It's common for the addon modules to add new models. For example, in the previous chapter we had examples adding a new Library Books model.
It is easy to miss the creation of security access for the new models defined in an addon module if you test it using the convenient
admin user, because
admin bypasses all the security checks.
However, models with no ACLs will trigger a warning log message on loading, informing about the missing ACL definitions: The model library.book has no access rules, consider adding one. To avoid that, you should watch for such messages during tests, and before publishing your code make sure you run the tests with the
demo user rather than
So, for new models to be usable by non-admin ...