From 3fe48174eea5235812d3a938887c24a3110be769 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Iv=C3=A1n=20Todorovich?= <ivan.todorovich@gmail.com>
Date: Tue, 24 Apr 2018 20:51:03 -0300
Subject: [PATCH] [document_page_approval] FIX BUG: am_i_approver was being run
 as sudo(), hence always giving the user Approving rights.

---
 document_page_approval/models/document_page.py      | 13 ++++++++-----
 .../models/document_page_history.py                 |  3 ++-
 2 files changed, 10 insertions(+), 6 deletions(-)

diff --git a/document_page_approval/models/document_page.py b/document_page_approval/models/document_page.py
index 408c10d5..5d623ca5 100644
--- a/document_page_approval/models/document_page.py
+++ b/document_page_approval/models/document_page.py
@@ -106,14 +106,17 @@ class DocumentPage(models.Model):
         # if it's not required, anyone can approve
         if not self.is_approval_required:
             return True
-        # to approve, you must have approver rights
-        approver_group_id = self.env.ref(
-            'document_page_approval.group_document_approver_user')
-        if approver_group_id not in user.groups_id:
+        # if user belongs to 'Knowledge / Manager', he can approve anything
+        if user.has_group('document_page.group_document_manager'):
+            return True
+        # to approve, user must have approver rights
+        if not user.has_group(
+                'document_page_approval.group_document_approver_user'):
             return False
-        # and belong to at least one of the approver_groups (if any is set)
+        # if there aren't any approver_groups_defined, user can approve
         if not self.approver_group_ids:
             return True
+        # to approve, user must belong to any of the approver groups
         return len(user.groups_id & self.approver_group_ids) > 0
 
     @api.multi
diff --git a/document_page_approval/models/document_page_history.py b/document_page_approval/models/document_page_history.py
index ed74e00c..6ab775b5 100644
--- a/document_page_approval/models/document_page_history.py
+++ b/document_page_approval/models/document_page_history.py
@@ -42,7 +42,8 @@ class DocumentPageHistory(models.Model):
     )
 
     am_i_approver = fields.Boolean(
-        related='page_id.am_i_approver'
+        related='page_id.am_i_approver',
+        related_sudo=False,
     )
 
     page_url = fields.Text(