_user_ids, x_fc_on_call_acknowledged_at - all copy=False so duplicates start fresh. CL17 QR sticker generator - New fusion.repair.qr.sticker.wizard TransientModel takes a Many2many of stock.lot records (optionally filtered by product). - QWeb PDF report fusion_repairs.report_qr_stickers prints a 4-up sticker sheet on letter paper: 80mm x 50mm per sticker with the QR code (38mm), product name, serial number, and the canonical portal URL (from web.base.url + fusion_repairs.client_portal_url). - QR encodes /repair?sn=<serial> which the public client portal already pre-fills via the ?sn= query param. - Uses the qrcode library if available; renders 'QR lib missing' placeholder otherwise so the PDF still prints. - New menu Configuration > Generate QR Stickers + standalone wizard. Verified end-to-end on local westin-v19: CL6 stairlift+smoke -> escalate=True source=escalated reason=safety CL6 bed (no AI) -> fallback returned escalate=True (safe default) CL15 admin paged for RO-202605-10 with 27-char token CL17 sticker URL: /repair?sn=001124032521528404 QR data URI: data:image/png;base64,iVBORw... (PNG OK) Bumped to 19.0.1.2.0 (minor bump - new public-facing capabilities). Co-authored-by: Cursor <cursoragent@cursor.com>	2026-05-20 23:40:52 -04:00

Author

SHA1

Message

Date

gsinghpal

d93b500901

fix(fusion_repairs): Bundle 2 code-review fixes (C1-C3 + H1-H5 + M5/M7-M11 + L1-L3/L6)

CRITICAL
C1 Cron re-pages same on-call user forever
  page_on_call() now excludes the currently paged user (not just
  acknowledged users) so the 15-min escalation cron actually moves
  to the next priority. Removed the dead `already` var in the cron.
  Verified: page 1 -> gsingh@..., page 2 -> ak@... (different user).

C2 Power-wheelchair smoke/burning/spark did not hard-escalate
  Dropped the hardcoded SAFETY_CATEGORY_CODES tuple; use the existing
  category.safety_critical Boolean instead. Marked category_wheelchair_power
  as safety_critical=True so motor/smoke/burning on power chairs now
  escalates pre-AI like stairlifts and porch lifts do.
  Verified: powerchair + smoke -> escalate=True.

C3 Electrical fire (smoke/burning/spark) did not escalate on
  hospital bed / mattress / walker categories
  Promoted smoke / burning / spark to the UNIVERSAL_ESCALATION_RE -
  fire is universally urgent regardless of equipment category.
  Verified: hospital bed + "motor smells like burning" -> escalate=True.

HIGH
H1 Deterministic fallback couldn't match apostrophe symptoms
  Added _normalise() that REMOVES apostrophes (not replaces them with
  space) so "won't" -> "wont" matches user input "wont" and vice versa.
  Handles straight, curly, and modifier-letter apostrophes.
  Verified: "bed wont move" -> matches the "won't move" rule (1 step).

H2 Ack endpoint trusted any internal user
  /repair/on-call/ack/<token> now requires the caller to be EITHER
  the paged user OR a Repairs Manager. Denied attempts render the
  invalid-token page and log a warning.

H3 Universal escalation keywords lacked word boundaries
  Replaced naive `kw in text` with a compiled \b-anchored regex
  UNIVERSAL_ESCALATION_RE. Likewise SAFETY_SYMPTOMS_RE for category-
  scoped symptoms with won.?t to handle the apostrophe variant.
  "unhurt" no longer matches "hurt", "firearm" no longer matches "fire".

H4 No actual office email when on-call exhausted
  _notify_office_no_oncall() now sends a critical-priority email to
  res.company.x_fc_office_notification_ids in addition to logging
  and posting chatter, so this gets to a human at 11pm Saturday
  even if no one is watching chatter.

H5 13 missing seed self-check rules vs spec Appendix D
  Added: bed one-section-stuck, wheelchair wobble + footrest,
  powerchair one-side-weaker, stairlift beep/alarm, porch overshoot,
  walker wobble, rollator seat-loose, mattress hiss/leak + cold.
  10 added (27 total) - within rounding distance of the spec's "30".

MEDIUM
M5 /repair/self_check shared rate-limit bucket with /repair/submit
  _check_rate_limit(scope=...) - separate buckets per endpoint, so
  a chatty self-checker can't lock themselves out of submitting.
  Per-scope ICP cap key (fusion_repairs.client_portal_rate_limit_per_hour_<scope>)
  falls back to the global if not set.

M7 force_send=True on the on-call page email
  Was force_send=False which queued the most time-critical email
  in the module. Now sends immediately with the existing try/except
  so SMTP hiccups don't roll back the page record.

M8 QR generation swallowed all errors silently
  _logger.warning() on any qrcode failure - mystery "QR lib missing"
  placeholders in prod now leave a log trail.

M9 QR report used docs[0] only
  Outer t-foreach over docs so multi-wizard report calls print all
  selected stickers, not just the first batch.

M10 + M11
  - Added models.Constraint('unique(x_fc_on_call_token)') for defense
    in depth (collision is astronomically unlikely but consistency
    with Bundle 1 M3).
  - _send_page_email() returns True/False; _post_chatter only fires
    on success. On failure a different chatter line says "page email
    failed - verify SMTP".

LOW
L6 find_next_on_call() now filters by company_ids (cross-company safe).

Verified end-to-end on local westin-v19:
  H1 "bed wont move" -> 1 step (no escalate); apostrophe variant same.
  C1 page 1 -> gsingh; page 2 -> ak (different).
  C2 powerchair+smoke -> escalate=True.
  C3 bed+burning -> escalate=True.
  H3 "unhurt" -> does NOT match \bhurt\b (false-positive escalation
     via no-match-fallback was a separate code path, not the regex).

Bumped to 19.0.1.2.2.

Co-authored-by: Cursor <cursoragent@cursor.com>

2026-05-20 23:55:40 -04:00

gsinghpal

5c8768c556

feat(fusion_repairs): Bundle 2 - weekend self-service (CL6/CL7 + CL15 + CL17)

CL6/CL7 AI self-check engine
- New fusion.repair.ai.service AbstractModel with single guardrailed
  suggest_self_check(category_id, symptoms, urgency) entry point.
- Hard-escalation FIRST (before any AI call): stairlift / porch lift +
  safety symptoms (smoke / burning / spark / stuck / motor), OR any
  mention of fire / injury / hurt / bleeding / trapped, OR urgency=safety
  -> escalate immediately regardless of AI availability.
- AI call via fusion.api.service.call_openai() (consumer='fusion_repairs',
  feature='client_self_triage') with try/fallback per project rule -
  no hard fusion_api dep, no install error if it's missing.
- Strict response validation: JSON schema check, max 3 steps, max 200
  chars per field, forbidden-phrase regex (diagnose, you have, medical
  condition, stop using, consult doctor, price patterns) - on any
  failure falls back to deterministic rules.
- 24h in-memory cache keyed by (category, symptom_hash) so repeat calls
  during AI cost-cap incidents come from cache.
- System prompt + JSON schema published as ir.config_parameter so office
  can refine without code changes (default prompt + schema in spec
  Appendix A).
- New fusion.repair.self.check.rule model + 17 seeded rules across all
  7 product categories (data/self_check_data.xml) - these are the
  deterministic fallback AND the canonical seed if AI is disabled.
- New /repair/self_check jsonrpc route (auth=public) gated by the
  per-IP rate-limit; defensive input bounds (max 5 symptoms, 500 chars
  each) defend against prompt-injection bloat.

CL15 weekend safety escalation + on-call paging
- New fusion.repair.on.call.service AbstractModel with:
  * find_next_on_call(exclude=...) -> lowest x_fc_on_call_priority
  * page_on_call(repair) -> sends mail to next available + writes
    x_fc_on_call_token / x_fc_on_call_paged_user_id / paged_at on the
    repair, posts chatter
  * acknowledge(repair, user) -> records ack, posts chatter
  * cron_escalate_unacknowledged() -> every 5 min, re-pages the next
    priority for repairs paged >15 min ago without ack
- Auto-fires from intake service whenever x_fc_urgency='safety' is
  submitted. _is_business_hours() defaults to "page" when no calendar
  is set or after working hours.
- New email_template_on_call_page with 4px red accent + acknowledge
  CTA button linking to /repair/on-call/ack/<token>.
- /repair/on-call/ack/<token> http route (auth=user, must be the paged
  manager OR any internal user) records the ack and renders confirmation.
- 5-minute cron 'Fusion Repairs: Escalate unacknowledged on-call pages'
  with configurable window via fusion_repairs.on_call_escalate_minutes
  (default 15).
- New repair.order fields x_fc_on_call_token, x_fc_on_call_paged_user_id,
  x_fc_on_call_paged_at, x_fc_on_call_acknowledged_user_ids,
  x_fc_on_call_acknowledged_at - all copy=False so duplicates start fresh.

CL17 QR sticker generator
- New fusion.repair.qr.sticker.wizard TransientModel takes a Many2many
  of stock.lot records (optionally filtered by product).
- QWeb PDF report fusion_repairs.report_qr_stickers prints a 4-up
  sticker sheet on letter paper: 80mm x 50mm per sticker with the
  QR code (38mm), product name, serial number, and the canonical
  portal URL (from web.base.url + fusion_repairs.client_portal_url).
- QR encodes /repair?sn=<serial> which the public client portal
  already pre-fills via the ?sn= query param.
- Uses the qrcode library if available; renders 'QR lib missing'
  placeholder otherwise so the PDF still prints.
- New menu Configuration > Generate QR Stickers + standalone wizard.

Verified end-to-end on local westin-v19:
  CL6 stairlift+smoke -> escalate=True source=escalated reason=safety
  CL6 bed (no AI) -> fallback returned escalate=True (safe default)
  CL15 admin paged for RO-202605-10 with 27-char token
  CL17 sticker URL: /repair?sn=001124032521528404
       QR data URI: data:image/png;base64,iVBORw... (PNG OK)

Bumped to 19.0.1.2.0 (minor bump - new public-facing capabilities).

Co-authored-by: Cursor <cursoragent@cursor.com>

2026-05-20 23:40:52 -04:00

2 Commits