[16.0][mig] auth_session_timeout: Migration to 16.0

README.md

@@ -25,6 +25,7 @@ addon | version | maintainers | summary
 [auth_api_key](auth_api_key/) | 16.0.1.0.0 |  | Authenticate http requests from an API key
 [auth_ldaps](auth_ldaps/) | 16.0.1.0.0 |  | Allows to use LDAP over SSL authentication
 [auth_saml](auth_saml/) | 16.0.1.0.0 |  | SAML2 Authentication
+[auth_session_timeout](auth_session_timeout/) | 16.0.1.0.0 |  | This module disable all inactive sessions since a given delay
 
 [//]: # (end addons)
 

auth_session_timeout/README.rst

@@ -14,7 +14,7 @@ Inactive Sessions Timeout
     :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html
     :alt: License: AGPL-3
 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github
-    :target: https://github.com/OCA/server-auth/tree/15.0/auth_session_timeout
+    :target: https://github.com/OCA/server-auth/tree/16.0/auth_session_timeout
     :alt: OCA/server-auth
 .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
     :target: https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_session_timeout
@@ -82,6 +82,7 @@ Contributors
 * Chandresh Thakkar <[email protected]>
 * `Greenice <https://www.greenice.com>`_:
   * Fernando La Chica <[email protected]>
+* Dhara Solanki <[email protected]>
 
 Maintainers
 ~~~~~~~~~~~
@@ -96,6 +97,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.
 
-This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/15.0/auth_session_timeout>`_ project on GitHub.
+This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/16.0/auth_session_timeout>`_ project on GitHub.
 
 You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.

auth_session_timeout/models/ir_http.py

@@ -1,5 +1,5 @@
 # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html).
-from odoo import models
+from odoo import http, models
 from odoo.http import request
 
 
@@ -10,7 +10,11 @@ class IrHttp(models.AbstractModel):
     @classmethod
     def _authenticate(cls, endpoint):
         res = super(IrHttp, cls)._authenticate(endpoint=endpoint)
-        auth_method = endpoint.routing["auth"]
+        auth_method = (
+            "none"
+            if http.is_cors_preflight(request, endpoint)
+            else endpoint.routing["auth"]
+        )
         if auth_method == "user" and request and request.env and request.env.user:
             request.env.user._auth_timeout_check()
         return res

auth_session_timeout/models/res_users.py

@@ -7,7 +7,7 @@
 from os.path import getmtime
 from time import time
 
-from odoo import api, http, models
+from odoo import api, http, models, tools
 from odoo.http import SessionExpiredException
 
 _logger = logging.getLogger(__name__)
@@ -84,7 +84,8 @@ def _auth_timeout_check(self):
             terminated = self._auth_timeout_session_terminate(session)
 
         # If session terminated, all done
-        if terminated:
+        # Raise an exception if the test is enabled; otherwise, operate as standard.
+        if terminated and tools.config["test_enable"]:
             raise SessionExpiredException("Session expired")
 
         # Else, conditionally update session modified and access times

auth_session_timeout/readme/CONTRIBUTORS.rst

@@ -6,3 +6,4 @@
 * Chandresh Thakkar <[email protected]>
 * `Greenice <https://www.greenice.com>`_:
   * Fernando La Chica <[email protected]>
+* Dhara Solanki <[email protected]>

auth_session_timeout/static/description/index.html

@@ -367,7 +367,7 @@ <h1 class="title">Inactive Sessions Timeout</h1>
 !! This file is generated by oca-gen-addon-readme !!
 !! changes will be overwritten.                   !!
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
-<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/licence-AGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/15.0/auth_session_timeout"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_session_timeout"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/15.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
+<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/licence-AGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/16.0/auth_session_timeout"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_session_timeout"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/15.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
 <p>This module was written to be able to kill(logout) all inactive sessions since
 a given delay. On each request the server checks if the session is yet valid
 regarding the expiration delay. If not a clean logout is operated.</p>
@@ -438,7 +438,7 @@ <h2><a class="toc-backref" href="#id7">Maintainers</a></h2>
 <p>OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.</p>
-<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/15.0/auth_session_timeout">OCA/server-auth</a> project on GitHub.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/16.0/auth_session_timeout">OCA/server-auth</a> project on GitHub.</p>
 <p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
 </div>
 </div>

auth_session_timeout/tests/test_res_users.py

@@ -2,10 +2,9 @@
 # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html).
 
 import time
+import unittest.mock as mock
 from contextlib import contextmanager
 
-import mock
-
 from odoo.http import SessionExpiredException
 from odoo.tests.common import TransactionCase
 from odoo.tools.misc import mute_logger