Field level access rights and Security in openerp 7

Question

Suppose I have 3 users which are as follows:

user_employee having access rights Human Resource /Employee group
user_officer having access rights Human Resource /         


        

Answer 1

The .xml and .csv files provide security settings on a broader scale: create, read, update, and delete.

If you want per field settings instead you'll have to play around with the xml view file. Check out the domain settings.

Something like:

<field name="DOB" attrs="{'readonly':[('groups_id.category_id.name','=','Human Resource')]}"/>

The above is not restrictive enough, but hopefully will give you the idea.

As convenient as this might be, I don't think it's a good idea. Depending on the laws of where your company is located, the company can be responsible for the accuracy of that data. Having the employee present evidence of any changes to somebody in HR can be a good thing.