Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
The one-click deployment of Odoo Apps should be controllable by sysadmins #15225
Odoo includes a one-click install feature, for easy deployment of Apps coming from the Odoo Apps Store.
However at the moment we cannot guarantee that all Apps published on the Odoo Apps Store are safe. And it is a security risk to let end-users deploy Python code on their Odoo servers without requiring any review/deployment by a competent system administrator.
So we plan to disable the feature by default, and instead make it relatively easy to turn on when it is explicitly desired. End-users will receive a message when they attempt to use the feature, and will have to contact the sysadmin to enable it.
This has been done for all supported stable versions:
Note: please discuss the patches on the relevant PRs or on separate issues.