projects / odoo / odoo.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 28a27a9) | patch
[FIX] website_sale: retrieve transactions as superuser
authorMartin Trigaux <mat@openerp.com>
Wed, 17 Sep 2014 10:28:21 +0000 (12:28 +0200)
committerMartin Trigaux <mat@openerp.com>
Wed, 17 Sep 2014 10:52:28 +0000 (12:52 +0200)
commit2ee1843757e87a75a36dce29eb47f784a4725c34
tree406935e53e2e541ac9753572c971b8a5580e0d4dtree | snapshot
parent28a27a9f91522ca9cb5387f98e56b1cc300a8dd0commit | diff
[FIX] website_sale: retrieve transactions as superuser

Due to additional security rules, the transactions made as public user will have a new partner_id. The transaction needs to be retrieved as admin to be set in the context.
The operations in payment_get_status are made as superuser but the session_id is checked in the assert above to avoid url manipulation.
addons/website_sale/controllers/main.py diff | blob | history
addons/website_sale/models/website.py diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.