From 66b4f6fbcd89235d46339b8f1406646f52abb1c8 Mon Sep 17 00:00:00 2001
From: Olivier Dony <odo@openerp.com>
Date: Sun, 19 Jun 2011 19:11:02 +0200
Subject: [PATCH] [FIX] fields: function/property fields should perform their
 name_get() calls for m2o as uid 1

This is because the permissions for reading the display name
of a m2o record does not depend on access to the target table,
but depends on the user access to the current table.
Users that are denied read access to the target table may still
see the names of the records linked to the documents they can
read

bzr revid: odo@openerp.com-20110619171102-sh0derdj50epea7b
---
 openerp/osv/fields.py | 15 ++++++++++++---
 1 file changed, 12 insertions(+), 3 deletions(-)

diff --git a/openerp/osv/fields.py b/openerp/osv/fields.py
index f55e4b9c027..e28f7b2b02d 100644
--- a/openerp/osv/fields.py
+++ b/openerp/osv/fields.py
@@ -936,6 +936,9 @@ class related(function):
         if self._type=='many2one':
             ids = filter(None, res.values())
             if ids:
+                # name_get as root, as seeing the name of a related
+                # object depends on access right of source document,
+                # not target, so user may not have access.
                 ng = dict(obj.pool.get(self._obj).name_get(cr, 1, ids, context=context))
                 for r in res:
                     if res[r]:
@@ -1079,7 +1082,10 @@ class property(function):
             value = properties.get_by_record(cr, uid, prop, context=context)
             res[prop.res_id.id][prop.fields_id.name] = value or False
             if value and (prop.type == 'many2one'):
-                record_exists = obj.pool.get(value._name).exists(cr, uid, value.id)
+                # check existence as root, as seeing the name of a related
+                # object depends on access right of source document,
+                # not target, so user may not have access.
+                record_exists = obj.pool.get(value._name).exists(cr, 1, value.id)
                 if record_exists:
                     replaces.setdefault(value._name, {})
                     replaces[value._name][value.id] = True
@@ -1087,8 +1093,11 @@ class property(function):
                     res[prop.res_id.id][prop.fields_id.name] = False
 
         for rep in replaces:
-            nids = obj.pool.get(rep).search(cr, uid, [('id','in',replaces[rep].keys())], context=context)
-            replaces[rep] = dict(obj.pool.get(rep).name_get(cr, uid, nids, context=context))
+            # search+name_get as root, as seeing the name of a related
+            # object depends on access right of source document,
+            # not target, so user may not have access.
+            nids = obj.pool.get(rep).search(cr, 1, [('id','in',replaces[rep].keys())], context=context)
+            replaces[rep] = dict(obj.pool.get(rep).name_get(cr, 1, nids, context=context))
 
         for prop in prop_name:
             for id in ids: