From c4de7178db95c22c7f77b8f039ed21551a927428 Mon Sep 17 00:00:00 2001
From: "Laurent Mignon (ACSONE)" <laurent.mignon@acsone.eu>
Date: Wed, 31 Jan 2018 17:30:50 +0100
Subject: [PATCH 01/86] New generic module du define REST services

---
 auth_api_key/models/__init__.py | 2 ++
 1 file changed, 2 insertions(+)
 create mode 100644 auth_api_key/models/__init__.py

diff --git a/auth_api_key/models/__init__.py b/auth_api_key/models/__init__.py
new file mode 100644
index 0000000000..01b3640a45
--- /dev/null
+++ b/auth_api_key/models/__init__.py
@@ -0,0 +1,2 @@
+from . import ir_http
+from . import invader_entrypoint

From 5ddfae429f671885d599430a098a69ef6249a2a9 Mon Sep 17 00:00:00 2001
From: "Laurent Mignon (ACSONE)" <laurent.mignon@acsone.eu>
Date: Thu, 1 Feb 2018 00:20:26 +0100
Subject: [PATCH 02/86] auth_api_key: New module to provide authentication by
 api_key

---
 auth_api_key/README.rst                  |  85 +++++++++++++++++++++++
 auth_api_key/__init__.py                 |   1 +
 auth_api_key/__manifest__.py             |  22 ++++++
 auth_api_key/models/__init__.py          |   3 +-
 auth_api_key/models/auth_api_key.py      |  49 +++++++++++++
 auth_api_key/models/ir_http.py           |  39 +++++++++++
 auth_api_key/models/keychain_account.py  |  21 ++++++
 auth_api_key/security/auth_api_key.xml   |  17 +++++
 auth_api_key/static/description/icon.png | Bin 0 -> 9455 bytes
 auth_api_key/views/auth_api_key.xml      |  51 ++++++++++++++
 10 files changed, 287 insertions(+), 1 deletion(-)
 create mode 100644 auth_api_key/README.rst
 create mode 100644 auth_api_key/__init__.py
 create mode 100644 auth_api_key/__manifest__.py
 create mode 100644 auth_api_key/models/auth_api_key.py
 create mode 100644 auth_api_key/models/ir_http.py
 create mode 100644 auth_api_key/models/keychain_account.py
 create mode 100644 auth_api_key/security/auth_api_key.xml
 create mode 100644 auth_api_key/static/description/icon.png
 create mode 100644 auth_api_key/views/auth_api_key.xml

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
new file mode 100644
index 0000000000..f562e2611f
--- /dev/null
+++ b/auth_api_key/README.rst
@@ -0,0 +1,85 @@
+.. image:: https://img.shields.io/badge/licence-AGPL--3-blue.svg
+   :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html
+   :alt: License: AGPL-3
+
+============
+Auth Api Key
+============
+
+Authenticate http requests from an API key
+
+
+Configuration
+=============
+
+The api key must be provided by the coniguration parameter named
+'auth_api_key.api_key'.
+To apply this authentication system to your http request you must set 'api_key'
+as value for the 'auth' parameter of your route definition into your controller.
+
+ ::
+
+    class MyController(Controller):
+
+        @route('/my_service', auth='api_key', ...)
+        def my_service(self, *args, **kwargs):
+            pass
+
+Usage
+=====
+
+To use this module, you need to:
+
+#. Go to ...
+
+.. image:: https://odoo-community.org/website/image/ir.attachment/5784_f2813bd/datas
+   :alt: Try me on Runbot
+   :target: https://runbot.odoo-community.org/runbot/{repo_id}/{branch}
+
+.. repo_id is available in https://github.com/OCA/maintainer-tools/blob/master/tools/repos_with_ids.txt
+.. branch is "8.0" for example
+
+Bug Tracker
+===========
+
+Bugs are tracked on `GitHub Issues
+<https://github.com/OCA/{project_repo}/issues>`_. In case of trouble, please
+check there if your issue has already been reported. If you spotted it first,
+help us smash it by providing detailed and welcomed feedback.
+
+Credits
+=======
+
+Images
+------
+
+* Odoo Community Association: `Icon <https://github.com/OCA/maintainer-tools/blob/master/template/module/static/description/icon.svg>`_.
+
+Contributors
+------------
+
+* Firstname Lastname <email.address@example.org>
+* Second Person <second.person@example.org>
+
+Funders
+-------
+
+The development of this module has been financially supported by:
+
+* Company 1 name
+* Company 2 name
+
+Maintainer
+----------
+
+.. image:: https://odoo-community.org/logo.png
+   :alt: Odoo Community Association
+   :target: https://odoo-community.org
+
+This module is maintained by the OCA.
+
+OCA, or the Odoo Community Association, is a nonprofit organization whose
+mission is to support the collaborative development of Odoo features and
+promote its widespread use.
+
+To contribute to this module, please visit https://odoo-community.org.
diff --git a/auth_api_key/__init__.py b/auth_api_key/__init__.py
new file mode 100644
index 0000000000..0650744f6b
--- /dev/null
+++ b/auth_api_key/__init__.py
@@ -0,0 +1 @@
+from . import models
diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
new file mode 100644
index 0000000000..8294eb056a
--- /dev/null
+++ b/auth_api_key/__manifest__.py
@@ -0,0 +1,22 @@
+# -*- coding: utf-8 -*-
+# Copyright 2018 ACSONE SA/NV
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+{
+    'name': 'Auth Api Key',
+    'summary': """
+        Authenticate http requests from an API key""",
+    'version': '10.0.1.0.0',
+    'license': 'AGPL-3',
+    'author': 'ACSONE SA/NV,Odoo Community Association (OCA)',
+    'website': 'https://acsone.eu/',
+    'depends': [
+        'keychain'
+    ],
+    'data': [
+        'security/auth_api_key.xml',
+        'views/auth_api_key.xml',
+    ],
+    'demo': [
+    ],
+}
diff --git a/auth_api_key/models/__init__.py b/auth_api_key/models/__init__.py
index 01b3640a45..389ec3bba5 100644
--- a/auth_api_key/models/__init__.py
+++ b/auth_api_key/models/__init__.py
@@ -1,2 +1,3 @@
 from . import ir_http
-from . import invader_entrypoint
+from . import keychain_account
+from . import auth_api_key
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
new file mode 100644
index 0000000000..2adf2c25bb
--- /dev/null
+++ b/auth_api_key/models/auth_api_key.py
@@ -0,0 +1,49 @@
+# -*- coding: utf-8 -*-
+# Copyright 2018 ACSONE SA/NV
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+from odoo import api, fields, models, tools
+
+
+class AuthApiKey(models.Model):
+    _name = 'auth.api.key'
+    _inherit = 'keychain.backend'
+    _backend_name = 'auth_api_key'
+
+    @api.model
+    def _default_user_id(self):
+        return self.env.user
+
+    user_id = fields.Many2one(
+        'res.users',
+        'User',
+        required=True,
+        help="The user used to execute the code into Odoo when user is called "
+             "with this api key.",
+        default=_default_user_id
+    )
+
+    @api.multi
+    def _inverse_password(self):
+        self.retrieve_id_by_api_key.clear_cache(self)
+        ret = super(AuthApiKey, self)._inverse_password()
+        return ret
+
+    @api.model
+    def retrieve_from_api_key(self, api_key):
+        return self.browse(self.retrieve_id_by_api_key().get(api_key, []))
+
+    @api.model
+    @tools.ormcache('self.env.uid', 'self._backend_name', 'self._name')
+    def retrieve_id_by_api_key(self):
+        keychain_account = self.env['keychain.account']
+        keychain_accounts = keychain_account.search([
+            ('namespace', '=', self._backend_name),
+            ('technical_name', 'like', self._name)
+        ])
+        res = {}
+        for key in keychain_accounts:
+            _id = int(key.technical_name.split(',')[1])
+            api_key = key.get_password()
+            res[api_key] = _id
+        return res
diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py
new file mode 100644
index 0000000000..5ae09d91d5
--- /dev/null
+++ b/auth_api_key/models/ir_http.py
@@ -0,0 +1,39 @@
+# -*- coding: utf-8 -*-
+# Copyright 2018 ACSONE SA/NV
+# Copyright 2017 Akretion (http://www.akretion.com).
+# @author Sébastien BEAU <sebastien.beau@akretion.com>
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+import logging
+
+from odoo.http import request
+from odoo import models
+from werkzeug.exceptions import Unauthorized
+
+
+_logger = logging.getLogger(__name__)
+
+
+class IrHttp(models.AbstractModel):
+    _inherit = 'ir.http'
+
+    @classmethod
+    def _auth_method_api_key(cls):
+        headers = request.httprequest.environ
+        api_key = headers.get('HTTP_API_KEY')
+        if api_key:
+            request.uid = 1
+            auth_api_key = request.env['auth.api.key'].retrieve_from_api_key(
+                api_key
+            )
+            if api_key:
+                # reset _env on the request since we change the uid...
+                # the next call to env will instantiate an new
+                # odoo.api.Environment with the user defined on the
+                # auth.api_key
+                request._env = None
+                request.uid = auth_api_key.user_id.id
+                request.auth_api_key = auth_api_key
+                return True
+        _logger.error("Wrong HTTP_API_KEY, access denied")
+        raise Unauthorized("Access denied")
diff --git a/auth_api_key/models/keychain_account.py b/auth_api_key/models/keychain_account.py
new file mode 100644
index 0000000000..02f46c76a3
--- /dev/null
+++ b/auth_api_key/models/keychain_account.py
@@ -0,0 +1,21 @@
+# -*- coding: utf-8 -*-
+# Copyright 2018 ACSONE SA/NV
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+from odoo import api, fields, models
+
+
+class KeychainAccount(models.Model):
+
+    _inherit = 'keychain.account'
+
+    namespace = fields.Selection(
+        selection_add=[('auth_api_key', 'Search Engine Backend')])
+
+    @api.multi
+    def _auth_api_key_validate_data(self, data):
+        return True
+
+    @api.multi
+    def _auth_api_key_init_data(self):
+        return {}
diff --git a/auth_api_key/security/auth_api_key.xml b/auth_api_key/security/auth_api_key.xml
new file mode 100644
index 0000000000..2ad7762da0
--- /dev/null
+++ b/auth_api_key/security/auth_api_key.xml
@@ -0,0 +1,17 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!-- Copyright 2018 ACSONE SA/NV
+     License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). -->
+
+<odoo>
+
+    <record model="ir.model.access" id="auth_api_key_access_manage">
+        <field name="name">auth.api.key access manage</field>
+        <field name="model_id" ref="model_auth_api_key"/>
+        <field name="group_id" ref="base.group_system"/>
+        <field name="perm_read" eval="1"/>
+        <field name="perm_create" eval="1"/>
+        <field name="perm_write" eval="1"/>
+        <field name="perm_unlink" eval="1"/>
+    </record>
+
+</odoo>
diff --git a/auth_api_key/static/description/icon.png b/auth_api_key/static/description/icon.png
new file mode 100644
index 0000000000000000000000000000000000000000..3a0328b516c4980e8e44cdb63fd945757ddd132d
GIT binary patch
literal 9455
zcmW++2RxMjAAjx~&dlBk9S+%}OXg)AGE&Cb*&}<C%<R2Kc9faym6aW`f0Dh5$js*d
z_}}Z!;XIG;_cPz`_vag-p{7Ve$Uq1H00~A(?iu(VaQlMefnU3&OozZXm@69d91cGG
z;O61r&je0NdamH#&)mKsXk?Zb_)B^>d0jUxM@u(PQx^-s)6<jB#=*|j%+$$(&(Xyy
zYgd8+09XKwoa}S2?48%%ZU#L~n^g{fE40h%YEx5by;GuJ(K|vI1uO;0m}=J7R4@Bs
z>97TX<v{QF=s?r`z`m$a0ZvrhBU7}{15RN9M`j!kv_Mp+3~{||YNuFzHNvhMYm3=Q
zo!q+OJ5(%-oNM^I^M%*luKMiVL`lo`bcKGymX7i3MIFWj1i|9+CGNvn`cu-RsK0Qh
zoYlwB>`ehR4?GS^qbkof1cslKgk<Uw6DeIxZyT_?=OwX|lwC*A?ac*gHF7jmS080$
z>U)h65qZ9Oc=ml_0temigYLJfnz{IDzUf>bGs4N!v3=Z3jMq&A#7%rM5eQ#dc?k~!
zVpnB`o+K7|Al`Q_U<UrcmRnh6jExs}l(hZs0%T~Dnpu-NENdhioRv(T{Qmv>;eD$B
zfJtP*jH`siUq~{KE)`jP2|#TUEFGRryE2`i0**z#*^6~AI|YzIWy$Cu#CSLW3q=GA
z6`?GZymC;dCPk~rBS%eCb`5OLr;RUZ;D`}um=H)BfVIq%7VhiMr)_#G0N#zrNH|__
zc+blN2UAB0=617@>_<D4$IPL<k1zq(*VmlDPer&h1n6`AG;9A!_W=N$JthhQWXZ<i
zGURc6f<i*joK3xSWaOOXxAc8ES>u;MPHN;P;N#YoE=)R#i$k_`UAA>WWCcEVMh~L_
zj--gtp&|K1#58Yz*AHCTMziU1Jzt_jG0I@qAOHsk$2}yTmVkBp_eHuY$A9)>P6o~I
z%aQ?!(GqeQ-Y+b0I(m9pwgi(IIZZzsbMv+9w{PFtd_<_(LA~0H(xz<Z(Qt1jC2cC|
z6WbMo9YgON{L#ZDl$sV4*<CP(>{=FhLB@(1&qHA5EJw1>>=%q2f&^X>IQ{!GJ4e9U
z&KlB)z(84HmNgm2hg2C0>WM{E(DdPr+EeU_N@57;PC2&DmGFW_9kP&%?X4}+xWi)(
z;)z%wI5>D4a*5XwD)P--sPkoY(a~WBw;E~AW`Yue4kFa^LM3X`8x|}ZUeMnqr}>kH
zG%WWW>3ml$Yez?i%)2pbKPI7?5o?hydokgQyZsNEr{a|mLdt;X2TX(#B1j35xPnPW
z*bMSSOauW>o;*=kO8ojw91VX!qoOQb)zHJ!odWB}d+*K?#sY_jqPdg{Sm2HdYzdEx
zOGVPhVRTGPtv0o}RfVP;Nd(|CB)<HrC1(%ZOEd8PI?r9b_$Cp-${bh59Z_R7n&YCp
zl8lfMpes*8{FVm;oJH@0LLoWmxD59u?JwHz2iRrAaE0`Hc&g;t5~$P*kdeOZn9OJ3
zRczo@ZkWU)RG+hcfH~{49Vvb3D(W0wRX#|$cA0Iqy^VR~(4hqA2AFI-rK!FM!#fJ_
zGFI@iqJOPXZ!=VjTS3dMuu~9xU3K1&?th;$)cqM#WGxbDEyB$y`#9j%>I;*t&QO8h
zFfekr30S!-LHmV_Su-W+rEwYXJ^;6&3|L$mMC8*bQptyOo9;>Qb9Q9`ySe3%V$A*9
zeKEe+b0{#KWGp$F+tga)0RtI)nhMa-K@JS}2krK~n8vJ=Ngm?R!9G<~RyuU0d?nz#
z-5EK$o(!F?hmX*2Yt6+coY`6jGbb7t<dboft~zeDZwK=+l2bFWs5^+|r{J6GO9Cwl
z&SW58BRs?XdFLuhtzl7WLbQ#~z#`jAB3AbSUg6jW6@qVd2Q~9qN(izT1y*>F#6nHA
zuKk=GGJ;ZwON1iAfG$E#Y7MnZVmrY|j0eVI(DN_MNFJmyZ|;w4tf@=CCDZ#5N_0K=
z$;R~bbk?}TpfDjfB&aiQ$VA}s?P}xPERJG{kxk5~R`iRS(SK5d+Xs9swCozZISbnS
zk!)I0>t=A<-^z(cmSFz3=jZ23u13X><0b)P)^1T_))Kr`e!-pb#q&J*Q`p+B6la%C
zuVl&0duN<;uOsB3%T9Fp8t{ED108<?)`y_~Hnd9AUX7h-H?jVuU|}My+C=TjH(jKz
zqMVr0re3S$H@t{zI95qa)+Crz*5Zj}Ao%4Z><+W(nOZd?gDnfNBC3>M8WE61$So|P
zVvqH0SNtDTcs<xiU1;=a39$d&&l5EwoIH1db#`S9Kw!YC1jhR)VbCWMptlUUkpfif
zMzi-i8)WL?|C$*Q?iqbS{w<lA9XN(rD)VS<zn>UdzaMDpT=Ty0pDHHNL@Z0w$Y`XO
z2M-_r1S+GaH%pz#Uy0*w$Vdl=X=rQXEzO}d6J^R6zjM1u&c9vYLvLp?W7w(?np9x1
zE_0JSAJCPB%i7p*Wvg)pn5T`8k3-uR?*NT|J`eS#_#54p>!p(mLDvmc-3o0mX*mp_
zN*AeS<>#^-{S%W<*mz^!X$w_2dHWpcJ6^j64qFBft-o}o_Vx80o0>}Du;>kLts;$8
zC`7q$QI(dKYG`Wa8#wl@V4jVWBRGQ@1dr-hstpQL)Tl+aqVpGpbSfN>5i&QMXfiZ>
zaA?T1VGe?rpQ@;+pkrVdd{klI&jVS@I5_iz!=UMpTsa~mBga?1r}a<Xwa$pLotZk<
zsykXwQO37I=aXew7x=}YWiW)^p)|C#g+)an!@j?EcY8C0t)BlK#y{YLtkJ6=D6H-5
zp2*ANf@>RBm1WS;TT*s0f0lY=JBl66Upy)-k4J}lh=P^8(SXk~0xW=T9v*B|gzIhN
z>qsO7dFd~mgxAy4V?&)=5ieYq?zi?ZEoj)&2o)RLy=<bK!vY7J*RP!&i_xU}i*o6o
z?xN*1<rEe1L2HBkCSgiYM3a|4w?Bo7CJL7?Eh;9An1m$1t?h1v92<Xg2(#)bjbL|o
zH_H0}!Og=1dOBynXHu>@hbCRcfT5ji<pmK_U*~T(A$I-*rM$8-BCv{=@=7F)2pdtU
z5==tp!}A*&Xgf{F>gwtQGE{L*8<@Yd{zg;CsL5mvzfDY}P-wos_6PfprFVaeqNE%h
zKZhLtcQld;ZD+>=nqN~>GvROfueSzJD&<KAVm#0W>BE*}XfU|H&(FssBqY=hPCt`d
zH?@s2>I(|;fcW&YM6#V<T#ysvE$@4oRO>#!kUIP8$Nkdh0A(bEVj``-AAyYgwY~jB
zT|I7Bf@%;7aL7Wf4dZ%VqF$eiaC38OV6oy3Z#TER2G+fOCd9Iaoy6aLYbPTN{XRPz
z;U!V|vBf%H!}52L2gH_+j;`bTcQRXB+y9onc^wLm5wi3-Be}U>k_u>2Eg$=k!(l@I
zcCg+flakT2Nej3i0yn+g+}%NYb?ta;R<sv-KjYb}UVFjITQ)VAEWu*)Lz7*-f^A*H
z<25#Ynt~-Qh?$wWx4$1=T2`j@bKp!)3IXh(LC@)%WGW$+j(tGz(6#bGw&K0j=Np@B
zt}@t$R`z(>?(g5SnwsQ49U8Wng8d|{B+lyRcEDvR3+`O{zfmrmvFrL6acVP%yG98X
zo&+VBg@px@i)%o?dG(`T;n*$S5*rnyiR#=wW}}GsAcfyQpE|>a{=$Hjg=-*_K;UtD
z<sX7(ZJc+Q;#xP8uk`jnF@a^|TWw*55if6@@}%7lOBaGo9Ia-e?`RPQc^w^EWfhe}
zHWHTvDA+r}Xf5Yqpr;QU-88%QC9F_>#z-)AXwSRY?<M%E84!g*1GC?E>OPefw^iI+
z)AXz#PfEjlwTes|_{sB?4(O@fg0AJ^g8gP}ex9Ucf*@_^J(s_5jJV}c)s$`Myn|Kd
z$<h)Fm>6>}#q^n{4vN@+Os$m7KV+`}c%4)4pv@06af4-x5#wj!KKb%caK{A&Y#Rfs
z-po?Dcb1({W=6FKIUirH&(yg=*6aLCekcKwyfK^JN5{wcA3nhO(o}SK#!CINhI`-I
z1)6&n7O&ZmyFMuNwvEic#IiOAwNkR=u5it{B9n2sAJV5pNhar=j5`*N!Na;c7g!l$
z3aYBqUkqqTJ=Re-;)s!EOeij=7SQZ3Hq}ZRds%IM*PtM$wV<GYik+VfZene%bm(n6
z`r@rc^TVw7EN{|O7rORMlw)zt(Z#enc3joE#IIk!M)L8gk^go9E9AxiP9o#OqmvV>
z@;rlc*NRK7i3y5BETSKuumEN`Xu_8<BQ)z0!-JuC8x}?$qo8SEko}oUWNI(4h*VHO
zAi!Egy!f(o9aHs2dhSE6ki(be*&w&+WLOB<(b3T_Hide(NvVvLQV{BN|2?UJFaY*@
z9CXA5B_*8i5Bf6sn~d`R>GP1Ri=OK<SGIb#BCTo3qI#UBUg+dkR+2ilUwIg%XFV;l
z+>Q$@I^ko8>H6)4rjiG5{VBM>B|%`&&s^)jS|-_95&yc=GqjNo{zFkw%%HHhS~e=s
zD#sfS+-?*t|J!+ozP6KvtOl!R)@@-z24}`9{QaVLD^9VCSR2b`b!KC#o;Ki<+wXB6
zx3&O0LOWcg4&rv4QG0)4yb}7BFSEg~=IR5<g6yi=XozU}zReXL{rA%c`$IQAs<ObZ
zep*ITZ0C(~W*`?XH^l1t7&+qigAfY9tVJ5DH!~jY>#ZRj8kg}dS7_V&^%#Do==#`u
zpy6{ox?jWuR(;pg+f@mT>#HGWHAJRRDDDv~@(IDw&R>9643kK<aUZ^OhBu;1e6t#{
zxKehVgz`HT;A`FMivG<tq0OcrXwHUX_<$j<uk%m>#HN`!1vBJHnC+RM&yIh8{gG2q
zA%e*U3|N0XSRa~oX-3EAneep)@{h2vvd3Xvy$7og(sayr@95+e6~Xvi1tUqnIxoIH
zVWo*OwYElb#uyW{Imam6f2<eMTQj#)z8+N&ZY?tSPo%&2eVNU=4=?rlO<*9Twaxco
zEVE=Jh?_x>rGbjR!Y3`#gPqkv57dB6K^wRGxc9B(t|aYDGS=m$&S!NmCtrMMaUg(c
zc2qC=2Z`EEFMW-me5B)24AqF*bV5Dr-M5ig(l-WPS%CgaPzs6p_gnCIvTJ=Y<6!gT
zVt@AfYCzjjsMEGi=rDQHo0yc;HqoRNnNFeWZgcm?f;cp(6CNylj36DoL(?TS7eU#+
z7&mfr#y))+CJOXQKUMZ7QIdS9@#-}7y2K1{8)cCt0~-X0O!O?Qx#E4Og+;A2SjalQ
zs7r?qn0H044=sDN$SRG$arw~n=+T_DNdSrarmu)V6@|?1-ZB#hRn`uilTGPJ@fqEy
zGt(f0B+^JDP&f=r{#Y_wi#AVDf-y!RIXU^0jXsFpf>=Ji*TeqSY!H~AMbJdCGLhC)
zn7Rx+sXw6uYj;WRYrLd^5IZq@6JI1C^YkgnedZEYy<&4(z%Q$5yv#B<pkvWZft^C&
z;+zNo+VJNluxaDF!`gW+F0=MxsCQ~~#CYKa;ULfj5hTa8a6;d*(<eeQ7-ZQgz2et^
zf|7URfj;x*#HiF0wuBCOTEpbeD&kkENqolCm2#cQGHCeEC<&I3j+P6?sX?BPp4~46
zx-S~EJ>oo{AH8n$<d4loB?vL3RqXwK_COrQ6xRoWGOdFnWy(hhzrG8k;2k}8Zj&>a
zhb4Y3PWdr269&?V%uI$xMcUrMzl=;w<_nm*qr=c3Rl@i5wWB;e-`t7D&c-mcQl7x!
zZWB`UGcw=Y2=}~wzrfLx=uet<;m3~=8I~ZRuzvMQUQdr+yTV|ATf1Uuomr__nDf=X
zZ3WYJtHp_ri(}SQAPjv+Y+0=<GD??Na(2AG`s>fH4krOP@S&=zZ-t1jW1o@}z;xk8
z(Nz1co&El^HK^NrhVHa-_;&88vTU>_J33=%{if;BEY*J#1n59=07jrGQ#IP>@u#3A
z;!q+E1Rj3ZJ+!4bq9F8PXJ@yMgZL;>&gYA0%_Kbi8?S=XGM~dnQZQ!yBSgcZhY96H
zrWnU;k)qy`rX&&xlDyA%(a1Hhi5CWkmg(`Gb%m(HKi-7Z!LKGRP_B8@`7&hdDy5n=
z`OIxqxiVfX@OX1p(mQu>0Ai*v_cTMiw4qRt3~N<X{IYiJ3k=4u-u*nJEBnJ<OdI8P
zXmK`OYkO5a{YDhI3PL|H4m=p>Bvr9oBy0)r>w3p~V0SCm=An6@3n)>@z!|o-$HvDK
z|3D2ZMJkLE5loMKl6R^ez@Zz%S$&mbeoqH5`Bb){Ei21q&VP)hWS2tjShfFtGE+$z
zzCR$P#uktu+#!w)cX!<osOkId_HzAT-HD2N`M+v2l+zwdW%GgZbQMuhfE*hHjKXKg
z45hphqVETPDbX6wpTlZqza0gFaRGh`3L~0id)F6#%@9;w(e%PjzuD7@inuToA!B?F
zCMLJc!u{3N)s?lB-!11!GxXsCak8zQomO)gmn02f-5~OkMYnm~#jVwwYNw@LAv!KN
z-n`q1|AXw*TW>lWN1XU%K-r=s{|j?)Akf@q#3b#{6cZCuJ~gCxuMXRmI$nGtnH+-h
z+GEi!*X=AP<|fG`1>MBdTb?28JYc=fGvAi2I<$B(rs$;eoJCyR6_bc~p!XR@O-+sD
z=eH`-ye})I5ic1eL~TDmtfJ|8`0VJ*Yr=hNCd)G1p2MMz4C3^Mj?7;!w|Ly%JqmuW
zlIEW^Ft%z?*|fpXda>Jr^1noFZEwFgVV%|*XhH@acv8rdGxeEX{M$(vG{Zw+x(ei@
zmfXb22}8-?Fi`vo-YVrTH*C?a8%M=Hv9MqVH7H^J$KsD?>!SFZ;ZsvnHr_gn=7acz
z#W?0eCdVhVMWN12VV^$>WlQ?f;P^{(&pYTops|btm6aj>_Uz+hqpGwB)vWp0Cf5y<
zft8-je~nn?W11plq}N)4A{l8I7$!ks_x$PXW-2XaRFswX_BnF{R#6YIwMhAgd5F9X
zGmwdadS6(a^fjHtXg8=l?Rc0Sm%hk6E9!5cLVloEy4eh(=FwgP`)~I^5~pBEWo+F6
zSf2ncyMurJN91#cJTy_u8Y}@%!bq1RkGC~-bV@SXRd4F{R-*V<h953|jk-C&|3)z%
ze&_30-6q1)a0(!xXqA+_t(WC`HA_yYaW@>`bS+6;W5vZ(&+I<9$;-V|eNfLa5n-6%
z2(}&uGRF;p9<Q%jdNy1%e7XTzyu7EEQT(5LrnvX~T%K!IuDyHY`ZneVJu#k_1T)xA
z*yxB?y4!pOJ$DTZzBm|8OIQq+AtV25aJ+X5EJjAu><tfuiNClI2BSoMgqLnU-5t95
zEnZ(^g~1RgD=UMB({c;$HujG&%DqGF;5jI~roRT+(rOoS$6f6SsURIuAVkAeIVc~{
z5ZxLN%m%Z*Sg;qYCf3<$dE6~&w_!EBx%yl4YC~LH{FCFNRBc_I>2eS*sE*o<YSPrx
z{M(reV{~jKue#Y6ZOnqJia{fQc!UxV4m)l389OmzR6A3|2!i<P{r82jKw+zq4%@ny
znopi6g!1Vx9Bml#a~KdL2lp2C)qSTKIh43vgycQHfQb_I!kQY&p;X@Bz|{^SXsW1K
zP&Ag1CW_r6u5-4=s(W>R$@pexaqr*meB)VhmIg@h{uzkk$9~qh#cHhw#>O%)b@+(|
z^IQgqzuj~Sk(J;swEM-3TrJAPCq9k^^^`q{IItKBRXYe}e0Tdr=Huf7da3$l4<V=<
zfr<*%iOB1EY}w3tF2Cwl7a2OS&~Y-lu<s)T^9=OFU8(CeN|63BiMxf*)5gesGU<eZ
z9DigzL3+quZ1o2T<KAZbCGJx&lrl*e#}Dpv24bZO$B<Yoc5hbeP0y?@P%|Tvw||e%
zV#e^q0D2R_Oq_c+=x5vP&hg4k+df{o7$aNZCM>PdpwWDop%^}n;dD#K4s#DYA8SHZ
z&1!riV4W4R7R#C))JH1~axJ)RYnM$$lIR%6fIVA@zV{XVyx}C+a-Dt8Y9M)^KU0+H
zR4IUb2CJ{Hg>CuaXtD50jB(_Tcx=Z$^W<wsNa}nUDpNk$q{>Yu2u5kubqmwp%drJ6
z?Fo40g!Qd<-l=TQxqHEOuPX0;^z7iX?Ke^a%XT<13TA^5`4Xcw6D@Ur&VT&CUe0d}
z1GjOVF1^L@>O)l@?bD~$wzgf(nxX1OGD8fEV?TdJcZc2KoUe|oP1#=$$7ee|xbY)A
zDZq+cuTpc(fFdj^=!;{k03C69lMQ(|>uhRfRu%+!k&<F<Z7l=VnwB^RA&^APMi=Tn
zNc}%IJL~xB4OP6bJNwAw)~Ma2=UP0dhr%X=kco(it+@F<#$xrIJ8@|{Buh<)h`xg?
z_U}pe=3#zmDfdqE4`Hyn<!?&CfCp#GTeXo8;AYd1Opd&cXER8cBSOF3iFJ#XPgQVp
zZSiQf7V^Dt?ITs8aMF~e1hq0P@^oB)#byh|6q_7F1B%ST%WL~J?ySn>YOi-3|1QKB
z<?_cUy)V3go%%^l)lRa=dmY_XQG3Z{Q?52d$qG}vIe|EZbYEtrR$rh(iS)O#dU-(>
z?n?eq1XP>p-IM$Z^C;2L3itnbJZAip*Zo0aw2bs8@(s^~*8T9go!%dHcAz2lM;`yp
zD=7&xjFV$S&5uDaiScyD?B-i1ze`+CoRtz`Wn+Zl&#<i<Zx(`=7k~{%`w&<EbG}U<
z0%E^8lyw>s4&}MO{@N!ufrzjG$B79)Y2d3tBk&)TxUTw@<TSeYlROCt(gU?O((-qu
zs>QS0TEL_?njX|<LXnSC4TlId(D4W|GQ?L@$3Ue@N8p=l9-sC<=z(lPk;^sT(v2*k
zc~vp#Hp`mXjzhml2NMCh^h5)sqsan+jJ_l<a4w|G&ac02hrz8#6|kFraA~rta0}!q
zB4BE{QWY7MtxHn_xB);Avf#Lf<GG<A?Q3JVyc1p8^H}$8(Gn=_&F1!m8$sKyeue+L
z5&392wm+wO;_oXoTEJ=wxVXk}dt<d~CgUUMW_PPTe(c<7n18#mVaX)vK}-PzZq7<b
zNJbVTFaq(8ZLx|A*G$H3ugT2aVziDEGa66FVt@hr1|D{RWN6yuqlglM!rp^YG;UpG
zrnm?ek079l3VoOU^p%f^A9Yzn8IVX?^rB4LbgJ|PONhzM_0{P?S(V$OI=u5IBjfT#
z0ntLLnhg5$0fAHJaG6HCx4X7;RmvMtE}8C>@vq?Uz(nBFK5Pq7*xj#u*R&i|?7+6#
z+|r_n#SW&LXhtheZdah{ZVoqwyT{D>MC3nkFF#N)xLi{p7J1jXlmVeb;cP5?e(=f#
zuT7fv<Q3o5LspCx-RPkzLw{VsDE>jSbjS781v?7{)-X3*?>tq?)Yd)~|1{BDS(pqC
zC}~H#WXlkUW*H5CDOo<)#x7%RY)A;ShGhI5s*#cRDA8YgqG(HeKDx+#(ZQ?386dv!
zlXCO)w91~Vw4AmOcATuV653fa9R$fyK8<JV*@W33SMHM;w!OmUXar{O;_8j>ul%rG
z-<zwGD)!Y{+(T{%ob~79zpXX%zulyiy1_UHWvu@YqxKAK3e9GO6Os4R0Naujn>wfS
zihugoZyr38Im?Zuh6@RcF~t1anQu7>#lPpb#}4cOA!EM11`%f*07RqOVkmX{p~KJ9
z^zP;K#|)$`^Rb{rnH<AdQ^(;gQMcF>GH{~>1(fawV0*Z#)}M`m8-?ZJV<+e}s9wE#
z)l&az?w^5{)`S(%MRzxdNqrs1n*-=jS^_jqE*5XDrA0+VE`5^*p3CuM<&dZEeCjoz
zR;uu_H9ZPZV|fQq`Cyw4nscrVwi!fE6ciMmX$!_hN7uF;jjKG)d2@aC4ropY)8<!P
zAOHj?oPbjQ%hh|vE_1IMB)43eQpeLi&)R>etW=xJvni)8eHi`H$%#zn^WJ<U7gogJ
z?A^!2J~rI78JH|Ml2EldmKY5K8;Zx(FGcBdM<5oe#G+nd6dObqz@Af%%M*aBE_pn8
zXQo2`Bw*IwvP3#1Ev<%YocpBodO9+Rw~`5*CY3{L;qf1PxV!r%NI+#Q1f8GU7$~#U
zAA9$4&g-k=8BYi*3i@0^UX}nTQVyOf)8T(}G^Ti?Vqvk~bJRR#EAQ?u`dClPxk@{;
zxvO?%jSX`2{8|^z0*C5DR1Z^>5NLc-rqk|u&&4Z6fD_m&JfSI1Bvb?b<*n&sfl0^t
z=HnmRl`XrFvMKB%9}>PaA`m-fK6a0(8=qPkWS5bb4=v?XcWi&hRY?O5HdulRi4?fN
zlsJ*N-0Qw+Yic@s0(2uy%F@ib;GjXt01F<S%GT3P{Ck&Y*^gWuie`o_g+ZNDNIV|F
z)zEe|Ij*4$H1(<RLz0($;AD3VsUJwI@liw^?fh(V?VC`Sz7h`*Q<VYlhbHJ?&h+!W
zAJC)U;Lx_QRaSNFYbyi|7+MeNTgA+Znh}qFzf>mx5XbRo6+n|pP(&nodMoap^z{~q
ziEeaUT@Mxe3vJSfI6?uLND(CNr=#^W<1b}jzW58bIfyWTDle$mmS(|x-0|2UlX+9k
zQ<WB5+u#`K#~J$81)#?BuTOKLk|+S>^EX7Nw}?EzVoBfT(-LT|=9N@^hcn-_p&sqG
z&*oVs2JSU+N4ZD`FhCAWaS;>|wH2G*Id|?pa#@>tyxX`+4HyIArWDvVrX)2WAOQff
z0qyHu&-S@i^MS-+j--!pr4fPBj~_8({~e1bfcl0wI1kaoN>mJL6KUPQm5N7lB(ui1
zE-o%kq)&djzWJ}ob<-GfDlkB;F31j-VHKvQUGQ3sp`CwyGJk_i!y^sD0fqC@$9|jO
zOqN!r!8-p==F@ZVP=U$qSpY(gQ0)59P1&t@y?5rvg<}E+GB}2<F#{*|k0E{$&_`~)
zkzDcsi#!7r<a8lPUCMj?{CK;e|9#-xj>6NYPp4f2YFQrQtot5mn3wu_qprZ=>Ig-$
zbW26Ws~IgY>}^5w`vTB(G`PTZaDiGBo5o(tp)qli|NeV(<Rzgqw(Ze!7hEGKKx((>
z@H_=R8V39rt5J5YB2Ky?4eJJ#b`_iBe2ot~6%7mLt5t8Vwi^Jy7|jWXqa3amOIoRb
zOr}WVFP--DsS`1WpN%~)t3R!arKF^Q$e12KEqU36AWwnCBICpH4XCsfnyrHr>$I$4
z!DpKX$OKLWarN7nv@!uIA+~RNO)l$$w}p(;b>mx8pwYvu;dD_unryX_N<mojSrG!`
zgkqx4t<XLL6ZUppvjeV9PJ6dG>hT8*Tj>BTrTTL&!?O+%Rv;b?B??gSzdp?6Uug9{
zd@V08Z$BdI?fpoCS$)t4mg4rT8Q_I}h`0d-vYZ^|dOB*Q^S|xqTV*<bTMtKO;_Z)R
zRSOJrd5TFO0aO%#%-sNa{`SiQ^$$1^@oUd&^lB{MKZ>vIg?@fVFSmMpaw0qtTRbx}
z({Pg?#{2`sc9)M5N$*N|4;^t$+Q<Wh^yJ?FzJ*$wiB{j;CMy+?m1MbsJo0ubR==f9
z>P?#mo<zt1E6=Ilm*nbmYmpxfAj7*m*Wh@=7|;!%(-pviW`nuCktLveet9^$*y^>v
zGVC@I*lBVrOU-%2y!7%)fAKjpEFsgQc4{amtiHb95KQEwvf<(3T<9-Zm$xIew#P22
zc2Ix|App^>v6(3L_MCU0d3W##AB<Fxl*nmny6_RsCu%1a)so}}uCXSzwY70Y@uTxK
z=5nu(N*2HDbrIcL)t_*{*84mvmV_Y9<vxHJJ;0gUdNjyW)jDb|@|j*qR8;gsMa5Ir
z02fHv=%xyN9VLv_ZLL4y|F*p$S^^T47m{aok5{rmM{$s7^Xu2!_fo1$IG6kkG_Tgx
zFfjPm3;g>0M~3D00EWoKZqsJYT(#@w$Y_H7G22M~ApVFTRHMI_3be)Lkn#0F*V8Pq
zc}`Cjy$bE;FJ6H7p=0y#R>`}-m4(0F>%@P|?7fx{=R^uFdISRnZ2W_xQhD{YuR3t<
z{6yxu=4~JkeA;|(J6_nv#>Nvs&FuLA&PW^he@t(UwFFE8)|a!R{`E`K`i^ZnyE4$k
z;(749Ix|oi$c3QbEJ3b~D_kQsPz~fIUKym($a_7dJ?o+40*OLl^{=&oq$<#Q(yyrp
z{J-FAniyAw9tPbe&IhQ|a`DqFTVQGQ&Gq3!C2==4x{6EJwiPZ8zub-iXoUtkJiG{}
zPaR&}_fn8_z~(=;5lD-aPWD3z8PZS@AaUiomF!G8I}Mf>e~0g#BelA-5#`cj;O5>N
Xviia!U7SGha1wx#SCgwmn*{w2TRX*I

literal 0
HcmV?d00001

diff --git a/auth_api_key/views/auth_api_key.xml b/auth_api_key/views/auth_api_key.xml
new file mode 100644
index 0000000000..6937bab749
--- /dev/null
+++ b/auth_api_key/views/auth_api_key.xml
@@ -0,0 +1,51 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!-- Copyright 2018 ACSONE SA/NV
+     License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). -->
+
+<odoo>
+
+    <record model="ir.ui.view" id="auth_api_key_form_view">
+        <field name="name">auth.api.key.form (in auth_api_key)</field>
+        <field name="model">auth.api.key</field>
+        <field name="arch" type="xml">
+            <form create="false" edit="false">
+                <sheet>
+                    <label for="name" class="oe_edit_only"/>
+                    <h1>
+                        <field name="name" class="oe_inline"/>
+                    </h1>
+                     <group name="config" colspan="4" col="4">
+                         <field name="password" colspan="4"/>
+                     </group>
+                </sheet>
+            </form>
+        </field>
+    </record>
+
+
+    <record model="ir.ui.view" id="auth_api_key_tree_view">
+        <field name="name">auth.api.key.tree (in auth_api_key)</field>
+        <field name="model">auth.api.key</field>
+        <field name="arch" type="xml">
+            <tree>
+                <field name="name"/>
+            </tree>
+        </field>
+    </record>
+
+    <record model="ir.actions.act_window" id="auth_api_key_act_window">
+        <field name="name">Auth Api Key</field>
+        <field name="res_model">auth.api.key</field>
+        <field name="view_mode">tree,form</field>
+        <field name="domain">[]</field>
+        <field name="context">{}</field>
+    </record>
+
+    <record model="ir.ui.menu" id="auth_api_key_menu">
+        <field name="name">Auth Api Key</field>
+        <field name="parent_id" ref="base.menu_custom"/>
+        <field name="action" ref="auth_api_key_act_window"/>
+        <field name="sequence" eval="100"/>
+    </record>
+
+</odoo>

From 806d56a14f0c50c3b93c1a38650d800727e2d8b4 Mon Sep 17 00:00:00 2001
From: "Laurent Mignon (ACSONE)" <laurent.mignon@acsone.eu>
Date: Fri, 2 Feb 2018 16:26:45 +0100
Subject: [PATCH 03/86] auth_api_key: Remove useless code

---
 auth_api_key/models/auth_api_key.py | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 2adf2c25bb..7528db41de 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -26,8 +26,7 @@ def _default_user_id(self):
     @api.multi
     def _inverse_password(self):
         self.retrieve_id_by_api_key.clear_cache(self)
-        ret = super(AuthApiKey, self)._inverse_password()
-        return ret
+        return super(AuthApiKey, self)._inverse_password()
 
     @api.model
     def retrieve_from_api_key(self, api_key):

From 0c349e5b4b0103e0a5c9e758c7ec4a6d88610358 Mon Sep 17 00:00:00 2001
From: "Denis Robinet (ACSONE)" <denis.robinet@acsone.eu>
Date: Mon, 19 Feb 2018 15:30:01 +0100
Subject: [PATCH 04/86] Update the auth_api_key for keychan 10.0.2 (renamed
 method)

---
 auth_api_key/models/auth_api_key.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 7528db41de..8a7d401712 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -43,6 +43,6 @@ def retrieve_id_by_api_key(self):
         res = {}
         for key in keychain_accounts:
             _id = int(key.technical_name.split(',')[1])
-            api_key = key.get_password()
+            api_key = key._get_password()
             res[api_key] = _id
         return res

From 0f7f8818a5ef3ac1ac2a9ee5c7c7a745cbdd8b08 Mon Sep 17 00:00:00 2001
From: "Denis Robinet (ACSONE)" <denis.robinet@acsone.eu>
Date: Mon, 19 Feb 2018 15:31:24 +0100
Subject: [PATCH 05/86] Fix the authentification method and show the user_id on
 the form

---
 auth_api_key/models/ir_http.py      | 2 +-
 auth_api_key/views/auth_api_key.xml | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py
index 5ae09d91d5..6e77c0738b 100644
--- a/auth_api_key/models/ir_http.py
+++ b/auth_api_key/models/ir_http.py
@@ -26,7 +26,7 @@ def _auth_method_api_key(cls):
             auth_api_key = request.env['auth.api.key'].retrieve_from_api_key(
                 api_key
             )
-            if api_key:
+            if auth_api_key:
                 # reset _env on the request since we change the uid...
                 # the next call to env will instantiate an new
                 # odoo.api.Environment with the user defined on the
diff --git a/auth_api_key/views/auth_api_key.xml b/auth_api_key/views/auth_api_key.xml
index 6937bab749..eca677d51e 100644
--- a/auth_api_key/views/auth_api_key.xml
+++ b/auth_api_key/views/auth_api_key.xml
@@ -15,6 +15,7 @@
                         <field name="name" class="oe_inline"/>
                     </h1>
                      <group name="config" colspan="4" col="4">
+                         <field name="user_id" colspan="4"/>
                          <field name="password" colspan="4"/>
                      </group>
                 </sheet>

From 920ab7e40420a288a4d0021d3a7309a82b72d54f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?S=C3=A9bastien=20BEAU?= <sebastien.beau@akretion.com>
Date: Sun, 25 Feb 2018 19:39:24 +0100
Subject: [PATCH 06/86] refactor code in order to use generic code from
 base_rest instead of custom one from shopinvader

---
 auth_api_key/models/ir_http.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py
index 6e77c0738b..dd777c239a 100644
--- a/auth_api_key/models/ir_http.py
+++ b/auth_api_key/models/ir_http.py
@@ -8,7 +8,7 @@
 
 from odoo.http import request
 from odoo import models
-from werkzeug.exceptions import Unauthorized
+from odoo.exceptions import AccessDenied
 
 
 _logger = logging.getLogger(__name__)
@@ -36,4 +36,4 @@ def _auth_method_api_key(cls):
                 request.auth_api_key = auth_api_key
                 return True
         _logger.error("Wrong HTTP_API_KEY, access denied")
-        raise Unauthorized("Access denied")
+        raise AccessDenied()

From 42d9d6d42ec4a63aaf19b334b6bb14bc8b75fa3a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?S=C3=A9bastien=20BEAU?= <sebastien.beau@akretion.com>
Date: Wed, 29 Aug 2018 09:05:14 +0200
Subject: [PATCH 07/86] fix wrong name in selection box

---
 auth_api_key/models/keychain_account.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/auth_api_key/models/keychain_account.py b/auth_api_key/models/keychain_account.py
index 02f46c76a3..3c919fa458 100644
--- a/auth_api_key/models/keychain_account.py
+++ b/auth_api_key/models/keychain_account.py
@@ -10,7 +10,7 @@ class KeychainAccount(models.Model):
     _inherit = 'keychain.account'
 
     namespace = fields.Selection(
-        selection_add=[('auth_api_key', 'Search Engine Backend')])
+        selection_add=[('auth_api_key', 'Authentification Api key')])
 
     @api.multi
     def _auth_api_key_validate_data(self, data):

From 70c8b577e9e7d1bfd2ceb949a057f0479dbebd0d Mon Sep 17 00:00:00 2001
From: hparfr <raph@hpar.fr>
Date: Wed, 17 Oct 2018 12:51:51 +0200
Subject: [PATCH 08/86] Since keychain 10.0.2.0.1 there is a default validation
 method

---
 auth_api_key/models/keychain_account.py | 10 +---------
 1 file changed, 1 insertion(+), 9 deletions(-)

diff --git a/auth_api_key/models/keychain_account.py b/auth_api_key/models/keychain_account.py
index 3c919fa458..80168d751d 100644
--- a/auth_api_key/models/keychain_account.py
+++ b/auth_api_key/models/keychain_account.py
@@ -2,7 +2,7 @@
 # Copyright 2018 ACSONE SA/NV
 # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
 
-from odoo import api, fields, models
+from odoo import fields, models
 
 
 class KeychainAccount(models.Model):
@@ -11,11 +11,3 @@ class KeychainAccount(models.Model):
 
     namespace = fields.Selection(
         selection_add=[('auth_api_key', 'Authentification Api key')])
-
-    @api.multi
-    def _auth_api_key_validate_data(self, data):
-        return True
-
-    @api.multi
-    def _auth_api_key_init_data(self):
-        return {}

From 09740717757e6ab580d09ed36f95ebb133086e55 Mon Sep 17 00:00:00 2001
From: Quentin Groulard <quentin.groulard@acsone.eu>
Date: Tue, 6 Nov 2018 12:34:52 +0100
Subject: [PATCH 09/86] Keychain removed

Get rid of keychain dependency
---
 auth_api_key/__manifest__.py            | 24 ++++------
 auth_api_key/models/__init__.py         |  1 -
 auth_api_key/models/auth_api_key.py     | 61 ++++++++++---------------
 auth_api_key/models/ir_http.py          | 12 ++---
 auth_api_key/models/keychain_account.py | 13 ------
 auth_api_key/readme/CONFIGURE.rst       |  2 +
 auth_api_key/readme/CONTRIBUTORS.rst    |  4 ++
 auth_api_key/readme/DESCRIPTION.rst     |  1 +
 auth_api_key/readme/USAGE.rst           |  9 ++++
 auth_api_key/security/auth_api_key.xml  | 17 -------
 auth_api_key/tests/__init__.py          |  1 +
 auth_api_key/tests/test_auth_api_key.py | 35 ++++++++++++++
 auth_api_key/views/auth_api_key.xml     | 52 ---------------------
 13 files changed, 90 insertions(+), 142 deletions(-)
 delete mode 100644 auth_api_key/models/keychain_account.py
 create mode 100644 auth_api_key/readme/CONFIGURE.rst
 create mode 100644 auth_api_key/readme/CONTRIBUTORS.rst
 create mode 100644 auth_api_key/readme/DESCRIPTION.rst
 create mode 100644 auth_api_key/readme/USAGE.rst
 delete mode 100644 auth_api_key/security/auth_api_key.xml
 create mode 100644 auth_api_key/tests/__init__.py
 create mode 100644 auth_api_key/tests/test_auth_api_key.py
 delete mode 100644 auth_api_key/views/auth_api_key.xml

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 8294eb056a..7b68da7c41 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -3,20 +3,14 @@
 # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
 
 {
-    'name': 'Auth Api Key',
-    'summary': """
+    "name": "Auth Api Key",
+    "summary": """
         Authenticate http requests from an API key""",
-    'version': '10.0.1.0.0',
-    'license': 'AGPL-3',
-    'author': 'ACSONE SA/NV,Odoo Community Association (OCA)',
-    'website': 'https://acsone.eu/',
-    'depends': [
-        'keychain'
-    ],
-    'data': [
-        'security/auth_api_key.xml',
-        'views/auth_api_key.xml',
-    ],
-    'demo': [
-    ],
+    "version": "10.0.1.0.0",
+    "license": "AGPL-3",
+    "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
+    "website": "https://acsone.eu/",
+    "depends": ["server_environment"],
+    "data": [],
+    "demo": [],
 }
diff --git a/auth_api_key/models/__init__.py b/auth_api_key/models/__init__.py
index 389ec3bba5..dee3379fea 100644
--- a/auth_api_key/models/__init__.py
+++ b/auth_api_key/models/__init__.py
@@ -1,3 +1,2 @@
 from . import ir_http
-from . import keychain_account
 from . import auth_api_key
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 8a7d401712..733bd10f03 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -4,45 +4,32 @@
 
 from odoo import api, fields, models, tools
 
+from odoo.addons.server_environment import serv_config
 
-class AuthApiKey(models.Model):
-    _name = 'auth.api.key'
-    _inherit = 'keychain.backend'
-    _backend_name = 'auth_api_key'
+from odoo.exceptions import ValidationError, AccessError
 
-    @api.model
-    def _default_user_id(self):
-        return self.env.user
-
-    user_id = fields.Many2one(
-        'res.users',
-        'User',
-        required=True,
-        help="The user used to execute the code into Odoo when user is called "
-             "with this api key.",
-        default=_default_user_id
-    )
-
-    @api.multi
-    def _inverse_password(self):
-        self.retrieve_id_by_api_key.clear_cache(self)
-        return super(AuthApiKey, self)._inverse_password()
 
-    @api.model
-    def retrieve_from_api_key(self, api_key):
-        return self.browse(self.retrieve_id_by_api_key().get(api_key, []))
+class AuthApiKey(models.TransientModel):
+    _name = "auth.api.key"
 
     @api.model
-    @tools.ormcache('self.env.uid', 'self._backend_name', 'self._name')
-    def retrieve_id_by_api_key(self):
-        keychain_account = self.env['keychain.account']
-        keychain_accounts = keychain_account.search([
-            ('namespace', '=', self._backend_name),
-            ('technical_name', 'like', self._name)
-        ])
-        res = {}
-        for key in keychain_accounts:
-            _id = int(key.technical_name.split(',')[1])
-            api_key = key._get_password()
-            res[api_key] = _id
-        return res
+    @tools.ormcache("api_key")
+    def _retrieve_uid_from_api_key(self, api_key):
+        if not self.env.user.has_group("base.group_system"):
+            raise AccessError("User is not allowed")
+
+        for section in serv_config.sections():
+            if section.startswith("api_key_") and serv_config.has_option(
+                section, "key"
+            ):
+                if api_key != serv_config.get(section, "key"):
+                    continue
+
+                login_name = serv_config.get(section, "user")
+                uid = self.env["res.users"].search([("login", "=", login_name)]).id
+
+                if not uid:
+                    raise ValidationError("No user found with login %s" % login_name)
+
+                return uid
+        return False
diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py
index dd777c239a..dd1483a644 100644
--- a/auth_api_key/models/ir_http.py
+++ b/auth_api_key/models/ir_http.py
@@ -15,24 +15,22 @@
 
 
 class IrHttp(models.AbstractModel):
-    _inherit = 'ir.http'
+    _inherit = "ir.http"
 
     @classmethod
     def _auth_method_api_key(cls):
         headers = request.httprequest.environ
-        api_key = headers.get('HTTP_API_KEY')
+        api_key = headers.get("HTTP_API_KEY")
         if api_key:
             request.uid = 1
-            auth_api_key = request.env['auth.api.key'].retrieve_from_api_key(
-                api_key
-            )
-            if auth_api_key:
+            uid = request.env["auth.api.key"].retrieve_uid_from_api_key(api_key)
+            if uid:
                 # reset _env on the request since we change the uid...
                 # the next call to env will instantiate an new
                 # odoo.api.Environment with the user defined on the
                 # auth.api_key
                 request._env = None
-                request.uid = auth_api_key.user_id.id
+                request.uid = uid
                 request.auth_api_key = auth_api_key
                 return True
         _logger.error("Wrong HTTP_API_KEY, access denied")
diff --git a/auth_api_key/models/keychain_account.py b/auth_api_key/models/keychain_account.py
deleted file mode 100644
index 80168d751d..0000000000
--- a/auth_api_key/models/keychain_account.py
+++ /dev/null
@@ -1,13 +0,0 @@
-# -*- coding: utf-8 -*-
-# Copyright 2018 ACSONE SA/NV
-# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
-
-from odoo import fields, models
-
-
-class KeychainAccount(models.Model):
-
-    _inherit = 'keychain.account'
-
-    namespace = fields.Selection(
-        selection_add=[('auth_api_key', 'Authentification Api key')])
diff --git a/auth_api_key/readme/CONFIGURE.rst b/auth_api_key/readme/CONFIGURE.rst
new file mode 100644
index 0000000000..0c2c0538e5
--- /dev/null
+++ b/auth_api_key/readme/CONFIGURE.rst
@@ -0,0 +1,2 @@
+The api key must be provided by the coniguration parameter named
+'api_key_*.key', and the user under the same option 'api_key_*.user'.
\ No newline at end of file
diff --git a/auth_api_key/readme/CONTRIBUTORS.rst b/auth_api_key/readme/CONTRIBUTORS.rst
new file mode 100644
index 0000000000..765b551496
--- /dev/null
+++ b/auth_api_key/readme/CONTRIBUTORS.rst
@@ -0,0 +1,4 @@
+* Denis Robinet <<denis.robinet@acsone.eu>>
+* Laurent Mignon <<laurent.mignon@acsone.eu>>
+* Quentin Groulard <<quentin.groulard@acsone.eu>>
+* Sébastien Beau <<sebastien.beau@akretion.com>>
\ No newline at end of file
diff --git a/auth_api_key/readme/DESCRIPTION.rst b/auth_api_key/readme/DESCRIPTION.rst
new file mode 100644
index 0000000000..dd9562ef54
--- /dev/null
+++ b/auth_api_key/readme/DESCRIPTION.rst
@@ -0,0 +1 @@
+Authenticate http requests from an API key.
\ No newline at end of file
diff --git a/auth_api_key/readme/USAGE.rst b/auth_api_key/readme/USAGE.rst
new file mode 100644
index 0000000000..4464ca59c9
--- /dev/null
+++ b/auth_api_key/readme/USAGE.rst
@@ -0,0 +1,9 @@
+To apply this authentication system to your http request you must set 'api_key'
+as value for the 'auth' parameter of your route definition into your controller.
+
+
+    class MyController(Controller):
+
+        @route('/my_service', auth='api_key', ...)
+        def my_service(self, *args, **kwargs):
+            pass
\ No newline at end of file
diff --git a/auth_api_key/security/auth_api_key.xml b/auth_api_key/security/auth_api_key.xml
deleted file mode 100644
index 2ad7762da0..0000000000
--- a/auth_api_key/security/auth_api_key.xml
+++ /dev/null
@@ -1,17 +0,0 @@
-<?xml version="1.0" encoding="utf-8"?>
-<!-- Copyright 2018 ACSONE SA/NV
-     License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). -->
-
-<odoo>
-
-    <record model="ir.model.access" id="auth_api_key_access_manage">
-        <field name="name">auth.api.key access manage</field>
-        <field name="model_id" ref="model_auth_api_key"/>
-        <field name="group_id" ref="base.group_system"/>
-        <field name="perm_read" eval="1"/>
-        <field name="perm_create" eval="1"/>
-        <field name="perm_write" eval="1"/>
-        <field name="perm_unlink" eval="1"/>
-    </record>
-
-</odoo>
diff --git a/auth_api_key/tests/__init__.py b/auth_api_key/tests/__init__.py
new file mode 100644
index 0000000000..56e3e32a3a
--- /dev/null
+++ b/auth_api_key/tests/__init__.py
@@ -0,0 +1 @@
+from . import test_auth_api_key
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
new file mode 100644
index 0000000000..dd43eb4f30
--- /dev/null
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -0,0 +1,35 @@
+from odoo.tests.common import TransactionCase
+from odoo.addons.server_environment import serv_config
+from odoo.exceptions import ValidationError, AccessError
+
+
+class TestAuthApiKey(TransactionCase):
+    @classmethod
+    def setUpClass(cls, *args, **kwargs):
+        super(TestAuthApiKey, cls).setUpClass(*args, **kwargs)
+
+        serv_config.add_section("api_key_good")
+        serv_config.set("api_key_good", "user", "demo")
+        serv_config.set("api_key_good", "key", "api_right_key")
+        serv_config.add_section("api_key_bad")
+        serv_config.set("api_key_bad", "user", "not_demo")
+        serv_config.set("api_key_bad", "key", "api_wrong_key")
+
+    def test_lookup(self):
+        demo_user = self.env.ref("base.user_demo")
+        self.assertEqual(
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_right_key"),
+            demo_user.id,
+        )
+
+    def test_wrong_key(self):
+        with self.assertRaises(ValidationError), self.env.cr.savepoint():
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_wrong_key")
+
+    def test_user_not_allowed(self):
+        demo_user = self.env.ref("base.user_demo")
+        with self.assertRaises(AccessError), self.env.cr.savepoint():
+            self.env["auth.api.key"].sudo(user=demo_user)._retrieve_uid_from_api_key(
+                "api_wrong_key"
+            )
+
diff --git a/auth_api_key/views/auth_api_key.xml b/auth_api_key/views/auth_api_key.xml
deleted file mode 100644
index eca677d51e..0000000000
--- a/auth_api_key/views/auth_api_key.xml
+++ /dev/null
@@ -1,52 +0,0 @@
-<?xml version="1.0" encoding="utf-8"?>
-<!-- Copyright 2018 ACSONE SA/NV
-     License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). -->
-
-<odoo>
-
-    <record model="ir.ui.view" id="auth_api_key_form_view">
-        <field name="name">auth.api.key.form (in auth_api_key)</field>
-        <field name="model">auth.api.key</field>
-        <field name="arch" type="xml">
-            <form create="false" edit="false">
-                <sheet>
-                    <label for="name" class="oe_edit_only"/>
-                    <h1>
-                        <field name="name" class="oe_inline"/>
-                    </h1>
-                     <group name="config" colspan="4" col="4">
-                         <field name="user_id" colspan="4"/>
-                         <field name="password" colspan="4"/>
-                     </group>
-                </sheet>
-            </form>
-        </field>
-    </record>
-
-
-    <record model="ir.ui.view" id="auth_api_key_tree_view">
-        <field name="name">auth.api.key.tree (in auth_api_key)</field>
-        <field name="model">auth.api.key</field>
-        <field name="arch" type="xml">
-            <tree>
-                <field name="name"/>
-            </tree>
-        </field>
-    </record>
-
-    <record model="ir.actions.act_window" id="auth_api_key_act_window">
-        <field name="name">Auth Api Key</field>
-        <field name="res_model">auth.api.key</field>
-        <field name="view_mode">tree,form</field>
-        <field name="domain">[]</field>
-        <field name="context">{}</field>
-    </record>
-
-    <record model="ir.ui.menu" id="auth_api_key_menu">
-        <field name="name">Auth Api Key</field>
-        <field name="parent_id" ref="base.menu_custom"/>
-        <field name="action" ref="auth_api_key_act_window"/>
-        <field name="sequence" eval="100"/>
-    </record>
-
-</odoo>

From 0c059b05a4884a6f9ba437f0e5b88b2669097193 Mon Sep 17 00:00:00 2001
From: Quentin Groulard <quentin.groulard@acsone.eu>
Date: Thu, 8 Nov 2018 11:06:58 +0100
Subject: [PATCH 10/86] Update Readme with more details

---
 auth_api_key/README.rst              | 85 ----------------------------
 auth_api_key/readme/CONFIGURE.rst    | 10 +++-
 auth_api_key/readme/CONTRIBUTORS.rst |  8 +--
 auth_api_key/readme/DESCRIPTION.rst  |  6 +-
 4 files changed, 17 insertions(+), 92 deletions(-)
 delete mode 100644 auth_api_key/README.rst

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
deleted file mode 100644
index f562e2611f..0000000000
--- a/auth_api_key/README.rst
+++ /dev/null
@@ -1,85 +0,0 @@
-.. image:: https://img.shields.io/badge/licence-AGPL--3-blue.svg
-   :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html
-   :alt: License: AGPL-3
-
-============
-Auth Api Key
-============
-
-Authenticate http requests from an API key
-
-
-Configuration
-=============
-
-The api key must be provided by the coniguration parameter named
-'auth_api_key.api_key'.
-To apply this authentication system to your http request you must set 'api_key'
-as value for the 'auth' parameter of your route definition into your controller.
-
- ::
-
-    class MyController(Controller):
-
-        @route('/my_service', auth='api_key', ...)
-        def my_service(self, *args, **kwargs):
-            pass
-
-Usage
-=====
-
-To use this module, you need to:
-
-#. Go to ...
-
-.. image:: https://odoo-community.org/website/image/ir.attachment/5784_f2813bd/datas
-   :alt: Try me on Runbot
-   :target: https://runbot.odoo-community.org/runbot/{repo_id}/{branch}
-
-.. repo_id is available in https://github.com/OCA/maintainer-tools/blob/master/tools/repos_with_ids.txt
-.. branch is "8.0" for example
-
-Bug Tracker
-===========
-
-Bugs are tracked on `GitHub Issues
-<https://github.com/OCA/{project_repo}/issues>`_. In case of trouble, please
-check there if your issue has already been reported. If you spotted it first,
-help us smash it by providing detailed and welcomed feedback.
-
-Credits
-=======
-
-Images
-------
-
-* Odoo Community Association: `Icon <https://github.com/OCA/maintainer-tools/blob/master/template/module/static/description/icon.svg>`_.
-
-Contributors
-------------
-
-* Firstname Lastname <email.address@example.org>
-* Second Person <second.person@example.org>
-
-Funders
--------
-
-The development of this module has been financially supported by:
-
-* Company 1 name
-* Company 2 name
-
-Maintainer
-----------
-
-.. image:: https://odoo-community.org/logo.png
-   :alt: Odoo Community Association
-   :target: https://odoo-community.org
-
-This module is maintained by the OCA.
-
-OCA, or the Odoo Community Association, is a nonprofit organization whose
-mission is to support the collaborative development of Odoo features and
-promote its widespread use.
-
-To contribute to this module, please visit https://odoo-community.org.
diff --git a/auth_api_key/readme/CONFIGURE.rst b/auth_api_key/readme/CONFIGURE.rst
index 0c2c0538e5..0d403e1f65 100644
--- a/auth_api_key/readme/CONFIGURE.rst
+++ b/auth_api_key/readme/CONFIGURE.rst
@@ -1,2 +1,8 @@
-The api key must be provided by the coniguration parameter named
-'api_key_*.key', and the user under the same option 'api_key_*.user'.
\ No newline at end of file
+The api key must be provided by the configuration parameter named
+'api_key_*.key', and the user under the same option 'api_key_*.user'.
+
+For instance :
+
+    [api_key_mykey]
+    key=my_api_key
+    user=my_user
\ No newline at end of file
diff --git a/auth_api_key/readme/CONTRIBUTORS.rst b/auth_api_key/readme/CONTRIBUTORS.rst
index 765b551496..14d8f94b83 100644
--- a/auth_api_key/readme/CONTRIBUTORS.rst
+++ b/auth_api_key/readme/CONTRIBUTORS.rst
@@ -1,4 +1,4 @@
-* Denis Robinet <<denis.robinet@acsone.eu>>
-* Laurent Mignon <<laurent.mignon@acsone.eu>>
-* Quentin Groulard <<quentin.groulard@acsone.eu>>
-* Sébastien Beau <<sebastien.beau@akretion.com>>
\ No newline at end of file
+* Denis Robinet <denis.robinet@acsone.eu>
+* Laurent Mignon <laurent.mignon@acsone.eu>
+* Quentin Groulard <quentin.groulard@acsone.eu>
+* Sébastien Beau <sebastien.beau@akretion.com>
\ No newline at end of file
diff --git a/auth_api_key/readme/DESCRIPTION.rst b/auth_api_key/readme/DESCRIPTION.rst
index dd9562ef54..575f75544b 100644
--- a/auth_api_key/readme/DESCRIPTION.rst
+++ b/auth_api_key/readme/DESCRIPTION.rst
@@ -1 +1,5 @@
-Authenticate http requests from an API key.
\ No newline at end of file
+Authenticate http requests from an API key. 
+
+API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program's user.
+
+Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.
\ No newline at end of file

From cc9159cbb21e566871c148fe9be18083b1abdf2f Mon Sep 17 00:00:00 2001
From: qgroulard <43472442+qgroulard@users.noreply.github.com>
Date: Thu, 8 Nov 2018 11:22:06 +0100
Subject: [PATCH 11/86] Quick fix CONFIGURE.rst

---
 auth_api_key/readme/CONFIGURE.rst | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/auth_api_key/readme/CONFIGURE.rst b/auth_api_key/readme/CONFIGURE.rst
index 0d403e1f65..5118d0b936 100644
--- a/auth_api_key/readme/CONFIGURE.rst
+++ b/auth_api_key/readme/CONFIGURE.rst
@@ -2,7 +2,7 @@ The api key must be provided by the configuration parameter named
 'api_key_*.key', and the user under the same option 'api_key_*.user'.
 
 For instance :
-
+::
     [api_key_mykey]
     key=my_api_key
-    user=my_user
\ No newline at end of file
+    user=my_user

From 1eeaea80e3e50b2898a2820fdfa2827095d3f587 Mon Sep 17 00:00:00 2001
From: qgroulard <43472442+qgroulard@users.noreply.github.com>
Date: Thu, 8 Nov 2018 11:32:09 +0100
Subject: [PATCH 12/86] Developmet status: Beta

---
 auth_api_key/__manifest__.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 7b68da7c41..c0680ffcc2 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -10,6 +10,7 @@
     "license": "AGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://acsone.eu/",
+    "development_status": "Beta",
     "depends": ["server_environment"],
     "data": [],
     "demo": [],

From 9ca0b0ef5df98aff18d5153db4306b97867c490f Mon Sep 17 00:00:00 2001
From: "Laurent Mignon (ACSONE)" <laurent.mignon@acsone.eu>
Date: Tue, 13 Nov 2018 11:32:39 +0100
Subject: [PATCH 13/86] [FIX] auth_api_key: fix api and flake8

---
 auth_api_key/README.rst                    | 108 +++++
 auth_api_key/models/auth_api_key.py        |  12 +-
 auth_api_key/models/ir_http.py             |   5 +-
 auth_api_key/readme/CONFIGURE.rst          |   4 +-
 auth_api_key/readme/USAGE.rst              |   3 +-
 auth_api_key/static/description/index.html | 449 +++++++++++++++++++++
 auth_api_key/tests/test_auth_api_key.py    |  15 +-
 7 files changed, 581 insertions(+), 15 deletions(-)
 create mode 100644 auth_api_key/README.rst
 create mode 100644 auth_api_key/static/description/index.html

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
new file mode 100644
index 0000000000..cbdf2d6b2d
--- /dev/null
+++ b/auth_api_key/README.rst
@@ -0,0 +1,108 @@
+============
+Auth Api Key
+============
+
+.. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! This file is generated by oca-gen-addon-readme !!
+   !! changes will be overwritten.                   !!
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+
+.. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png
+    :target: https://odoo-community.org/page/development-status
+    :alt: Beta
+.. |badge2| image:: https://img.shields.io/badge/licence-AGPL--3-blue.png
+    :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html
+    :alt: License: AGPL-3
+.. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github
+    :target: https://github.com/OCA/server-auth/tree/10.0/auth_api_key
+    :alt: OCA/server-auth
+.. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
+    :target: https://translation.odoo-community.org/projects/server-auth-10-0/server-auth-10-0-auth_api_key
+    :alt: Translate me on Weblate
+.. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png
+    :target: https://runbot.odoo-community.org/runbot/251/10.0
+    :alt: Try me on Runbot
+
+|badge1| |badge2| |badge3| |badge4| |badge5| 
+
+Authenticate http requests from an API key. 
+
+API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program's user.
+
+Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.
+
+**Table of contents**
+
+.. contents::
+   :local:
+
+Configuration
+=============
+
+The api key must be provided by the configuration parameter named
+'api_key_*.key', and the user under the same option 'api_key_*.user'.
+
+For instance :
+
+.. code-block:: ini
+
+    [api_key_mykey]
+    key=my_api_key
+    user=my_user
+
+Usage
+=====
+
+To apply this authentication system to your http request you must set 'api_key'
+as value for the 'auth' parameter of your route definition into your controller.
+
+.. code-block:: python
+
+    class MyController(Controller):
+
+        @route('/my_service', auth='api_key', ...)
+        def my_service(self, *args, **kwargs):
+            pass
+
+Bug Tracker
+===========
+
+Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-auth/issues>`_.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us smashing it by providing a detailed and welcomed
+`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2010.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+
+Do not contact contributors directly about support or help with technical issues.
+
+Credits
+=======
+
+Authors
+~~~~~~~
+
+* ACSONE SA/NV
+
+Contributors
+~~~~~~~~~~~~
+
+* Denis Robinet <denis.robinet@acsone.eu>
+* Laurent Mignon <laurent.mignon@acsone.eu>
+* Quentin Groulard <quentin.groulard@acsone.eu>
+* Sébastien Beau <sebastien.beau@akretion.com>
+
+Maintainers
+~~~~~~~~~~~
+
+This module is maintained by the OCA.
+
+.. image:: https://odoo-community.org/logo.png
+   :alt: Odoo Community Association
+   :target: https://odoo-community.org
+
+OCA, or the Odoo Community Association, is a nonprofit organization whose
+mission is to support the collaborative development of Odoo features and
+promote its widespread use.
+
+This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/10.0/auth_api_key>`_ project on GitHub.
+
+You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 733bd10f03..4b8efd52d8 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -2,7 +2,7 @@
 # Copyright 2018 ACSONE SA/NV
 # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
 
-from odoo import api, fields, models, tools
+from odoo import api, models, tools, _
 
 from odoo.addons.server_environment import serv_config
 
@@ -16,20 +16,22 @@ class AuthApiKey(models.TransientModel):
     @tools.ormcache("api_key")
     def _retrieve_uid_from_api_key(self, api_key):
         if not self.env.user.has_group("base.group_system"):
-            raise AccessError("User is not allowed")
+            raise AccessError(_("User is not allowed"))
 
         for section in serv_config.sections():
             if section.startswith("api_key_") and serv_config.has_option(
-                section, "key"
+                    section, "key"
             ):
                 if api_key != serv_config.get(section, "key"):
                     continue
 
                 login_name = serv_config.get(section, "user")
-                uid = self.env["res.users"].search([("login", "=", login_name)]).id
+                uid = self.env["res.users"].search(
+                    [("login", "=", login_name)]).id
 
                 if not uid:
-                    raise ValidationError("No user found with login %s" % login_name)
+                    raise ValidationError(
+                        _("No user found with login %s") % login_name)
 
                 return uid
         return False
diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py
index dd1483a644..d79da075c8 100644
--- a/auth_api_key/models/ir_http.py
+++ b/auth_api_key/models/ir_http.py
@@ -23,7 +23,8 @@ def _auth_method_api_key(cls):
         api_key = headers.get("HTTP_API_KEY")
         if api_key:
             request.uid = 1
-            uid = request.env["auth.api.key"].retrieve_uid_from_api_key(api_key)
+            uid = request.env["auth.api.key"]._retrieve_uid_from_api_key(
+                api_key)
             if uid:
                 # reset _env on the request since we change the uid...
                 # the next call to env will instantiate an new
@@ -31,7 +32,7 @@ def _auth_method_api_key(cls):
                 # auth.api_key
                 request._env = None
                 request.uid = uid
-                request.auth_api_key = auth_api_key
+                request.auth_api_key = api_key
                 return True
         _logger.error("Wrong HTTP_API_KEY, access denied")
         raise AccessDenied()
diff --git a/auth_api_key/readme/CONFIGURE.rst b/auth_api_key/readme/CONFIGURE.rst
index 5118d0b936..d65bfb4dba 100644
--- a/auth_api_key/readme/CONFIGURE.rst
+++ b/auth_api_key/readme/CONFIGURE.rst
@@ -2,7 +2,9 @@ The api key must be provided by the configuration parameter named
 'api_key_*.key', and the user under the same option 'api_key_*.user'.
 
 For instance :
-::
+
+.. code-block:: ini
+
     [api_key_mykey]
     key=my_api_key
     user=my_user
diff --git a/auth_api_key/readme/USAGE.rst b/auth_api_key/readme/USAGE.rst
index 4464ca59c9..d8ff4460eb 100644
--- a/auth_api_key/readme/USAGE.rst
+++ b/auth_api_key/readme/USAGE.rst
@@ -1,9 +1,10 @@
 To apply this authentication system to your http request you must set 'api_key'
 as value for the 'auth' parameter of your route definition into your controller.
 
+.. code-block:: python
 
     class MyController(Controller):
 
         @route('/my_service', auth='api_key', ...)
         def my_service(self, *args, **kwargs):
-            pass
\ No newline at end of file
+            pass
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
new file mode 100644
index 0000000000..c5d2d31987
--- /dev/null
+++ b/auth_api_key/static/description/index.html
@@ -0,0 +1,449 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<meta name="generator" content="Docutils 0.14: http://docutils.sourceforge.net/" />
+<title>Auth Api Key</title>
+<style type="text/css">
+
+/*
+:Author: David Goodger (goodger@python.org)
+:Id: $Id: html4css1.css 7952 2016-07-26 18:15:59Z milde $
+:Copyright: This stylesheet has been placed in the public domain.
+
+Default cascading style sheet for the HTML output of Docutils.
+
+See http://docutils.sf.net/docs/howto/html-stylesheets.html for how to
+customize this style sheet.
+*/
+
+/* used to remove borders from tables and images */
+.borderless, table.borderless td, table.borderless th {
+  border: 0 }
+
+table.borderless td, table.borderless th {
+  /* Override padding for "table.docutils td" with "! important".
+     The right padding separates the table cells. */
+  padding: 0 0.5em 0 0 ! important }
+
+.first {
+  /* Override more specific margin styles with "! important". */
+  margin-top: 0 ! important }
+
+.last, .with-subtitle {
+  margin-bottom: 0 ! important }
+
+.hidden {
+  display: none }
+
+.subscript {
+  vertical-align: sub;
+  font-size: smaller }
+
+.superscript {
+  vertical-align: super;
+  font-size: smaller }
+
+a.toc-backref {
+  text-decoration: none ;
+  color: black }
+
+blockquote.epigraph {
+  margin: 2em 5em ; }
+
+dl.docutils dd {
+  margin-bottom: 0.5em }
+
+object[type="image/svg+xml"], object[type="application/x-shockwave-flash"] {
+  overflow: hidden;
+}
+
+/* Uncomment (and remove this text!) to get bold-faced definition list terms
+dl.docutils dt {
+  font-weight: bold }
+*/
+
+div.abstract {
+  margin: 2em 5em }
+
+div.abstract p.topic-title {
+  font-weight: bold ;
+  text-align: center }
+
+div.admonition, div.attention, div.caution, div.danger, div.error,
+div.hint, div.important, div.note, div.tip, div.warning {
+  margin: 2em ;
+  border: medium outset ;
+  padding: 1em }
+
+div.admonition p.admonition-title, div.hint p.admonition-title,
+div.important p.admonition-title, div.note p.admonition-title,
+div.tip p.admonition-title {
+  font-weight: bold ;
+  font-family: sans-serif }
+
+div.attention p.admonition-title, div.caution p.admonition-title,
+div.danger p.admonition-title, div.error p.admonition-title,
+div.warning p.admonition-title, .code .error {
+  color: red ;
+  font-weight: bold ;
+  font-family: sans-serif }
+
+/* Uncomment (and remove this text!) to get reduced vertical space in
+   compound paragraphs.
+div.compound .compound-first, div.compound .compound-middle {
+  margin-bottom: 0.5em }
+
+div.compound .compound-last, div.compound .compound-middle {
+  margin-top: 0.5em }
+*/
+
+div.dedication {
+  margin: 2em 5em ;
+  text-align: center ;
+  font-style: italic }
+
+div.dedication p.topic-title {
+  font-weight: bold ;
+  font-style: normal }
+
+div.figure {
+  margin-left: 2em ;
+  margin-right: 2em }
+
+div.footer, div.header {
+  clear: both;
+  font-size: smaller }
+
+div.line-block {
+  display: block ;
+  margin-top: 1em ;
+  margin-bottom: 1em }
+
+div.line-block div.line-block {
+  margin-top: 0 ;
+  margin-bottom: 0 ;
+  margin-left: 1.5em }
+
+div.sidebar {
+  margin: 0 0 0.5em 1em ;
+  border: medium outset ;
+  padding: 1em ;
+  background-color: #ffffee ;
+  width: 40% ;
+  float: right ;
+  clear: right }
+
+div.sidebar p.rubric {
+  font-family: sans-serif ;
+  font-size: medium }
+
+div.system-messages {
+  margin: 5em }
+
+div.system-messages h1 {
+  color: red }
+
+div.system-message {
+  border: medium outset ;
+  padding: 1em }
+
+div.system-message p.system-message-title {
+  color: red ;
+  font-weight: bold }
+
+div.topic {
+  margin: 2em }
+
+h1.section-subtitle, h2.section-subtitle, h3.section-subtitle,
+h4.section-subtitle, h5.section-subtitle, h6.section-subtitle {
+  margin-top: 0.4em }
+
+h1.title {
+  text-align: center }
+
+h2.subtitle {
+  text-align: center }
+
+hr.docutils {
+  width: 75% }
+
+img.align-left, .figure.align-left, object.align-left, table.align-left {
+  clear: left ;
+  float: left ;
+  margin-right: 1em }
+
+img.align-right, .figure.align-right, object.align-right, table.align-right {
+  clear: right ;
+  float: right ;
+  margin-left: 1em }
+
+img.align-center, .figure.align-center, object.align-center {
+  display: block;
+  margin-left: auto;
+  margin-right: auto;
+}
+
+table.align-center {
+  margin-left: auto;
+  margin-right: auto;
+}
+
+.align-left {
+  text-align: left }
+
+.align-center {
+  clear: both ;
+  text-align: center }
+
+.align-right {
+  text-align: right }
+
+/* reset inner alignment in figures */
+div.align-right {
+  text-align: inherit }
+
+/* div.align-center * { */
+/*   text-align: left } */
+
+.align-top    {
+  vertical-align: top }
+
+.align-middle {
+  vertical-align: middle }
+
+.align-bottom {
+  vertical-align: bottom }
+
+ol.simple, ul.simple {
+  margin-bottom: 1em }
+
+ol.arabic {
+  list-style: decimal }
+
+ol.loweralpha {
+  list-style: lower-alpha }
+
+ol.upperalpha {
+  list-style: upper-alpha }
+
+ol.lowerroman {
+  list-style: lower-roman }
+
+ol.upperroman {
+  list-style: upper-roman }
+
+p.attribution {
+  text-align: right ;
+  margin-left: 50% }
+
+p.caption {
+  font-style: italic }
+
+p.credits {
+  font-style: italic ;
+  font-size: smaller }
+
+p.label {
+  white-space: nowrap }
+
+p.rubric {
+  font-weight: bold ;
+  font-size: larger ;
+  color: maroon ;
+  text-align: center }
+
+p.sidebar-title {
+  font-family: sans-serif ;
+  font-weight: bold ;
+  font-size: larger }
+
+p.sidebar-subtitle {
+  font-family: sans-serif ;
+  font-weight: bold }
+
+p.topic-title {
+  font-weight: bold }
+
+pre.address {
+  margin-bottom: 0 ;
+  margin-top: 0 ;
+  font: inherit }
+
+pre.literal-block, pre.doctest-block, pre.math, pre.code {
+  margin-left: 2em ;
+  margin-right: 2em }
+
+pre.code .ln { color: grey; } /* line numbers */
+pre.code, code { background-color: #eeeeee }
+pre.code .comment, code .comment { color: #5C6576 }
+pre.code .keyword, code .keyword { color: #3B0D06; font-weight: bold }
+pre.code .literal.string, code .literal.string { color: #0C5404 }
+pre.code .name.builtin, code .name.builtin { color: #352B84 }
+pre.code .deleted, code .deleted { background-color: #DEB0A1}
+pre.code .inserted, code .inserted { background-color: #A3D289}
+
+span.classifier {
+  font-family: sans-serif ;
+  font-style: oblique }
+
+span.classifier-delimiter {
+  font-family: sans-serif ;
+  font-weight: bold }
+
+span.interpreted {
+  font-family: sans-serif }
+
+span.option {
+  white-space: nowrap }
+
+span.pre {
+  white-space: pre }
+
+span.problematic {
+  color: red }
+
+span.section-subtitle {
+  /* font-size relative to parent (h1..h6 element) */
+  font-size: 80% }
+
+table.citation {
+  border-left: solid 1px gray;
+  margin-left: 1px }
+
+table.docinfo {
+  margin: 2em 4em }
+
+table.docutils {
+  margin-top: 0.5em ;
+  margin-bottom: 0.5em }
+
+table.footnote {
+  border-left: solid 1px black;
+  margin-left: 1px }
+
+table.docutils td, table.docutils th,
+table.docinfo td, table.docinfo th {
+  padding-left: 0.5em ;
+  padding-right: 0.5em ;
+  vertical-align: top }
+
+table.docutils th.field-name, table.docinfo th.docinfo-name {
+  font-weight: bold ;
+  text-align: left ;
+  white-space: nowrap ;
+  padding-left: 0 }
+
+/* "booktabs" style (no vertical lines) */
+table.docutils.booktabs {
+  border: 0px;
+  border-top: 2px solid;
+  border-bottom: 2px solid;
+  border-collapse: collapse;
+}
+table.docutils.booktabs * {
+  border: 0px;
+}
+table.docutils.booktabs th {
+  border-bottom: thin solid;
+  text-align: left;
+}
+
+h1 tt.docutils, h2 tt.docutils, h3 tt.docutils,
+h4 tt.docutils, h5 tt.docutils, h6 tt.docutils {
+  font-size: 100% }
+
+ul.auto-toc {
+  list-style-type: none }
+
+</style>
+</head>
+<body>
+<div class="document" id="auth-api-key">
+<h1 class="title">Auth Api Key</h1>
+
+<!-- !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+!! This file is generated by oca-gen-addon-readme !!
+!! changes will be overwritten.                   !!
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
+<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/licence-AGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/10.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-10-0/server-auth-10-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/10.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
+<p>Authenticate http requests from an API key.</p>
+<p>API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program’s user.</p>
+<p>Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.</p>
+<p><strong>Table of contents</strong></p>
+<div class="contents local topic" id="contents">
+<ul class="simple">
+<li><a class="reference internal" href="#configuration" id="id1">Configuration</a></li>
+<li><a class="reference internal" href="#usage" id="id2">Usage</a></li>
+<li><a class="reference internal" href="#bug-tracker" id="id3">Bug Tracker</a></li>
+<li><a class="reference internal" href="#credits" id="id4">Credits</a><ul>
+<li><a class="reference internal" href="#authors" id="id5">Authors</a></li>
+<li><a class="reference internal" href="#contributors" id="id6">Contributors</a></li>
+<li><a class="reference internal" href="#maintainers" id="id7">Maintainers</a></li>
+</ul>
+</li>
+</ul>
+</div>
+<div class="section" id="configuration">
+<h1><a class="toc-backref" href="#id1">Configuration</a></h1>
+<p>The api key must be provided by the configuration parameter named
+‘api_key_*.key’, and the user under the same option ‘api_key_*.user’.</p>
+<p>For instance :</p>
+<pre class="code ini literal-block">
+<span class="k">[api_key_mykey]</span>
+<span class="na">key</span><span class="o">=</span><span class="s">my_api_key</span>
+<span class="na">user</span><span class="o">=</span><span class="s">my_user</span>
+</pre>
+</div>
+<div class="section" id="usage">
+<h1><a class="toc-backref" href="#id2">Usage</a></h1>
+<p>To apply this authentication system to your http request you must set ‘api_key’
+as value for the ‘auth’ parameter of your route definition into your controller.</p>
+<pre class="code python literal-block">
+<span class="k">class</span> <span class="nc">MyController</span><span class="p">(</span><span class="n">Controller</span><span class="p">):</span>
+
+    <span class="nd">&#64;route</span><span class="p">(</span><span class="s1">'/my_service'</span><span class="p">,</span> <span class="n">auth</span><span class="o">=</span><span class="s1">'api_key'</span><span class="p">,</span> <span class="o">...</span><span class="p">)</span>
+    <span class="k">def</span> <span class="nf">my_service</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="o">*</span><span class="n">args</span><span class="p">,</span> <span class="o">**</span><span class="n">kwargs</span><span class="p">):</span>
+        <span class="k">pass</span>
+</pre>
+</div>
+<div class="section" id="bug-tracker">
+<h1><a class="toc-backref" href="#id3">Bug Tracker</a></h1>
+<p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-auth/issues">GitHub Issues</a>.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us smashing it by providing a detailed and welcomed
+<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2010.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<p>Do not contact contributors directly about support or help with technical issues.</p>
+</div>
+<div class="section" id="credits">
+<h1><a class="toc-backref" href="#id4">Credits</a></h1>
+<div class="section" id="authors">
+<h2><a class="toc-backref" href="#id5">Authors</a></h2>
+<ul class="simple">
+<li>ACSONE SA/NV</li>
+</ul>
+</div>
+<div class="section" id="contributors">
+<h2><a class="toc-backref" href="#id6">Contributors</a></h2>
+<ul class="simple">
+<li>Denis Robinet &lt;<a class="reference external" href="mailto:denis.robinet&#64;acsone.eu">denis.robinet&#64;acsone.eu</a>&gt;</li>
+<li>Laurent Mignon &lt;<a class="reference external" href="mailto:laurent.mignon&#64;acsone.eu">laurent.mignon&#64;acsone.eu</a>&gt;</li>
+<li>Quentin Groulard &lt;<a class="reference external" href="mailto:quentin.groulard&#64;acsone.eu">quentin.groulard&#64;acsone.eu</a>&gt;</li>
+<li>Sébastien Beau &lt;<a class="reference external" href="mailto:sebastien.beau&#64;akretion.com">sebastien.beau&#64;akretion.com</a>&gt;</li>
+</ul>
+</div>
+<div class="section" id="maintainers">
+<h2><a class="toc-backref" href="#id7">Maintainers</a></h2>
+<p>This module is maintained by the OCA.</p>
+<a class="reference external image-reference" href="https://odoo-community.org"><img alt="Odoo Community Association" src="https://odoo-community.org/logo.png" /></a>
+<p>OCA, or the Odoo Community Association, is a nonprofit organization whose
+mission is to support the collaborative development of Odoo features and
+promote its widespread use.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/10.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
+<p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
+</div>
+</div>
+</div>
+</body>
+</html>
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index dd43eb4f30..284a5aeba9 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -1,3 +1,6 @@
+# -*- coding: utf-8 -*-
+# Copyright 2018 ACSONE SA/NV
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
 from odoo.tests.common import TransactionCase
 from odoo.addons.server_environment import serv_config
 from odoo.exceptions import ValidationError, AccessError
@@ -18,18 +21,18 @@ def setUpClass(cls, *args, **kwargs):
     def test_lookup(self):
         demo_user = self.env.ref("base.user_demo")
         self.assertEqual(
-            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_right_key"),
+            self.env["auth.api.key"]._retrieve_uid_from_api_key(
+                "api_right_key"),
             demo_user.id,
         )
 
     def test_wrong_key(self):
         with self.assertRaises(ValidationError), self.env.cr.savepoint():
-            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_wrong_key")
+            self.env["auth.api.key"]._retrieve_uid_from_api_key(
+                "api_wrong_key")
 
     def test_user_not_allowed(self):
         demo_user = self.env.ref("base.user_demo")
         with self.assertRaises(AccessError), self.env.cr.savepoint():
-            self.env["auth.api.key"].sudo(user=demo_user)._retrieve_uid_from_api_key(
-                "api_wrong_key"
-            )
-
+            self.env["auth.api.key"].sudo(user=demo_user).\
+                _retrieve_uid_from_api_key("api_wrong_key")

From acdbd98106a169fe9c4eb893e73b76b4d362b835 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?St=C3=A9phane=20Bidoul=20=28ACSONE=29?=
 <stephane.bidoul@acsone.eu>
Date: Tue, 20 Nov 2018 17:58:49 +0100
Subject: [PATCH 14/86] [MIG] server_auth from 10 to 12

---
 auth_api_key/__manifest__.py            | 2 +-
 auth_api_key/models/auth_api_key.py     | 1 -
 auth_api_key/models/ir_http.py          | 1 -
 auth_api_key/tests/test_auth_api_key.py | 1 -
 4 files changed, 1 insertion(+), 4 deletions(-)

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index c0680ffcc2..ae027c0310 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -6,7 +6,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "10.0.1.0.0",
+    "version": "12.0.1.0.0",
     "license": "AGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://acsone.eu/",
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 4b8efd52d8..387073c627 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -1,4 +1,3 @@
-# -*- coding: utf-8 -*-
 # Copyright 2018 ACSONE SA/NV
 # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
 
diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py
index d79da075c8..2a14cac38f 100644
--- a/auth_api_key/models/ir_http.py
+++ b/auth_api_key/models/ir_http.py
@@ -1,4 +1,3 @@
-# -*- coding: utf-8 -*-
 # Copyright 2018 ACSONE SA/NV
 # Copyright 2017 Akretion (http://www.akretion.com).
 # @author Sébastien BEAU <sebastien.beau@akretion.com>
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index 284a5aeba9..0e3c7d9f88 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -1,4 +1,3 @@
-# -*- coding: utf-8 -*-
 # Copyright 2018 ACSONE SA/NV
 # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
 from odoo.tests.common import TransactionCase

From ca95c5aef1d6b43d7e5b69543cb58dedb6af0498 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?St=C3=A9phane=20Bidoul=20=28ACSONE=29?=
 <stephane.bidoul@acsone.eu>
Date: Tue, 20 Nov 2018 19:22:57 +0100
Subject: [PATCH 15/86] auth_api_key: add description to model

---
 auth_api_key/models/auth_api_key.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 387073c627..b302d2da5b 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -10,6 +10,7 @@
 
 class AuthApiKey(models.TransientModel):
     _name = "auth.api.key"
+    _description = "API Key Retriever"
 
     @api.model
     @tools.ormcache("api_key")

From a09eed26c0fa2e89808fa6094af5118fe20001f8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?St=C3=A9phane=20Bidoul=20=28ACSONE=29?=
 <stephane.bidoul@acsone.eu>
Date: Wed, 21 Nov 2018 11:07:12 +0100
Subject: [PATCH 16/86] [CHG] auth_api_key is LGPL

---
 auth_api_key/__manifest__.py            | 4 ++--
 auth_api_key/models/auth_api_key.py     | 2 +-
 auth_api_key/models/ir_http.py          | 2 +-
 auth_api_key/tests/test_auth_api_key.py | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index ae027c0310..896e30b8a9 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -1,13 +1,13 @@
 # -*- coding: utf-8 -*-
 # Copyright 2018 ACSONE SA/NV
-# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
 
 {
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
     "version": "12.0.1.0.0",
-    "license": "AGPL-3",
+    "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://acsone.eu/",
     "development_status": "Beta",
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index b302d2da5b..b39735f2c3 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -1,5 +1,5 @@
 # Copyright 2018 ACSONE SA/NV
-# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
 
 from odoo import api, models, tools, _
 
diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py
index 2a14cac38f..1e6638a07d 100644
--- a/auth_api_key/models/ir_http.py
+++ b/auth_api_key/models/ir_http.py
@@ -1,7 +1,7 @@
 # Copyright 2018 ACSONE SA/NV
 # Copyright 2017 Akretion (http://www.akretion.com).
 # @author Sébastien BEAU <sebastien.beau@akretion.com>
-# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
 
 import logging
 
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index 0e3c7d9f88..a187aed1b9 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -1,5 +1,5 @@
 # Copyright 2018 ACSONE SA/NV
-# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
 from odoo.tests.common import TransactionCase
 from odoo.addons.server_environment import serv_config
 from odoo.exceptions import ValidationError, AccessError

From f75eafbc1f994c300b54c64ad83b8e4fe1995e8a Mon Sep 17 00:00:00 2001
From: Andreas Perhab <38032588+ap-wtioit@users.noreply.github.com>
Date: Fri, 30 Nov 2018 11:23:10 +0100
Subject: [PATCH 17/86] Use consteq to compare keys

Co-Authored-By: qgroulard <43472442+qgroulard@users.noreply.github.com>
---
 auth_api_key/models/auth_api_key.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index b39735f2c3..1c435a09f0 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -4,6 +4,7 @@
 from odoo import api, models, tools, _
 
 from odoo.addons.server_environment import serv_config
+from odoo.tools import consteq
 
 from odoo.exceptions import ValidationError, AccessError
 
@@ -22,7 +23,7 @@ def _retrieve_uid_from_api_key(self, api_key):
             if section.startswith("api_key_") and serv_config.has_option(
                     section, "key"
             ):
-                if api_key != serv_config.get(section, "key"):
+                if not consteq(api_key, serv_config.get(section, "key")):
                     continue
 
                 login_name = serv_config.get(section, "user")

From 55ba60da4d4e14e483b854fab8324d630e998d03 Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Thu, 14 Feb 2019 10:29:14 +0000
Subject: [PATCH 18/86] [UPD] README.rst

---
 auth_api_key/README.rst                    | 16 ++++++++--------
 auth_api_key/static/description/index.html |  6 +++---
 2 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index cbdf2d6b2d..dc5e5bc240 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -10,17 +10,17 @@ Auth Api Key
 .. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png
     :target: https://odoo-community.org/page/development-status
     :alt: Beta
-.. |badge2| image:: https://img.shields.io/badge/licence-AGPL--3-blue.png
-    :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html
-    :alt: License: AGPL-3
+.. |badge2| image:: https://img.shields.io/badge/licence-LGPL--3-blue.png
+    :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html
+    :alt: License: LGPL-3
 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github
-    :target: https://github.com/OCA/server-auth/tree/10.0/auth_api_key
+    :target: https://github.com/OCA/server-auth/tree/12.0/auth_api_key
     :alt: OCA/server-auth
 .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
-    :target: https://translation.odoo-community.org/projects/server-auth-10-0/server-auth-10-0-auth_api_key
+    :target: https://translation.odoo-community.org/projects/server-auth-12-0/server-auth-12-0-auth_api_key
     :alt: Translate me on Weblate
 .. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png
-    :target: https://runbot.odoo-community.org/runbot/251/10.0
+    :target: https://runbot.odoo-community.org/runbot/251/12.0
     :alt: Try me on Runbot
 
 |badge1| |badge2| |badge3| |badge4| |badge5| 
@@ -70,7 +70,7 @@ Bug Tracker
 Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-auth/issues>`_.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us smashing it by providing a detailed and welcomed
-`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2010.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2012.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
 
 Do not contact contributors directly about support or help with technical issues.
 
@@ -103,6 +103,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.
 
-This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/10.0/auth_api_key>`_ project on GitHub.
+This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/12.0/auth_api_key>`_ project on GitHub.
 
 You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index c5d2d31987..f70369a5af 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -367,7 +367,7 @@ <h1 class="title">Auth Api Key</h1>
 !! This file is generated by oca-gen-addon-readme !!
 !! changes will be overwritten.                   !!
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
-<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/licence-AGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/10.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-10-0/server-auth-10-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/10.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
+<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/12.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-12-0/server-auth-12-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/12.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>
 <p>API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program’s user.</p>
 <p>Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.</p>
@@ -413,7 +413,7 @@ <h1><a class="toc-backref" href="#id3">Bug Tracker</a></h1>
 <p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-auth/issues">GitHub Issues</a>.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us smashing it by providing a detailed and welcomed
-<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2010.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2012.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
 <p>Do not contact contributors directly about support or help with technical issues.</p>
 </div>
 <div class="section" id="credits">
@@ -440,7 +440,7 @@ <h2><a class="toc-backref" href="#id7">Maintainers</a></h2>
 <p>OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.</p>
-<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/10.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/12.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
 <p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
 </div>
 </div>

From 2858a7d25bd5b8d3fd80b624c5329d9b34e9a3ef Mon Sep 17 00:00:00 2001
From: Mourad <mourad.elhadj.mimoune@akretion.com>
Date: Thu, 18 Jul 2019 13:47:24 +0200
Subject: [PATCH 19/86] [IMP] ADD possibility to save api keys in database by
 using server.env.mixin obj

---
 auth_api_key/models/auth_api_key.py | 62 +++++++++++++++++++++--------
 1 file changed, 45 insertions(+), 17 deletions(-)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 1c435a09f0..8059bd304c 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -3,36 +3,64 @@
 
 from odoo import api, models, tools, _
 
-from odoo.addons.server_environment import serv_config
 from odoo.tools import consteq
 
 from odoo.exceptions import ValidationError, AccessError
 
 
-class AuthApiKey(models.TransientModel):
+class AuthApiKey(models.Model):
     _name = "auth.api.key"
+    _inherit = "server.env.mixin"
     _description = "API Key Retriever"
 
+    name = fields.Char(required=True)
+    key = fields.Char(required=True)
+    user = fields.Char(required=True)
+
+    _sql_constraints = [
+        ('key_uniq', 'unique(key)', 'API Key Retriever must be unique !'),
+    ]
+
+    @property
+    def _server_env_fields(self):
+        base_fields = super()._server_env_fields
+        api_key_fields = {
+            "key": {},
+            "user": {},
+        }
+        api_key_fields.update(base_fields)
+        return api_key_fields
+
     @api.model
     @tools.ormcache("api_key")
-    def _retrieve_uid_from_api_key(self, api_key):
+    def _retrieve_api_key(self, api_key):
         if not self.env.user.has_group("base.group_system"):
             raise AccessError(_("User is not allowed"))
+        ap_keys = self.search([])
+        # api key are a computed field in the context of server env
+        # so we can't use a domain in search method
+        key = False
+        for ap_key in ap_keys:
+            if consteq(api_key, ap_key.key):
+                key = ap_key
+
+        if not key:
+            raise ValidationError(
+                _("The key %s is not defined") % api_key)
 
-        for section in serv_config.sections():
-            if section.startswith("api_key_") and serv_config.has_option(
-                    section, "key"
-            ):
-                if not consteq(api_key, serv_config.get(section, "key")):
-                    continue
+        return key
+
+    @api.model
+    @tools.ormcache("api_key")
+    def _retrieve_uid_from_api_key(self, api_key):
+        ap_key = self._retrieve_api_key(api_key)
+        uid = self.env["res.users"].search(
+                    [("login", "=", ap_key.user)]).id
 
-                login_name = serv_config.get(section, "user")
-                uid = self.env["res.users"].search(
-                    [("login", "=", login_name)]).id
+        if not uid:
+            raise ValidationError(
+                _("No user found with login %s") % login_name)
 
-                if not uid:
-                    raise ValidationError(
-                        _("No user found with login %s") % login_name)
+        return uid
+    return False
 
-                return uid
-        return False

From 03245a74cfd40a74a2ca9b48146c9a67d4c1c812 Mon Sep 17 00:00:00 2001
From: Mourad <mourad.elhadj.mimoune@akretion.com>
Date: Thu, 18 Jul 2019 13:52:33 +0200
Subject: [PATCH 20/86] [FIX] login_name error

---
 auth_api_key/models/auth_api_key.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 8059bd304c..e767ff833a 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -59,7 +59,7 @@ def _retrieve_uid_from_api_key(self, api_key):
 
         if not uid:
             raise ValidationError(
-                _("No user found with login %s") % login_name)
+                _("No user found with login %s") % ap_key.user)
 
         return uid
     return False

From d80c99652c743157b251531e757f0528dae639f0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?S=C3=A9bastien=20BEAU?= <sebastien.beau@akretion.com>
Date: Fri, 19 Jul 2019 17:13:54 +0200
Subject: [PATCH 21/86] [IMP] make auth_api_key compatible in multi-db

Api key is now based on the new version of server env
Key belong to a specifiv database that can be requested based on the
domain name.

Just setup the db_filter with "%d^" to filter based on domain name
---
 auth_api_key/__manifest__.py              |  2 +-
 auth_api_key/models/auth_api_key.py       | 64 +++++++++++------------
 auth_api_key/models/ir_http.py            |  8 +--
 auth_api_key/security/ir.model.access.csv |  2 +
 4 files changed, 39 insertions(+), 37 deletions(-)
 create mode 100644 auth_api_key/security/ir.model.access.csv

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 896e30b8a9..c75d1f01c0 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -12,6 +12,6 @@
     "website": "https://acsone.eu/",
     "development_status": "Beta",
     "depends": ["server_environment"],
-    "data": [],
+    "data": ['security/ir.model.access.csv'],
     "demo": [],
 }
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index e767ff833a..df979551d4 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -1,7 +1,7 @@
 # Copyright 2018 ACSONE SA/NV
 # License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
 
-from odoo import api, models, tools, _
+from odoo import api, fields, models, tools, _
 
 from odoo.tools import consteq
 
@@ -15,52 +15,52 @@ class AuthApiKey(models.Model):
 
     name = fields.Char(required=True)
     key = fields.Char(required=True)
-    user = fields.Char(required=True)
-
-    _sql_constraints = [
-        ('key_uniq', 'unique(key)', 'API Key Retriever must be unique !'),
-    ]
+    user_id = fields.Many2one(
+        comodel_name="res.users",
+        string="User",
+        required=True)
 
     @property
     def _server_env_fields(self):
         base_fields = super()._server_env_fields
         api_key_fields = {
             "key": {},
-            "user": {},
         }
         api_key_fields.update(base_fields)
         return api_key_fields
 
     @api.model
-    @tools.ormcache("api_key")
-    def _retrieve_api_key(self, api_key):
+    def _retrieve_api_key(self, key):
+        return self.browse(self._retrieve_api_key_id(key))
+
+    @api.model
+    @tools.ormcache("key")
+    def _retrieve_api_key_id(self, key):
         if not self.env.user.has_group("base.group_system"):
             raise AccessError(_("User is not allowed"))
-        ap_keys = self.search([])
-        # api key are a computed field in the context of server env
-        # so we can't use a domain in search method
-        key = False
-        for ap_key in ap_keys:
-            if consteq(api_key, ap_key.key):
-                key = ap_key
-
-        if not key:
-            raise ValidationError(
-                _("The key %s is not defined") % api_key)
-
-        return key
+        for api_key in self.search([]):
+            if consteq(key, api_key.key):
+                return api_key.id
+        raise ValidationError(_("The key %s is not allowed") % key)
 
     @api.model
-    @tools.ormcache("api_key")
-    def _retrieve_uid_from_api_key(self, api_key):
-        ap_key = self._retrieve_api_key(api_key)
-        uid = self.env["res.users"].search(
-                    [("login", "=", ap_key.user)]).id
+    @tools.ormcache("key")
+    def _retrieve_uid_from_api_key(self, key):
+        return self._retrieve_api_key(key).user_id.id
 
-        if not uid:
-            raise ValidationError(
-                _("No user found with login %s") % ap_key.user)
+    def _clear_key_cache(self):
+        self._retrieve_api_key_id.clear_cache()
+        self._retrieve_uid_from_api_key.clear_cache()
 
-        return uid
-    return False
+    @api.model
+    def create(self, vals):
+        record = super(AuthApikey, self).create(vals)
+        if 'key' in vals:
+            self._clear_key_cache()
+        return record
 
+    def write(self, vals):
+        super(AuthApikey, self).write(vals)
+        if 'key' in vals:
+            self._clear_key_cache()
+        return True
diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py
index 1e6638a07d..f28183abb0 100644
--- a/auth_api_key/models/ir_http.py
+++ b/auth_api_key/models/ir_http.py
@@ -22,16 +22,16 @@ def _auth_method_api_key(cls):
         api_key = headers.get("HTTP_API_KEY")
         if api_key:
             request.uid = 1
-            uid = request.env["auth.api.key"]._retrieve_uid_from_api_key(
-                api_key)
-            if uid:
+            api = request.env["auth.api.key"]._retrieve_api_key(api_key)
+            if api:
                 # reset _env on the request since we change the uid...
                 # the next call to env will instantiate an new
                 # odoo.api.Environment with the user defined on the
                 # auth.api_key
                 request._env = None
-                request.uid = uid
+                request.uid = api.user_id.id
                 request.auth_api_key = api_key
+                request.auth_api_key_id = api.id
                 return True
         _logger.error("Wrong HTTP_API_KEY, access denied")
         raise AccessDenied()
diff --git a/auth_api_key/security/ir.model.access.csv b/auth_api_key/security/ir.model.access.csv
new file mode 100644
index 0000000000..b964d8c1de
--- /dev/null
+++ b/auth_api_key/security/ir.model.access.csv
@@ -0,0 +1,2 @@
+id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink
+access_auth_api_key,access_auth_api_key,model_auth_api_key,base.group_system,1,1,1,1

From 38369f86f95ca7b590ca412df65061e8228f3b17 Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Mon, 29 Jul 2019 03:37:25 +0000
Subject: [PATCH 22/86] [UPD] README.rst

---
 auth_api_key/static/description/index.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index f70369a5af..8a5bd04cac 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -3,7 +3,7 @@
 <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
-<meta name="generator" content="Docutils 0.14: http://docutils.sourceforge.net/" />
+<meta name="generator" content="Docutils 0.15.1: http://docutils.sourceforge.net/" />
 <title>Auth Api Key</title>
 <style type="text/css">
 

From 4507eeae485b2e472fb9119d0d812c58177b5f79 Mon Sep 17 00:00:00 2001
From: "Laurent Mignon (ACSONE)" <laurent.mignon@acsone.eu>
Date: Fri, 20 Sep 2019 16:58:48 +0200
Subject: [PATCH 23/86] [FIX] auth_api_key: Fix tests according to last changes
 and add views to manage auth api keys

---
 auth_api_key/__manifest__.py            |  2 +-
 auth_api_key/models/auth_api_key.py     | 13 +++--
 auth_api_key/readme/CONFIGURE.rst       | 13 ++---
 auth_api_key/tests/test_auth_api_key.py | 64 ++++++++++++++++++-------
 auth_api_key/views/auth_api_key.xml     | 53 ++++++++++++++++++++
 5 files changed, 116 insertions(+), 29 deletions(-)
 create mode 100644 auth_api_key/views/auth_api_key.xml

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index c75d1f01c0..13746e013c 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -12,6 +12,6 @@
     "website": "https://acsone.eu/",
     "development_status": "Beta",
     "depends": ["server_environment"],
-    "data": ['security/ir.model.access.csv'],
+    "data": ['security/ir.model.access.csv', 'views/auth_api_key.xml'],
     "demo": [],
 }
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index df979551d4..4340a673cf 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -18,7 +18,10 @@ class AuthApiKey(models.Model):
     user_id = fields.Many2one(
         comodel_name="res.users",
         string="User",
-        required=True)
+        required=True,
+        help="""The user used to process the requests authenticated by
+        the api key"""
+    )
 
     @property
     def _server_env_fields(self):
@@ -49,18 +52,18 @@ def _retrieve_uid_from_api_key(self, key):
         return self._retrieve_api_key(key).user_id.id
 
     def _clear_key_cache(self):
-        self._retrieve_api_key_id.clear_cache()
-        self._retrieve_uid_from_api_key.clear_cache()
+        self._retrieve_api_key_id.clear_cache(self.env[self._name])
+        self._retrieve_uid_from_api_key.clear_cache(self.env[self._name])
 
     @api.model
     def create(self, vals):
-        record = super(AuthApikey, self).create(vals)
+        record = super(AuthApiKey, self).create(vals)
         if 'key' in vals:
             self._clear_key_cache()
         return record
 
     def write(self, vals):
-        super(AuthApikey, self).write(vals)
+        super(AuthApiKey, self).write(vals)
         if 'key' in vals:
             self._clear_key_cache()
         return True
diff --git a/auth_api_key/readme/CONFIGURE.rst b/auth_api_key/readme/CONFIGURE.rst
index d65bfb4dba..d855b896b7 100644
--- a/auth_api_key/readme/CONFIGURE.rst
+++ b/auth_api_key/readme/CONFIGURE.rst
@@ -1,10 +1,11 @@
-The api key must be provided by the configuration parameter named
-'api_key_*.key', and the user under the same option 'api_key_*.user'.
-
-For instance :
+The api key menu is available into Settings > Technical in debug mode.
+By default, when you create an API key, the key is saved into the database.
+It is also possible to provide the value of this key via the configuration
+file. This can be very useful to avoid mixing your keys between your various
+environments when restoring databases. All you have to do is to add a new
+section to your configuration file according to the following convention:
 
 .. code-block:: ini
 
-    [api_key_mykey]
+    [auth_api_key.<Record Name>]
     key=my_api_key
-    user=my_user
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index a187aed1b9..e2f3b10f42 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -1,37 +1,67 @@
 # Copyright 2018 ACSONE SA/NV
 # License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
-from odoo.tests.common import TransactionCase
+from odoo.tests.common import SavepointCase
 from odoo.addons.server_environment import serv_config
 from odoo.exceptions import ValidationError, AccessError
 
 
-class TestAuthApiKey(TransactionCase):
+class TestAuthApiKey(SavepointCase):
     @classmethod
     def setUpClass(cls, *args, **kwargs):
-        super(TestAuthApiKey, cls).setUpClass(*args, **kwargs)
-
-        serv_config.add_section("api_key_good")
-        serv_config.set("api_key_good", "user", "demo")
-        serv_config.set("api_key_good", "key", "api_right_key")
-        serv_config.add_section("api_key_bad")
-        serv_config.set("api_key_bad", "user", "not_demo")
-        serv_config.set("api_key_bad", "key", "api_wrong_key")
+        super().setUpClass(*args, **kwargs)
+        cls.AuthApiKey = cls.env["auth.api.key"]
+        cls.demo_user = cls.env.ref("base.user_demo")
+        cls.api_key_good = cls.AuthApiKey.create(
+            {"name": "good", "user_id": cls.demo_user.id, "key": "api_key"}
+        )
+        cls.api_key_from_env = cls.AuthApiKey.create(
+            {"name": "from_env", "key": "dummy", "user_id": cls.demo_user.id}
+        )
+        cls.api_key_from_env.refresh()
+        serv_config.add_section("auth_api_key.from_env")
+        serv_config.set("auth_api_key.from_env", "key", "api_key_from_env")
 
-    def test_lookup(self):
+    def test_lookup_key_from_db(self):
         demo_user = self.env.ref("base.user_demo")
         self.assertEqual(
-            self.env["auth.api.key"]._retrieve_uid_from_api_key(
-                "api_right_key"),
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"),
             demo_user.id,
         )
 
+    def test_lookup_key_from_env(self):
+        self.assertEqual(
+            self.env["auth.api.key"]._retrieve_uid_from_api_key(
+                "api_key_from_env"
+            ),
+            self.demo_user.id,
+        )
+        with self.assertRaises(ValidationError):
+            # dummy key must be replace with the one from env and
+            # therefore should be unusable
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("dummy")
+
     def test_wrong_key(self):
         with self.assertRaises(ValidationError), self.env.cr.savepoint():
             self.env["auth.api.key"]._retrieve_uid_from_api_key(
-                "api_wrong_key")
+                "api_wrong_key"
+            )
 
     def test_user_not_allowed(self):
-        demo_user = self.env.ref("base.user_demo")
+        # only system users can check for key
         with self.assertRaises(AccessError), self.env.cr.savepoint():
-            self.env["auth.api.key"].sudo(user=demo_user).\
-                _retrieve_uid_from_api_key("api_wrong_key")
+            self.env["auth.api.key"].sudo(
+                user=self.demo_user
+            )._retrieve_uid_from_api_key("api_wrong_key")
+
+    def test_cache_invalidation(self):
+        self.assertEqual(
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"),
+            self.demo_user.id,
+        )
+        self.api_key_good.write({"key": "updated_key"})
+        self.assertEqual(
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("updated_key"),
+            self.demo_user.id,
+        )
+        with self.assertRaises(ValidationError):
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key")
diff --git a/auth_api_key/views/auth_api_key.xml b/auth_api_key/views/auth_api_key.xml
new file mode 100644
index 0000000000..5acea03e98
--- /dev/null
+++ b/auth_api_key/views/auth_api_key.xml
@@ -0,0 +1,53 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!-- Copyright 2019 ACSONE SA/NV
+     License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). -->
+
+<odoo>
+
+    <record model="ir.ui.view" id="auth_api_key_form_view">
+        <field name="name">auth.api.key.form (in auth_api_key)</field>
+        <field name="model">auth.api.key</field>
+        <field name="arch" type="xml">
+            <form create="false" edit="false">
+                <sheet>
+                    <label for="name" class="oe_edit_only"/>
+                    <h1>
+                        <field name="name" class="oe_inline"/>
+                    </h1>
+                     <group name="config" colspan="4" col="4">
+                         <field name="user_id" colspan="4"/>
+                         <field name="key"  colspan="4"/>
+                     </group>
+                </sheet>
+            </form>
+        </field>
+    </record>
+
+
+    <record model="ir.ui.view" id="auth_api_key_tree_view">
+        <field name="name">auth.api.key.tree (in auth_api_key)</field>
+        <field name="model">auth.api.key</field>
+        <field name="arch" type="xml">
+            <tree>
+                <field name="name"/>
+                <field name="user_id"/>
+            </tree>
+        </field>
+    </record>
+
+    <record model="ir.actions.act_window" id="auth_api_key_act_window">
+        <field name="name">Auth Api Key</field>
+        <field name="res_model">auth.api.key</field>
+        <field name="view_mode">tree,form</field>
+        <field name="domain">[]</field>
+        <field name="context">{}</field>
+    </record>
+
+    <record model="ir.ui.menu" id="auth_api_key_menu">
+        <field name="name">Auth Api Key</field>
+        <field name="parent_id" ref="base.menu_custom"/>
+        <field name="action" ref="auth_api_key_act_window"/>
+        <field name="sequence" eval="100"/>
+    </record>
+
+</odoo>

From 68d20f30f634b9cc9b87c2124cb4bc6e98c8ef8a Mon Sep 17 00:00:00 2001
From: "Laurent Mignon (ACSONE)" <laurent.mignon@acsone.eu>
Date: Fri, 27 Sep 2019 14:10:55 +0200
Subject: [PATCH 24/86] [IMP] auth_api_key: Ensures backward compatibility Add
 a migration script to create the auth.api.key records from keys defined into
 the cfg file Provides a specific serction name builder to continue reading
 the key info from the same section as the one expected by the previous
 version

---
 auth_api_key/__manifest__.py                  |  2 +-
 .../migrations/12.0.2.0.0/post-migrate.py     | 27 +++++++++++++++++
 auth_api_key/models/auth_api_key.py           | 30 ++++++++++++++-----
 auth_api_key/models/ir_http.py                | 10 ++++---
 auth_api_key/readme/CONFIGURE.rst             |  2 +-
 auth_api_key/tests/test_auth_api_key.py       |  4 +--
 6 files changed, 60 insertions(+), 15 deletions(-)
 create mode 100644 auth_api_key/migrations/12.0.2.0.0/post-migrate.py

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 13746e013c..91cac5ac4f 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -6,7 +6,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "12.0.1.0.0",
+    "version": "12.0.2.0.0",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://acsone.eu/",
diff --git a/auth_api_key/migrations/12.0.2.0.0/post-migrate.py b/auth_api_key/migrations/12.0.2.0.0/post-migrate.py
new file mode 100644
index 0000000000..9257a4a04f
--- /dev/null
+++ b/auth_api_key/migrations/12.0.2.0.0/post-migrate.py
@@ -0,0 +1,27 @@
+# -*- coding: utf-8 -*-
+# Copyright 2019 ACSONE SA/NV
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+import logging
+import odoo
+from odoo.addons.server_environment import serv_config
+
+_logger = logging.Logger(__name__)
+
+
+def migrate(cr, version):
+    _logger.info("Create auth_api.key records from odoo config")
+    with odoo.api.Environment.manage():
+        env = odoo.api.Environment(cr, odoo.SUPERUSER_ID, {})
+        for section in serv_config.sections():
+            if section.startswith("api_key_") and serv_config.has_option(
+                section, "key"
+            ):
+                login_name = serv_config.get(section, "user")
+                name = section.replace("api_key_", "")
+                key = "<set from server environment>"
+                user = env["res.users"].search([("login", "=", login_name)])
+                env["auth.api.key"].create(
+                    {"name": name, "key": key, "user_id": user.id}
+                )
+                _logger.info("API Key record created for %s", section)
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 4340a673cf..9dbeeb1f4d 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -11,7 +11,7 @@
 class AuthApiKey(models.Model):
     _name = "auth.api.key"
     _inherit = "server.env.mixin"
-    _description = "API Key Retriever"
+    _description = "API Key"
 
     name = fields.Char(required=True)
     key = fields.Char(required=True)
@@ -20,15 +20,31 @@ class AuthApiKey(models.Model):
         string="User",
         required=True,
         help="""The user used to process the requests authenticated by
-        the api key"""
+        the api key""",
     )
 
+    _sql_constraints = [
+        ("name_uniq", "unique(name)", "Api Key name must be unique.")
+    ]
+
+    @api.multi
+    def _server_env_section_name(self):
+        """Name of the section in the configuration files
+
+        We override the default implementation to keep the compatibility
+        with the previous implementation of auth_api_key. The section name
+        into the configuration file must be formatted as
+
+            'api_key_{name}'
+
+        """
+        self.ensure_one()
+        return "api_key_{}".format(self.name)
+
     @property
     def _server_env_fields(self):
         base_fields = super()._server_env_fields
-        api_key_fields = {
-            "key": {},
-        }
+        api_key_fields = {"key": {}}
         api_key_fields.update(base_fields)
         return api_key_fields
 
@@ -58,12 +74,12 @@ def _clear_key_cache(self):
     @api.model
     def create(self, vals):
         record = super(AuthApiKey, self).create(vals)
-        if 'key' in vals:
+        if "key" in vals:
             self._clear_key_cache()
         return record
 
     def write(self, vals):
         super(AuthApiKey, self).write(vals)
-        if 'key' in vals:
+        if "key" in vals:
             self._clear_key_cache()
         return True
diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py
index f28183abb0..8b1cc9fbfb 100644
--- a/auth_api_key/models/ir_http.py
+++ b/auth_api_key/models/ir_http.py
@@ -22,16 +22,18 @@ def _auth_method_api_key(cls):
         api_key = headers.get("HTTP_API_KEY")
         if api_key:
             request.uid = 1
-            api = request.env["auth.api.key"]._retrieve_api_key(api_key)
-            if api:
+            auth_api_key = request.env["auth.api.key"]._retrieve_api_key(
+                api_key
+            )
+            if auth_api_key:
                 # reset _env on the request since we change the uid...
                 # the next call to env will instantiate an new
                 # odoo.api.Environment with the user defined on the
                 # auth.api_key
                 request._env = None
-                request.uid = api.user_id.id
+                request.uid = auth_api_key.user_id.id
                 request.auth_api_key = api_key
-                request.auth_api_key_id = api.id
+                request.auth_api_key_id = auth_api_key.id
                 return True
         _logger.error("Wrong HTTP_API_KEY, access denied")
         raise AccessDenied()
diff --git a/auth_api_key/readme/CONFIGURE.rst b/auth_api_key/readme/CONFIGURE.rst
index d855b896b7..c3c0612baf 100644
--- a/auth_api_key/readme/CONFIGURE.rst
+++ b/auth_api_key/readme/CONFIGURE.rst
@@ -7,5 +7,5 @@ section to your configuration file according to the following convention:
 
 .. code-block:: ini
 
-    [auth_api_key.<Record Name>]
+    [api_key_<Record Name>]
     key=my_api_key
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index e2f3b10f42..1b31c949af 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -18,8 +18,8 @@ def setUpClass(cls, *args, **kwargs):
             {"name": "from_env", "key": "dummy", "user_id": cls.demo_user.id}
         )
         cls.api_key_from_env.refresh()
-        serv_config.add_section("auth_api_key.from_env")
-        serv_config.set("auth_api_key.from_env", "key", "api_key_from_env")
+        serv_config.add_section("api_key_from_env")
+        serv_config.set("api_key_from_env", "key", "api_key_from_env")
 
     def test_lookup_key_from_db(self):
         demo_user = self.env.ref("base.user_demo")

From 798dc997497776f99f5abc1297c10f0f4e7062b3 Mon Sep 17 00:00:00 2001
From: "Laurent Mignon (ACSONE)" <laurent.mignon@acsone.eu>
Date: Fri, 27 Sep 2019 14:32:40 +0200
Subject: [PATCH 25/86] [FIX] auth_api_key: Cache must be cleared if the
 user_id is modified

---
 auth_api_key/models/auth_api_key.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 9dbeeb1f4d..1a3a758188 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -74,12 +74,12 @@ def _clear_key_cache(self):
     @api.model
     def create(self, vals):
         record = super(AuthApiKey, self).create(vals)
-        if "key" in vals:
+        if "key" in vals or "user_id" in vals:
             self._clear_key_cache()
         return record
 
     def write(self, vals):
         super(AuthApiKey, self).write(vals)
-        if "key" in vals:
+        if "key" in vals or "user_id" in vals:
             self._clear_key_cache()
         return True

From 2de4e63d361a333d9d15f5a07623bc2c7fe8ab09 Mon Sep 17 00:00:00 2001
From: "Laurent Mignon (ACSONE)" <laurent.mignon@acsone.eu>
Date: Fri, 27 Sep 2019 14:55:01 +0200
Subject: [PATCH 26/86] [IMP] auth_api_key: Improves key field description

---
 auth_api_key/models/auth_api_key.py | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 1a3a758188..7509da3b06 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -14,7 +14,11 @@ class AuthApiKey(models.Model):
     _description = "API Key"
 
     name = fields.Char(required=True)
-    key = fields.Char(required=True)
+    key = fields.Char(
+        required=True,
+        help="""The API key. Enter a dummy value in this field if it is
+        obtained from the server environment configuration.""",
+    )
     user_id = fields.Many2one(
         comodel_name="res.users",
         string="User",

From 285b1b4db260f7174c7fa4b76278a7a4b4335049 Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Sat, 28 Sep 2019 10:12:33 +0000
Subject: [PATCH 27/86] [UPD] README.rst

---
 auth_api_key/README.rst                    | 13 +++++++------
 auth_api_key/static/description/index.html | 12 +++++++-----
 2 files changed, 14 insertions(+), 11 deletions(-)

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index dc5e5bc240..80789f765a 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -39,16 +39,17 @@ Take care while using this kind of mechanism since information into http headers
 Configuration
 =============
 
-The api key must be provided by the configuration parameter named
-'api_key_*.key', and the user under the same option 'api_key_*.user'.
-
-For instance :
+The api key menu is available into Settings > Technical in debug mode.
+By default, when you create an API key, the key is saved into the database.
+It is also possible to provide the value of this key via the configuration
+file. This can be very useful to avoid mixing your keys between your various
+environments when restoring databases. All you have to do is to add a new
+section to your configuration file according to the following convention:
 
 .. code-block:: ini
 
-    [api_key_mykey]
+    [api_key_<Record Name>]
     key=my_api_key
-    user=my_user
 
 Usage
 =====
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index 8a5bd04cac..5f9c6e2dae 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -387,13 +387,15 @@ <h1 class="title">Auth Api Key</h1>
 </div>
 <div class="section" id="configuration">
 <h1><a class="toc-backref" href="#id1">Configuration</a></h1>
-<p>The api key must be provided by the configuration parameter named
-‘api_key_*.key’, and the user under the same option ‘api_key_*.user’.</p>
-<p>For instance :</p>
+<p>The api key menu is available into Settings &gt; Technical in debug mode.
+By default, when you create an API key, the key is saved into the database.
+It is also possible to provide the value of this key via the configuration
+file. This can be very useful to avoid mixing your keys between your various
+environments when restoring databases. All you have to do is to add a new
+section to your configuration file according to the following convention:</p>
 <pre class="code ini literal-block">
-<span class="k">[api_key_mykey]</span>
+<span class="k">[api_key_&lt;Record Name&gt;]</span>
 <span class="na">key</span><span class="o">=</span><span class="s">my_api_key</span>
-<span class="na">user</span><span class="o">=</span><span class="s">my_user</span>
 </pre>
 </div>
 <div class="section" id="usage">

From 63f1db577943f9feeae4874a707dfe45e84b2d97 Mon Sep 17 00:00:00 2001
From: "laurent.corron" <laurent.corron@acsone.eu>
Date: Thu, 17 Oct 2019 15:20:38 +0200
Subject: [PATCH 28/86] [IMP] auth_api_key: black, isort

---
 auth_api_key/__manifest__.py                       |  3 +--
 auth_api_key/migrations/12.0.2.0.0/post-migrate.py |  3 ++-
 auth_api_key/models/auth_api_key.py                | 10 +++-------
 auth_api_key/models/ir_http.py                     |  7 ++-----
 auth_api_key/readme/CONTRIBUTORS.rst               |  2 +-
 auth_api_key/readme/DESCRIPTION.rst                |  4 ++--
 auth_api_key/tests/test_auth_api_key.py            | 14 +++++---------
 7 files changed, 16 insertions(+), 27 deletions(-)

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 91cac5ac4f..abd95a4b3a 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -1,4 +1,3 @@
-# -*- coding: utf-8 -*-
 # Copyright 2018 ACSONE SA/NV
 # License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
 
@@ -12,6 +11,6 @@
     "website": "https://acsone.eu/",
     "development_status": "Beta",
     "depends": ["server_environment"],
-    "data": ['security/ir.model.access.csv', 'views/auth_api_key.xml'],
+    "data": ["security/ir.model.access.csv", "views/auth_api_key.xml"],
     "demo": [],
 }
diff --git a/auth_api_key/migrations/12.0.2.0.0/post-migrate.py b/auth_api_key/migrations/12.0.2.0.0/post-migrate.py
index 9257a4a04f..06be6c96ae 100644
--- a/auth_api_key/migrations/12.0.2.0.0/post-migrate.py
+++ b/auth_api_key/migrations/12.0.2.0.0/post-migrate.py
@@ -1,9 +1,10 @@
-# -*- coding: utf-8 -*-
 # Copyright 2019 ACSONE SA/NV
 # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
 
 import logging
+
 import odoo
+
 from odoo.addons.server_environment import serv_config
 
 _logger = logging.Logger(__name__)
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 7509da3b06..dca8b149ab 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -1,12 +1,10 @@
 # Copyright 2018 ACSONE SA/NV
 # License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
 
-from odoo import api, fields, models, tools, _
-
+from odoo import _, api, fields, models, tools
+from odoo.exceptions import AccessError, ValidationError
 from odoo.tools import consteq
 
-from odoo.exceptions import ValidationError, AccessError
-
 
 class AuthApiKey(models.Model):
     _name = "auth.api.key"
@@ -27,9 +25,7 @@ class AuthApiKey(models.Model):
         the api key""",
     )
 
-    _sql_constraints = [
-        ("name_uniq", "unique(name)", "Api Key name must be unique.")
-    ]
+    _sql_constraints = [("name_uniq", "unique(name)", "Api Key name must be unique.")]
 
     @api.multi
     def _server_env_section_name(self):
diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py
index 8b1cc9fbfb..13673663b2 100644
--- a/auth_api_key/models/ir_http.py
+++ b/auth_api_key/models/ir_http.py
@@ -5,10 +5,9 @@
 
 import logging
 
-from odoo.http import request
 from odoo import models
 from odoo.exceptions import AccessDenied
-
+from odoo.http import request
 
 _logger = logging.getLogger(__name__)
 
@@ -22,9 +21,7 @@ def _auth_method_api_key(cls):
         api_key = headers.get("HTTP_API_KEY")
         if api_key:
             request.uid = 1
-            auth_api_key = request.env["auth.api.key"]._retrieve_api_key(
-                api_key
-            )
+            auth_api_key = request.env["auth.api.key"]._retrieve_api_key(api_key)
             if auth_api_key:
                 # reset _env on the request since we change the uid...
                 # the next call to env will instantiate an new
diff --git a/auth_api_key/readme/CONTRIBUTORS.rst b/auth_api_key/readme/CONTRIBUTORS.rst
index 14d8f94b83..c4758804c5 100644
--- a/auth_api_key/readme/CONTRIBUTORS.rst
+++ b/auth_api_key/readme/CONTRIBUTORS.rst
@@ -1,4 +1,4 @@
 * Denis Robinet <denis.robinet@acsone.eu>
 * Laurent Mignon <laurent.mignon@acsone.eu>
 * Quentin Groulard <quentin.groulard@acsone.eu>
-* Sébastien Beau <sebastien.beau@akretion.com>
\ No newline at end of file
+* Sébastien Beau <sebastien.beau@akretion.com>
diff --git a/auth_api_key/readme/DESCRIPTION.rst b/auth_api_key/readme/DESCRIPTION.rst
index 575f75544b..32b1e9c324 100644
--- a/auth_api_key/readme/DESCRIPTION.rst
+++ b/auth_api_key/readme/DESCRIPTION.rst
@@ -1,5 +1,5 @@
-Authenticate http requests from an API key. 
+Authenticate http requests from an API key.
 
 API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program's user.
 
-Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.
\ No newline at end of file
+Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index 1b31c949af..6abe3debf8 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -1,8 +1,9 @@
 # Copyright 2018 ACSONE SA/NV
 # License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
+from odoo.exceptions import AccessError, ValidationError
 from odoo.tests.common import SavepointCase
+
 from odoo.addons.server_environment import serv_config
-from odoo.exceptions import ValidationError, AccessError
 
 
 class TestAuthApiKey(SavepointCase):
@@ -24,15 +25,12 @@ def setUpClass(cls, *args, **kwargs):
     def test_lookup_key_from_db(self):
         demo_user = self.env.ref("base.user_demo")
         self.assertEqual(
-            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"),
-            demo_user.id,
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id
         )
 
     def test_lookup_key_from_env(self):
         self.assertEqual(
-            self.env["auth.api.key"]._retrieve_uid_from_api_key(
-                "api_key_from_env"
-            ),
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key_from_env"),
             self.demo_user.id,
         )
         with self.assertRaises(ValidationError):
@@ -42,9 +40,7 @@ def test_lookup_key_from_env(self):
 
     def test_wrong_key(self):
         with self.assertRaises(ValidationError), self.env.cr.savepoint():
-            self.env["auth.api.key"]._retrieve_uid_from_api_key(
-                "api_wrong_key"
-            )
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_wrong_key")
 
     def test_user_not_allowed(self):
         # only system users can check for key

From f95ffae44cda3029106b5d485588917c701e22dd Mon Sep 17 00:00:00 2001
From: Laurent-Corron <laurent.corron@acsone.eu>
Date: Thu, 17 Oct 2019 17:32:13 +0200
Subject: [PATCH 29/86] [MIG] auth_api_key: Migration to 13.0

---
 auth_api_key/__manifest__.py            | 2 +-
 auth_api_key/models/auth_api_key.py     | 1 -
 auth_api_key/tests/test_auth_api_key.py | 2 +-
 3 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index abd95a4b3a..650f5efe70 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,7 +5,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "12.0.2.0.0",
+    "version": "13.0.1.0.0",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://acsone.eu/",
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index dca8b149ab..6b24e9053c 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -27,7 +27,6 @@ class AuthApiKey(models.Model):
 
     _sql_constraints = [("name_uniq", "unique(name)", "Api Key name must be unique.")]
 
-    @api.multi
     def _server_env_section_name(self):
         """Name of the section in the configuration files
 
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index 6abe3debf8..da5c524817 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -45,7 +45,7 @@ def test_wrong_key(self):
     def test_user_not_allowed(self):
         # only system users can check for key
         with self.assertRaises(AccessError), self.env.cr.savepoint():
-            self.env["auth.api.key"].sudo(
+            self.env["auth.api.key"].with_user(
                 user=self.demo_user
             )._retrieve_uid_from_api_key("api_wrong_key")
 

From 9c272c548b066bdd77615cd3702279d6baf05172 Mon Sep 17 00:00:00 2001
From: oca-travis <oca+oca-travis@odoo-community.org>
Date: Tue, 29 Oct 2019 16:47:01 +0000
Subject: [PATCH 30/86] [UPD] Update auth_api_key.pot

---
 auth_api_key/i18n/auth_api_key.pot | 126 +++++++++++++++++++++++++++++
 1 file changed, 126 insertions(+)
 create mode 100644 auth_api_key/i18n/auth_api_key.pot

diff --git a/auth_api_key/i18n/auth_api_key.pot b/auth_api_key/i18n/auth_api_key.pot
new file mode 100644
index 0000000000..6c571bb97e
--- /dev/null
+++ b/auth_api_key/i18n/auth_api_key.pot
@@ -0,0 +1,126 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# 	* auth_api_key
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: Odoo Server 13.0\n"
+"Report-Msgid-Bugs-To: \n"
+"Last-Translator: \n"
+"Language-Team: \n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: \n"
+"Plural-Forms: \n"
+
+#. module: auth_api_key
+#: model:ir.model,name:auth_api_key.model_auth_api_key
+msgid "API Key"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.constraint,message:auth_api_key.constraint_auth_api_key_name_uniq
+msgid "Api Key name must be unique."
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.actions.act_window,name:auth_api_key.auth_api_key_act_window
+#: model:ir.ui.menu,name:auth_api_key.auth_api_key_menu
+msgid "Auth Api Key"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_uid
+msgid "Created by"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_date
+msgid "Created on"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name
+msgid "Display Name"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model,name:auth_api_key.model_ir_http
+msgid "HTTP Routing"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__id
+msgid "ID"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key
+msgid "Key"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key_env_default
+msgid "Key Env Default"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key_env_is_editable
+msgid "Key Env Is Editable"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key____last_update
+msgid "Last Modified on"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__write_uid
+msgid "Last Updated by"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__write_date
+msgid "Last Updated on"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__name
+msgid "Name"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__server_env_defaults
+msgid "Server Env Defaults"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,help:auth_api_key.field_auth_api_key__key
+msgid ""
+"The API key. Enter a dummy value in this field if it is\n"
+"        obtained from the server environment configuration."
+msgstr ""
+
+#. module: auth_api_key
+#: code:addons/auth_api_key/models/auth_api_key.py:0
+#, python-format
+msgid "The key %s is not allowed"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,help:auth_api_key.field_auth_api_key__user_id
+msgid ""
+"The user used to process the requests authenticated by\n"
+"        the api key"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__user_id
+msgid "User"
+msgstr ""
+
+#. module: auth_api_key
+#: code:addons/auth_api_key/models/auth_api_key.py:0
+#, python-format
+msgid "User is not allowed"
+msgstr ""

From 87a9fd2fe189bd57686fd410628f2362939bdc6a Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Tue, 29 Oct 2019 17:34:27 +0000
Subject: [PATCH 31/86] [UPD] README.rst

---
 auth_api_key/README.rst                    | 12 ++++++------
 auth_api_key/static/description/index.html |  6 +++---
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index 80789f765a..d663a3d4a0 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -14,18 +14,18 @@ Auth Api Key
     :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html
     :alt: License: LGPL-3
 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github
-    :target: https://github.com/OCA/server-auth/tree/12.0/auth_api_key
+    :target: https://github.com/OCA/server-auth/tree/13.0/auth_api_key
     :alt: OCA/server-auth
 .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
-    :target: https://translation.odoo-community.org/projects/server-auth-12-0/server-auth-12-0-auth_api_key
+    :target: https://translation.odoo-community.org/projects/server-auth-13-0/server-auth-13-0-auth_api_key
     :alt: Translate me on Weblate
 .. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png
-    :target: https://runbot.odoo-community.org/runbot/251/12.0
+    :target: https://runbot.odoo-community.org/runbot/251/13.0
     :alt: Try me on Runbot
 
 |badge1| |badge2| |badge3| |badge4| |badge5| 
 
-Authenticate http requests from an API key. 
+Authenticate http requests from an API key.
 
 API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program's user.
 
@@ -71,7 +71,7 @@ Bug Tracker
 Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-auth/issues>`_.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us smashing it by providing a detailed and welcomed
-`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2012.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2013.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
 
 Do not contact contributors directly about support or help with technical issues.
 
@@ -104,6 +104,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.
 
-This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/12.0/auth_api_key>`_ project on GitHub.
+This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/13.0/auth_api_key>`_ project on GitHub.
 
 You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index 5f9c6e2dae..a0fbdbb940 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -367,7 +367,7 @@ <h1 class="title">Auth Api Key</h1>
 !! This file is generated by oca-gen-addon-readme !!
 !! changes will be overwritten.                   !!
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
-<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/12.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-12-0/server-auth-12-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/12.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
+<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/13.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-13-0/server-auth-13-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/13.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>
 <p>API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program’s user.</p>
 <p>Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.</p>
@@ -415,7 +415,7 @@ <h1><a class="toc-backref" href="#id3">Bug Tracker</a></h1>
 <p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-auth/issues">GitHub Issues</a>.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us smashing it by providing a detailed and welcomed
-<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2012.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2013.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
 <p>Do not contact contributors directly about support or help with technical issues.</p>
 </div>
 <div class="section" id="credits">
@@ -442,7 +442,7 @@ <h2><a class="toc-backref" href="#id7">Maintainers</a></h2>
 <p>OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.</p>
-<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/12.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/13.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
 <p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
 </div>
 </div>

From f3e870cc26e7632bb5a4a2bfb50edc93091c8618 Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Sat, 14 Mar 2020 12:23:28 +0100
Subject: [PATCH 32/86] pre-commit update

---
 auth_api_key/views/auth_api_key.xml | 31 +++++++++++------------------
 1 file changed, 12 insertions(+), 19 deletions(-)

diff --git a/auth_api_key/views/auth_api_key.xml b/auth_api_key/views/auth_api_key.xml
index 5acea03e98..c2305274ae 100644
--- a/auth_api_key/views/auth_api_key.xml
+++ b/auth_api_key/views/auth_api_key.xml
@@ -1,40 +1,35 @@
-<?xml version="1.0" encoding="utf-8"?>
+<?xml version="1.0" encoding="utf-8" ?>
 <!-- Copyright 2019 ACSONE SA/NV
      License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). -->
-
 <odoo>
-
     <record model="ir.ui.view" id="auth_api_key_form_view">
         <field name="name">auth.api.key.form (in auth_api_key)</field>
         <field name="model">auth.api.key</field>
         <field name="arch" type="xml">
             <form create="false" edit="false">
                 <sheet>
-                    <label for="name" class="oe_edit_only"/>
+                    <label for="name" class="oe_edit_only" />
                     <h1>
-                        <field name="name" class="oe_inline"/>
+                        <field name="name" class="oe_inline" />
                     </h1>
-                     <group name="config" colspan="4" col="4">
-                         <field name="user_id" colspan="4"/>
-                         <field name="key"  colspan="4"/>
-                     </group>
+                    <group name="config" colspan="4" col="4">
+                        <field name="user_id" colspan="4" />
+                        <field name="key" colspan="4" />
+                    </group>
                 </sheet>
             </form>
         </field>
     </record>
-
-
     <record model="ir.ui.view" id="auth_api_key_tree_view">
         <field name="name">auth.api.key.tree (in auth_api_key)</field>
         <field name="model">auth.api.key</field>
         <field name="arch" type="xml">
             <tree>
-                <field name="name"/>
-                <field name="user_id"/>
+                <field name="name" />
+                <field name="user_id" />
             </tree>
         </field>
     </record>
-
     <record model="ir.actions.act_window" id="auth_api_key_act_window">
         <field name="name">Auth Api Key</field>
         <field name="res_model">auth.api.key</field>
@@ -42,12 +37,10 @@
         <field name="domain">[]</field>
         <field name="context">{}</field>
     </record>
-
     <record model="ir.ui.menu" id="auth_api_key_menu">
         <field name="name">Auth Api Key</field>
-        <field name="parent_id" ref="base.menu_custom"/>
-        <field name="action" ref="auth_api_key_act_window"/>
-        <field name="sequence" eval="100"/>
+        <field name="parent_id" ref="base.menu_custom" />
+        <field name="action" ref="auth_api_key_act_window" />
+        <field name="sequence" eval="100" />
     </record>
-
 </odoo>

From f23166bc07e73dd809918bc1cbeffc635c60fd18 Mon Sep 17 00:00:00 2001
From: Chafique <chafique.delli@akretion.com>
Date: Mon, 12 Oct 2020 17:41:19 +0200
Subject: [PATCH 33/86] [MIG] auth_api_key: Migration to 14.0

---
 auth_api_key/README.rst              | 11 ++++++-----
 auth_api_key/__manifest__.py         |  4 ++--
 auth_api_key/readme/CONTRIBUTORS.rst |  1 +
 3 files changed, 9 insertions(+), 7 deletions(-)

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index d663a3d4a0..4984336c75 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -14,13 +14,13 @@ Auth Api Key
     :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html
     :alt: License: LGPL-3
 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github
-    :target: https://github.com/OCA/server-auth/tree/13.0/auth_api_key
+    :target: https://github.com/OCA/server-auth/tree/14.0/auth_api_key
     :alt: OCA/server-auth
 .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
-    :target: https://translation.odoo-community.org/projects/server-auth-13-0/server-auth-13-0-auth_api_key
+    :target: https://translation.odoo-community.org/projects/server-auth-14-0/server-auth-14-0-auth_api_key
     :alt: Translate me on Weblate
 .. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png
-    :target: https://runbot.odoo-community.org/runbot/251/13.0
+    :target: https://runbot.odoo-community.org/runbot/251/14.0
     :alt: Try me on Runbot
 
 |badge1| |badge2| |badge3| |badge4| |badge5| 
@@ -71,7 +71,7 @@ Bug Tracker
 Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-auth/issues>`_.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us smashing it by providing a detailed and welcomed
-`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2013.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2014.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
 
 Do not contact contributors directly about support or help with technical issues.
 
@@ -90,6 +90,7 @@ Contributors
 * Laurent Mignon <laurent.mignon@acsone.eu>
 * Quentin Groulard <quentin.groulard@acsone.eu>
 * Sébastien Beau <sebastien.beau@akretion.com>
+* Chafique Delli <chafique.delli@akretion.com>
 
 Maintainers
 ~~~~~~~~~~~
@@ -104,6 +105,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.
 
-This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/13.0/auth_api_key>`_ project on GitHub.
+This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/14.0/auth_api_key>`_ project on GitHub.
 
 You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 650f5efe70..83f5a9ba29 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,10 +5,10 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "13.0.1.0.0",
+    "version": "14.0.1.0.0",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
-    "website": "https://acsone.eu/",
+    "website": "https://github.com/OCA/server-auth",
     "development_status": "Beta",
     "depends": ["server_environment"],
     "data": ["security/ir.model.access.csv", "views/auth_api_key.xml"],
diff --git a/auth_api_key/readme/CONTRIBUTORS.rst b/auth_api_key/readme/CONTRIBUTORS.rst
index c4758804c5..a0cd887895 100644
--- a/auth_api_key/readme/CONTRIBUTORS.rst
+++ b/auth_api_key/readme/CONTRIBUTORS.rst
@@ -2,3 +2,4 @@
 * Laurent Mignon <laurent.mignon@acsone.eu>
 * Quentin Groulard <quentin.groulard@acsone.eu>
 * Sébastien Beau <sebastien.beau@akretion.com>
+* Chafique Delli <chafique.delli@akretion.com>

From 912817c0a0c7cd9069ef7963de89a27fbbf29e39 Mon Sep 17 00:00:00 2001
From: oca-travis <oca+oca-travis@odoo-community.org>
Date: Mon, 21 Dec 2020 21:18:39 +0000
Subject: [PATCH 34/86] [UPD] Update auth_api_key.pot

---
 auth_api_key/i18n/auth_api_key.pot | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/auth_api_key/i18n/auth_api_key.pot b/auth_api_key/i18n/auth_api_key.pot
index 6c571bb97e..6c76c061ae 100644
--- a/auth_api_key/i18n/auth_api_key.pot
+++ b/auth_api_key/i18n/auth_api_key.pot
@@ -4,7 +4,7 @@
 #
 msgid ""
 msgstr ""
-"Project-Id-Version: Odoo Server 13.0\n"
+"Project-Id-Version: Odoo Server 14.0\n"
 "Report-Msgid-Bugs-To: \n"
 "Last-Translator: \n"
 "Language-Team: \n"
@@ -41,6 +41,7 @@ msgstr ""
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name
+#: model:ir.model.fields,field_description:auth_api_key.field_ir_http__display_name
 msgid "Display Name"
 msgstr ""
 
@@ -51,6 +52,7 @@ msgstr ""
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__id
+#: model:ir.model.fields,field_description:auth_api_key.field_ir_http__id
 msgid "ID"
 msgstr ""
 
@@ -71,6 +73,7 @@ msgstr ""
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key____last_update
+#: model:ir.model.fields,field_description:auth_api_key.field_ir_http____last_update
 msgid "Last Modified on"
 msgstr ""
 

From 793ecab6417799bd1cbf6df223e65bc99d45276d Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Mon, 21 Dec 2020 21:29:08 +0000
Subject: [PATCH 35/86] [UPD] README.rst

---
 auth_api_key/static/description/index.html | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index a0fbdbb940..e5595c15f8 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -367,7 +367,7 @@ <h1 class="title">Auth Api Key</h1>
 !! This file is generated by oca-gen-addon-readme !!
 !! changes will be overwritten.                   !!
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
-<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/13.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-13-0/server-auth-13-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/13.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
+<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/14.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-14-0/server-auth-14-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/14.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>
 <p>API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program’s user.</p>
 <p>Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.</p>
@@ -415,7 +415,7 @@ <h1><a class="toc-backref" href="#id3">Bug Tracker</a></h1>
 <p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-auth/issues">GitHub Issues</a>.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us smashing it by providing a detailed and welcomed
-<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2013.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2014.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
 <p>Do not contact contributors directly about support or help with technical issues.</p>
 </div>
 <div class="section" id="credits">
@@ -433,6 +433,7 @@ <h2><a class="toc-backref" href="#id6">Contributors</a></h2>
 <li>Laurent Mignon &lt;<a class="reference external" href="mailto:laurent.mignon&#64;acsone.eu">laurent.mignon&#64;acsone.eu</a>&gt;</li>
 <li>Quentin Groulard &lt;<a class="reference external" href="mailto:quentin.groulard&#64;acsone.eu">quentin.groulard&#64;acsone.eu</a>&gt;</li>
 <li>Sébastien Beau &lt;<a class="reference external" href="mailto:sebastien.beau&#64;akretion.com">sebastien.beau&#64;akretion.com</a>&gt;</li>
+<li>Chafique Delli &lt;<a class="reference external" href="mailto:chafique.delli&#64;akretion.com">chafique.delli&#64;akretion.com</a>&gt;</li>
 </ul>
 </div>
 <div class="section" id="maintainers">
@@ -442,7 +443,7 @@ <h2><a class="toc-backref" href="#id7">Maintainers</a></h2>
 <p>OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.</p>
-<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/13.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/14.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
 <p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
 </div>
 </div>

From 505874af14e16285183de77efc338c23907f080d Mon Sep 17 00:00:00 2001
From: Sergio Zanchetta <primes2h@gmail.com>
Date: Fri, 12 Feb 2021 08:38:40 +0000
Subject: [PATCH 36/86] Added translation using Weblate (Italian)

---
 auth_api_key/i18n/it.po | 130 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 130 insertions(+)
 create mode 100644 auth_api_key/i18n/it.po

diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
new file mode 100644
index 0000000000..d4deb94f1e
--- /dev/null
+++ b/auth_api_key/i18n/it.po
@@ -0,0 +1,130 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# 	* auth_api_key
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: Odoo Server 14.0\n"
+"Report-Msgid-Bugs-To: \n"
+"Last-Translator: Automatically generated\n"
+"Language-Team: none\n"
+"Language: it\n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: \n"
+"Plural-Forms: nplurals=2; plural=n != 1;\n"
+
+#. module: auth_api_key
+#: model:ir.model,name:auth_api_key.model_auth_api_key
+msgid "API Key"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.constraint,message:auth_api_key.constraint_auth_api_key_name_uniq
+msgid "Api Key name must be unique."
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.actions.act_window,name:auth_api_key.auth_api_key_act_window
+#: model:ir.ui.menu,name:auth_api_key.auth_api_key_menu
+msgid "Auth Api Key"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_uid
+msgid "Created by"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_date
+msgid "Created on"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name
+#: model:ir.model.fields,field_description:auth_api_key.field_ir_http__display_name
+msgid "Display Name"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model,name:auth_api_key.model_ir_http
+msgid "HTTP Routing"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__id
+#: model:ir.model.fields,field_description:auth_api_key.field_ir_http__id
+msgid "ID"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key
+msgid "Key"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key_env_default
+msgid "Key Env Default"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key_env_is_editable
+msgid "Key Env Is Editable"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key____last_update
+#: model:ir.model.fields,field_description:auth_api_key.field_ir_http____last_update
+msgid "Last Modified on"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__write_uid
+msgid "Last Updated by"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__write_date
+msgid "Last Updated on"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__name
+msgid "Name"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__server_env_defaults
+msgid "Server Env Defaults"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,help:auth_api_key.field_auth_api_key__key
+msgid ""
+"The API key. Enter a dummy value in this field if it is\n"
+"        obtained from the server environment configuration."
+msgstr ""
+
+#. module: auth_api_key
+#: code:addons/auth_api_key/models/auth_api_key.py:0
+#, python-format
+msgid "The key %s is not allowed"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,help:auth_api_key.field_auth_api_key__user_id
+msgid ""
+"The user used to process the requests authenticated by\n"
+"        the api key"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__user_id
+msgid "User"
+msgstr ""
+
+#. module: auth_api_key
+#: code:addons/auth_api_key/models/auth_api_key.py:0
+#, python-format
+msgid "User is not allowed"
+msgstr ""

From 4f887e187791143c5334f6ea950db0dabea89a76 Mon Sep 17 00:00:00 2001
From: Sergio Zanchetta <primes2h@gmail.com>
Date: Fri, 12 Feb 2021 09:00:45 +0000
Subject: [PATCH 37/86] Translated using Weblate (Italian)

Currently translated at 90.4% (19 of 21 strings)

Translation: server-auth-14.0/server-auth-14.0-auth_api_key
Translate-URL: https://translation.odoo-community.org/projects/server-auth-14-0/server-auth-14-0-auth_api_key/it/
---
 auth_api_key/i18n/it.po | 42 +++++++++++++++++++++++------------------
 1 file changed, 24 insertions(+), 18 deletions(-)

diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
index d4deb94f1e..8f0289fe91 100644
--- a/auth_api_key/i18n/it.po
+++ b/auth_api_key/i18n/it.po
@@ -6,61 +6,63 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Odoo Server 14.0\n"
 "Report-Msgid-Bugs-To: \n"
-"Last-Translator: Automatically generated\n"
+"PO-Revision-Date: 2021-02-12 10:45+0000\n"
+"Last-Translator: Sergio Zanchetta <primes2h@gmail.com>\n"
 "Language-Team: none\n"
 "Language: it\n"
 "MIME-Version: 1.0\n"
 "Content-Type: text/plain; charset=UTF-8\n"
 "Content-Transfer-Encoding: \n"
 "Plural-Forms: nplurals=2; plural=n != 1;\n"
+"X-Generator: Weblate 4.3.2\n"
 
 #. module: auth_api_key
 #: model:ir.model,name:auth_api_key.model_auth_api_key
 msgid "API Key"
-msgstr ""
+msgstr "Chiave API"
 
 #. module: auth_api_key
 #: model:ir.model.constraint,message:auth_api_key.constraint_auth_api_key_name_uniq
 msgid "Api Key name must be unique."
-msgstr ""
+msgstr "La chiave API deve essere univoca."
 
 #. module: auth_api_key
 #: model:ir.actions.act_window,name:auth_api_key.auth_api_key_act_window
 #: model:ir.ui.menu,name:auth_api_key.auth_api_key_menu
 msgid "Auth Api Key"
-msgstr ""
+msgstr "Chiave API di autenticazione"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_uid
 msgid "Created by"
-msgstr ""
+msgstr "Creata da"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_date
 msgid "Created on"
-msgstr ""
+msgstr "Creata il"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name
 #: model:ir.model.fields,field_description:auth_api_key.field_ir_http__display_name
 msgid "Display Name"
-msgstr ""
+msgstr "Nome visualizzato"
 
 #. module: auth_api_key
 #: model:ir.model,name:auth_api_key.model_ir_http
 msgid "HTTP Routing"
-msgstr ""
+msgstr "Instradamento HTTP"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__id
 #: model:ir.model.fields,field_description:auth_api_key.field_ir_http__id
 msgid "ID"
-msgstr ""
+msgstr "ID"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key
 msgid "Key"
-msgstr ""
+msgstr "Chiave"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key_env_default
@@ -76,27 +78,27 @@ msgstr ""
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key____last_update
 #: model:ir.model.fields,field_description:auth_api_key.field_ir_http____last_update
 msgid "Last Modified on"
-msgstr ""
+msgstr "Ultima modifica il"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__write_uid
 msgid "Last Updated by"
-msgstr ""
+msgstr "Ultimo aggiornamento di"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__write_date
 msgid "Last Updated on"
-msgstr ""
+msgstr "Ultimo aggiornamento il"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__name
 msgid "Name"
-msgstr ""
+msgstr "Nome"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__server_env_defaults
 msgid "Server Env Defaults"
-msgstr ""
+msgstr "Variabili ambiente predefinite del server"
 
 #. module: auth_api_key
 #: model:ir.model.fields,help:auth_api_key.field_auth_api_key__key
@@ -104,12 +106,14 @@ msgid ""
 "The API key. Enter a dummy value in this field if it is\n"
 "        obtained from the server environment configuration."
 msgstr ""
+"Chiave API. Se viene acquisita dalla configurazione\n"
+"        ambiente del server, inserire nel campo un valore fittizio."
 
 #. module: auth_api_key
 #: code:addons/auth_api_key/models/auth_api_key.py:0
 #, python-format
 msgid "The key %s is not allowed"
-msgstr ""
+msgstr "Chiave %s non autorizzata"
 
 #. module: auth_api_key
 #: model:ir.model.fields,help:auth_api_key.field_auth_api_key__user_id
@@ -117,14 +121,16 @@ msgid ""
 "The user used to process the requests authenticated by\n"
 "        the api key"
 msgstr ""
+"Utente utilizzato per elaborare le richieste autenticate\n"
+"        dalla chiave API"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__user_id
 msgid "User"
-msgstr ""
+msgstr "Utente"
 
 #. module: auth_api_key
 #: code:addons/auth_api_key/models/auth_api_key.py:0
 #, python-format
 msgid "User is not allowed"
-msgstr ""
+msgstr "Utente non autorizzato"

From 76d0f90096dae0f9b5b83209212138f7cb5b1b58 Mon Sep 17 00:00:00 2001
From: Denis Roussel <denis.roussel@acsone.eu>
Date: Thu, 9 Sep 2021 18:21:02 +0200
Subject: [PATCH 38/86] [14.0][IMP] auth_api_key: Allow to search on every key
 even if void

If api_key.key is void (due to server_environment config - e.g.: test),
don't raise and break the loop.
---
 auth_api_key/models/auth_api_key.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 6b24e9053c..df12489220 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -57,7 +57,7 @@ def _retrieve_api_key_id(self, key):
         if not self.env.user.has_group("base.group_system"):
             raise AccessError(_("User is not allowed"))
         for api_key in self.search([]):
-            if consteq(key, api_key.key):
+            if api_key.key and consteq(key, api_key.key):
                 return api_key.id
         raise ValidationError(_("The key %s is not allowed") % key)
 

From 88d3bab317086d762bce3d373b4c58a2a86822ee Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Fri, 10 Sep 2021 06:34:21 +0000
Subject: [PATCH 39/86] auth_api_key 14.0.1.0.1

---
 auth_api_key/__manifest__.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 83f5a9ba29..4a64742680 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,7 +5,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "14.0.1.0.0",
+    "version": "14.0.1.0.1",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",

From 79b979c18c018c2dded5162bac630ca362748319 Mon Sep 17 00:00:00 2001
From: Simone Orsi <simahawk@gmail.com>
Date: Fri, 24 Sep 2021 11:22:08 +0200
Subject: [PATCH 40/86] auth_api_key: drop old migration

---
 .../migrations/12.0.2.0.0/post-migrate.py     | 28 -------------------
 1 file changed, 28 deletions(-)
 delete mode 100644 auth_api_key/migrations/12.0.2.0.0/post-migrate.py

diff --git a/auth_api_key/migrations/12.0.2.0.0/post-migrate.py b/auth_api_key/migrations/12.0.2.0.0/post-migrate.py
deleted file mode 100644
index 06be6c96ae..0000000000
--- a/auth_api_key/migrations/12.0.2.0.0/post-migrate.py
+++ /dev/null
@@ -1,28 +0,0 @@
-# Copyright 2019 ACSONE SA/NV
-# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
-
-import logging
-
-import odoo
-
-from odoo.addons.server_environment import serv_config
-
-_logger = logging.Logger(__name__)
-
-
-def migrate(cr, version):
-    _logger.info("Create auth_api.key records from odoo config")
-    with odoo.api.Environment.manage():
-        env = odoo.api.Environment(cr, odoo.SUPERUSER_ID, {})
-        for section in serv_config.sections():
-            if section.startswith("api_key_") and serv_config.has_option(
-                section, "key"
-            ):
-                login_name = serv_config.get(section, "user")
-                name = section.replace("api_key_", "")
-                key = "<set from server environment>"
-                user = env["res.users"].search([("login", "=", login_name)])
-                env["auth.api.key"].create(
-                    {"name": name, "key": key, "user_id": user.id}
-                )
-                _logger.info("API Key record created for %s", section)

From 0a73a8ddef443a2fe085b9660ff4e4edc1dc3bef Mon Sep 17 00:00:00 2001
From: Simone Orsi <simahawk@gmail.com>
Date: Fri, 24 Sep 2021 11:27:14 +0200
Subject: [PATCH 41/86] auth_api_key: get rid of server env

---
 auth_api_key/__manifest__.py            |  1 -
 auth_api_key/models/auth_api_key.py     | 21 ---------------------
 auth_api_key/readme/CONFIGURE.rst       |  9 +--------
 auth_api_key/readme/DESCRIPTION.rst     |  8 ++++++--
 auth_api_key/tests/test_auth_api_key.py | 18 ------------------
 5 files changed, 7 insertions(+), 50 deletions(-)

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 4a64742680..00bab92a0b 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -10,7 +10,6 @@
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",
     "development_status": "Beta",
-    "depends": ["server_environment"],
     "data": ["security/ir.model.access.csv", "views/auth_api_key.xml"],
     "demo": [],
 }
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index df12489220..d82c7cc940 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -8,7 +8,6 @@
 
 class AuthApiKey(models.Model):
     _name = "auth.api.key"
-    _inherit = "server.env.mixin"
     _description = "API Key"
 
     name = fields.Char(required=True)
@@ -27,26 +26,6 @@ class AuthApiKey(models.Model):
 
     _sql_constraints = [("name_uniq", "unique(name)", "Api Key name must be unique.")]
 
-    def _server_env_section_name(self):
-        """Name of the section in the configuration files
-
-        We override the default implementation to keep the compatibility
-        with the previous implementation of auth_api_key. The section name
-        into the configuration file must be formatted as
-
-            'api_key_{name}'
-
-        """
-        self.ensure_one()
-        return "api_key_{}".format(self.name)
-
-    @property
-    def _server_env_fields(self):
-        base_fields = super()._server_env_fields
-        api_key_fields = {"key": {}}
-        api_key_fields.update(base_fields)
-        return api_key_fields
-
     @api.model
     def _retrieve_api_key(self, key):
         return self.browse(self._retrieve_api_key_id(key))
diff --git a/auth_api_key/readme/CONFIGURE.rst b/auth_api_key/readme/CONFIGURE.rst
index c3c0612baf..ad40ead98a 100644
--- a/auth_api_key/readme/CONFIGURE.rst
+++ b/auth_api_key/readme/CONFIGURE.rst
@@ -1,11 +1,4 @@
 The api key menu is available into Settings > Technical in debug mode.
 By default, when you create an API key, the key is saved into the database.
-It is also possible to provide the value of this key via the configuration
-file. This can be very useful to avoid mixing your keys between your various
-environments when restoring databases. All you have to do is to add a new
-section to your configuration file according to the following convention:
 
-.. code-block:: ini
-
-    [api_key_<Record Name>]
-    key=my_api_key
+If you want to manage them via serve environment settings use `auth_api_key_server_env`.
diff --git a/auth_api_key/readme/DESCRIPTION.rst b/auth_api_key/readme/DESCRIPTION.rst
index 32b1e9c324..81c98219c7 100644
--- a/auth_api_key/readme/DESCRIPTION.rst
+++ b/auth_api_key/readme/DESCRIPTION.rst
@@ -1,5 +1,9 @@
 Authenticate http requests from an API key.
 
-API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program's user.
+API keys are codes passed in (in the http header API-KEY)
+by programs calling an API in order to identify -in this case- the calling program's user.
 
-Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.
+Take care while using this kind of mechanism since information into http headers are visible in clear.
+Thus, use it only to authenticate requests from known sources.
+
+For unknown sources, it is a good practice to filter out this header at proxy level.
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index da5c524817..74cc3add1a 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -3,8 +3,6 @@
 from odoo.exceptions import AccessError, ValidationError
 from odoo.tests.common import SavepointCase
 
-from odoo.addons.server_environment import serv_config
-
 
 class TestAuthApiKey(SavepointCase):
     @classmethod
@@ -15,12 +13,6 @@ def setUpClass(cls, *args, **kwargs):
         cls.api_key_good = cls.AuthApiKey.create(
             {"name": "good", "user_id": cls.demo_user.id, "key": "api_key"}
         )
-        cls.api_key_from_env = cls.AuthApiKey.create(
-            {"name": "from_env", "key": "dummy", "user_id": cls.demo_user.id}
-        )
-        cls.api_key_from_env.refresh()
-        serv_config.add_section("api_key_from_env")
-        serv_config.set("api_key_from_env", "key", "api_key_from_env")
 
     def test_lookup_key_from_db(self):
         demo_user = self.env.ref("base.user_demo")
@@ -28,16 +20,6 @@ def test_lookup_key_from_db(self):
             self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id
         )
 
-    def test_lookup_key_from_env(self):
-        self.assertEqual(
-            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key_from_env"),
-            self.demo_user.id,
-        )
-        with self.assertRaises(ValidationError):
-            # dummy key must be replace with the one from env and
-            # therefore should be unusable
-            self.env["auth.api.key"]._retrieve_uid_from_api_key("dummy")
-
     def test_wrong_key(self):
         with self.assertRaises(ValidationError), self.env.cr.savepoint():
             self.env["auth.api.key"]._retrieve_uid_from_api_key("api_wrong_key")

From 4215c60e76d029efe0f36ace39a99260d47ebcdb Mon Sep 17 00:00:00 2001
From: Simone Orsi <simahawk@gmail.com>
Date: Fri, 24 Sep 2021 11:59:04 +0200
Subject: [PATCH 42/86] auth_api_key: 14.0.2.0.0

---
 auth_api_key/__manifest__.py                  |  3 +--
 .../migrations/14.0.2.0.0/post-migrate.py     | 27 +++++++++++++++++++
 2 files changed, 28 insertions(+), 2 deletions(-)
 create mode 100644 auth_api_key/migrations/14.0.2.0.0/post-migrate.py

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 00bab92a0b..f6d3a0be4a 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,11 +5,10 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "14.0.1.0.1",
+    "version": "14.0.2.0.0",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",
     "development_status": "Beta",
     "data": ["security/ir.model.access.csv", "views/auth_api_key.xml"],
-    "demo": [],
 }
diff --git a/auth_api_key/migrations/14.0.2.0.0/post-migrate.py b/auth_api_key/migrations/14.0.2.0.0/post-migrate.py
new file mode 100644
index 0000000000..3aeb3446a4
--- /dev/null
+++ b/auth_api_key/migrations/14.0.2.0.0/post-migrate.py
@@ -0,0 +1,27 @@
+# Copyright 2021 Camptocamp SA
+# @author: Simone Orsi <simone.orsi@camptocamp.com>
+# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
+
+
+import logging
+
+from odoo import SUPERUSER_ID, api
+
+_logger = logging.getLogger(__name__)
+
+
+def migrate(cr, version):
+    if not version:
+        return
+
+    env = api.Environment(cr, SUPERUSER_ID, {})
+    module = env["ir.module.module"].search(
+        [("name", "=", "auth_api_key_server_env"), ("state", "=", "uninstalled")]
+    )
+    if module:
+        module.write({"state": "to install"})
+        _logger.info(
+            "Install module auth_api_key_server_env to not break existing installations. "
+            "If you don't want this module to be installed, uninstall it manually."
+        )
+    return

From b07e058eae767e466d64825a5847f31410e2f10c Mon Sep 17 00:00:00 2001
From: oca-travis <oca+oca-travis@odoo-community.org>
Date: Mon, 27 Sep 2021 08:12:50 +0000
Subject: [PATCH 43/86] [UPD] Update auth_api_key.pot

---
 auth_api_key/i18n/auth_api_key.pot | 15 ---------------
 1 file changed, 15 deletions(-)

diff --git a/auth_api_key/i18n/auth_api_key.pot b/auth_api_key/i18n/auth_api_key.pot
index 6c76c061ae..8f7c3d395b 100644
--- a/auth_api_key/i18n/auth_api_key.pot
+++ b/auth_api_key/i18n/auth_api_key.pot
@@ -61,16 +61,6 @@ msgstr ""
 msgid "Key"
 msgstr ""
 
-#. module: auth_api_key
-#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key_env_default
-msgid "Key Env Default"
-msgstr ""
-
-#. module: auth_api_key
-#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key_env_is_editable
-msgid "Key Env Is Editable"
-msgstr ""
-
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key____last_update
 #: model:ir.model.fields,field_description:auth_api_key.field_ir_http____last_update
@@ -92,11 +82,6 @@ msgstr ""
 msgid "Name"
 msgstr ""
 
-#. module: auth_api_key
-#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__server_env_defaults
-msgid "Server Env Defaults"
-msgstr ""
-
 #. module: auth_api_key
 #: model:ir.model.fields,help:auth_api_key.field_auth_api_key__key
 msgid ""

From faa432b9b924103e0a61c9f71e67959d1b3ebc0a Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Mon, 27 Sep 2021 08:24:45 +0000
Subject: [PATCH 44/86] [UPD] README.rst

---
 auth_api_key/README.rst                    | 17 +++++++----------
 auth_api_key/static/description/index.html | 18 +++++++-----------
 2 files changed, 14 insertions(+), 21 deletions(-)

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index 4984336c75..d373e1551e 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -27,9 +27,13 @@ Auth Api Key
 
 Authenticate http requests from an API key.
 
-API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program's user.
+API keys are codes passed in (in the http header API-KEY)
+by programs calling an API in order to identify -in this case- the calling program's user.
 
-Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.
+Take care while using this kind of mechanism since information into http headers are visible in clear.
+Thus, use it only to authenticate requests from known sources.
+
+For unknown sources, it is a good practice to filter out this header at proxy level.
 
 **Table of contents**
 
@@ -41,15 +45,8 @@ Configuration
 
 The api key menu is available into Settings > Technical in debug mode.
 By default, when you create an API key, the key is saved into the database.
-It is also possible to provide the value of this key via the configuration
-file. This can be very useful to avoid mixing your keys between your various
-environments when restoring databases. All you have to do is to add a new
-section to your configuration file according to the following convention:
-
-.. code-block:: ini
 
-    [api_key_<Record Name>]
-    key=my_api_key
+If you want to manage them via serve environment settings use `auth_api_key_server_env`.
 
 Usage
 =====
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index e5595c15f8..36669b488c 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -369,8 +369,11 @@ <h1 class="title">Auth Api Key</h1>
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
 <p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/14.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-14-0/server-auth-14-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/14.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>
-<p>API keys are codes passed in (in the http header API-KEY) by programs calling an API in order to identify -in this case- the calling program’s user.</p>
-<p>Take care while using this kind of mechanism since information into http headers are visible in clear. Thus, use it only to authenticate requests from known sources. For unknown sources, it is a good practice to filter out this header at proxy level.</p>
+<p>API keys are codes passed in (in the http header API-KEY)
+by programs calling an API in order to identify -in this case- the calling program’s user.</p>
+<p>Take care while using this kind of mechanism since information into http headers are visible in clear.
+Thus, use it only to authenticate requests from known sources.</p>
+<p>For unknown sources, it is a good practice to filter out this header at proxy level.</p>
 <p><strong>Table of contents</strong></p>
 <div class="contents local topic" id="contents">
 <ul class="simple">
@@ -388,15 +391,8 @@ <h1 class="title">Auth Api Key</h1>
 <div class="section" id="configuration">
 <h1><a class="toc-backref" href="#id1">Configuration</a></h1>
 <p>The api key menu is available into Settings &gt; Technical in debug mode.
-By default, when you create an API key, the key is saved into the database.
-It is also possible to provide the value of this key via the configuration
-file. This can be very useful to avoid mixing your keys between your various
-environments when restoring databases. All you have to do is to add a new
-section to your configuration file according to the following convention:</p>
-<pre class="code ini literal-block">
-<span class="k">[api_key_&lt;Record Name&gt;]</span>
-<span class="na">key</span><span class="o">=</span><span class="s">my_api_key</span>
-</pre>
+By default, when you create an API key, the key is saved into the database.</p>
+<p>If you want to manage them via serve environment settings use <cite>auth_api_key_server_env</cite>.</p>
 </div>
 <div class="section" id="usage">
 <h1><a class="toc-backref" href="#id2">Usage</a></h1>

From fec2b1c406428efcaed7c76276d633f1ab8af4bc Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Mon, 27 Sep 2021 08:24:47 +0000
Subject: [PATCH 45/86] auth_api_key 14.0.2.0.1

---
 auth_api_key/__manifest__.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index f6d3a0be4a..2080945b39 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,7 +5,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "14.0.2.0.0",
+    "version": "14.0.2.0.1",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",

From 20482df6a58c94153100bfc469addbb5034f9eff Mon Sep 17 00:00:00 2001
From: OCA Transbot <transbot@odoo-community.org>
Date: Mon, 27 Sep 2021 08:24:54 +0000
Subject: [PATCH 46/86] Update translation files

Updated by "Update PO files to match POT (msgmerge)" hook in Weblate.

Translation: server-auth-14.0/server-auth-14.0-auth_api_key
Translate-URL: https://translation.odoo-community.org/projects/server-auth-14-0/server-auth-14-0-auth_api_key/
---
 auth_api_key/i18n/it.po | 18 +++---------------
 1 file changed, 3 insertions(+), 15 deletions(-)

diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
index 8f0289fe91..2488f1b390 100644
--- a/auth_api_key/i18n/it.po
+++ b/auth_api_key/i18n/it.po
@@ -64,16 +64,6 @@ msgstr "ID"
 msgid "Key"
 msgstr "Chiave"
 
-#. module: auth_api_key
-#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key_env_default
-msgid "Key Env Default"
-msgstr ""
-
-#. module: auth_api_key
-#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key_env_is_editable
-msgid "Key Env Is Editable"
-msgstr ""
-
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key____last_update
 #: model:ir.model.fields,field_description:auth_api_key.field_ir_http____last_update
@@ -95,11 +85,6 @@ msgstr "Ultimo aggiornamento il"
 msgid "Name"
 msgstr "Nome"
 
-#. module: auth_api_key
-#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__server_env_defaults
-msgid "Server Env Defaults"
-msgstr "Variabili ambiente predefinite del server"
-
 #. module: auth_api_key
 #: model:ir.model.fields,help:auth_api_key.field_auth_api_key__key
 msgid ""
@@ -134,3 +119,6 @@ msgstr "Utente"
 #, python-format
 msgid "User is not allowed"
 msgstr "Utente non autorizzato"
+
+#~ msgid "Server Env Defaults"
+#~ msgstr "Variabili ambiente predefinite del server"

From 4023d2c6e06075fbff93b207672ddd8c31bb1254 Mon Sep 17 00:00:00 2001
From: Maksym Yankin <yankinmk@gmail.com>
Date: Wed, 24 Nov 2021 18:04:44 +0200
Subject: [PATCH 47/86] [MIG] auth_api_key: Migration to 15.0

---
 auth_api_key/README.rst                       | 10 +++----
 auth_api_key/__manifest__.py                  |  2 +-
 auth_api_key/i18n/auth_api_key.pot            |  2 +-
 auth_api_key/i18n/it.po                       |  2 +-
 .../migrations/14.0.2.0.0/post-migrate.py     | 27 -------------------
 auth_api_key/static/description/index.html    |  6 ++---
 auth_api_key/tests/test_auth_api_key.py       |  4 +--
 7 files changed, 13 insertions(+), 40 deletions(-)
 delete mode 100644 auth_api_key/migrations/14.0.2.0.0/post-migrate.py

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index d373e1551e..c70ff22c52 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -14,13 +14,13 @@ Auth Api Key
     :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html
     :alt: License: LGPL-3
 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github
-    :target: https://github.com/OCA/server-auth/tree/14.0/auth_api_key
+    :target: https://github.com/OCA/server-auth/tree/15.0/auth_api_key
     :alt: OCA/server-auth
 .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
-    :target: https://translation.odoo-community.org/projects/server-auth-14-0/server-auth-14-0-auth_api_key
+    :target: https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_api_key
     :alt: Translate me on Weblate
 .. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png
-    :target: https://runbot.odoo-community.org/runbot/251/14.0
+    :target: https://runbot.odoo-community.org/runbot/251/15.0
     :alt: Try me on Runbot
 
 |badge1| |badge2| |badge3| |badge4| |badge5| 
@@ -68,7 +68,7 @@ Bug Tracker
 Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-auth/issues>`_.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us smashing it by providing a detailed and welcomed
-`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2014.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2015.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
 
 Do not contact contributors directly about support or help with technical issues.
 
@@ -102,6 +102,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.
 
-This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/14.0/auth_api_key>`_ project on GitHub.
+This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/15.0/auth_api_key>`_ project on GitHub.
 
 You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 2080945b39..85526afc26 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,7 +5,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "14.0.2.0.1",
+    "version": "15.0.1.0.0",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",
diff --git a/auth_api_key/i18n/auth_api_key.pot b/auth_api_key/i18n/auth_api_key.pot
index 8f7c3d395b..447b8bd193 100644
--- a/auth_api_key/i18n/auth_api_key.pot
+++ b/auth_api_key/i18n/auth_api_key.pot
@@ -4,7 +4,7 @@
 #
 msgid ""
 msgstr ""
-"Project-Id-Version: Odoo Server 14.0\n"
+"Project-Id-Version: Odoo Server 15.0\n"
 "Report-Msgid-Bugs-To: \n"
 "Last-Translator: \n"
 "Language-Team: \n"
diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
index 2488f1b390..948fe8abbb 100644
--- a/auth_api_key/i18n/it.po
+++ b/auth_api_key/i18n/it.po
@@ -4,7 +4,7 @@
 #
 msgid ""
 msgstr ""
-"Project-Id-Version: Odoo Server 14.0\n"
+"Project-Id-Version: Odoo Server 15.0\n"
 "Report-Msgid-Bugs-To: \n"
 "PO-Revision-Date: 2021-02-12 10:45+0000\n"
 "Last-Translator: Sergio Zanchetta <primes2h@gmail.com>\n"
diff --git a/auth_api_key/migrations/14.0.2.0.0/post-migrate.py b/auth_api_key/migrations/14.0.2.0.0/post-migrate.py
deleted file mode 100644
index 3aeb3446a4..0000000000
--- a/auth_api_key/migrations/14.0.2.0.0/post-migrate.py
+++ /dev/null
@@ -1,27 +0,0 @@
-# Copyright 2021 Camptocamp SA
-# @author: Simone Orsi <simone.orsi@camptocamp.com>
-# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
-
-
-import logging
-
-from odoo import SUPERUSER_ID, api
-
-_logger = logging.getLogger(__name__)
-
-
-def migrate(cr, version):
-    if not version:
-        return
-
-    env = api.Environment(cr, SUPERUSER_ID, {})
-    module = env["ir.module.module"].search(
-        [("name", "=", "auth_api_key_server_env"), ("state", "=", "uninstalled")]
-    )
-    if module:
-        module.write({"state": "to install"})
-        _logger.info(
-            "Install module auth_api_key_server_env to not break existing installations. "
-            "If you don't want this module to be installed, uninstall it manually."
-        )
-    return
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index 36669b488c..a7eea053dc 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -367,7 +367,7 @@ <h1 class="title">Auth Api Key</h1>
 !! This file is generated by oca-gen-addon-readme !!
 !! changes will be overwritten.                   !!
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
-<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/14.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-14-0/server-auth-14-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/14.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
+<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/15.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/15.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>
 <p>API keys are codes passed in (in the http header API-KEY)
 by programs calling an API in order to identify -in this case- the calling program’s user.</p>
@@ -411,7 +411,7 @@ <h1><a class="toc-backref" href="#id3">Bug Tracker</a></h1>
 <p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-auth/issues">GitHub Issues</a>.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us smashing it by providing a detailed and welcomed
-<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2014.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2015.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
 <p>Do not contact contributors directly about support or help with technical issues.</p>
 </div>
 <div class="section" id="credits">
@@ -439,7 +439,7 @@ <h2><a class="toc-backref" href="#id7">Maintainers</a></h2>
 <p>OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.</p>
-<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/14.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/15.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
 <p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
 </div>
 </div>
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index 74cc3add1a..b8e0804097 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -1,10 +1,10 @@
 # Copyright 2018 ACSONE SA/NV
 # License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
 from odoo.exceptions import AccessError, ValidationError
-from odoo.tests.common import SavepointCase
+from odoo.tests.common import TransactionCase
 
 
-class TestAuthApiKey(SavepointCase):
+class TestAuthApiKey(TransactionCase):
     @classmethod
     def setUpClass(cls, *args, **kwargs):
         super().setUpClass(*args, **kwargs)

From 2786620015b896ddb1a8b84409b7366460e7e93a Mon Sep 17 00:00:00 2001
From: oca-ci <oca-ci@odoo-community.org>
Date: Tue, 30 Nov 2021 12:17:05 +0000
Subject: [PATCH 48/86] [UPD] Update auth_api_key.pot

---
 auth_api_key/i18n/auth_api_key.pot | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/auth_api_key/i18n/auth_api_key.pot b/auth_api_key/i18n/auth_api_key.pot
index 447b8bd193..af6fd01f6e 100644
--- a/auth_api_key/i18n/auth_api_key.pot
+++ b/auth_api_key/i18n/auth_api_key.pot
@@ -41,7 +41,6 @@ msgstr ""
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name
-#: model:ir.model.fields,field_description:auth_api_key.field_ir_http__display_name
 msgid "Display Name"
 msgstr ""
 
@@ -52,7 +51,6 @@ msgstr ""
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__id
-#: model:ir.model.fields,field_description:auth_api_key.field_ir_http__id
 msgid "ID"
 msgstr ""
 
@@ -63,7 +61,6 @@ msgstr ""
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key____last_update
-#: model:ir.model.fields,field_description:auth_api_key.field_ir_http____last_update
 msgid "Last Modified on"
 msgstr ""
 

From b7f1aa5082dbb1fde6f8c31aca223274c96c5410 Mon Sep 17 00:00:00 2001
From: Thierry Ducrest <thierry.ducrest@camptocamp.com>
Date: Fri, 22 Jul 2022 08:25:49 +0200
Subject: [PATCH 49/86] auth_api_key: fix archived user allowed key

If the user is archived his api key should not be valid anymore.
---
 auth_api_key/models/auth_api_key.py     | 1 +
 auth_api_key/tests/test_auth_api_key.py | 6 ++++++
 2 files changed, 7 insertions(+)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index d82c7cc940..2fb5ede74f 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -23,6 +23,7 @@ class AuthApiKey(models.Model):
         help="""The user used to process the requests authenticated by
         the api key""",
     )
+    active = fields.Boolean(related="user_id.active")
 
     _sql_constraints = [("name_uniq", "unique(name)", "Api Key name must be unique.")]
 
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index b8e0804097..f6af59ec79 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -43,3 +43,9 @@ def test_cache_invalidation(self):
         )
         with self.assertRaises(ValidationError):
             self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key")
+
+    def test_user_archived(self):
+        demo_user = self.env.ref("base.user_demo")
+        demo_user.active = False
+        with self.assertRaises(ValidationError), self.env.cr.savepoint():
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id

From 56ed97808c0639519f0804cd0b50303b64ae5b40 Mon Sep 17 00:00:00 2001
From: oca-ci <oca-ci@odoo-community.org>
Date: Tue, 26 Jul 2022 07:53:51 +0000
Subject: [PATCH 50/86] [UPD] Update auth_api_key.pot

---
 auth_api_key/i18n/auth_api_key.pot | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/auth_api_key/i18n/auth_api_key.pot b/auth_api_key/i18n/auth_api_key.pot
index af6fd01f6e..abf441b4a7 100644
--- a/auth_api_key/i18n/auth_api_key.pot
+++ b/auth_api_key/i18n/auth_api_key.pot
@@ -18,6 +18,11 @@ msgstr ""
 msgid "API Key"
 msgstr ""
 
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__active
+msgid "Active"
+msgstr ""
+
 #. module: auth_api_key
 #: model:ir.model.constraint,message:auth_api_key.constraint_auth_api_key_name_uniq
 msgid "Api Key name must be unique."

From bd417209d6b7b232fc161cc5199080bc27ba8913 Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Tue, 26 Jul 2022 07:56:22 +0000
Subject: [PATCH 51/86] auth_api_key 15.0.1.1.0

---
 auth_api_key/__manifest__.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 85526afc26..b9b41e7ed7 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,7 +5,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "15.0.1.0.0",
+    "version": "15.0.1.1.0",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",

From 8e82d7e56e9b1ce46e81a171304c264b2dc9bb41 Mon Sep 17 00:00:00 2001
From: OCA Transbot <transbot@odoo-community.org>
Date: Tue, 26 Jul 2022 07:56:30 +0000
Subject: [PATCH 52/86] Update translation files

Updated by "Update PO files to match POT (msgmerge)" hook in Weblate.

Translation: server-auth-15.0/server-auth-15.0-auth_api_key
Translate-URL: https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_api_key/
---
 auth_api_key/i18n/it.po | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
index 948fe8abbb..8cffb5a833 100644
--- a/auth_api_key/i18n/it.po
+++ b/auth_api_key/i18n/it.po
@@ -21,6 +21,11 @@ msgstr ""
 msgid "API Key"
 msgstr "Chiave API"
 
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__active
+msgid "Active"
+msgstr ""
+
 #. module: auth_api_key
 #: model:ir.model.constraint,message:auth_api_key.constraint_auth_api_key_name_uniq
 msgid "Api Key name must be unique."
@@ -44,7 +49,6 @@ msgstr "Creata il"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name
-#: model:ir.model.fields,field_description:auth_api_key.field_ir_http__display_name
 msgid "Display Name"
 msgstr "Nome visualizzato"
 
@@ -55,7 +59,6 @@ msgstr "Instradamento HTTP"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__id
-#: model:ir.model.fields,field_description:auth_api_key.field_ir_http__id
 msgid "ID"
 msgstr "ID"
 
@@ -66,7 +69,6 @@ msgstr "Chiave"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key____last_update
-#: model:ir.model.fields,field_description:auth_api_key.field_ir_http____last_update
 msgid "Last Modified on"
 msgstr "Ultima modifica il"
 

From c6e78a8e7e56f088dec216f2be013cf4425202c5 Mon Sep 17 00:00:00 2001
From: Thierry Ducrest <thierry.ducrest@camptocamp.com>
Date: Tue, 26 Jul 2022 17:14:57 +0200
Subject: [PATCH 53/86] Revert "Merge PR #398 into 15.0"

This reverts commit 1c7df1937349b2e23be9f4f9ed141fa04b6690c9, reversing
changes made to f42ef3d60411f6011968a976eda11e2f4e0d6a35.
---
 auth_api_key/models/auth_api_key.py     | 1 -
 auth_api_key/tests/test_auth_api_key.py | 6 ------
 2 files changed, 7 deletions(-)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 2fb5ede74f..d82c7cc940 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -23,7 +23,6 @@ class AuthApiKey(models.Model):
         help="""The user used to process the requests authenticated by
         the api key""",
     )
-    active = fields.Boolean(related="user_id.active")
 
     _sql_constraints = [("name_uniq", "unique(name)", "Api Key name must be unique.")]
 
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index f6af59ec79..b8e0804097 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -43,9 +43,3 @@ def test_cache_invalidation(self):
         )
         with self.assertRaises(ValidationError):
             self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key")
-
-    def test_user_archived(self):
-        demo_user = self.env.ref("base.user_demo")
-        demo_user.active = False
-        with self.assertRaises(ValidationError), self.env.cr.savepoint():
-            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id

From 928639a9f4b2fb74cdf2c206da5367911f171891 Mon Sep 17 00:00:00 2001
From: Thierry Ducrest <thierry.ducrest@camptocamp.com>
Date: Tue, 26 Jul 2022 17:15:14 +0200
Subject: [PATCH 54/86] Revert "[UPD] Update auth_api_key.pot"

This reverts commit 7c9f8b4169ac87c327a28438bbf0b57f7ce3258a.
---
 auth_api_key/i18n/auth_api_key.pot | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/auth_api_key/i18n/auth_api_key.pot b/auth_api_key/i18n/auth_api_key.pot
index abf441b4a7..af6fd01f6e 100644
--- a/auth_api_key/i18n/auth_api_key.pot
+++ b/auth_api_key/i18n/auth_api_key.pot
@@ -18,11 +18,6 @@ msgstr ""
 msgid "API Key"
 msgstr ""
 
-#. module: auth_api_key
-#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__active
-msgid "Active"
-msgstr ""
-
 #. module: auth_api_key
 #: model:ir.model.constraint,message:auth_api_key.constraint_auth_api_key_name_uniq
 msgid "Api Key name must be unique."

From 213f21c3ececf734ee304e2ef01c3f71876fc2af Mon Sep 17 00:00:00 2001
From: Thierry Ducrest <thierry.ducrest@camptocamp.com>
Date: Tue, 26 Jul 2022 17:15:54 +0200
Subject: [PATCH 55/86] Revert "Update translation files"

This reverts commit bb13b69ea4d66437a71fe298efaf2b0487530d23.
---
 auth_api_key/i18n/it.po | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
index 8cffb5a833..948fe8abbb 100644
--- a/auth_api_key/i18n/it.po
+++ b/auth_api_key/i18n/it.po
@@ -21,11 +21,6 @@ msgstr ""
 msgid "API Key"
 msgstr "Chiave API"
 
-#. module: auth_api_key
-#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__active
-msgid "Active"
-msgstr ""
-
 #. module: auth_api_key
 #: model:ir.model.constraint,message:auth_api_key.constraint_auth_api_key_name_uniq
 msgid "Api Key name must be unique."
@@ -49,6 +44,7 @@ msgstr "Creata il"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name
+#: model:ir.model.fields,field_description:auth_api_key.field_ir_http__display_name
 msgid "Display Name"
 msgstr "Nome visualizzato"
 
@@ -59,6 +55,7 @@ msgstr "Instradamento HTTP"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__id
+#: model:ir.model.fields,field_description:auth_api_key.field_ir_http__id
 msgid "ID"
 msgstr "ID"
 
@@ -69,6 +66,7 @@ msgstr "Chiave"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key____last_update
+#: model:ir.model.fields,field_description:auth_api_key.field_ir_http____last_update
 msgid "Last Modified on"
 msgstr "Ultima modifica il"
 

From 5a21de57c9f95f97479ed3a639885022a364fb27 Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Thu, 28 Jul 2022 10:22:38 +0000
Subject: [PATCH 56/86] auth_api_key 15.0.1.1.1

---
 auth_api_key/__manifest__.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index b9b41e7ed7..996993aa72 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,7 +5,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "15.0.1.1.0",
+    "version": "15.0.1.1.1",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",

From 2f5a47807c7f26060f07f614e2c75ea38a923686 Mon Sep 17 00:00:00 2001
From: OCA Transbot <transbot@odoo-community.org>
Date: Thu, 28 Jul 2022 10:22:46 +0000
Subject: [PATCH 57/86] Update translation files

Updated by "Update PO files to match POT (msgmerge)" hook in Weblate.

Translation: server-auth-15.0/server-auth-15.0-auth_api_key
Translate-URL: https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_api_key/
---
 auth_api_key/i18n/it.po | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
index 948fe8abbb..7f70e00e68 100644
--- a/auth_api_key/i18n/it.po
+++ b/auth_api_key/i18n/it.po
@@ -44,7 +44,6 @@ msgstr "Creata il"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name
-#: model:ir.model.fields,field_description:auth_api_key.field_ir_http__display_name
 msgid "Display Name"
 msgstr "Nome visualizzato"
 
@@ -55,7 +54,6 @@ msgstr "Instradamento HTTP"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__id
-#: model:ir.model.fields,field_description:auth_api_key.field_ir_http__id
 msgid "ID"
 msgstr "ID"
 
@@ -66,7 +64,6 @@ msgstr "Chiave"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key____last_update
-#: model:ir.model.fields,field_description:auth_api_key.field_ir_http____last_update
 msgid "Last Modified on"
 msgstr "Ultima modifica il"
 

From 406b090696adecd16105931bf0f30a8ec7d6337f Mon Sep 17 00:00:00 2001
From: Benoit Bertholon <benoit@bertholon.info>
Date: Tue, 29 Nov 2022 22:37:59 +0100
Subject: [PATCH 58/86] [IMP] auth_api_key: pre-commit stuff

---
 auth_api_key/__manifest__.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 996993aa72..3cfe4fbe69 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,7 +5,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "15.0.1.1.1",
+    "version": "16.0.1.0.0",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",

From 0c6e5adf74dbbdf0cc547e0fda6b9ffa659dc491 Mon Sep 17 00:00:00 2001
From: Benoit Bertholon <benoit@bertholon.info>
Date: Tue, 29 Nov 2022 22:40:20 +0100
Subject: [PATCH 59/86] [MIG] auth_api_key: Migration to 16.0

---
 auth_api_key/models/auth_api_key.py | 10 +++++-----
 auth_api_key/models/ir_http.py      |  4 ++--
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index d82c7cc940..4913fc7b63 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -49,12 +49,12 @@ def _clear_key_cache(self):
         self._retrieve_api_key_id.clear_cache(self.env[self._name])
         self._retrieve_uid_from_api_key.clear_cache(self.env[self._name])
 
-    @api.model
-    def create(self, vals):
-        record = super(AuthApiKey, self).create(vals)
-        if "key" in vals or "user_id" in vals:
+    @api.model_create_multi
+    def create(self, vals_list):
+        records = super(AuthApiKey, self).create(vals_list)
+        if any(["key" in vals or "user_id" in vals for vals in vals_list]):
             self._clear_key_cache()
-        return record
+        return records
 
     def write(self, vals):
         super(AuthApiKey, self).write(vals)
diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py
index 13673663b2..7b02f0c39c 100644
--- a/auth_api_key/models/ir_http.py
+++ b/auth_api_key/models/ir_http.py
@@ -20,7 +20,7 @@ def _auth_method_api_key(cls):
         headers = request.httprequest.environ
         api_key = headers.get("HTTP_API_KEY")
         if api_key:
-            request.uid = 1
+            request.update_env(user=1)
             auth_api_key = request.env["auth.api.key"]._retrieve_api_key(api_key)
             if auth_api_key:
                 # reset _env on the request since we change the uid...
@@ -28,7 +28,7 @@ def _auth_method_api_key(cls):
                 # odoo.api.Environment with the user defined on the
                 # auth.api_key
                 request._env = None
-                request.uid = auth_api_key.user_id.id
+                request.update_env(user=auth_api_key.user_id.id)
                 request.auth_api_key = api_key
                 request.auth_api_key_id = auth_api_key.id
                 return True

From b50e9aa41711a5c220cd3fb8d2b3f44295e76ae0 Mon Sep 17 00:00:00 2001
From: oca-ci <oca-ci@odoo-community.org>
Date: Mon, 5 Dec 2022 13:25:32 +0000
Subject: [PATCH 60/86] [UPD] Update auth_api_key.pot

---
 auth_api_key/i18n/auth_api_key.pot | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/auth_api_key/i18n/auth_api_key.pot b/auth_api_key/i18n/auth_api_key.pot
index af6fd01f6e..7e919c3767 100644
--- a/auth_api_key/i18n/auth_api_key.pot
+++ b/auth_api_key/i18n/auth_api_key.pot
@@ -4,7 +4,7 @@
 #
 msgid ""
 msgstr ""
-"Project-Id-Version: Odoo Server 15.0\n"
+"Project-Id-Version: Odoo Server 16.0\n"
 "Report-Msgid-Bugs-To: \n"
 "Last-Translator: \n"
 "Language-Team: \n"
@@ -87,6 +87,7 @@ msgid ""
 msgstr ""
 
 #. module: auth_api_key
+#. odoo-python
 #: code:addons/auth_api_key/models/auth_api_key.py:0
 #, python-format
 msgid "The key %s is not allowed"
@@ -105,6 +106,7 @@ msgid "User"
 msgstr ""
 
 #. module: auth_api_key
+#. odoo-python
 #: code:addons/auth_api_key/models/auth_api_key.py:0
 #, python-format
 msgid "User is not allowed"

From 395cd03bed8fe59f02e91172aaa1ce3a399513cf Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Mon, 5 Dec 2022 13:27:36 +0000
Subject: [PATCH 61/86] [UPD] README.rst

---
 auth_api_key/README.rst                    | 10 +++++-----
 auth_api_key/static/description/index.html |  6 +++---
 2 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index c70ff22c52..689efcd4a0 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -14,13 +14,13 @@ Auth Api Key
     :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html
     :alt: License: LGPL-3
 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github
-    :target: https://github.com/OCA/server-auth/tree/15.0/auth_api_key
+    :target: https://github.com/OCA/server-auth/tree/16.0/auth_api_key
     :alt: OCA/server-auth
 .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
-    :target: https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_api_key
+    :target: https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_api_key
     :alt: Translate me on Weblate
 .. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png
-    :target: https://runbot.odoo-community.org/runbot/251/15.0
+    :target: https://runbot.odoo-community.org/runbot/251/16.0
     :alt: Try me on Runbot
 
 |badge1| |badge2| |badge3| |badge4| |badge5| 
@@ -68,7 +68,7 @@ Bug Tracker
 Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-auth/issues>`_.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us smashing it by providing a detailed and welcomed
-`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2015.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2016.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
 
 Do not contact contributors directly about support or help with technical issues.
 
@@ -102,6 +102,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.
 
-This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/15.0/auth_api_key>`_ project on GitHub.
+This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/16.0/auth_api_key>`_ project on GitHub.
 
 You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index a7eea053dc..840942b8fc 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -367,7 +367,7 @@ <h1 class="title">Auth Api Key</h1>
 !! This file is generated by oca-gen-addon-readme !!
 !! changes will be overwritten.                   !!
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
-<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/15.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-15-0/server-auth-15-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/15.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
+<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/16.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/16.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>
 <p>API keys are codes passed in (in the http header API-KEY)
 by programs calling an API in order to identify -in this case- the calling program’s user.</p>
@@ -411,7 +411,7 @@ <h1><a class="toc-backref" href="#id3">Bug Tracker</a></h1>
 <p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-auth/issues">GitHub Issues</a>.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us smashing it by providing a detailed and welcomed
-<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2015.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2016.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
 <p>Do not contact contributors directly about support or help with technical issues.</p>
 </div>
 <div class="section" id="credits">
@@ -439,7 +439,7 @@ <h2><a class="toc-backref" href="#id7">Maintainers</a></h2>
 <p>OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.</p>
-<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/15.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/16.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
 <p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
 </div>
 </div>

From 5db1568408b4bdef10acbf971b5e8a875ca2681c Mon Sep 17 00:00:00 2001
From: Weblate <noreply@weblate.org>
Date: Mon, 5 Dec 2022 15:55:01 +0000
Subject: [PATCH 62/86] Update translation files

Updated by "Update PO files to match POT (msgmerge)" hook in Weblate.

Translation: server-auth-16.0/server-auth-16.0-auth_api_key
Translate-URL: https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_api_key/
---
 auth_api_key/i18n/it.po | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
index 7f70e00e68..c87f446a17 100644
--- a/auth_api_key/i18n/it.po
+++ b/auth_api_key/i18n/it.po
@@ -92,6 +92,7 @@ msgstr ""
 "        ambiente del server, inserire nel campo un valore fittizio."
 
 #. module: auth_api_key
+#. odoo-python
 #: code:addons/auth_api_key/models/auth_api_key.py:0
 #, python-format
 msgid "The key %s is not allowed"
@@ -112,6 +113,7 @@ msgid "User"
 msgstr "Utente"
 
 #. module: auth_api_key
+#. odoo-python
 #: code:addons/auth_api_key/models/auth_api_key.py:0
 #, python-format
 msgid "User is not allowed"

From a3baa52cdada088ec0652aa7469f7e05c6791465 Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Sun, 3 Sep 2023 16:34:35 +0000
Subject: [PATCH 63/86] [UPD] README.rst

---
 auth_api_key/README.rst                    | 15 ++++---
 auth_api_key/static/description/index.html | 50 +++++++++++-----------
 2 files changed, 35 insertions(+), 30 deletions(-)

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index 689efcd4a0..b598112e9e 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -2,10 +2,13 @@
 Auth Api Key
 ============
 
-.. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+.. 
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
    !! This file is generated by oca-gen-addon-readme !!
    !! changes will be overwritten.                   !!
    !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! source digest: sha256:3adb1ff0898c08651ce6de2c1ee1a91bc08a719dc6411ca880be9598b2f62705
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 
 .. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png
     :target: https://odoo-community.org/page/development-status
@@ -19,11 +22,11 @@ Auth Api Key
 .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
     :target: https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_api_key
     :alt: Translate me on Weblate
-.. |badge5| image:: https://img.shields.io/badge/runbot-Try%20me-875A7B.png
-    :target: https://runbot.odoo-community.org/runbot/251/16.0
-    :alt: Try me on Runbot
+.. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png
+    :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=16.0
+    :alt: Try me on Runboat
 
-|badge1| |badge2| |badge3| |badge4| |badge5| 
+|badge1| |badge2| |badge3| |badge4| |badge5|
 
 Authenticate http requests from an API key.
 
@@ -67,7 +70,7 @@ Bug Tracker
 
 Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-auth/issues>`_.
 In case of trouble, please check there if your issue has already been reported.
-If you spotted it first, help us smashing it by providing a detailed and welcomed
+If you spotted it first, help us to smash it by providing a detailed and welcomed
 `feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2016.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
 
 Do not contact contributors directly about support or help with technical issues.
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index 840942b8fc..c0b4ff4a13 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -1,20 +1,20 @@
-<?xml version="1.0" encoding="utf-8" ?>
+<?xml version="1.0" encoding="utf-8"?>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
-<meta name="generator" content="Docutils 0.15.1: http://docutils.sourceforge.net/" />
+<meta name="generator" content="Docutils: https://docutils.sourceforge.io/" />
 <title>Auth Api Key</title>
 <style type="text/css">
 
 /*
 :Author: David Goodger (goodger@python.org)
-:Id: $Id: html4css1.css 7952 2016-07-26 18:15:59Z milde $
+:Id: $Id: html4css1.css 8954 2022-01-20 10:10:25Z milde $
 :Copyright: This stylesheet has been placed in the public domain.
 
 Default cascading style sheet for the HTML output of Docutils.
 
-See http://docutils.sf.net/docs/howto/html-stylesheets.html for how to
+See https://docutils.sourceforge.io/docs/howto/html-stylesheets.html for how to
 customize this style sheet.
 */
 
@@ -366,8 +366,10 @@ <h1 class="title">Auth Api Key</h1>
 <!-- !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 !! This file is generated by oca-gen-addon-readme !!
 !! changes will be overwritten.                   !!
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+!! source digest: sha256:3adb1ff0898c08651ce6de2c1ee1a91bc08a719dc6411ca880be9598b2f62705
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
-<p><a class="reference external" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external" href="https://github.com/OCA/server-auth/tree/16.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external" href="https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external" href="https://runbot.odoo-community.org/runbot/251/16.0"><img alt="Try me on Runbot" src="https://img.shields.io/badge/runbot-Try%20me-875A7B.png" /></a></p>
+<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-auth/tree/16.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-auth&amp;target_branch=16.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>
 <p>API keys are codes passed in (in the http header API-KEY)
 by programs calling an API in order to identify -in this case- the calling program’s user.</p>
@@ -377,53 +379,53 @@ <h1 class="title">Auth Api Key</h1>
 <p><strong>Table of contents</strong></p>
 <div class="contents local topic" id="contents">
 <ul class="simple">
-<li><a class="reference internal" href="#configuration" id="id1">Configuration</a></li>
-<li><a class="reference internal" href="#usage" id="id2">Usage</a></li>
-<li><a class="reference internal" href="#bug-tracker" id="id3">Bug Tracker</a></li>
-<li><a class="reference internal" href="#credits" id="id4">Credits</a><ul>
-<li><a class="reference internal" href="#authors" id="id5">Authors</a></li>
-<li><a class="reference internal" href="#contributors" id="id6">Contributors</a></li>
-<li><a class="reference internal" href="#maintainers" id="id7">Maintainers</a></li>
+<li><a class="reference internal" href="#configuration" id="toc-entry-1">Configuration</a></li>
+<li><a class="reference internal" href="#usage" id="toc-entry-2">Usage</a></li>
+<li><a class="reference internal" href="#bug-tracker" id="toc-entry-3">Bug Tracker</a></li>
+<li><a class="reference internal" href="#credits" id="toc-entry-4">Credits</a><ul>
+<li><a class="reference internal" href="#authors" id="toc-entry-5">Authors</a></li>
+<li><a class="reference internal" href="#contributors" id="toc-entry-6">Contributors</a></li>
+<li><a class="reference internal" href="#maintainers" id="toc-entry-7">Maintainers</a></li>
 </ul>
 </li>
 </ul>
 </div>
 <div class="section" id="configuration">
-<h1><a class="toc-backref" href="#id1">Configuration</a></h1>
+<h1><a class="toc-backref" href="#toc-entry-1">Configuration</a></h1>
 <p>The api key menu is available into Settings &gt; Technical in debug mode.
 By default, when you create an API key, the key is saved into the database.</p>
 <p>If you want to manage them via serve environment settings use <cite>auth_api_key_server_env</cite>.</p>
 </div>
 <div class="section" id="usage">
-<h1><a class="toc-backref" href="#id2">Usage</a></h1>
+<h1><a class="toc-backref" href="#toc-entry-2">Usage</a></h1>
 <p>To apply this authentication system to your http request you must set ‘api_key’
 as value for the ‘auth’ parameter of your route definition into your controller.</p>
 <pre class="code python literal-block">
-<span class="k">class</span> <span class="nc">MyController</span><span class="p">(</span><span class="n">Controller</span><span class="p">):</span>
+<span class="k">class</span> <span class="nc">MyController</span><span class="p">(</span><span class="n">Controller</span><span class="p">):</span><span class="w">
 
-    <span class="nd">&#64;route</span><span class="p">(</span><span class="s1">'/my_service'</span><span class="p">,</span> <span class="n">auth</span><span class="o">=</span><span class="s1">'api_key'</span><span class="p">,</span> <span class="o">...</span><span class="p">)</span>
-    <span class="k">def</span> <span class="nf">my_service</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="o">*</span><span class="n">args</span><span class="p">,</span> <span class="o">**</span><span class="n">kwargs</span><span class="p">):</span>
-        <span class="k">pass</span>
+</span>    <span class="nd">&#64;route</span><span class="p">(</span><span class="s1">'/my_service'</span><span class="p">,</span> <span class="n">auth</span><span class="o">=</span><span class="s1">'api_key'</span><span class="p">,</span> <span class="o">...</span><span class="p">)</span><span class="w">
+</span>    <span class="k">def</span> <span class="nf">my_service</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="o">*</span><span class="n">args</span><span class="p">,</span> <span class="o">**</span><span class="n">kwargs</span><span class="p">):</span><span class="w">
+</span>        <span class="k">pass</span>
 </pre>
 </div>
 <div class="section" id="bug-tracker">
-<h1><a class="toc-backref" href="#id3">Bug Tracker</a></h1>
+<h1><a class="toc-backref" href="#toc-entry-3">Bug Tracker</a></h1>
 <p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-auth/issues">GitHub Issues</a>.
 In case of trouble, please check there if your issue has already been reported.
-If you spotted it first, help us smashing it by providing a detailed and welcomed
+If you spotted it first, help us to smash it by providing a detailed and welcomed
 <a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2016.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
 <p>Do not contact contributors directly about support or help with technical issues.</p>
 </div>
 <div class="section" id="credits">
-<h1><a class="toc-backref" href="#id4">Credits</a></h1>
+<h1><a class="toc-backref" href="#toc-entry-4">Credits</a></h1>
 <div class="section" id="authors">
-<h2><a class="toc-backref" href="#id5">Authors</a></h2>
+<h2><a class="toc-backref" href="#toc-entry-5">Authors</a></h2>
 <ul class="simple">
 <li>ACSONE SA/NV</li>
 </ul>
 </div>
 <div class="section" id="contributors">
-<h2><a class="toc-backref" href="#id6">Contributors</a></h2>
+<h2><a class="toc-backref" href="#toc-entry-6">Contributors</a></h2>
 <ul class="simple">
 <li>Denis Robinet &lt;<a class="reference external" href="mailto:denis.robinet&#64;acsone.eu">denis.robinet&#64;acsone.eu</a>&gt;</li>
 <li>Laurent Mignon &lt;<a class="reference external" href="mailto:laurent.mignon&#64;acsone.eu">laurent.mignon&#64;acsone.eu</a>&gt;</li>
@@ -433,7 +435,7 @@ <h2><a class="toc-backref" href="#id6">Contributors</a></h2>
 </ul>
 </div>
 <div class="section" id="maintainers">
-<h2><a class="toc-backref" href="#id7">Maintainers</a></h2>
+<h2><a class="toc-backref" href="#toc-entry-7">Maintainers</a></h2>
 <p>This module is maintained by the OCA.</p>
 <a class="reference external image-reference" href="https://odoo-community.org"><img alt="Odoo Community Association" src="https://odoo-community.org/logo.png" /></a>
 <p>OCA, or the Odoo Community Association, is a nonprofit organization whose

From 2d9a54c014d38e1a8bb079d090f9534485583714 Mon Sep 17 00:00:00 2001
From: Chris Bergman <33776709+chrisb-c01@users.noreply.github.com>
Date: Sat, 16 Dec 2023 15:16:37 +0100
Subject: [PATCH 64/86] [IMP] auth_api_key: pre-commit auto fixes

---
 auth_api_key/README.rst                    | 60 ++++++++++++----------
 auth_api_key/models/auth_api_key.py        |  4 +-
 auth_api_key/pyproject.toml                |  3 ++
 auth_api_key/readme/CONFIGURE.md           |  6 +++
 auth_api_key/readme/CONFIGURE.rst          |  4 --
 auth_api_key/readme/CONTRIBUTORS.md        |  5 ++
 auth_api_key/readme/CONTRIBUTORS.rst       |  5 --
 auth_api_key/readme/DESCRIPTION.md         | 12 +++++
 auth_api_key/readme/DESCRIPTION.rst        |  9 ----
 auth_api_key/readme/USAGE.md               | 11 ++++
 auth_api_key/readme/USAGE.rst              | 10 ----
 auth_api_key/static/description/index.html | 30 ++++++-----
 12 files changed, 90 insertions(+), 69 deletions(-)
 create mode 100644 auth_api_key/pyproject.toml
 create mode 100644 auth_api_key/readme/CONFIGURE.md
 delete mode 100644 auth_api_key/readme/CONFIGURE.rst
 create mode 100644 auth_api_key/readme/CONTRIBUTORS.md
 delete mode 100644 auth_api_key/readme/CONTRIBUTORS.rst
 create mode 100644 auth_api_key/readme/DESCRIPTION.md
 delete mode 100644 auth_api_key/readme/DESCRIPTION.rst
 create mode 100644 auth_api_key/readme/USAGE.md
 delete mode 100644 auth_api_key/readme/USAGE.rst

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index b598112e9e..8c4f7f0f8b 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -17,26 +17,29 @@ Auth Api Key
     :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html
     :alt: License: LGPL-3
 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github
-    :target: https://github.com/OCA/server-auth/tree/16.0/auth_api_key
+    :target: https://github.com/OCA/server-auth/tree/17.0/auth_api_key
     :alt: OCA/server-auth
 .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
-    :target: https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_api_key
+    :target: https://translation.odoo-community.org/projects/server-auth-17-0/server-auth-17-0-auth_api_key
     :alt: Translate me on Weblate
 .. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png
-    :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=16.0
+    :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=17.0
     :alt: Try me on Runboat
 
 |badge1| |badge2| |badge3| |badge4| |badge5|
 
 Authenticate http requests from an API key.
 
-API keys are codes passed in (in the http header API-KEY)
-by programs calling an API in order to identify -in this case- the calling program's user.
+API keys are codes passed in (in the http header API-KEY) by programs
+calling an API in order to identify -in this case- the calling program's
+user.
 
-Take care while using this kind of mechanism since information into http headers are visible in clear.
-Thus, use it only to authenticate requests from known sources.
+Take care while using this kind of mechanism since information into http
+headers are visible in clear. Thus, use it only to authenticate requests
+from known sources.
 
-For unknown sources, it is a good practice to filter out this header at proxy level.
+For unknown sources, it is a good practice to filter out this header at
+proxy level.
 
 **Table of contents**
 
@@ -47,23 +50,26 @@ Configuration
 =============
 
 The api key menu is available into Settings > Technical in debug mode.
-By default, when you create an API key, the key is saved into the database.
+By default, when you create an API key, the key is saved into the
+database.
 
-If you want to manage them via serve environment settings use `auth_api_key_server_env`.
+If you want to manage them via serve environment settings use
+auth_api_key_server_env.
 
 Usage
 =====
 
-To apply this authentication system to your http request you must set 'api_key'
-as value for the 'auth' parameter of your route definition into your controller.
+To apply this authentication system to your http request you must set
+'api_key' as value for the 'auth' parameter of your route definition
+into your controller.
 
-.. code-block:: python
+.. code:: python
 
-    class MyController(Controller):
+   class MyController(Controller):
 
-        @route('/my_service', auth='api_key', ...)
-        def my_service(self, *args, **kwargs):
-            pass
+       @route('/my_service', auth='api_key', ...)
+       def my_service(self, *args, **kwargs):
+           pass
 
 Bug Tracker
 ===========
@@ -71,7 +77,7 @@ Bug Tracker
 Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-auth/issues>`_.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us to smash it by providing a detailed and welcomed
-`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2016.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2017.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
 
 Do not contact contributors directly about support or help with technical issues.
 
@@ -79,21 +85,21 @@ Credits
 =======
 
 Authors
-~~~~~~~
+-------
 
 * ACSONE SA/NV
 
 Contributors
-~~~~~~~~~~~~
+------------
 
-* Denis Robinet <denis.robinet@acsone.eu>
-* Laurent Mignon <laurent.mignon@acsone.eu>
-* Quentin Groulard <quentin.groulard@acsone.eu>
-* Sébastien Beau <sebastien.beau@akretion.com>
-* Chafique Delli <chafique.delli@akretion.com>
+-  Denis Robinet <denis.robinet@acsone.eu>
+-  Laurent Mignon <laurent.mignon@acsone.eu>
+-  Quentin Groulard <quentin.groulard@acsone.eu>
+-  Sébastien Beau <sebastien.beau@akretion.com>
+-  Chafique Delli <chafique.delli@akretion.com>
 
 Maintainers
-~~~~~~~~~~~
+-----------
 
 This module is maintained by the OCA.
 
@@ -105,6 +111,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.
 
-This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/16.0/auth_api_key>`_ project on GitHub.
+This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/17.0/auth_api_key>`_ project on GitHub.
 
 You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 4913fc7b63..61ee34c17b 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -51,13 +51,13 @@ def _clear_key_cache(self):
 
     @api.model_create_multi
     def create(self, vals_list):
-        records = super(AuthApiKey, self).create(vals_list)
+        records = super().create(vals_list)
         if any(["key" in vals or "user_id" in vals for vals in vals_list]):
             self._clear_key_cache()
         return records
 
     def write(self, vals):
-        super(AuthApiKey, self).write(vals)
+        super().write(vals)
         if "key" in vals or "user_id" in vals:
             self._clear_key_cache()
         return True
diff --git a/auth_api_key/pyproject.toml b/auth_api_key/pyproject.toml
new file mode 100644
index 0000000000..4231d0cccb
--- /dev/null
+++ b/auth_api_key/pyproject.toml
@@ -0,0 +1,3 @@
+[build-system]
+requires = ["whool"]
+build-backend = "whool.buildapi"
diff --git a/auth_api_key/readme/CONFIGURE.md b/auth_api_key/readme/CONFIGURE.md
new file mode 100644
index 0000000000..f791dd13ab
--- /dev/null
+++ b/auth_api_key/readme/CONFIGURE.md
@@ -0,0 +1,6 @@
+The api key menu is available into Settings \> Technical in debug mode.
+By default, when you create an API key, the key is saved into the
+database.
+
+If you want to manage them via serve environment settings use
+auth_api_key_server_env.
diff --git a/auth_api_key/readme/CONFIGURE.rst b/auth_api_key/readme/CONFIGURE.rst
deleted file mode 100644
index ad40ead98a..0000000000
--- a/auth_api_key/readme/CONFIGURE.rst
+++ /dev/null
@@ -1,4 +0,0 @@
-The api key menu is available into Settings > Technical in debug mode.
-By default, when you create an API key, the key is saved into the database.
-
-If you want to manage them via serve environment settings use `auth_api_key_server_env`.
diff --git a/auth_api_key/readme/CONTRIBUTORS.md b/auth_api_key/readme/CONTRIBUTORS.md
new file mode 100644
index 0000000000..1168b409a3
--- /dev/null
+++ b/auth_api_key/readme/CONTRIBUTORS.md
@@ -0,0 +1,5 @@
+- Denis Robinet \<<denis.robinet@acsone.eu>\>
+- Laurent Mignon \<<laurent.mignon@acsone.eu>\>
+- Quentin Groulard \<<quentin.groulard@acsone.eu>\>
+- Sébastien Beau \<<sebastien.beau@akretion.com>\>
+- Chafique Delli \<<chafique.delli@akretion.com>\>
diff --git a/auth_api_key/readme/CONTRIBUTORS.rst b/auth_api_key/readme/CONTRIBUTORS.rst
deleted file mode 100644
index a0cd887895..0000000000
--- a/auth_api_key/readme/CONTRIBUTORS.rst
+++ /dev/null
@@ -1,5 +0,0 @@
-* Denis Robinet <denis.robinet@acsone.eu>
-* Laurent Mignon <laurent.mignon@acsone.eu>
-* Quentin Groulard <quentin.groulard@acsone.eu>
-* Sébastien Beau <sebastien.beau@akretion.com>
-* Chafique Delli <chafique.delli@akretion.com>
diff --git a/auth_api_key/readme/DESCRIPTION.md b/auth_api_key/readme/DESCRIPTION.md
new file mode 100644
index 0000000000..6d09ff29d8
--- /dev/null
+++ b/auth_api_key/readme/DESCRIPTION.md
@@ -0,0 +1,12 @@
+Authenticate http requests from an API key.
+
+API keys are codes passed in (in the http header API-KEY) by programs
+calling an API in order to identify -in this case- the calling program's
+user.
+
+Take care while using this kind of mechanism since information into http
+headers are visible in clear. Thus, use it only to authenticate requests
+from known sources.
+
+For unknown sources, it is a good practice to filter out this header at
+proxy level.
diff --git a/auth_api_key/readme/DESCRIPTION.rst b/auth_api_key/readme/DESCRIPTION.rst
deleted file mode 100644
index 81c98219c7..0000000000
--- a/auth_api_key/readme/DESCRIPTION.rst
+++ /dev/null
@@ -1,9 +0,0 @@
-Authenticate http requests from an API key.
-
-API keys are codes passed in (in the http header API-KEY)
-by programs calling an API in order to identify -in this case- the calling program's user.
-
-Take care while using this kind of mechanism since information into http headers are visible in clear.
-Thus, use it only to authenticate requests from known sources.
-
-For unknown sources, it is a good practice to filter out this header at proxy level.
diff --git a/auth_api_key/readme/USAGE.md b/auth_api_key/readme/USAGE.md
new file mode 100644
index 0000000000..547d48759c
--- /dev/null
+++ b/auth_api_key/readme/USAGE.md
@@ -0,0 +1,11 @@
+To apply this authentication system to your http request you must set
+'api_key' as value for the 'auth' parameter of your route definition
+into your controller.
+
+``` python
+class MyController(Controller):
+
+    @route('/my_service', auth='api_key', ...)
+    def my_service(self, *args, **kwargs):
+        pass
+```
diff --git a/auth_api_key/readme/USAGE.rst b/auth_api_key/readme/USAGE.rst
deleted file mode 100644
index d8ff4460eb..0000000000
--- a/auth_api_key/readme/USAGE.rst
+++ /dev/null
@@ -1,10 +0,0 @@
-To apply this authentication system to your http request you must set 'api_key'
-as value for the 'auth' parameter of your route definition into your controller.
-
-.. code-block:: python
-
-    class MyController(Controller):
-
-        @route('/my_service', auth='api_key', ...)
-        def my_service(self, *args, **kwargs):
-            pass
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index c0b4ff4a13..dcb30768c9 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -369,13 +369,16 @@ <h1 class="title">Auth Api Key</h1>
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 !! source digest: sha256:3adb1ff0898c08651ce6de2c1ee1a91bc08a719dc6411ca880be9598b2f62705
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
-<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-auth/tree/16.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-auth-16-0/server-auth-16-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-auth&amp;target_branch=16.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
+<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-auth/tree/17.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-auth-17-0/server-auth-17-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-auth&amp;target_branch=17.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>
-<p>API keys are codes passed in (in the http header API-KEY)
-by programs calling an API in order to identify -in this case- the calling program’s user.</p>
-<p>Take care while using this kind of mechanism since information into http headers are visible in clear.
-Thus, use it only to authenticate requests from known sources.</p>
-<p>For unknown sources, it is a good practice to filter out this header at proxy level.</p>
+<p>API keys are codes passed in (in the http header API-KEY) by programs
+calling an API in order to identify -in this case- the calling program’s
+user.</p>
+<p>Take care while using this kind of mechanism since information into http
+headers are visible in clear. Thus, use it only to authenticate requests
+from known sources.</p>
+<p>For unknown sources, it is a good practice to filter out this header at
+proxy level.</p>
 <p><strong>Table of contents</strong></p>
 <div class="contents local topic" id="contents">
 <ul class="simple">
@@ -393,13 +396,16 @@ <h1 class="title">Auth Api Key</h1>
 <div class="section" id="configuration">
 <h1><a class="toc-backref" href="#toc-entry-1">Configuration</a></h1>
 <p>The api key menu is available into Settings &gt; Technical in debug mode.
-By default, when you create an API key, the key is saved into the database.</p>
-<p>If you want to manage them via serve environment settings use <cite>auth_api_key_server_env</cite>.</p>
+By default, when you create an API key, the key is saved into the
+database.</p>
+<p>If you want to manage them via serve environment settings use
+auth_api_key_server_env.</p>
 </div>
 <div class="section" id="usage">
 <h1><a class="toc-backref" href="#toc-entry-2">Usage</a></h1>
-<p>To apply this authentication system to your http request you must set ‘api_key’
-as value for the ‘auth’ parameter of your route definition into your controller.</p>
+<p>To apply this authentication system to your http request you must set
+‘api_key’ as value for the ‘auth’ parameter of your route definition
+into your controller.</p>
 <pre class="code python literal-block">
 <span class="k">class</span> <span class="nc">MyController</span><span class="p">(</span><span class="n">Controller</span><span class="p">):</span><span class="w">
 
@@ -413,7 +419,7 @@ <h1><a class="toc-backref" href="#toc-entry-3">Bug Tracker</a></h1>
 <p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-auth/issues">GitHub Issues</a>.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us to smash it by providing a detailed and welcomed
-<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2016.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2017.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
 <p>Do not contact contributors directly about support or help with technical issues.</p>
 </div>
 <div class="section" id="credits">
@@ -441,7 +447,7 @@ <h2><a class="toc-backref" href="#toc-entry-7">Maintainers</a></h2>
 <p>OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.</p>
-<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/16.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/17.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
 <p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
 </div>
 </div>

From 930e42bf374ff5a490c5251b7049db10cbd6cfae Mon Sep 17 00:00:00 2001
From: Chris Bergman <33776709+chrisb-c01@users.noreply.github.com>
Date: Sat, 16 Dec 2023 15:17:34 +0100
Subject: [PATCH 65/86] [MIG] auth_api_key: Migration to 17.0

---
 auth_api_key/__manifest__.py               | 2 +-
 auth_api_key/models/auth_api_key.py        | 3 +--
 auth_api_key/static/description/index.html | 1 -
 3 files changed, 2 insertions(+), 4 deletions(-)

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 3cfe4fbe69..c894a84d7b 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,7 +5,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "16.0.1.0.0",
+    "version": "17.0.1.0.0",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 61ee34c17b..416cd4ab7f 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -46,8 +46,7 @@ def _retrieve_uid_from_api_key(self, key):
         return self._retrieve_api_key(key).user_id.id
 
     def _clear_key_cache(self):
-        self._retrieve_api_key_id.clear_cache(self.env[self._name])
-        self._retrieve_uid_from_api_key.clear_cache(self.env[self._name])
+        self.env.registry.clear_cache()
 
     @api.model_create_multi
     def create(self, vals_list):
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index dcb30768c9..0d80030b19 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -1,4 +1,3 @@
-<?xml version="1.0" encoding="utf-8"?>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
 <head>

From 6a59f270a597796440a51ebc6b54163c99bc0967 Mon Sep 17 00:00:00 2001
From: oca-ci <oca-ci@odoo-community.org>
Date: Fri, 26 Jan 2024 06:54:02 +0000
Subject: [PATCH 66/86] [UPD] Update auth_api_key.pot

---
 auth_api_key/i18n/auth_api_key.pot | 7 +------
 1 file changed, 1 insertion(+), 6 deletions(-)

diff --git a/auth_api_key/i18n/auth_api_key.pot b/auth_api_key/i18n/auth_api_key.pot
index 7e919c3767..16489df0cb 100644
--- a/auth_api_key/i18n/auth_api_key.pot
+++ b/auth_api_key/i18n/auth_api_key.pot
@@ -4,7 +4,7 @@
 #
 msgid ""
 msgstr ""
-"Project-Id-Version: Odoo Server 16.0\n"
+"Project-Id-Version: Odoo Server 17.0\n"
 "Report-Msgid-Bugs-To: \n"
 "Last-Translator: \n"
 "Language-Team: \n"
@@ -59,11 +59,6 @@ msgstr ""
 msgid "Key"
 msgstr ""
 
-#. module: auth_api_key
-#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key____last_update
-msgid "Last Modified on"
-msgstr ""
-
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__write_uid
 msgid "Last Updated by"

From 71df9ae9795e738e3a97a4b3a31a74482b4676bb Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Fri, 26 Jan 2024 06:56:11 +0000
Subject: [PATCH 67/86] [BOT] post-merge updates

---
 auth_api_key/README.rst                    | 2 +-
 auth_api_key/static/description/index.html | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index 8c4f7f0f8b..99e2eda85f 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -7,7 +7,7 @@ Auth Api Key
    !! This file is generated by oca-gen-addon-readme !!
    !! changes will be overwritten.                   !!
    !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
-   !! source digest: sha256:3adb1ff0898c08651ce6de2c1ee1a91bc08a719dc6411ca880be9598b2f62705
+   !! source digest: sha256:455a0f8646088cc228c9423fcbabbc1d81cabbebd0cac6dcf07bbbe000a6fc87
    !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 
 .. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index 0d80030b19..d4234b13ea 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -366,7 +366,7 @@ <h1 class="title">Auth Api Key</h1>
 !! This file is generated by oca-gen-addon-readme !!
 !! changes will be overwritten.                   !!
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
-!! source digest: sha256:3adb1ff0898c08651ce6de2c1ee1a91bc08a719dc6411ca880be9598b2f62705
+!! source digest: sha256:455a0f8646088cc228c9423fcbabbc1d81cabbebd0cac6dcf07bbbe000a6fc87
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
 <p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-auth/tree/17.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-auth-17-0/server-auth-17-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-auth&amp;target_branch=17.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>

From 8f0f02d6d15fb6345883abeba101b582d95ff23c Mon Sep 17 00:00:00 2001
From: Weblate <noreply@weblate.org>
Date: Sat, 3 Feb 2024 19:25:04 +0000
Subject: [PATCH 68/86] Update translation files

Updated by "Update PO files to match POT (msgmerge)" hook in Weblate.

Translation: server-auth-17.0/server-auth-17.0-auth_api_key
Translate-URL: https://translation.odoo-community.org/projects/server-auth-17-0/server-auth-17-0-auth_api_key/
---
 auth_api_key/i18n/it.po | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
index c87f446a17..7a50eee3d6 100644
--- a/auth_api_key/i18n/it.po
+++ b/auth_api_key/i18n/it.po
@@ -62,11 +62,6 @@ msgstr "ID"
 msgid "Key"
 msgstr "Chiave"
 
-#. module: auth_api_key
-#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key____last_update
-msgid "Last Modified on"
-msgstr "Ultima modifica il"
-
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__write_uid
 msgid "Last Updated by"
@@ -119,5 +114,8 @@ msgstr "Utente"
 msgid "User is not allowed"
 msgstr "Utente non autorizzato"
 
+#~ msgid "Last Modified on"
+#~ msgstr "Ultima modifica il"
+
 #~ msgid "Server Env Defaults"
 #~ msgstr "Variabili ambiente predefinite del server"

From 95b0f54974ee9661602c058ddd8f9f9652509ee4 Mon Sep 17 00:00:00 2001
From: mymage <stefano.consolaro@mymage.it>
Date: Wed, 3 Apr 2024 10:19:31 +0000
Subject: [PATCH 69/86] Translated using Weblate (Italian)

Currently translated at 100.0% (17 of 17 strings)

Translation: server-auth-17.0/server-auth-17.0-auth_api_key
Translate-URL: https://translation.odoo-community.org/projects/server-auth-17-0/server-auth-17-0-auth_api_key/it/
---
 auth_api_key/i18n/it.po | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
index 7a50eee3d6..8e7c286c69 100644
--- a/auth_api_key/i18n/it.po
+++ b/auth_api_key/i18n/it.po
@@ -6,15 +6,15 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Odoo Server 15.0\n"
 "Report-Msgid-Bugs-To: \n"
-"PO-Revision-Date: 2021-02-12 10:45+0000\n"
-"Last-Translator: Sergio Zanchetta <primes2h@gmail.com>\n"
+"PO-Revision-Date: 2024-04-03 12:43+0000\n"
+"Last-Translator: mymage <stefano.consolaro@mymage.it>\n"
 "Language-Team: none\n"
 "Language: it\n"
 "MIME-Version: 1.0\n"
 "Content-Type: text/plain; charset=UTF-8\n"
 "Content-Transfer-Encoding: \n"
 "Plural-Forms: nplurals=2; plural=n != 1;\n"
-"X-Generator: Weblate 4.3.2\n"
+"X-Generator: Weblate 4.17\n"
 
 #. module: auth_api_key
 #: model:ir.model,name:auth_api_key.model_auth_api_key
@@ -40,7 +40,7 @@ msgstr "Creata da"
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_date
 msgid "Created on"
-msgstr "Creata il"
+msgstr "Creato il"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name

From bc07fb0a3dbb6d3693640ece352643df9c52dd10 Mon Sep 17 00:00:00 2001
From: mymage <stefano.consolaro@mymage.it>
Date: Sat, 17 Aug 2024 16:16:35 +0000
Subject: [PATCH 70/86] Translated using Weblate (Italian)

Currently translated at 100.0% (17 of 17 strings)

Translation: server-auth-17.0/server-auth-17.0-auth_api_key
Translate-URL: https://translation.odoo-community.org/projects/server-auth-17-0/server-auth-17-0-auth_api_key/it/
---
 auth_api_key/i18n/it.po | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
index 8e7c286c69..cfb1f39043 100644
--- a/auth_api_key/i18n/it.po
+++ b/auth_api_key/i18n/it.po
@@ -6,7 +6,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Odoo Server 15.0\n"
 "Report-Msgid-Bugs-To: \n"
-"PO-Revision-Date: 2024-04-03 12:43+0000\n"
+"PO-Revision-Date: 2024-08-17 18:58+0000\n"
 "Last-Translator: mymage <stefano.consolaro@mymage.it>\n"
 "Language-Team: none\n"
 "Language: it\n"
@@ -14,7 +14,7 @@ msgstr ""
 "Content-Type: text/plain; charset=UTF-8\n"
 "Content-Transfer-Encoding: \n"
 "Plural-Forms: nplurals=2; plural=n != 1;\n"
-"X-Generator: Weblate 4.17\n"
+"X-Generator: Weblate 5.6.2\n"
 
 #. module: auth_api_key
 #: model:ir.model,name:auth_api_key.model_auth_api_key
@@ -35,7 +35,7 @@ msgstr "Chiave API di autenticazione"
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_uid
 msgid "Created by"
-msgstr "Creata da"
+msgstr "Creato da"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_date

From 4db0ba126d7f4aa09b32a2e5b56d0d0c719d75cd Mon Sep 17 00:00:00 2001
From: Pierre Verkest <pierreverkest84@gmail.com>
Date: Mon, 26 Jun 2023 14:12:15 +0200
Subject: [PATCH 71/86] [14.0] auth_api_key: allow to update api key from form
 view and hide keys in UI

---
 auth_api_key/views/auth_api_key.xml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/auth_api_key/views/auth_api_key.xml b/auth_api_key/views/auth_api_key.xml
index c2305274ae..209e74a410 100644
--- a/auth_api_key/views/auth_api_key.xml
+++ b/auth_api_key/views/auth_api_key.xml
@@ -6,7 +6,7 @@
         <field name="name">auth.api.key.form (in auth_api_key)</field>
         <field name="model">auth.api.key</field>
         <field name="arch" type="xml">
-            <form create="false" edit="false">
+            <form>
                 <sheet>
                     <label for="name" class="oe_edit_only" />
                     <h1>
@@ -14,7 +14,7 @@
                     </h1>
                     <group name="config" colspan="4" col="4">
                         <field name="user_id" colspan="4" />
-                        <field name="key" colspan="4" />
+                        <field name="key" colspan="4" password="True" />
                     </group>
                 </sheet>
             </form>

From 26064b3828c0cf6cce34962183184d7f3419d2fd Mon Sep 17 00:00:00 2001
From: Thierry Ducrest <thierry.ducrest@camptocamp.com>
Date: Tue, 21 Mar 2023 15:30:58 +0100
Subject: [PATCH 72/86] auth_api_key: archive key when user is archived

An archived user should not have an active api key anymore.
But to stay backward compatible the migration script will
keep all key active.
---
 auth_api_key/models/auth_api_key.py     |  8 ++++++++
 auth_api_key/tests/test_auth_api_key.py | 13 +++++++++++++
 auth_api_key/views/auth_api_key.xml     |  7 +++++++
 3 files changed, 28 insertions(+)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 416cd4ab7f..04381e5c3e 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -23,6 +23,9 @@ class AuthApiKey(models.Model):
         help="""The user used to process the requests authenticated by
         the api key""",
     )
+    # Not using related to stay backward compatible with having active key
+    # for an archived user (no need to be charged on active user for the api)
+    active = fields.Boolean(compute="_compute_active", readonly=False, store=True)
 
     _sql_constraints = [("name_uniq", "unique(name)", "Api Key name must be unique.")]
 
@@ -48,6 +51,11 @@ def _retrieve_uid_from_api_key(self, key):
     def _clear_key_cache(self):
         self.env.registry.clear_cache()
 
+    @api.depends("user_id.active")
+    def _compute_active(self):
+        for record in self:
+            record.active = record.user_id.active
+
     @api.model_create_multi
     def create(self, vals_list):
         records = super().create(vals_list)
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index b8e0804097..067fec3e9d 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -43,3 +43,16 @@ def test_cache_invalidation(self):
         )
         with self.assertRaises(ValidationError):
             self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key")
+
+    def test_user_archived_unarchived(self):
+        demo_user = self.env.ref("base.user_demo")
+        self.assertEqual(
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id
+        )
+        demo_user.active = False
+        with self.assertRaises(ValidationError):
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key")
+        demo_user.active = True
+        self.assertEqual(
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id
+        )
diff --git a/auth_api_key/views/auth_api_key.xml b/auth_api_key/views/auth_api_key.xml
index 209e74a410..d0543249a2 100644
--- a/auth_api_key/views/auth_api_key.xml
+++ b/auth_api_key/views/auth_api_key.xml
@@ -8,6 +8,13 @@
         <field name="arch" type="xml">
             <form>
                 <sheet>
+                  <field name="active" invisible="1" />
+                  <widget
+                        name="web_ribbon"
+                        title="Archived"
+                        bg_color="bg-danger"
+                        invisible="active"
+                    />
                     <label for="name" class="oe_edit_only" />
                     <h1>
                         <field name="name" class="oe_inline" />

From 2eef980b0fd910fa89045870ae493c83d7ce05ae Mon Sep 17 00:00:00 2001
From: Thierry Ducrest <thierry.ducrest@camptocamp.com>
Date: Mon, 27 Mar 2023 11:56:18 +0200
Subject: [PATCH 73/86] auth_api_key: add option to auto archive key with user

---
 auth_api_key/__manifest__.py               |  9 ++++++--
 auth_api_key/models/__init__.py            |  2 ++
 auth_api_key/models/auth_api_key.py        | 18 +++++++++++-----
 auth_api_key/models/res_company.py         | 17 +++++++++++++++
 auth_api_key/models/res_config_settings.py | 12 +++++++++++
 auth_api_key/tests/test_auth_api_key.py    | 14 +++++++++++-
 auth_api_key/views/res_config_settings.xml | 25 ++++++++++++++++++++++
 7 files changed, 89 insertions(+), 8 deletions(-)
 create mode 100644 auth_api_key/models/res_company.py
 create mode 100644 auth_api_key/models/res_config_settings.py
 create mode 100644 auth_api_key/views/res_config_settings.xml

diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index c894a84d7b..afac87f495 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -9,6 +9,11 @@
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",
-    "development_status": "Beta",
-    "data": ["security/ir.model.access.csv", "views/auth_api_key.xml"],
+    "development_status": "Production/Stable",
+    "depends": ["base_setup"],
+    "data": [
+        "security/ir.model.access.csv",
+        "views/auth_api_key.xml",
+        "views/res_config_settings.xml",
+    ],
 }
diff --git a/auth_api_key/models/__init__.py b/auth_api_key/models/__init__.py
index dee3379fea..7c1ac84290 100644
--- a/auth_api_key/models/__init__.py
+++ b/auth_api_key/models/__init__.py
@@ -1,2 +1,4 @@
 from . import ir_http
 from . import auth_api_key
+from . import res_company
+from . import res_config_settings
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 04381e5c3e..dfc61f1c30 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -23,9 +23,11 @@ class AuthApiKey(models.Model):
         help="""The user used to process the requests authenticated by
         the api key""",
     )
-    # Not using related to stay backward compatible with having active key
-    # for an archived user (no need to be charged on active user for the api)
-    active = fields.Boolean(compute="_compute_active", readonly=False, store=True)
+    # Not using related to stay backward compatible with having active keys
+    # for archived users (no need being invoiced by Odoo for api request users)
+    active = fields.Boolean(
+        compute="_compute_active", readonly=False, store=True, default=True
+    )
 
     _sql_constraints = [("name_uniq", "unique(name)", "Api Key name must be unique.")]
 
@@ -51,10 +53,16 @@ def _retrieve_uid_from_api_key(self, key):
     def _clear_key_cache(self):
         self.env.registry.clear_cache()
 
-    @api.depends("user_id.active")
+    @api.depends(
+        "user_id.active", "user_id.company_id.archived_user_disable_auth_api_key"
+    )
     def _compute_active(self):
+        option_disable_key = self.user_id.company_id.archived_user_disable_auth_api_key
         for record in self:
-            record.active = record.user_id.active
+            if option_disable_key:
+                record.active = record.user_id.active
+            # To stay coherent if the option is disabled the active field is not
+            # changed. Because the field is stored, it should not be an issue.
 
     @api.model_create_multi
     def create(self, vals_list):
diff --git a/auth_api_key/models/res_company.py b/auth_api_key/models/res_company.py
new file mode 100644
index 0000000000..adfdf2cb78
--- /dev/null
+++ b/auth_api_key/models/res_company.py
@@ -0,0 +1,17 @@
+# Copyright 2023 Camptocamp SA
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html)
+
+from odoo import fields, models
+
+
+class ResCompany(models.Model):
+    _inherit = "res.company"
+
+    archived_user_disable_auth_api_key = fields.Boolean(
+        string="Disable API key for archived user",
+        help=(
+            "If checked, when a user is archived/unactivated the same change is "
+            "propagated to his related api key. It is not retroactive (nothing is done "
+            " when enabling/disabling this option)."
+        ),
+    )
diff --git a/auth_api_key/models/res_config_settings.py b/auth_api_key/models/res_config_settings.py
new file mode 100644
index 0000000000..f7cc3aeaff
--- /dev/null
+++ b/auth_api_key/models/res_config_settings.py
@@ -0,0 +1,12 @@
+# Copyright 2023 Camptocamp SA
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html)
+
+from odoo import fields, models
+
+
+class ResConfigSettings(models.TransientModel):
+    _inherit = "res.config.settings"
+
+    archived_user_disable_auth_api_key = fields.Boolean(
+        related="company_id.archived_user_disable_auth_api_key", readonly=False
+    )
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index 067fec3e9d..7908c42eb7 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -44,7 +44,8 @@ def test_cache_invalidation(self):
         with self.assertRaises(ValidationError):
             self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key")
 
-    def test_user_archived_unarchived(self):
+    def test_user_archived_unarchived_with_option_on(self):
+        self.env.company.archived_user_disable_auth_api_key = True
         demo_user = self.env.ref("base.user_demo")
         self.assertEqual(
             self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id
@@ -56,3 +57,14 @@ def test_user_archived_unarchived(self):
         self.assertEqual(
             self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id
         )
+
+    def test_user_archived_unarchived_with_option_off(self):
+        self.env.company.archived_user_disable_auth_api_key = False
+        demo_user = self.env.ref("base.user_demo")
+        self.assertEqual(
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id
+        )
+        demo_user.active = False
+        self.assertEqual(
+            self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id
+        )
diff --git a/auth_api_key/views/res_config_settings.xml b/auth_api_key/views/res_config_settings.xml
new file mode 100644
index 0000000000..61438d4a22
--- /dev/null
+++ b/auth_api_key/views/res_config_settings.xml
@@ -0,0 +1,25 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<!-- Copyright 2023 Camptocamp SA
+     License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). -->
+<odoo>
+
+  <record id="res_config_settings_view_form" model="ir.ui.view">
+    <field name="name">res.config.settings.form.inherit</field>
+    <field name="model">res.config.settings</field>
+    <field name="inherit_id" ref="base_setup.res_config_settings_view_form" />
+    <field name="arch" type="xml">
+      <xpath expr="//block[@id='user_default_rights']" position="inside">
+        <setting
+                    groups="base.group_no_one"
+                    id="api_key_archive_with_user"
+                    string="Disable API key when archiving user"
+                >
+          <field name="archived_user_disable_auth_api_key" />
+        </setting>
+
+      </xpath>
+
+    </field>
+  </record>
+
+</odoo>

From 56dc525d01f6c87d9ca570d7bb2b11262463e03e Mon Sep 17 00:00:00 2001
From: thien <thienvh@trobz.com>
Date: Tue, 8 Oct 2024 17:39:17 +0700
Subject: [PATCH 74/86] [IMP] auth_api_key: apply pre-commit auto fixes

---
 auth_api_key/README.rst                    | 14 +++++++-------
 auth_api_key/static/description/index.html | 17 ++++++++++-------
 2 files changed, 17 insertions(+), 14 deletions(-)

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index 99e2eda85f..2424a6caaa 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -10,20 +10,20 @@ Auth Api Key
    !! source digest: sha256:455a0f8646088cc228c9423fcbabbc1d81cabbebd0cac6dcf07bbbe000a6fc87
    !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 
-.. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png
+.. |badge1| image:: https://img.shields.io/badge/maturity-Production%2FStable-green.png
     :target: https://odoo-community.org/page/development-status
-    :alt: Beta
+    :alt: Production/Stable
 .. |badge2| image:: https://img.shields.io/badge/licence-LGPL--3-blue.png
     :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html
     :alt: License: LGPL-3
 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github
-    :target: https://github.com/OCA/server-auth/tree/17.0/auth_api_key
+    :target: https://github.com/OCA/server-auth/tree/18.0/auth_api_key
     :alt: OCA/server-auth
 .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
-    :target: https://translation.odoo-community.org/projects/server-auth-17-0/server-auth-17-0-auth_api_key
+    :target: https://translation.odoo-community.org/projects/server-auth-18-0/server-auth-18-0-auth_api_key
     :alt: Translate me on Weblate
 .. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png
-    :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=17.0
+    :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=18.0
     :alt: Try me on Runboat
 
 |badge1| |badge2| |badge3| |badge4| |badge5|
@@ -77,7 +77,7 @@ Bug Tracker
 Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-auth/issues>`_.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us to smash it by providing a detailed and welcomed
-`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2017.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2018.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
 
 Do not contact contributors directly about support or help with technical issues.
 
@@ -111,6 +111,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.
 
-This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/17.0/auth_api_key>`_ project on GitHub.
+This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/18.0/auth_api_key>`_ project on GitHub.
 
 You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index d4234b13ea..6fb09ac5d9 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -8,10 +8,11 @@
 
 /*
 :Author: David Goodger (goodger@python.org)
-:Id: $Id: html4css1.css 8954 2022-01-20 10:10:25Z milde $
+:Id: $Id: html4css1.css 9511 2024-01-13 09:50:07Z milde $
 :Copyright: This stylesheet has been placed in the public domain.
 
 Default cascading style sheet for the HTML output of Docutils.
+Despite the name, some widely supported CSS2 features are used.
 
 See https://docutils.sourceforge.io/docs/howto/html-stylesheets.html for how to
 customize this style sheet.
@@ -274,7 +275,7 @@
   margin-left: 2em ;
   margin-right: 2em }
 
-pre.code .ln { color: grey; } /* line numbers */
+pre.code .ln { color: gray; } /* line numbers */
 pre.code, code { background-color: #eeeeee }
 pre.code .comment, code .comment { color: #5C6576 }
 pre.code .keyword, code .keyword { color: #3B0D06; font-weight: bold }
@@ -300,7 +301,7 @@
 span.pre {
   white-space: pre }
 
-span.problematic {
+span.problematic, pre.problematic {
   color: red }
 
 span.section-subtitle {
@@ -368,7 +369,7 @@ <h1 class="title">Auth Api Key</h1>
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 !! source digest: sha256:455a0f8646088cc228c9423fcbabbc1d81cabbebd0cac6dcf07bbbe000a6fc87
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
-<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-auth/tree/17.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-auth-17-0/server-auth-17-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-auth&amp;target_branch=17.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
+<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Production/Stable" src="https://img.shields.io/badge/maturity-Production%2FStable-green.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-auth/tree/18.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-auth-18-0/server-auth-18-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-auth&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>
 <p>API keys are codes passed in (in the http header API-KEY) by programs
 calling an API in order to identify -in this case- the calling program’s
@@ -418,7 +419,7 @@ <h1><a class="toc-backref" href="#toc-entry-3">Bug Tracker</a></h1>
 <p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-auth/issues">GitHub Issues</a>.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us to smash it by providing a detailed and welcomed
-<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2017.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2018.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
 <p>Do not contact contributors directly about support or help with technical issues.</p>
 </div>
 <div class="section" id="credits">
@@ -442,11 +443,13 @@ <h2><a class="toc-backref" href="#toc-entry-6">Contributors</a></h2>
 <div class="section" id="maintainers">
 <h2><a class="toc-backref" href="#toc-entry-7">Maintainers</a></h2>
 <p>This module is maintained by the OCA.</p>
-<a class="reference external image-reference" href="https://odoo-community.org"><img alt="Odoo Community Association" src="https://odoo-community.org/logo.png" /></a>
+<a class="reference external image-reference" href="https://odoo-community.org">
+<img alt="Odoo Community Association" src="https://odoo-community.org/logo.png" />
+</a>
 <p>OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.</p>
-<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/17.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/18.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
 <p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
 </div>
 </div>

From 5aa9e6ef11851009ddcffebb0a9277c8cf12a581 Mon Sep 17 00:00:00 2001
From: thien <thienvh@trobz.com>
Date: Tue, 8 Oct 2024 17:47:12 +0700
Subject: [PATCH 75/86] [MIG] auth_api_key: Migration to 18.0

---
 auth_api_key/README.rst                    |  7 +++++++
 auth_api_key/__manifest__.py               |  2 +-
 auth_api_key/models/auth_api_key.py        |  2 +-
 auth_api_key/readme/CONTRIBUTORS.md        |  1 +
 auth_api_key/readme/CREDITS.md             |  1 +
 auth_api_key/static/description/index.html | 11 +++++++++--
 auth_api_key/views/auth_api_key.xml        |  8 ++++----
 7 files changed, 24 insertions(+), 8 deletions(-)
 create mode 100644 auth_api_key/readme/CREDITS.md

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index 2424a6caaa..6fc2d05e57 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -97,6 +97,13 @@ Contributors
 -  Quentin Groulard <quentin.groulard@acsone.eu>
 -  Sébastien Beau <sebastien.beau@akretion.com>
 -  Chafique Delli <chafique.delli@akretion.com>
+-  Thien Vo Hong <thienvh@trobz.com>
+
+Other credits
+-------------
+
+The migration of this module from 17.0 to 18.0 was financially supported
+by Camptocamp.
 
 Maintainers
 -----------
diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index afac87f495..a8fa4ae7a4 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,7 +5,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "17.0.1.0.0",
+    "version": "18.0.1.0.0",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index dfc61f1c30..cdbda3b93e 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -43,7 +43,7 @@ def _retrieve_api_key_id(self, key):
         for api_key in self.search([]):
             if api_key.key and consteq(key, api_key.key):
                 return api_key.id
-        raise ValidationError(_("The key %s is not allowed") % key)
+        raise ValidationError(_(f"The key {key} is not allowed"))
 
     @api.model
     @tools.ormcache("key")
diff --git a/auth_api_key/readme/CONTRIBUTORS.md b/auth_api_key/readme/CONTRIBUTORS.md
index 1168b409a3..efda422667 100644
--- a/auth_api_key/readme/CONTRIBUTORS.md
+++ b/auth_api_key/readme/CONTRIBUTORS.md
@@ -3,3 +3,4 @@
 - Quentin Groulard \<<quentin.groulard@acsone.eu>\>
 - Sébastien Beau \<<sebastien.beau@akretion.com>\>
 - Chafique Delli \<<chafique.delli@akretion.com>\>
+- Thien Vo Hong \<<thienvh@trobz.com>\>
diff --git a/auth_api_key/readme/CREDITS.md b/auth_api_key/readme/CREDITS.md
new file mode 100644
index 0000000000..a2a771b1ca
--- /dev/null
+++ b/auth_api_key/readme/CREDITS.md
@@ -0,0 +1 @@
+The migration of this module from 17.0 to 18.0 was financially supported by Camptocamp.
\ No newline at end of file
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index 6fb09ac5d9..c1b7ac4c31 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -388,7 +388,8 @@ <h1 class="title">Auth Api Key</h1>
 <li><a class="reference internal" href="#credits" id="toc-entry-4">Credits</a><ul>
 <li><a class="reference internal" href="#authors" id="toc-entry-5">Authors</a></li>
 <li><a class="reference internal" href="#contributors" id="toc-entry-6">Contributors</a></li>
-<li><a class="reference internal" href="#maintainers" id="toc-entry-7">Maintainers</a></li>
+<li><a class="reference internal" href="#other-credits" id="toc-entry-7">Other credits</a></li>
+<li><a class="reference internal" href="#maintainers" id="toc-entry-8">Maintainers</a></li>
 </ul>
 </li>
 </ul>
@@ -438,10 +439,16 @@ <h2><a class="toc-backref" href="#toc-entry-6">Contributors</a></h2>
 <li>Quentin Groulard &lt;<a class="reference external" href="mailto:quentin.groulard&#64;acsone.eu">quentin.groulard&#64;acsone.eu</a>&gt;</li>
 <li>Sébastien Beau &lt;<a class="reference external" href="mailto:sebastien.beau&#64;akretion.com">sebastien.beau&#64;akretion.com</a>&gt;</li>
 <li>Chafique Delli &lt;<a class="reference external" href="mailto:chafique.delli&#64;akretion.com">chafique.delli&#64;akretion.com</a>&gt;</li>
+<li>Thien Vo Hong &lt;<a class="reference external" href="mailto:thienvh&#64;trobz.com">thienvh&#64;trobz.com</a>&gt;</li>
 </ul>
 </div>
+<div class="section" id="other-credits">
+<h2><a class="toc-backref" href="#toc-entry-7">Other credits</a></h2>
+<p>The migration of this module from 17.0 to 18.0 was financially supported
+by Camptocamp.</p>
+</div>
 <div class="section" id="maintainers">
-<h2><a class="toc-backref" href="#toc-entry-7">Maintainers</a></h2>
+<h2><a class="toc-backref" href="#toc-entry-8">Maintainers</a></h2>
 <p>This module is maintained by the OCA.</p>
 <a class="reference external image-reference" href="https://odoo-community.org">
 <img alt="Odoo Community Association" src="https://odoo-community.org/logo.png" />
diff --git a/auth_api_key/views/auth_api_key.xml b/auth_api_key/views/auth_api_key.xml
index d0543249a2..d536772b34 100644
--- a/auth_api_key/views/auth_api_key.xml
+++ b/auth_api_key/views/auth_api_key.xml
@@ -28,19 +28,19 @@
         </field>
     </record>
     <record model="ir.ui.view" id="auth_api_key_tree_view">
-        <field name="name">auth.api.key.tree (in auth_api_key)</field>
+        <field name="name">auth.api.key.list (in auth_api_key)</field>
         <field name="model">auth.api.key</field>
         <field name="arch" type="xml">
-            <tree>
+            <list>
                 <field name="name" />
                 <field name="user_id" />
-            </tree>
+            </list>
         </field>
     </record>
     <record model="ir.actions.act_window" id="auth_api_key_act_window">
         <field name="name">Auth Api Key</field>
         <field name="res_model">auth.api.key</field>
-        <field name="view_mode">tree,form</field>
+        <field name="view_mode">list,form</field>
         <field name="domain">[]</field>
         <field name="context">{}</field>
     </record>

From 5cbdecd00e8664ab6f1980daaf788110ab544a46 Mon Sep 17 00:00:00 2001
From: thien <thienvh@trobz.com>
Date: Thu, 10 Oct 2024 15:03:30 +0700
Subject: [PATCH 76/86] [UDP] auth_api_key: Update description for reason to
 keep this module

---
 auth_api_key/readme/DESCRIPTION.md | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/auth_api_key/readme/DESCRIPTION.md b/auth_api_key/readme/DESCRIPTION.md
index 6d09ff29d8..4cac579599 100644
--- a/auth_api_key/readme/DESCRIPTION.md
+++ b/auth_api_key/readme/DESCRIPTION.md
@@ -10,3 +10,10 @@ from known sources.
 
 For unknown sources, it is a good practice to filter out this header at
 proxy level.
+
+Odoo allows users to authenticate `XMLRPC/JSONRPC` calls using their API key instead of a password by native API keys (`res.users.apikey`). However, `auth_api_key` has some special features of its own such as:
+- API keys remain usable even when the user is inactive, if enabled via settings (e.g., for system users in a shopinvader case).
+- Supports dual authentication via Basic Auth and API_KEY in separate HTTP headers.
+- Admins can manage API keys for all users
+
+Given these advantages, particularly in use case like system user authentication, we have decided to keep the `auth_api_key` module
\ No newline at end of file

From a67c49cc9b967fe19b1dc6294cf31d45f651addd Mon Sep 17 00:00:00 2001
From: oca-ci <oca-ci@odoo-community.org>
Date: Fri, 11 Oct 2024 09:50:39 +0000
Subject: [PATCH 77/86] [UPD] Update auth_api_key.pot

---
 auth_api_key/i18n/auth_api_key.pot | 50 ++++++++++++++++++++++++------
 1 file changed, 41 insertions(+), 9 deletions(-)

diff --git a/auth_api_key/i18n/auth_api_key.pot b/auth_api_key/i18n/auth_api_key.pot
index 16489df0cb..9b7fa0fcbc 100644
--- a/auth_api_key/i18n/auth_api_key.pot
+++ b/auth_api_key/i18n/auth_api_key.pot
@@ -4,7 +4,7 @@
 #
 msgid ""
 msgstr ""
-"Project-Id-Version: Odoo Server 17.0\n"
+"Project-Id-Version: Odoo Server 18.0\n"
 "Report-Msgid-Bugs-To: \n"
 "Last-Translator: \n"
 "Language-Team: \n"
@@ -18,17 +18,37 @@ msgstr ""
 msgid "API Key"
 msgstr ""
 
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__active
+msgid "Active"
+msgstr ""
+
 #. module: auth_api_key
 #: model:ir.model.constraint,message:auth_api_key.constraint_auth_api_key_name_uniq
 msgid "Api Key name must be unique."
 msgstr ""
 
+#. module: auth_api_key
+#: model_terms:ir.ui.view,arch_db:auth_api_key.auth_api_key_form_view
+msgid "Archived"
+msgstr ""
+
 #. module: auth_api_key
 #: model:ir.actions.act_window,name:auth_api_key.auth_api_key_act_window
 #: model:ir.ui.menu,name:auth_api_key.auth_api_key_menu
 msgid "Auth Api Key"
 msgstr ""
 
+#. module: auth_api_key
+#: model:ir.model,name:auth_api_key.model_res_company
+msgid "Companies"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model,name:auth_api_key.model_res_config_settings
+msgid "Config Settings"
+msgstr ""
+
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_uid
 msgid "Created by"
@@ -39,6 +59,17 @@ msgstr ""
 msgid "Created on"
 msgstr ""
 
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_res_company__archived_user_disable_auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_res_config_settings__archived_user_disable_auth_api_key
+msgid "Disable API key for archived user"
+msgstr ""
+
+#. module: auth_api_key
+#: model_terms:ir.ui.view,arch_db:auth_api_key.res_config_settings_view_form
+msgid "Disable API key when archiving user"
+msgstr ""
+
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name
 msgid "Display Name"
@@ -54,6 +85,15 @@ msgstr ""
 msgid "ID"
 msgstr ""
 
+#. module: auth_api_key
+#: model:ir.model.fields,help:auth_api_key.field_res_company__archived_user_disable_auth_api_key
+#: model:ir.model.fields,help:auth_api_key.field_res_config_settings__archived_user_disable_auth_api_key
+msgid ""
+"If checked, when a user is archived/unactivated the same change is "
+"propagated to his related api key. It is not retroactive (nothing is done  "
+"when enabling/disabling this option)."
+msgstr ""
+
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key
 msgid "Key"
@@ -81,13 +121,6 @@ msgid ""
 "        obtained from the server environment configuration."
 msgstr ""
 
-#. module: auth_api_key
-#. odoo-python
-#: code:addons/auth_api_key/models/auth_api_key.py:0
-#, python-format
-msgid "The key %s is not allowed"
-msgstr ""
-
 #. module: auth_api_key
 #: model:ir.model.fields,help:auth_api_key.field_auth_api_key__user_id
 msgid ""
@@ -103,6 +136,5 @@ msgstr ""
 #. module: auth_api_key
 #. odoo-python
 #: code:addons/auth_api_key/models/auth_api_key.py:0
-#, python-format
 msgid "User is not allowed"
 msgstr ""

From 612a78c133f77e299c72be2ef2c43883eae07689 Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Fri, 11 Oct 2024 09:52:15 +0000
Subject: [PATCH 78/86] [BOT] post-merge updates

---
 auth_api_key/README.rst                    | 15 ++++++++++++++-
 auth_api_key/static/description/index.html | 14 +++++++++++++-
 2 files changed, 27 insertions(+), 2 deletions(-)

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index 6fc2d05e57..1faa3bf119 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -7,7 +7,7 @@ Auth Api Key
    !! This file is generated by oca-gen-addon-readme !!
    !! changes will be overwritten.                   !!
    !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
-   !! source digest: sha256:455a0f8646088cc228c9423fcbabbc1d81cabbebd0cac6dcf07bbbe000a6fc87
+   !! source digest: sha256:bfed24ce8c3a57ea6a6270a37d412ab6fe00b5d2004270943ad5f9039a572fcc
    !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 
 .. |badge1| image:: https://img.shields.io/badge/maturity-Production%2FStable-green.png
@@ -41,6 +41,19 @@ from known sources.
 For unknown sources, it is a good practice to filter out this header at
 proxy level.
 
+Odoo allows users to authenticate ``XMLRPC/JSONRPC`` calls using their
+API key instead of a password by native API keys (``res.users.apikey``).
+However, ``auth_api_key`` has some special features of its own such as:
+
+-  API keys remain usable even when the user is inactive, if enabled via
+   settings (e.g., for system users in a shopinvader case).
+-  Supports dual authentication via Basic Auth and API_KEY in separate
+   HTTP headers.
+-  Admins can manage API keys for all users
+
+Given these advantages, particularly in use case like system user
+authentication, we have decided to keep the ``auth_api_key`` module
+
 **Table of contents**
 
 .. contents::
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index c1b7ac4c31..7a7b1e4a9a 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -367,7 +367,7 @@ <h1 class="title">Auth Api Key</h1>
 !! This file is generated by oca-gen-addon-readme !!
 !! changes will be overwritten.                   !!
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
-!! source digest: sha256:455a0f8646088cc228c9423fcbabbc1d81cabbebd0cac6dcf07bbbe000a6fc87
+!! source digest: sha256:bfed24ce8c3a57ea6a6270a37d412ab6fe00b5d2004270943ad5f9039a572fcc
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
 <p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Production/Stable" src="https://img.shields.io/badge/maturity-Production%2FStable-green.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-auth/tree/18.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-auth-18-0/server-auth-18-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-auth&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>
@@ -379,6 +379,18 @@ <h1 class="title">Auth Api Key</h1>
 from known sources.</p>
 <p>For unknown sources, it is a good practice to filter out this header at
 proxy level.</p>
+<p>Odoo allows users to authenticate <tt class="docutils literal">XMLRPC/JSONRPC</tt> calls using their
+API key instead of a password by native API keys (<tt class="docutils literal">res.users.apikey</tt>).
+However, <tt class="docutils literal">auth_api_key</tt> has some special features of its own such as:</p>
+<ul class="simple">
+<li>API keys remain usable even when the user is inactive, if enabled via
+settings (e.g., for system users in a shopinvader case).</li>
+<li>Supports dual authentication via Basic Auth and API_KEY in separate
+HTTP headers.</li>
+<li>Admins can manage API keys for all users</li>
+</ul>
+<p>Given these advantages, particularly in use case like system user
+authentication, we have decided to keep the <tt class="docutils literal">auth_api_key</tt> module</p>
 <p><strong>Table of contents</strong></p>
 <div class="contents local topic" id="contents">
 <ul class="simple">

From dda345145be996508dc7d340fd3e75ad3bc7340b Mon Sep 17 00:00:00 2001
From: Weblate <noreply@weblate.org>
Date: Fri, 11 Oct 2024 10:40:38 +0000
Subject: [PATCH 79/86] Update translation files

Updated by "Update PO files to match POT (msgmerge)" hook in Weblate.

Translation: server-auth-18.0/server-auth-18.0-auth_api_key
Translate-URL: https://translation.odoo-community.org/projects/server-auth-18-0/server-auth-18-0-auth_api_key/
---
 auth_api_key/i18n/it.po | 52 ++++++++++++++++++++++++++++++++++-------
 1 file changed, 44 insertions(+), 8 deletions(-)

diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
index cfb1f39043..583adc7245 100644
--- a/auth_api_key/i18n/it.po
+++ b/auth_api_key/i18n/it.po
@@ -21,17 +21,37 @@ msgstr ""
 msgid "API Key"
 msgstr "Chiave API"
 
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__active
+msgid "Active"
+msgstr ""
+
 #. module: auth_api_key
 #: model:ir.model.constraint,message:auth_api_key.constraint_auth_api_key_name_uniq
 msgid "Api Key name must be unique."
 msgstr "La chiave API deve essere univoca."
 
+#. module: auth_api_key
+#: model_terms:ir.ui.view,arch_db:auth_api_key.auth_api_key_form_view
+msgid "Archived"
+msgstr ""
+
 #. module: auth_api_key
 #: model:ir.actions.act_window,name:auth_api_key.auth_api_key_act_window
 #: model:ir.ui.menu,name:auth_api_key.auth_api_key_menu
 msgid "Auth Api Key"
 msgstr "Chiave API di autenticazione"
 
+#. module: auth_api_key
+#: model:ir.model,name:auth_api_key.model_res_company
+msgid "Companies"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model,name:auth_api_key.model_res_config_settings
+msgid "Config Settings"
+msgstr ""
+
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_uid
 msgid "Created by"
@@ -42,6 +62,17 @@ msgstr "Creato da"
 msgid "Created on"
 msgstr "Creato il"
 
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_res_company__archived_user_disable_auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_res_config_settings__archived_user_disable_auth_api_key
+msgid "Disable API key for archived user"
+msgstr ""
+
+#. module: auth_api_key
+#: model_terms:ir.ui.view,arch_db:auth_api_key.res_config_settings_view_form
+msgid "Disable API key when archiving user"
+msgstr ""
+
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name
 msgid "Display Name"
@@ -57,6 +88,15 @@ msgstr "Instradamento HTTP"
 msgid "ID"
 msgstr "ID"
 
+#. module: auth_api_key
+#: model:ir.model.fields,help:auth_api_key.field_res_company__archived_user_disable_auth_api_key
+#: model:ir.model.fields,help:auth_api_key.field_res_config_settings__archived_user_disable_auth_api_key
+msgid ""
+"If checked, when a user is archived/unactivated the same change is "
+"propagated to his related api key. It is not retroactive (nothing is done  "
+"when enabling/disabling this option)."
+msgstr ""
+
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key
 msgid "Key"
@@ -86,13 +126,6 @@ msgstr ""
 "Chiave API. Se viene acquisita dalla configurazione\n"
 "        ambiente del server, inserire nel campo un valore fittizio."
 
-#. module: auth_api_key
-#. odoo-python
-#: code:addons/auth_api_key/models/auth_api_key.py:0
-#, python-format
-msgid "The key %s is not allowed"
-msgstr "Chiave %s non autorizzata"
-
 #. module: auth_api_key
 #: model:ir.model.fields,help:auth_api_key.field_auth_api_key__user_id
 msgid ""
@@ -110,10 +143,13 @@ msgstr "Utente"
 #. module: auth_api_key
 #. odoo-python
 #: code:addons/auth_api_key/models/auth_api_key.py:0
-#, python-format
 msgid "User is not allowed"
 msgstr "Utente non autorizzato"
 
+#, python-format
+#~ msgid "The key %s is not allowed"
+#~ msgstr "Chiave %s non autorizzata"
+
 #~ msgid "Last Modified on"
 #~ msgstr "Ultima modifica il"
 

From fa9417b3cd9c4c649fc94489034570986ec29bbf Mon Sep 17 00:00:00 2001
From: mymage <stefano.consolaro@mymage.it>
Date: Sun, 13 Oct 2024 15:19:14 +0000
Subject: [PATCH 80/86] Translated using Weblate (Italian)

Currently translated at 100.0% (23 of 23 strings)

Translation: server-auth-18.0/server-auth-18.0-auth_api_key
Translate-URL: https://translation.odoo-community.org/projects/server-auth-18-0/server-auth-18-0-auth_api_key/it/
---
 auth_api_key/i18n/it.po | 17 ++++++++++-------
 1 file changed, 10 insertions(+), 7 deletions(-)

diff --git a/auth_api_key/i18n/it.po b/auth_api_key/i18n/it.po
index 583adc7245..dba473c4da 100644
--- a/auth_api_key/i18n/it.po
+++ b/auth_api_key/i18n/it.po
@@ -6,7 +6,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Odoo Server 15.0\n"
 "Report-Msgid-Bugs-To: \n"
-"PO-Revision-Date: 2024-08-17 18:58+0000\n"
+"PO-Revision-Date: 2024-10-13 18:06+0000\n"
 "Last-Translator: mymage <stefano.consolaro@mymage.it>\n"
 "Language-Team: none\n"
 "Language: it\n"
@@ -24,7 +24,7 @@ msgstr "Chiave API"
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__active
 msgid "Active"
-msgstr ""
+msgstr "Attiva"
 
 #. module: auth_api_key
 #: model:ir.model.constraint,message:auth_api_key.constraint_auth_api_key_name_uniq
@@ -34,7 +34,7 @@ msgstr "La chiave API deve essere univoca."
 #. module: auth_api_key
 #: model_terms:ir.ui.view,arch_db:auth_api_key.auth_api_key_form_view
 msgid "Archived"
-msgstr ""
+msgstr "In archivio"
 
 #. module: auth_api_key
 #: model:ir.actions.act_window,name:auth_api_key.auth_api_key_act_window
@@ -45,12 +45,12 @@ msgstr "Chiave API di autenticazione"
 #. module: auth_api_key
 #: model:ir.model,name:auth_api_key.model_res_company
 msgid "Companies"
-msgstr ""
+msgstr "Aziende"
 
 #. module: auth_api_key
 #: model:ir.model,name:auth_api_key.model_res_config_settings
 msgid "Config Settings"
-msgstr ""
+msgstr "Impostazioni configurazione"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_uid
@@ -66,12 +66,12 @@ msgstr "Creato il"
 #: model:ir.model.fields,field_description:auth_api_key.field_res_company__archived_user_disable_auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_res_config_settings__archived_user_disable_auth_api_key
 msgid "Disable API key for archived user"
-msgstr ""
+msgstr "Disabilita chiave API per utenti archiviati"
 
 #. module: auth_api_key
 #: model_terms:ir.ui.view,arch_db:auth_api_key.res_config_settings_view_form
 msgid "Disable API key when archiving user"
-msgstr ""
+msgstr "Disabilita la chiave API quando si archivia un utente"
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name
@@ -96,6 +96,9 @@ msgid ""
 "propagated to his related api key. It is not retroactive (nothing is done  "
 "when enabling/disabling this option)."
 msgstr ""
+"Se selezionata, quando un utente viene archiviato/disattivato, la stessa "
+"modifica viene propagata alla sua chiave API correlata. Non è retroattivo ("
+"non viene fatto nulla quando si abilita/disabilita questa opzione)."
 
 #. module: auth_api_key
 #: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key

From 28d657b35197051cb1bf0833cb59c39e31cc72de Mon Sep 17 00:00:00 2001
From: oca-git-bot <oca-git-bot@odoo-community.org>
Date: Sun, 20 Oct 2024 15:36:43 +0000
Subject: [PATCH 81/86] [IMP] update dotfiles

---
 auth_api_key/views/auth_api_key.xml        |  4 ++--
 auth_api_key/views/res_config_settings.xml | 28 ++++++++++------------
 2 files changed, 14 insertions(+), 18 deletions(-)

diff --git a/auth_api_key/views/auth_api_key.xml b/auth_api_key/views/auth_api_key.xml
index d536772b34..e52a8d8698 100644
--- a/auth_api_key/views/auth_api_key.xml
+++ b/auth_api_key/views/auth_api_key.xml
@@ -8,8 +8,8 @@
         <field name="arch" type="xml">
             <form>
                 <sheet>
-                  <field name="active" invisible="1" />
-                  <widget
+                    <field name="active" invisible="1" />
+                    <widget
                         name="web_ribbon"
                         title="Archived"
                         bg_color="bg-danger"
diff --git a/auth_api_key/views/res_config_settings.xml b/auth_api_key/views/res_config_settings.xml
index 61438d4a22..d7a2fa62e5 100644
--- a/auth_api_key/views/res_config_settings.xml
+++ b/auth_api_key/views/res_config_settings.xml
@@ -2,24 +2,20 @@
 <!-- Copyright 2023 Camptocamp SA
      License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl). -->
 <odoo>
-
-  <record id="res_config_settings_view_form" model="ir.ui.view">
-    <field name="name">res.config.settings.form.inherit</field>
-    <field name="model">res.config.settings</field>
-    <field name="inherit_id" ref="base_setup.res_config_settings_view_form" />
-    <field name="arch" type="xml">
-      <xpath expr="//block[@id='user_default_rights']" position="inside">
-        <setting
+    <record id="res_config_settings_view_form" model="ir.ui.view">
+        <field name="name">res.config.settings.form.inherit</field>
+        <field name="model">res.config.settings</field>
+        <field name="inherit_id" ref="base_setup.res_config_settings_view_form" />
+        <field name="arch" type="xml">
+            <xpath expr="//block[@id='user_default_rights']" position="inside">
+                <setting
                     groups="base.group_no_one"
                     id="api_key_archive_with_user"
                     string="Disable API key when archiving user"
                 >
-          <field name="archived_user_disable_auth_api_key" />
-        </setting>
-
-      </xpath>
-
-    </field>
-  </record>
-
+                    <field name="archived_user_disable_auth_api_key" />
+                </setting>
+            </xpath>
+        </field>
+    </record>
 </odoo>

From 4d44844fe50ebad91ad90f41a3d5544eeab49b19 Mon Sep 17 00:00:00 2001
From: xtanuiha <feihu.zhang@live.com>
Date: Sun, 13 Apr 2025 13:51:24 +0000
Subject: [PATCH 82/86] Added translation using Weblate (Chinese (Simplified)
 (zh_CN))

---
 auth_api_key/i18n/zh_CN.po | 141 +++++++++++++++++++++++++++++++++++++
 1 file changed, 141 insertions(+)
 create mode 100644 auth_api_key/i18n/zh_CN.po

diff --git a/auth_api_key/i18n/zh_CN.po b/auth_api_key/i18n/zh_CN.po
new file mode 100644
index 0000000000..311e21a7c7
--- /dev/null
+++ b/auth_api_key/i18n/zh_CN.po
@@ -0,0 +1,141 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# 	* auth_api_key
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: Odoo Server 18.0\n"
+"Report-Msgid-Bugs-To: \n"
+"Last-Translator: Automatically generated\n"
+"Language-Team: none\n"
+"Language: zh_CN\n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: \n"
+"Plural-Forms: nplurals=1; plural=0;\n"
+
+#. module: auth_api_key
+#: model:ir.model,name:auth_api_key.model_auth_api_key
+msgid "API Key"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__active
+msgid "Active"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.constraint,message:auth_api_key.constraint_auth_api_key_name_uniq
+msgid "Api Key name must be unique."
+msgstr ""
+
+#. module: auth_api_key
+#: model_terms:ir.ui.view,arch_db:auth_api_key.auth_api_key_form_view
+msgid "Archived"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.actions.act_window,name:auth_api_key.auth_api_key_act_window
+#: model:ir.ui.menu,name:auth_api_key.auth_api_key_menu
+msgid "Auth Api Key"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model,name:auth_api_key.model_res_company
+msgid "Companies"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model,name:auth_api_key.model_res_config_settings
+msgid "Config Settings"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_uid
+msgid "Created by"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__create_date
+msgid "Created on"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_res_company__archived_user_disable_auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_res_config_settings__archived_user_disable_auth_api_key
+msgid "Disable API key for archived user"
+msgstr ""
+
+#. module: auth_api_key
+#: model_terms:ir.ui.view,arch_db:auth_api_key.res_config_settings_view_form
+msgid "Disable API key when archiving user"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__display_name
+msgid "Display Name"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model,name:auth_api_key.model_ir_http
+msgid "HTTP Routing"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__id
+msgid "ID"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,help:auth_api_key.field_res_company__archived_user_disable_auth_api_key
+#: model:ir.model.fields,help:auth_api_key.field_res_config_settings__archived_user_disable_auth_api_key
+msgid ""
+"If checked, when a user is archived/unactivated the same change is "
+"propagated to his related api key. It is not retroactive (nothing is done  "
+"when enabling/disabling this option)."
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__key
+msgid "Key"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__write_uid
+msgid "Last Updated by"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__write_date
+msgid "Last Updated on"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__name
+msgid "Name"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,help:auth_api_key.field_auth_api_key__key
+msgid ""
+"The API key. Enter a dummy value in this field if it is\n"
+"        obtained from the server environment configuration."
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,help:auth_api_key.field_auth_api_key__user_id
+msgid ""
+"The user used to process the requests authenticated by\n"
+"        the api key"
+msgstr ""
+
+#. module: auth_api_key
+#: model:ir.model.fields,field_description:auth_api_key.field_auth_api_key__user_id
+msgid "User"
+msgstr ""
+
+#. module: auth_api_key
+#. odoo-python
+#: code:addons/auth_api_key/models/auth_api_key.py:0
+msgid "User is not allowed"
+msgstr ""

From d4c013904b2788f0e7e5929c2400bdb3b0ef27bd Mon Sep 17 00:00:00 2001
From: anusrinps96 <aprakhasam@nps100.com>
Date: Mon, 16 Jun 2025 10:29:19 +0200
Subject: [PATCH 83/86] [18.0][FIX] auth_api_key: Use 401 for unauthorized user

---
 auth_api_key/models/ir_http.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/auth_api_key/models/ir_http.py b/auth_api_key/models/ir_http.py
index 7b02f0c39c..c4959103d0 100644
--- a/auth_api_key/models/ir_http.py
+++ b/auth_api_key/models/ir_http.py
@@ -5,8 +5,9 @@
 
 import logging
 
+from werkzeug.exceptions import Unauthorized
+
 from odoo import models
-from odoo.exceptions import AccessDenied
 from odoo.http import request
 
 _logger = logging.getLogger(__name__)
@@ -33,4 +34,4 @@ def _auth_method_api_key(cls):
                 request.auth_api_key_id = auth_api_key.id
                 return True
         _logger.error("Wrong HTTP_API_KEY, access denied")
-        raise AccessDenied()
+        raise Unauthorized()

From d38d3cc6e6e4776cfadf690b658d03a392a11ae6 Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Mon, 16 Jun 2025 09:06:13 +0000
Subject: [PATCH 84/86] [BOT] post-merge updates

---
 auth_api_key/README.rst                    | 30 ++++++++++--------
 auth_api_key/__manifest__.py               |  2 +-
 auth_api_key/static/description/index.html | 36 +++++++++++++---------
 3 files changed, 39 insertions(+), 29 deletions(-)

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index 1faa3bf119..8b00287c04 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -1,3 +1,7 @@
+.. image:: https://odoo-community.org/readme-banner-image
+   :target: https://odoo-community.org/get-involved?utm_source=readme
+   :alt: Odoo Community Association
+
 ============
 Auth Api Key
 ============
@@ -7,13 +11,13 @@ Auth Api Key
    !! This file is generated by oca-gen-addon-readme !!
    !! changes will be overwritten.                   !!
    !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
-   !! source digest: sha256:bfed24ce8c3a57ea6a6270a37d412ab6fe00b5d2004270943ad5f9039a572fcc
+   !! source digest: sha256:78e3946b0dbb81bb6fbf6c434aaf5214faec00449a765c2f41e321b65024ba05
    !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 
 .. |badge1| image:: https://img.shields.io/badge/maturity-Production%2FStable-green.png
     :target: https://odoo-community.org/page/development-status
     :alt: Production/Stable
-.. |badge2| image:: https://img.shields.io/badge/licence-LGPL--3-blue.png
+.. |badge2| image:: https://img.shields.io/badge/license-LGPL--3-blue.png
     :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html
     :alt: License: LGPL-3
 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github
@@ -45,11 +49,11 @@ Odoo allows users to authenticate ``XMLRPC/JSONRPC`` calls using their
 API key instead of a password by native API keys (``res.users.apikey``).
 However, ``auth_api_key`` has some special features of its own such as:
 
--  API keys remain usable even when the user is inactive, if enabled via
-   settings (e.g., for system users in a shopinvader case).
--  Supports dual authentication via Basic Auth and API_KEY in separate
-   HTTP headers.
--  Admins can manage API keys for all users
+- API keys remain usable even when the user is inactive, if enabled via
+  settings (e.g., for system users in a shopinvader case).
+- Supports dual authentication via Basic Auth and API_KEY in separate
+  HTTP headers.
+- Admins can manage API keys for all users
 
 Given these advantages, particularly in use case like system user
 authentication, we have decided to keep the ``auth_api_key`` module
@@ -105,12 +109,12 @@ Authors
 Contributors
 ------------
 
--  Denis Robinet <denis.robinet@acsone.eu>
--  Laurent Mignon <laurent.mignon@acsone.eu>
--  Quentin Groulard <quentin.groulard@acsone.eu>
--  Sébastien Beau <sebastien.beau@akretion.com>
--  Chafique Delli <chafique.delli@akretion.com>
--  Thien Vo Hong <thienvh@trobz.com>
+- Denis Robinet <denis.robinet@acsone.eu>
+- Laurent Mignon <laurent.mignon@acsone.eu>
+- Quentin Groulard <quentin.groulard@acsone.eu>
+- Sébastien Beau <sebastien.beau@akretion.com>
+- Chafique Delli <chafique.delli@akretion.com>
+- Thien Vo Hong <thienvh@trobz.com>
 
 Other credits
 -------------
diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index a8fa4ae7a4..3138bcde2d 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,7 +5,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "18.0.1.0.0",
+    "version": "18.0.1.0.1",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index 7a7b1e4a9a..251ed87f41 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -3,7 +3,7 @@
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
 <meta name="generator" content="Docutils: https://docutils.sourceforge.io/" />
-<title>Auth Api Key</title>
+<title>README.rst</title>
 <style type="text/css">
 
 /*
@@ -360,16 +360,21 @@
 </style>
 </head>
 <body>
-<div class="document" id="auth-api-key">
-<h1 class="title">Auth Api Key</h1>
+<div class="document">
 
+
+<a class="reference external image-reference" href="https://odoo-community.org/get-involved?utm_source=readme">
+<img alt="Odoo Community Association" src="https://odoo-community.org/readme-banner-image" />
+</a>
+<div class="section" id="auth-api-key">
+<h1>Auth Api Key</h1>
 <!-- !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 !! This file is generated by oca-gen-addon-readme !!
 !! changes will be overwritten.                   !!
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
-!! source digest: sha256:bfed24ce8c3a57ea6a6270a37d412ab6fe00b5d2004270943ad5f9039a572fcc
+!! source digest: sha256:78e3946b0dbb81bb6fbf6c434aaf5214faec00449a765c2f41e321b65024ba05
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
-<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Production/Stable" src="https://img.shields.io/badge/maturity-Production%2FStable-green.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-auth/tree/18.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-auth-18-0/server-auth-18-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-auth&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
+<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Production/Stable" src="https://img.shields.io/badge/maturity-Production%2FStable-green.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/license-LGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-auth/tree/18.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-auth-18-0/server-auth-18-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-auth&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>
 <p>API keys are codes passed in (in the http header API-KEY) by programs
 calling an API in order to identify -in this case- the calling program’s
@@ -407,7 +412,7 @@ <h1 class="title">Auth Api Key</h1>
 </ul>
 </div>
 <div class="section" id="configuration">
-<h1><a class="toc-backref" href="#toc-entry-1">Configuration</a></h1>
+<h2><a class="toc-backref" href="#toc-entry-1">Configuration</a></h2>
 <p>The api key menu is available into Settings &gt; Technical in debug mode.
 By default, when you create an API key, the key is saved into the
 database.</p>
@@ -415,20 +420,20 @@ <h1><a class="toc-backref" href="#toc-entry-1">Configuration</a></h1>
 auth_api_key_server_env.</p>
 </div>
 <div class="section" id="usage">
-<h1><a class="toc-backref" href="#toc-entry-2">Usage</a></h1>
+<h2><a class="toc-backref" href="#toc-entry-2">Usage</a></h2>
 <p>To apply this authentication system to your http request you must set
 ‘api_key’ as value for the ‘auth’ parameter of your route definition
 into your controller.</p>
 <pre class="code python literal-block">
-<span class="k">class</span> <span class="nc">MyController</span><span class="p">(</span><span class="n">Controller</span><span class="p">):</span><span class="w">
+<span class="k">class</span><span class="w"> </span><span class="nc">MyController</span><span class="p">(</span><span class="n">Controller</span><span class="p">):</span><span class="w">
 
 </span>    <span class="nd">&#64;route</span><span class="p">(</span><span class="s1">'/my_service'</span><span class="p">,</span> <span class="n">auth</span><span class="o">=</span><span class="s1">'api_key'</span><span class="p">,</span> <span class="o">...</span><span class="p">)</span><span class="w">
-</span>    <span class="k">def</span> <span class="nf">my_service</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="o">*</span><span class="n">args</span><span class="p">,</span> <span class="o">**</span><span class="n">kwargs</span><span class="p">):</span><span class="w">
+</span>    <span class="k">def</span><span class="w"> </span><span class="nf">my_service</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="o">*</span><span class="n">args</span><span class="p">,</span> <span class="o">**</span><span class="n">kwargs</span><span class="p">):</span><span class="w">
 </span>        <span class="k">pass</span>
 </pre>
 </div>
 <div class="section" id="bug-tracker">
-<h1><a class="toc-backref" href="#toc-entry-3">Bug Tracker</a></h1>
+<h2><a class="toc-backref" href="#toc-entry-3">Bug Tracker</a></h2>
 <p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-auth/issues">GitHub Issues</a>.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us to smash it by providing a detailed and welcomed
@@ -436,15 +441,15 @@ <h1><a class="toc-backref" href="#toc-entry-3">Bug Tracker</a></h1>
 <p>Do not contact contributors directly about support or help with technical issues.</p>
 </div>
 <div class="section" id="credits">
-<h1><a class="toc-backref" href="#toc-entry-4">Credits</a></h1>
+<h2><a class="toc-backref" href="#toc-entry-4">Credits</a></h2>
 <div class="section" id="authors">
-<h2><a class="toc-backref" href="#toc-entry-5">Authors</a></h2>
+<h3><a class="toc-backref" href="#toc-entry-5">Authors</a></h3>
 <ul class="simple">
 <li>ACSONE SA/NV</li>
 </ul>
 </div>
 <div class="section" id="contributors">
-<h2><a class="toc-backref" href="#toc-entry-6">Contributors</a></h2>
+<h3><a class="toc-backref" href="#toc-entry-6">Contributors</a></h3>
 <ul class="simple">
 <li>Denis Robinet &lt;<a class="reference external" href="mailto:denis.robinet&#64;acsone.eu">denis.robinet&#64;acsone.eu</a>&gt;</li>
 <li>Laurent Mignon &lt;<a class="reference external" href="mailto:laurent.mignon&#64;acsone.eu">laurent.mignon&#64;acsone.eu</a>&gt;</li>
@@ -455,12 +460,12 @@ <h2><a class="toc-backref" href="#toc-entry-6">Contributors</a></h2>
 </ul>
 </div>
 <div class="section" id="other-credits">
-<h2><a class="toc-backref" href="#toc-entry-7">Other credits</a></h2>
+<h3><a class="toc-backref" href="#toc-entry-7">Other credits</a></h3>
 <p>The migration of this module from 17.0 to 18.0 was financially supported
 by Camptocamp.</p>
 </div>
 <div class="section" id="maintainers">
-<h2><a class="toc-backref" href="#toc-entry-8">Maintainers</a></h2>
+<h3><a class="toc-backref" href="#toc-entry-8">Maintainers</a></h3>
 <p>This module is maintained by the OCA.</p>
 <a class="reference external image-reference" href="https://odoo-community.org">
 <img alt="Odoo Community Association" src="https://odoo-community.org/logo.png" />
@@ -473,5 +478,6 @@ <h2><a class="toc-backref" href="#toc-entry-8">Maintainers</a></h2>
 </div>
 </div>
 </div>
+</div>
 </body>
 </html>

From be66a28a6e27bcf75c08cf2fdf0d31053a7c3384 Mon Sep 17 00:00:00 2001
From: arantxa-s73 <arantxa@studio73.es>
Date: Thu, 4 Dec 2025 08:52:14 +0100
Subject: [PATCH 85/86] [IMP] auth_api_key: pre-commit auto fixes

---
 auth_api_key/models/auth_api_key.py | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index cdbda3b93e..6130e4764c 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -1,7 +1,7 @@
 # Copyright 2018 ACSONE SA/NV
 # License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
 
-from odoo import _, api, fields, models, tools
+from odoo import api, fields, models, tools
 from odoo.exceptions import AccessError, ValidationError
 from odoo.tools import consteq
 
@@ -39,11 +39,13 @@ def _retrieve_api_key(self, key):
     @tools.ormcache("key")
     def _retrieve_api_key_id(self, key):
         if not self.env.user.has_group("base.group_system"):
-            raise AccessError(_("User is not allowed"))
-        for api_key in self.search([]):
+            raise AccessError(self.env._("User is not allowed"))
+        for api_key in self.search([], limit=None):
             if api_key.key and consteq(key, api_key.key):
                 return api_key.id
-        raise ValidationError(_(f"The key {key} is not allowed"))
+        raise ValidationError(
+            self.env._("The key {key} is not allowed").format(key=key)
+        )
 
     @api.model
     @tools.ormcache("key")

From 5a6cd9aea1c3cc274ea45c180549776ef8840d31 Mon Sep 17 00:00:00 2001
From: arantxa-s73 <arantxa@studio73.es>
Date: Thu, 4 Dec 2025 09:40:16 +0100
Subject: [PATCH 86/86] [MIG] auth_api_key: Migration to 19.0

---
 auth_api_key/README.rst                    | 32 +++++++++++-----------
 auth_api_key/__manifest__.py               |  2 +-
 auth_api_key/models/auth_api_key.py        |  6 ++--
 auth_api_key/static/description/index.html |  6 ++--
 auth_api_key/tests/test_auth_api_key.py    | 19 ++++++++++---
 5 files changed, 37 insertions(+), 28 deletions(-)

diff --git a/auth_api_key/README.rst b/auth_api_key/README.rst
index 8b00287c04..53c202a1d8 100644
--- a/auth_api_key/README.rst
+++ b/auth_api_key/README.rst
@@ -21,13 +21,13 @@ Auth Api Key
     :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html
     :alt: License: LGPL-3
 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github
-    :target: https://github.com/OCA/server-auth/tree/18.0/auth_api_key
+    :target: https://github.com/OCA/server-auth/tree/19.0/auth_api_key
     :alt: OCA/server-auth
 .. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
-    :target: https://translation.odoo-community.org/projects/server-auth-18-0/server-auth-18-0-auth_api_key
+    :target: https://translation.odoo-community.org/projects/server-auth-19-0/server-auth-19-0-auth_api_key
     :alt: Translate me on Weblate
 .. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png
-    :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=18.0
+    :target: https://runboat.odoo-community.org/builds?repo=OCA/server-auth&target_branch=19.0
     :alt: Try me on Runboat
 
 |badge1| |badge2| |badge3| |badge4| |badge5|
@@ -49,11 +49,11 @@ Odoo allows users to authenticate ``XMLRPC/JSONRPC`` calls using their
 API key instead of a password by native API keys (``res.users.apikey``).
 However, ``auth_api_key`` has some special features of its own such as:
 
-- API keys remain usable even when the user is inactive, if enabled via
-  settings (e.g., for system users in a shopinvader case).
-- Supports dual authentication via Basic Auth and API_KEY in separate
-  HTTP headers.
-- Admins can manage API keys for all users
+-  API keys remain usable even when the user is inactive, if enabled via
+   settings (e.g., for system users in a shopinvader case).
+-  Supports dual authentication via Basic Auth and API_KEY in separate
+   HTTP headers.
+-  Admins can manage API keys for all users
 
 Given these advantages, particularly in use case like system user
 authentication, we have decided to keep the ``auth_api_key`` module
@@ -94,7 +94,7 @@ Bug Tracker
 Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-auth/issues>`_.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us to smash it by providing a detailed and welcomed
-`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2018.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+`feedback <https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2019.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
 
 Do not contact contributors directly about support or help with technical issues.
 
@@ -109,12 +109,12 @@ Authors
 Contributors
 ------------
 
-- Denis Robinet <denis.robinet@acsone.eu>
-- Laurent Mignon <laurent.mignon@acsone.eu>
-- Quentin Groulard <quentin.groulard@acsone.eu>
-- Sébastien Beau <sebastien.beau@akretion.com>
-- Chafique Delli <chafique.delli@akretion.com>
-- Thien Vo Hong <thienvh@trobz.com>
+-  Denis Robinet <denis.robinet@acsone.eu>
+-  Laurent Mignon <laurent.mignon@acsone.eu>
+-  Quentin Groulard <quentin.groulard@acsone.eu>
+-  Sébastien Beau <sebastien.beau@akretion.com>
+-  Chafique Delli <chafique.delli@akretion.com>
+-  Thien Vo Hong <thienvh@trobz.com>
 
 Other credits
 -------------
@@ -135,6 +135,6 @@ OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.
 
-This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/18.0/auth_api_key>`_ project on GitHub.
+This module is part of the `OCA/server-auth <https://github.com/OCA/server-auth/tree/19.0/auth_api_key>`_ project on GitHub.
 
 You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/auth_api_key/__manifest__.py b/auth_api_key/__manifest__.py
index 3138bcde2d..ce16e39fb5 100644
--- a/auth_api_key/__manifest__.py
+++ b/auth_api_key/__manifest__.py
@@ -5,7 +5,7 @@
     "name": "Auth Api Key",
     "summary": """
         Authenticate http requests from an API key""",
-    "version": "18.0.1.0.1",
+    "version": "19.0.1.0.1",
     "license": "LGPL-3",
     "author": "ACSONE SA/NV,Odoo Community Association (OCA)",
     "website": "https://github.com/OCA/server-auth",
diff --git a/auth_api_key/models/auth_api_key.py b/auth_api_key/models/auth_api_key.py
index 6130e4764c..8124566bad 100644
--- a/auth_api_key/models/auth_api_key.py
+++ b/auth_api_key/models/auth_api_key.py
@@ -29,7 +29,7 @@ class AuthApiKey(models.Model):
         compute="_compute_active", readonly=False, store=True, default=True
     )
 
-    _sql_constraints = [("name_uniq", "unique(name)", "Api Key name must be unique.")]
+    _name_uniq = models.Constraint("unique(name)", "Api Key name must be unique.")
 
     @api.model
     def _retrieve_api_key(self, key):
@@ -43,9 +43,7 @@ def _retrieve_api_key_id(self, key):
         for api_key in self.search([], limit=None):
             if api_key.key and consteq(key, api_key.key):
                 return api_key.id
-        raise ValidationError(
-            self.env._("The key {key} is not allowed").format(key=key)
-        )
+        raise ValidationError(self.env._("The key '%s' is not allowed", key))
 
     @api.model
     @tools.ormcache("key")
diff --git a/auth_api_key/static/description/index.html b/auth_api_key/static/description/index.html
index 251ed87f41..30259a226f 100644
--- a/auth_api_key/static/description/index.html
+++ b/auth_api_key/static/description/index.html
@@ -374,7 +374,7 @@ <h1>Auth Api Key</h1>
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 !! source digest: sha256:78e3946b0dbb81bb6fbf6c434aaf5214faec00449a765c2f41e321b65024ba05
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
-<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Production/Stable" src="https://img.shields.io/badge/maturity-Production%2FStable-green.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/license-LGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-auth/tree/18.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-auth-18-0/server-auth-18-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-auth&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
+<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Production/Stable" src="https://img.shields.io/badge/maturity-Production%2FStable-green.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/license-LGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-auth/tree/19.0/auth_api_key"><img alt="OCA/server-auth" src="https://img.shields.io/badge/github-OCA%2Fserver--auth-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-auth-19-0/server-auth-19-0-auth_api_key"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-auth&amp;target_branch=19.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
 <p>Authenticate http requests from an API key.</p>
 <p>API keys are codes passed in (in the http header API-KEY) by programs
 calling an API in order to identify -in this case- the calling program’s
@@ -437,7 +437,7 @@ <h2><a class="toc-backref" href="#toc-entry-3">Bug Tracker</a></h2>
 <p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-auth/issues">GitHub Issues</a>.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us to smash it by providing a detailed and welcomed
-<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2018.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<a class="reference external" href="https://github.com/OCA/server-auth/issues/new?body=module:%20auth_api_key%0Aversion:%2019.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
 <p>Do not contact contributors directly about support or help with technical issues.</p>
 </div>
 <div class="section" id="credits">
@@ -473,7 +473,7 @@ <h3><a class="toc-backref" href="#toc-entry-8">Maintainers</a></h3>
 <p>OCA, or the Odoo Community Association, is a nonprofit organization whose
 mission is to support the collaborative development of Odoo features and
 promote its widespread use.</p>
-<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/18.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-auth/tree/19.0/auth_api_key">OCA/server-auth</a> project on GitHub.</p>
 <p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
 </div>
 </div>
diff --git a/auth_api_key/tests/test_auth_api_key.py b/auth_api_key/tests/test_auth_api_key.py
index 7908c42eb7..5fe6b9a187 100644
--- a/auth_api_key/tests/test_auth_api_key.py
+++ b/auth_api_key/tests/test_auth_api_key.py
@@ -9,13 +9,24 @@ class TestAuthApiKey(TransactionCase):
     def setUpClass(cls, *args, **kwargs):
         super().setUpClass(*args, **kwargs)
         cls.AuthApiKey = cls.env["auth.api.key"]
-        cls.demo_user = cls.env.ref("base.user_demo")
+        cls.partner_demo = cls.env["res.partner"].create(
+            {
+                "name": "Demo Partner",
+            }
+        )
+        cls.demo_user = cls.env["res.users"].create(
+            {
+                "partner_id": cls.partner_demo.id,
+                "login": "demotest",
+                "password": "demotest",
+            }
+        )
         cls.api_key_good = cls.AuthApiKey.create(
             {"name": "good", "user_id": cls.demo_user.id, "key": "api_key"}
         )
 
     def test_lookup_key_from_db(self):
-        demo_user = self.env.ref("base.user_demo")
+        demo_user = self.demo_user
         self.assertEqual(
             self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id
         )
@@ -46,7 +57,7 @@ def test_cache_invalidation(self):
 
     def test_user_archived_unarchived_with_option_on(self):
         self.env.company.archived_user_disable_auth_api_key = True
-        demo_user = self.env.ref("base.user_demo")
+        demo_user = self.demo_user
         self.assertEqual(
             self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id
         )
@@ -60,7 +71,7 @@ def test_user_archived_unarchived_with_option_on(self):
 
     def test_user_archived_unarchived_with_option_off(self):
         self.env.company.archived_user_disable_auth_api_key = False
-        demo_user = self.env.ref("base.user_demo")
+        demo_user = self.demo_user
         self.assertEqual(
             self.env["auth.api.key"]._retrieve_uid_from_api_key("api_key"), demo_user.id
         )