Commits · f41c3e4a424a234db212a19c78a03b72fce49db2 · Coopdevs / Odoo / Coopdevs OCB mirror

Sep 16, 2021

[I18N] *: export 15.0 source terms · ef8ad324

Martin Trigaux authored 3 years ago


closes odoo/odoo#76542

X-original-commit: 63e68074
Related: odoo/enterprise#20882
Signed-off-by: Martin Trigaux (mat) <mat@odoo.com>

ef8ad324

Sep 06, 2021

[IMP] auth_totp: 2FA Trusted Devices · 2dee29a7

Arnaud Gony authored 3 years ago


+ Added the 'Trusted Devices' feature
+ Added 'Remember this Device' checkbox on /web/login/totp
+ Added trusted device's OS / browser on Profile > Account Security

Added '2FA Trusted Devices' feature to allow users to remember their
device to bypass the 2FA for the next connections. The trusted devices
are displayed in a 'Trusted Devices' One2Many under the 'Developer API
Keys'. It is possible to revoke all the trusted devices at once with a
special button. It is also possible to revoke one at a time on the
desired one.

Task-id 2523092

closes odoo/odoo#75535

Related: odoo/upgrade#2800
Signed-off-by: Martin Trigaux (mat) <mat@odoo.com>
Co-authored-by: Martin Trigaux <mat@odoo.com>

2dee29a7

Aug 30, 2021

[IMP] auth_top, *: revamp Two-factor authentication flow · 29db699e

David Beguin authored 3 years ago

Purpose
=======

Review the UX of the 2-factor authentication flow in order to make it more clear
and easy to use.

Specifications
==============

This commit applies multiple rewording of instructions, button, etc. Tests have
been adapted accordingly.

It also adds an 'invite to use two-factor authentication' flow that will
send an email to the selected used to redirect them their account security
settings.
- If portal is not installed yet, the user is redirected to his account security
settings in backend.
- If portal is installed, the user is redirected to /my/profile if them are
portal user. Otherwise, the redirection is still done at backend side.

As the backend view of auth_totp wizard is used at frontend side, copyclipboard
widget has to be rebuilt at frontend side (click event, style etc..).

As API key section is now displayed only on debug mode, test urls have been
adapted accordingly.

Task-2487630

Part-of: odoo/odoo#71142

29db699e

Jul 26, 2021

[FIX] *: add explicit license to all manifest · 288595f5

Xavier-Do authored 3 years ago


The license is missing in most enterprise manifest so
the decision was taken to make it explicit in all cases.
When not defined, a warning will be triggered starting from
14.0 when falling back on the default LGPL-3.

closes odoo/odoo#74245

Related: odoo/design-themes#48
Related: odoo/enterprise#19862
Signed-off-by: Xavier Dollé (xdo) <xdo@odoo.com>

288595f5

Jun 11, 2021

[IMP] all: read_combined(['arch']['arch'] => get_combined_arch() · 221254ca

Julien Castiaux authored 3 years ago


The method read_combined() has been deprecated in favor of explicit
calls to read() and get_combined_arch().

There are places where we call _get_combined_arch() instead, in order to
avoid parsing the XML that has just been serialized. This saves useless
serialization-deserialization.

Task: 2541577
Meta task: 2463632

Co-authored-by: Fabien Pinckaers <fp@odoo.com>
Co-authored-by: Raphael Collet <rco@odoo.com>

221254ca

Mar 31, 2021

[REF] *: convert all modules to new asset system · 03641610

Julien Mougenot authored 4 years ago


Conversion of all modules to the new manifest assets declaration.

Part of task: 2352566

Co-authored-by: Julien Mougenot <jum@odoo.com>
Co-authored-by: Simon Genin <ges@odoo.com>

03641610

Sep 29, 2020

[I18N] *: export 14.0 source terms · e79531c1

Martin Trigaux authored 4 years ago


Including demo data this time

closes odoo/odoo#58862

X-original-commit: 575abde1
Related: odoo/enterprise#13705
Signed-off-by: Martin Trigaux (mat) <mat@odoo.com>

e79531c1

Sep 26, 2020

[IMP] base, totp: simplify form layout and improve responsiveness · 3f3c7b50

Olivier Dony authored 4 years ago


Some of the TOTP-related forms contained an attempt at making a centered
modal pop-up, using a bootstrap `card` that would also serve to
emphasize that the interaction was sensitive and security-related.
Some of the "footer buttons" were moved inside the form to make it
more obvious that they were part of the interaction flow.

However some of this caused breakages of responsiveness and did not yield
a really satisfactory result anyway.

This commit switches back to using regular non-centered forms. It looks
quite ugly because the content is better suited for a narrow modal, but
it means less surprises in terms of layout and less responsiveness
issues.

closes odoo/odoo#58541

closes odoo/odoo#58544

Signed-off-by: Olivier Dony (odo) <odo@openerp.com>

3f3c7b50

Sep 14, 2020

[FIX] portal: don't eagerly load security template · 5d25d0e9

Xavier Morel authored 4 years ago


There's absolutely no need to load it on every page of the website. It
probably doesn't even need to be cached on the JS side given it's used
in all of 3 actions of the portal user's security page.

Reported by jke.

Also remove leftover console.log call while at it.

closes odoo/odoo#57636

X-original-commit: 00c1c9a7
Signed-off-by: Xavier Morel (xmo) <xmo@odoo.com>

5d25d0e9

Aug 15, 2020

[ADD] auth_totp · a9a65097

Xavier Morel authored 5 years ago


New module for supporting two-factor authentication via time-base
one-time-password (TOTP).

Users (including portal users) can choose to enable two-factor auth in
their user account settings, by scanning a QR code and adding it to an
authenticator app, such as Google Auth, 1Password, etc.

When two-factor is enabled, password-based non-interactive RPC is only
possible by using API keys.

Co-authored-by: Olivier Dony <odo@odoo.com>

a9a65097