odoo
diff --git a/‎addons/mail/tests/test_mail_tools.py
Lines changed: 0 additions & 18 deletions b/‎addons/mail/tests/test_mail_tools.py
Lines changed: 0 additions & 18 deletions
diff --git a/‎addons/mail/tools/parser.py
Lines changed: 1 addition & 13 deletions b/‎addons/mail/tools/parser.py
Lines changed: 1 addition & 13 deletions
diff --git a/‎addons/web/i18n/web.pot
Lines changed: 21 additions & 0 deletions b/‎addons/web/i18n/web.pot
Lines changed: 21 additions & 0 deletions
diff --git a/‎addons/web/static/src/core/tree_editor/condition_tree.js
Lines changed: 28 additions & 0 deletions b/‎addons/web/static/src/core/tree_editor/condition_tree.js
Lines changed: 28 additions & 0 deletions
diff --git a/‎addons/web/static/src/views/fields/domain/domain_field.js
Lines changed: 32 additions & 1 deletion b/‎addons/web/static/src/views/fields/domain/domain_field.js
Lines changed: 32 additions & 1 deletion
diff --git a/‎addons/web/static/tests/core/domain_field.test.js
Lines changed: 116 additions & 3 deletions b/‎addons/web/static/tests/core/domain_field.test.js
Lines changed: 116 additions & 3 deletions
diff --git a/‎addons/website/controllers/model_page.py
Lines changed: 1 addition & 2 deletions b/‎addons/website/controllers/model_page.py
Lines changed: 1 addition & 2 deletions
@@ -3,8 +3,6 @@
 
 from odoo.addons.mail.tests.common import MailCommon
 from odoo.tests import tagged, users
-from odoo.addons.mail.tools.parser import domain_eval
-from freezegun import freeze_time
 
 
 @tagged('mail_tools', 'res_partner')
@@ -181,22 +179,6 @@ def test_mail_find_partner_from_emails_multicompany(self):
             found = Partner._mail_find_partner_from_emails([self._test_email], records=record)
             self.assertEqual(found, [expected_partner], msg)
 
-    @freeze_time('2030-05-24')
-    def test_domain_eval(self):
-        success_pairs = [
-            ("list()", []),
-            ("list(range(1, 4))", [1, 2, 3]),
-            ("['|', (1, '=', 1), (1, '>', 0)]", ['|', (1, '=', 1), (1, '>', 0)]),
-            ("[(2, '=', 1 + 1)]", [(2, '=', 2)]),
-            (
-                "[('create_date', '<', datetime.datetime.combine(context_today() - relativedelta(days=100), datetime.time(1, 2, 3)).to_utc().strftime('%Y-%m-%d %H:%M:%S'))]",
-            ),  # use the date utils used by front-end domains
-        ]
-        for domain_expression, domain_value in success_pairs:
-            with self.subTest(domain_expression=domain_expression, domain_value=domain_value):
-                self.assertEqual(domain_eval(domain_expression), domain_value)
-
 
 @tagged('mail_tools', 'mail_init')
 class TestMailUtils(MailCommon):
 
@@ -4,7 +4,7 @@
 import ast
 
 from odoo.exceptions import ValidationError
-from odoo.tools import is_list_of, safe_eval
+from odoo.tools import is_list_of
 
 
 def parse_res_ids(res_ids, env):
@@ -35,15 +35,3 @@ def parse_res_ids(res_ids, env):
         raise ValidationError(error_msg)
 
     return res_ids
-
-
-def domain_eval(domain):
-    domain = domain.replace('.to_utc()', '')
-    evaluated_domain = safe_eval.safe_eval(domain, {
-        'context_today': safe_eval.datetime.datetime.today,
-        'datetime': safe_eval.datetime,
-        'dateutil': safe_eval.dateutil,
-        'relativedelta': safe_eval.dateutil.relativedelta.relativedelta,
-        'time': safe_eval.time,
-    })
-    return evaluated_domain
@@ -3291,6 +3291,13 @@ msgid ""
 "dropdown at all."
 msgstr ""
 
 #. module: web
+#. odoo-javascript
+#: code:addons/web/static/src/views/fields/domain/domain_field.js:0
+#, python-format
+msgid "If true, non-literals are accepted"
+msgstr ""
+
 #. module: web
 #. odoo-javascript
 #: code:addons/web/static/src/core/file_viewer/file_viewer.xml:0
@@ -6452,6 +6459,20 @@ msgid ""
 "characters). Please use the CSV format for this export."
 msgstr ""
 
+#. module: web
+#. odoo-javascript
+#: code:addons/web/static/src/views/fields/domain/domain_field.js:0
+#, python-format
+msgid "The domain involves non-literals. Their evaluation might fail."
+msgstr ""
+
+#. module: web
+#. odoo-javascript
+#: code:addons/web/static/src/views/fields/domain/domain_field.js:0
+#, python-format
+msgid "The domain should not involve non-literals"
+msgstr ""
+
 #. module: web
 #. odoo-javascript
 #: code:addons/web/static/src/core/errors/error_dialogs.xml:0
 
@@ -199,6 +199,34 @@ export function complexCondition(value) {
     return { type: "complex_condition", value };
 }
 
+function treeContainsExpressions(tree) {
+    if (tree.type === "condition") {
+        const { path, operator, value } = tree;
+        return [path, operator, value].some(
+            (v) =>
+                v instanceof Expression ||
+                (Array.isArray(v) && v.some((w) => w instanceof Expression))
+        );
+    }
+    for (const child of tree.children) {
+        if (treeContainsExpressions(child)) {
+            return true;
+        }
+    }
+    return false;
+}
+
+export function domainContainsExpresssions(domain) {
+    let tree;
+    try {
+        tree = treeFromDomain(domain);
+    } catch {
+        return null;
+    }
+    // detect expressions in the domain tree, which we know is well-formed
+    return treeContainsExpressions(tree);
+}
+
 /**
  * @param {Value} value
  * @returns {Value}
 
@@ -11,7 +11,7 @@ import { standardFieldProps } from "../standard_field_props";
 import { useBus, useService, useOwnedDialogs } from "@web/core/utils/hooks";
 import { useGetTreeDescription, useMakeGetFieldDef } from "@web/core/tree_editor/utils";
 import { useGetDefaultLeafDomain } from "@web/core/domain_selector/utils";
-import { treeFromDomain } from "@web/core/tree_editor/condition_tree";
+import { domainContainsExpresssions, treeFromDomain } from "@web/core/tree_editor/condition_tree";
 import { useRecordObserver } from "@web/model/relational_model/utils";
 
 export class DomainField extends Component {
@@ -25,16 +25,19 @@ export class DomainField extends Component {
         editInDialog: { type: Boolean, optional: true },
         resModel: { type: String, optional: true },
         isFoldable: { type: Boolean, optional: true },
+        allowExpressions: { type: Boolean, optional: true },
     };
     static defaultProps = {
         editInDialog: false,
         isFoldable: false,
+        allowExpressions: false,
     };
 
     setup() {
         this.orm = useService("orm");
         this.getDomainTreeDescription = useGetTreeDescription();
         this.makeGetFieldDef = useMakeGetFieldDef();
+        this.notification = useService("notification");
         this.getDefaultLeafDomain = useGetDefaultLeafDomain();
         this.addDialog = useOwnedDialogs();
 
@@ -84,6 +87,13 @@ export class DomainField extends Component {
         });
     }
 
+    allowExpressions(props) {
+        return (
+            props.allowExpressions ||
+            ["base.automation", "ir.filters"].includes(props.record.resModel)
+        );
+    }
+
     getContext(props = this.props) {
         return props.context;
     }
@@ -95,6 +105,20 @@ export class DomainField extends Component {
     getEvaluatedDomain(props = this.props) {
         const domainStringRepr = this.getDomain(props);
         const evalContext = this.getContext(props);
+        if (domainContainsExpresssions(domainStringRepr)) {
+            const allowExpressions = this.allowExpressions(props);
+            if (domainStringRepr !== this.lastDomainChecked) {
+                this.lastDomainChecked = domainStringRepr;
+                this.notification.add(
+                    allowExpressions
+                        ? _t("The domain involves non-literals. Their evaluation might fail.")
+                        : _t("The domain should not involve non-literals")
+                );
+            }
+            if (!allowExpressions) {
+                return { isInvalid: true };
+            }
+        }
         try {
             const domain = new Domain(domainStringRepr).toList(evalContext);
             // Here, there is still some incertitude on the domain validity.
@@ -275,6 +299,12 @@ export const domainField = {
             type: "boolean",
             help: _t("Display the domain using facets"),
         },
+        {
+            label: _t("Allow expressions"),
+            name: "allow_expressions",
+            type: "boolean",
+            help: _t("If true, non-literals are accepted"),
+        },
         {
             label: _t("Model"),
             name: "model",
@@ -287,6 +317,7 @@ export const domainField = {
         return {
             editInDialog: options.in_dialog,
             isFoldable: options.foldable,
+            allowExpressions: options.allow_expressions,
             resModel: options.model,
             context: dynamicInfo.context,
         };
 
@@ -31,6 +31,7 @@ import {
 } from "@web/../tests/web_test_helpers";
 
 import { WebClient } from "@web/webclient/webclient";
+import { registry } from "@web/core/registry";
 
 class PartnerType extends models.Model {
     name = fields.Char({ string: "Partner Type" });
@@ -44,11 +45,29 @@ class PartnerType extends models.Model {
 
 defineModels([Partner, Product, Team, Player, Country, Stage, PartnerType]);
 
-test("The domain editor should not crash the view when given a dynamic filter", async function () {
+function replaceNotificationService() {
+    registry.category("services").add(
+        "notification",
+        {
+            start() {
+                return {
+                    add(message) {
+                        expect.step(message);
+                    },
+                };
+            },
+        },
+        { force: true }
+    );
+}
+
+test("The domain editor should not crash the view when given a dynamic filter (allow_expressions=False)", async function () {
     // dynamic filters (containing variables, such as uid, parent or today)
     // are handled by the domain editor
     Partner._records[0].foo = `[("int", "=", uid)]`;
 
+    replaceNotificationService();
+
     await mountView({
         type: "form",
         resModel: "partner",
@@ -63,6 +82,30 @@ test("The domain editor should not crash the view when given a dynamic filter",
     expect(getCurrentValue()).toBe("uid", {
         message: "The widget should show the dynamic filter.",
     });
+    expect(".o_field_domain").not.toHaveClass("o_field_invalid");
+    expect.verifySteps(["The domain should not involve non-literals"]);
+});
+
+test("The domain editor should not crash the view when given a dynamic filter (allow_expressions=True)", async function () {
+    Partner._records[0].foo = `[("int", "=", uid)]`;
+
+    replaceNotificationService();
+
+    await mountView({
+        type: "form",
+        resModel: "partner",
+        resId: 1,
+        arch: `
+                    <form>
+                        <field name="foo" widget="domain" options="{'model': 'partner', 'allow_expressions':True}" />
+                        <field name="int" invisible="1" />
+                    </form>`,
+    });
+    expect(getCurrentValue()).toBe("uid", {
+        message: "The widget should show the dynamic filter.",
+    });
+    expect(".o_field_domain").not.toHaveClass("o_field_invalid");
+    expect.verifySteps(["The domain involves non-literals. Their evaluation might fail."]);
 });
 
 test("The domain editor should not crash the view when given a dynamic filter ( datetime )", async function () {
@@ -572,7 +615,7 @@ test("domain field: edit domain with dynamic content", async function () {
         form: `
             <form>
                 <field name="bar"/>
-                <field name="foo" widget="domain" options="{'model': 'bar'}"/>
+                <field name="foo" widget="domain" options="{'model': 'bar', 'allow_expressions':True}"/>
             </form>`,
         search: `<search />`,
     };
@@ -616,7 +659,7 @@ test("domain field: edit through selector (dynamic content)", async function ()
         form: `
             <form>
                 <field name="bar"/>
-                <field name="foo" widget="domain" options="{'model': 'bar'}"/>
+                <field name="foo" widget="domain" options="{'model': 'bar', 'allow_expressions':True}"/>
             </form>`,
         search: `<search />`,
     };
@@ -1025,3 +1068,73 @@ test("folded domain field with withinh operator", async function () {
     });
     expect(`.o_field_domain .o_facet_values`).toHaveText("Datetime is within 2 months");
 });
+
+test("allow_expressions = true", async function () {
+    Partner._records[0].foo = "[]";
+
+    serverState.debug = "1";
+    replaceNotificationService();
+
+    onRpc("/web/domain/validate", () => true);
+
+    await mountView({
+        type: "form",
+        resModel: "partner",
+        resId: 1,
+        arch: `
+                <form>
+                    <sheet>
+                        <group>
+                            <field name="foo" widget="domain" options="{'model': 'partner.type', 'allow_expressions':True}" />
+                        </group>
+                    </sheet>
+                </form>`,
+        context: { path: "name", name: "name" },
+    });
+
+    await contains(SELECTORS.debugArea).edit(`[("name", "=", [name])]`);
+    await animationFrame();
+    expect(".o_field_domain").not.toHaveClass("o_field_invalid");
+    expect.verifySteps(["The domain involves non-literals. Their evaluation might fail."]);
+
+    await contains(SELECTORS.debugArea).edit(
+        `["&", ("name", "=", "name"), (path, "=", "other name")]`
+    );
+    await animationFrame();
+    expect(".o_field_domain").not.toHaveClass("o_field_invalid");
+    expect.verifySteps(["The domain involves non-literals. Their evaluation might fail."]);
+});
+
+test("allow_expressions = false (default)", async function () {
+    Partner._records[0].foo = "[]";
+
+    serverState.debug = "1";
+    replaceNotificationService();
+
+    await mountView({
+        type: "form",
+        resModel: "partner",
+        resId: 1,
+        arch: `
+                <form>
+                    <sheet>
+                        <group>
+                            <field name="foo" widget="domain" options="{'model': 'partner.type' }" />
+                        </group>
+                    </sheet>
+                </form>`,
+        context: { path: "name", name: "name" },
+    });
+
+    await contains(SELECTORS.debugArea).edit(`[("name", "=", [name])]`);
+    await animationFrame();
+    expect(".o_field_domain").toHaveClass("o_field_invalid");
+    expect.verifySteps(["The domain should not involve non-literals"]);
+
+    await contains(SELECTORS.debugArea).edit(
+        `["&", ("name", "=", "name"), (path, "=", "other name")]`
+    );
+    await animationFrame();
+    expect(".o_field_domain").toHaveClass("o_field_invalid");
+    expect.verifySteps(["The domain should not involve non-literals"]);
+});
@@ -4,7 +4,6 @@
 
 from odoo.http import Controller, request, route
 from odoo.osv.expression import AND, OR
-from odoo.addons.mail.tools.parser import domain_eval
 
 
 class ModelPageController(Controller):
@@ -44,7 +43,7 @@ def generic_model(self, page_name_slugified=None, page_number=1, record_slug=Non
         if not Model.has_access("read"):
             raise werkzeug.exceptions.Forbidden()
 
-        rec_domain = domain_eval(page.record_domain or "[]")
+        rec_domain = ast.literal_eval(page.record_domain or "[]")
         domains = [rec_domain]
         implements_published_mixin = "website_published" in Model._fields
         if implements_published_mixin and not request.env.user.has_group('website.group_website_designer'):