Odoo-Modules/fusion_plating at 0b92294586f2f40ec0e6680ee4c93fe0f0206342 - Odoo-Modules - NEXA Git - Nexa Systems Inc.

admin/Odoo-Modules

Files

History

gsinghpal 0b92294586 fix(shopfloor-sec): narrow kiosk ir.config_parameter scope + doc accuracy

Code-review findings on Phase A (Tablet PIN Session Redesign):

I1: Security XML comment now honestly describes the kiosk as Internal
User + explicit reads, not 'near-zero ACL'. base.group_user is kept
(required for auth='user' HTTP routes to function) but the comment
no longer overstates how locked-down the kiosk is.

I2: New ir.rule scopes the kiosk's ir.config_parameter read to keys
matching 'fp.tablet.%' or 'fp.shopfloor.%'. Combined with the
existing model-level read ACL, kiosk can no longer enumerate
third-party secrets (e.g. fusion_tasks.vapid_private_key) or
arbitrary API keys stored in ICP.

I3: post-migrate docstring now advises sysadmins to unlink the
plaintext ICP password row after kiosk tablets are paired, to
minimise plaintext-in-backups risk. Rotation procedure documented.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-24 12:22:40 -04:00

..

.playwright-mcp

changes

2026-04-20 13:07:15 -04:00

docs(plating): tablet PIN session redesign implementation plan

2026-05-24 11:53:23 -04:00

fix(plating-perms): widen settings landing field to ir.actions.actions

2026-05-24 10:11:40 -04:00

fusion_plating_aerospace

feat(plating-menu): Layer 1+2 — explicit groups on top-level menus + submenus

2026-05-24 01:35:11 -04:00

fusion_plating_batch

refactor(plating-sec): extend ACL sweep to 13 missed modules

2026-05-24 01:18:52 -04:00

fusion_plating_bridge_documents

refactor(plating-sec): extend ACL sweep to 13 missed modules

2026-05-24 01:18:52 -04:00

fusion_plating_bridge_maintenance

feat(plating-menu): Layer 1+2 — explicit groups on top-level menus + submenus

2026-05-24 01:35:11 -04:00

fusion_plating_bridge_mrp

feat(plating-sec): SO confirm gate + fix _administrator typo + Python sweep

2026-05-24 02:11:35 -04:00

fusion_plating_bridge_quality

refactor(plating-sec): extend ACL sweep to 13 missed modules

2026-05-24 01:18:52 -04:00

fusion_plating_bridge_sign

refactor(plating-sec): extend ACL sweep to 13 missed modules

2026-05-24 01:18:52 -04:00

fusion_plating_certificates

fix(plating-perms): deploy-time cascade fixes from entech I3

2026-05-24 09:07:13 -04:00

fusion_plating_cgp

feat(plating-views): Layer 3 — field/button gates per role

2026-05-24 01:45:39 -04:00

fusion_plating_compliance

feat(plating-menu): Layer 1+2 — explicit groups on top-level menus + submenus

2026-05-24 01:35:11 -04:00

fusion_plating_compliance_on

folder rename

2026-04-16 20:53:53 -04:00

fusion_plating_compliance_tor

folder rename

2026-04-16 20:53:53 -04:00

fusion_plating_configurator

fix(plating-perms): deploy-time cascade fixes from entech I3

2026-05-24 09:07:13 -04:00

fusion_plating_culture

refactor(plating-sec): extend ACL sweep to 13 missed modules

2026-05-24 01:18:52 -04:00

fusion_plating_invoicing

feat(plating-sec): SO confirm gate + fix _administrator typo + Python sweep

2026-05-24 02:11:35 -04:00

fusion_plating_jobs

feat(plating-sec): SO confirm gate + fix _administrator typo + Python sweep

2026-05-24 02:11:35 -04:00

fusion_plating_kpi

feat(plating-menu): Layer 1+2 — explicit groups on top-level menus + submenus

2026-05-24 01:35:11 -04:00

fusion_plating_logistics

refactor(plating-sec): extend ACL sweep to 13 missed modules

2026-05-24 01:18:52 -04:00

fusion_plating_notifications

refactor(plating-sec): extend ACL sweep to 13 missed modules

2026-05-24 01:18:52 -04:00

fusion_plating_nuclear

feat(plating-menu): Layer 1+2 — explicit groups on top-level menus + submenus

2026-05-24 01:35:11 -04:00

fusion_plating_portal

refactor(plating-sec): extend ACL sweep to 13 missed modules

2026-05-24 01:18:52 -04:00

fusion_plating_process_anodize

changes

2026-04-28 19:39:37 -04:00

fusion_plating_process_black_oxide

changes

2026-04-28 19:39:37 -04:00

fusion_plating_process_chrome

changes

2026-04-28 19:39:37 -04:00

fusion_plating_process_en

changes

2026-04-28 19:39:37 -04:00

fusion_plating_quality

fix(plating-perms): deploy-time cascade fixes from entech I3

2026-05-24 09:07:13 -04:00

fusion_plating_receiving

feat(plating-menu): Layer 1+2 — explicit groups on top-level menus + submenus

2026-05-24 01:35:11 -04:00

fusion_plating_reports

refactor(plating-sec): extend ACL sweep to 13 missed modules

2026-05-24 01:18:52 -04:00

fusion_plating_safety

feat(plating-menu): Layer 1+2 — explicit groups on top-level menus + submenus

2026-05-24 01:35:11 -04:00

fusion_plating_shopfloor

fix(shopfloor-sec): narrow kiosk ir.config_parameter scope + doc accuracy

2026-05-24 12:22:40 -04:00

fix(seeds): noupdate=1 on remaining 3 user-editable seed files

2026-05-15 08:32:30 -04:00

changes

2026-04-24 21:04:38 -04:00

changes

2026-05-21 03:37:25 -04:00

.gitignore

docs(portal): add dashboard redesign spec + implementation plan

2026-05-17 02:36:02 -04:00

CLAUDE.md

fix(shopfloor): tablet tiles domain uses group_ids (Odoo 19 rename)

2026-05-24 10:48:29 -04:00

so_list.png

changes

2026-04-20 01:16:12 -04:00

test_clamp.stl

folder rename

2026-04-16 20:53:53 -04:00