[FIX] account_operating_unit: use sudo() to read journal in OU onchange

IJOL · IJOL · commit 0b411a40826f · 2026-04-05T21:03:50.000+02:00
Users without journal read permission get AccessError when the
_onchange_operating_unit triggers. Use sudo() to safely read
journal.operating_unit_id and journal.type.

Port of BITVAX fix from 16.0-fix-journal-access-denied branch.
diff --git a/account_operating_unit/models/account_move.py b/account_operating_unit/models/account_move.py
@@ -130,10 +130,10 @@ def _default_operating_unit_id(self):
     def _onchange_operating_unit(self):
         if self.operating_unit_id and (
             not self.journal_id
-            or self.journal_id.operating_unit_id != self.operating_unit_id
+            or self.journal_id.sudo().operating_unit_id != self.operating_unit_id
         ):
             journal = self.env["account.journal"].search(
-                [("type", "=", self.journal_id.type)]
+                [("type", "=", self.journal_id.sudo().type)]
             )
             jf = journal.filtered(
                 lambda aj: aj.operating_unit_id == self.operating_unit_id
