[17.0][MIG] users_ldap_groups: Migration to 17.0

requirements.txt

@@ -3,3 +3,4 @@ email_validator
 lxml
 pysaml2
 python-jose
+python-ldap

users_ldap_groups/README.rst

@@ -0,0 +1,121 @@
+======================
+LDAP groups assignment
+======================
+
+.. 
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! This file is generated by oca-gen-addon-readme !!
+   !! changes will be overwritten.                   !!
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! source digest: sha256:d741e51e8d17d7122fd4374a69489e4db2820a4d90fb574b69929717946658ba
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+
+.. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png
+    :target: https://odoo-community.org/page/development-status
+    :alt: Beta
+.. |badge2| image:: https://img.shields.io/badge/licence-AGPL--3-blue.png
+    :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html
+    :alt: License: AGPL-3
+.. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github
+    :target: https://github.com/OCA/server-auth/tree/17.0/users_ldap_groups
+    :alt: OCA/server-auth
+.. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
+    :target: https://translation.odoo-community.org/projects/server-auth-17-0/server-auth-17-0-users_ldap_groups
+    :alt: Translate me on Weblate
+.. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png
+    :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=17.0
+    :alt: Try me on Runboat
+
+|badge1| |badge2| |badge3| |badge4| |badge5|
+
+|License: AGPL-3|
+
+Adds user accounts to groups based on rules defined by the
+administrator.
+
+.. |License: AGPL-3| image:: https://img.shields.io/badge/license-AGPL--3-blue.png
+   :target: https://www.gnu.org/licenses/agpl
+
+**Table of contents**
+
+.. contents::
+   :local:
+
+Usage
+=====
+
+Define mappings in Settings / General Settings / Integrations / LDAP
+Authentication / LDAP Server
+
+Decide whether you want only groups mapped from LDAP (Only LDAP groups
+checked) or a mix of manually set groups and LDAP groups (Only LDAP
+groups unchecked). Setting this to "no" will result in users never
+losing privileges when you remove them from a LDAP group, so that's a
+potential security issue. It is still the default to prevent losing
+group information by accident. If set to "Yes", you need to make sure
+each user has at least on of the "User types" groups
+
+For active directory, use LDAP attribute 'memberOf' and operator
+'contains'. Fill in the DN of the windows group as value and choose an
+Odoo group users with this windows group are to be assigned to.
+
+For posix accounts, use operator 'query' and a value like:
+
+::
+
+   (&(cn=bzr)(objectClass=posixGroup)(memberUid=$uid))
+
+The operator query matches if the filter in value returns something, and
+value can contain ``$attribute`` which will be replaced by the first
+value of the user's LDAP record's attribute named attribute.
+
+Bug Tracker
+===========
+
+Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-auth/issues>`_.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us to smash it by providing a detailed and welcomed
+`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20users_ldap_groups%0Aversion:%2017.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+
+Do not contact contributors directly about support or help with technical issues.
+
+Credits
+=======
+
+Authors
+-------
+
+* Therp BV
+
+Contributors
+------------
+
+-  Holger Brunn <[email protected]>
+-  Giacomo Spettoli <[email protected]>
+-  `CorporateHub <https://corporatehub.eu/>`__
+
+   -  Alexey Pelykh <[email protected]>
+
+-  Tecnativa <https://www.tecnativa.com>
+
+   -  João Marques
+   -  Carolina Fernandez
+
+-  Dhara Solanki <[email protected]>
+
+Maintainers
+-----------
+
+This module is maintained by the OCA.
+
+.. image:: https://odoo-community.org/logo.png
+   :alt: Odoo Community Association
+   :target: https://odoo-community.org
+
+OCA, or the Odoo Community Association, is a nonprofit organization whose
+mission is to support the collaborative development of Odoo features and
+promote its widespread use.
+
+This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/17.0/users_ldap_groups>`_ project on GitHub.
+
+You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

users_ldap_groups/__init__.py

@@ -0,0 +1,3 @@
+# Copyright 2012-2018 Therp BV <https://therp.nl>
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl.html).
+from . import models

users_ldap_groups/__manifest__.py

@@ -0,0 +1,19 @@
+# Copyright 2012-2018 Therp BV <https://therp.nl>
+# Copyright 2018 Brainbean Apps <https://brainbeanapps.com>
+# Copyright 2021 Tecnativa - João Marques
+# Copyright 2023 Tecnativa - Carolina Fernandez
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl.html).
+
+{
+    "name": "LDAP groups assignment",
+    "version": "17.0.1.0.0",
+    "depends": ["auth_ldap"],
+    "author": "Therp BV, " "Odoo Community Association (OCA)",
+    "website": "https://github.com/OCA/server-auth",
+    "license": "AGPL-3",
+    "summary": "Adds user accounts to groups based on rules defined "
+    "by the administrator.",
+    "category": "Authentication",
+    "data": ["views/res_company_ldap_views.xml", "security/ir.model.access.csv"],
+    "external_dependencies": {"python": ["python-ldap"]},
+}

users_ldap_groups/i18n/de.po

@@ -0,0 +1,163 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# * users_ldap_groups
+#
+# Translators:
+msgid ""
+msgstr ""
+"Project-Id-Version: server-tools (8.0)\n"
+"Report-Msgid-Bugs-To: \n"
+"POT-Creation-Date: 2015-09-29 11:14+0000\n"
+"PO-Revision-Date: 2015-09-18 13:56+0000\n"
+"Last-Translator: <>\n"
+"Language-Team: German (http://www.transifex.com/oca/OCA-server-tools-8-0/"
+"language/de/)\n"
+"Language: de\n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: \n"
+"Plural-Forms: nplurals=2; plural=(n != 1);\n"
+
+#. module: users_ldap_groups
+#: model:ir.model,name:users_ldap_groups.model_res_company_ldap
+msgid "Company LDAP configuration"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap_group_mapping__create_uid
+msgid "Created by"
+msgstr "Erstellt von"
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap_group_mapping__create_date
+msgid "Created on"
+msgstr "Erstellt am:"
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,help:users_ldap_groups.field_res_company_ldap__group_mapping_ids
+msgid "Define how Odoo groups are assigned to LDAP users"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model,name:users_ldap_groups.model_res_company_ldap_operator
+msgid "Definition op LDAP operations"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap_group_mapping__display_name
+msgid "Display Name"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap__group_mapping_ids
+msgid "Group mappings"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap_group_mapping__id
+msgid "ID"
+msgstr "ID"
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,help:users_ldap_groups.field_res_company_ldap__only_ldap_groups
+msgid ""
+"If this is checked, manual changes to group membership are undone on every "
+"login (so Odoo groups are always synchronous with LDAP groups). If not, "
+"manually added groups are preserved."
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap_group_mapping__ldap_attribute
+msgid "LDAP attribute"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model,name:users_ldap_groups.model_res_company_ldap_group_mapping
+msgid "LDAP group mapping"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap_group_mapping__ldap_id
+msgid "LDAP server"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap_group_mapping____last_update
+#, fuzzy
+msgid "Last Modified on"
+msgstr "Zuletzt aktualisiert am"
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap_group_mapping__write_uid
+msgid "Last Updated by"
+msgstr "Zuletzt aktualisiert von"
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap_group_mapping__write_date
+msgid "Last Updated on"
+msgstr "Zuletzt aktualisiert am"
+
+#. module: users_ldap_groups
+#: model_terms:ir.ui.view,arch_db:users_ldap_groups.view_ldap_installer_form
+msgid "Map User Groups"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap_group_mapping__group_id
+msgid "Odoo group"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap__only_ldap_groups
+msgid "Only LDAP groups"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap_group_mapping__operator
+msgid "Operator"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,help:users_ldap_groups.field_res_company_ldap_group_mapping__ldap_attribute
+msgid ""
+"The LDAP attribute to check.\n"
+"For active directory, use memberOf."
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,help:users_ldap_groups.field_res_company_ldap_group_mapping__group_id
+msgid "The Odoo group to assign"
+msgstr ""
+
+#. module: users_ldap_groups
+#. odoo-python
+#: code:addons/users_ldap_groups/models/res_company_ldap.py:0
+#, python-format
+msgid ""
+"The created user needs to have one (and only one) of the 'User types /' "
+"groups defined."
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,help:users_ldap_groups.field_res_company_ldap_group_mapping__operator
+msgid ""
+"The operator to check the attribute against the value\n"
+"For active directory, use 'contains'"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,help:users_ldap_groups.field_res_company_ldap_group_mapping__value
+msgid ""
+"The value to check the attribute against.\n"
+"For active directory, use the dn of the desired group"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model,name:users_ldap_groups.model_res_users
+msgid "User"
+msgstr ""
+
+#. module: users_ldap_groups
+#: model:ir.model.fields,field_description:users_ldap_groups.field_res_company_ldap_group_mapping__value
+msgid "Value"
+msgstr ""