From 593b875a55dae1b6bb39d3c36aa42493523062dc Mon Sep 17 00:00:00 2001
From: Ludovic CHEVALIER <ludovic@beurresarrasin.net>
Date: Mon, 28 Dec 2015 12:00:04 +0100
Subject: [PATCH] [SECURITY] ~only pos managers can create and modify pos
 sessions

---
 __openerp__.py               | 1 +
 security/ir.model.access.csv | 3 +++
 2 files changed, 4 insertions(+)
 create mode 100644 security/ir.model.access.csv

diff --git a/__openerp__.py b/__openerp__.py
index 3475f3c..ea06a84 100644
--- a/__openerp__.py
+++ b/__openerp__.py
@@ -44,6 +44,7 @@ It installs the profile for bike co-ops to manage some features like:
     'init_xml': [
     ],
     'update_xml': [
+        'security/ir.model.access.csv',
         'data/plan_comptable_general.xml',
         'data/account.xml',
         'data/base.xml',
diff --git a/security/ir.model.access.csv b/security/ir.model.access.csv
new file mode 100644
index 0000000..4727021
--- /dev/null
+++ b/security/ir.model.access.csv
@@ -0,0 +1,3 @@
+id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink
+point_of_sale.access_pos_session_user,pos.session user,point_of_sale.model_pos_session,point_of_sale.group_pos_user,1,0,0,0
+access_pos_session_manager,pos.session manager,point_of_sale.model_pos_session,point_of_sale.group_pos_manager,1,1,1,0
-- 
2.20.1