Odoo 19 Inventory management is a powerful system, but it cannot function securely without proper access controls. The simplest way to have your stock secure and in good hands is by permissions and user roles. Having the ability to set them up when you are in charge of deploying your company’s Odoo can mean the difference between getting the best out of Odoo or creating security vulnerabilities. This tutorial will walk you through everything you need about user roles and permissions in the Odoo 19 Inventory module including configuration settings and where to find these settings.

Why User Roles and Permissions are Important in Odoo 19 Inventory

Step back momentarily and realize why permissions and roles are essential to your Odoo 19 Inventory system before we get into the how-to’s. These are the building blocks of security and architecture that enable you to:

Restrict Access to Sensitive Information

With any company, Inventory data is company data. Not every employee in the company shopuld be able to see sales levels, sales units, Cost or vendor data. Roles and permissions decide who must is allowed to see what.

Minimize the Risk of Errors

If you limit some operations to be carried out by the users, it will ensure that they won’t accidentally play around with the inventory level, shift the products, or carry out operations that they should not be carrying out. It will also ensure that the operations are being carried out in the right manner and by the right people.

Compliance and Audit Trails

For regulated industries or companies requiring proper audit trails, user administration is critical. Odoo roles and permissions make it possible to control who may access and monitor users’ activity, and thus, auditors’ requirements and adherence to the law become easy.

Overview of User Roles in Odoo 19

Odoo 19 uses a group-based access system. While Odoo does not use the term “Roles” as a formal entity in its standard setup, user groups function as roles in practice. Each group defines a set of permissions, and users can belong to one or more groups.

Default User Roles

Odoo 19 uses a default collection of default roles so that most business entities commonly in operation can be installed immediately. There are 3 built-in access levels:

  • Administrator: The administrator can view all the Odoo, i.e., stock. The admin can install the system, update user authorization, and view all the details in the module.

    Odoo 19 uses a group-based access system. While Odoo does not use the term “Roles” as a formal entity in its standard setup, user groups function as roles in practice. Each group defines a set of permissions, and users can belong to one or more groups.

  • Inventory Manager: Inventory managers usually have the most permissions to inventory actions, such as changing stock levels, triggering stock movement, and seeing what is done in a warehouse. They can see views and are included in very important procedures but not system settings.
  • Warehouse Operator: Designed for individuals handling the warehouse floor goods. Warehouse operators can receive incoming receipts, re-allocate inventory between warehouses, and process inventory but never receive reports or levels of configuration.

Custom Roles

Besides default roles, Odoo 19 also enables you to create custom roles according to your needs. For example, you can assign a role to a user to update stocks but not the transfers. You can automate this with custom roles and assign proper access levels to each one.

Setting Up User Roles for Odoo 19 Inventory

Now that we know why we need to define roles, let us move on to how to do so. User role setup in Odoo 19 is simple. Here is how you can do it:

Accessing User Settings

  1. Go through the Settings menu in Odoo.
  2. Click on Users & Companies, then click on Users.
  3. Your list of active users is now displayed. To add a new user or modify an existing one, click the “Create” button.

Assigning Access Rights to a User

On the user form, scroll to the Access Rights tab. You will see a section for each installed module, including Inventory. You can set each module’s access level using a dropdown, choosing from no access, user-level, or manager-level permissions as applicable.

Where to Find and Configure permissions in Odoo 19: Step-by-Step

This is where many users get lost. Here is the exact navigation path for each configuration task in Odoo 19:

Assigning a User to an Inventory Access Level

  • Go to Settings → Users & Companies → Users.
  • Open the user’s profile and click the Access Rights tab.
  • Under the Inventory section, choose User (Warehouse Operator), Manager (Inventory Manager), or leave blank for no access.
  • Click Save. Changes take effect immediately on next login.

Creating and Managing Custom Groups

To create a custom group (e.g., a Stock Auditor with read-only access), you must first enable Developer Mode:

  • Go to Settings, scroll to the bottom, and click Activate the developer mode.
  • Once enabled, navigate to Settings → Users & Companies → Groups.
  • Click Create to define a new group. Give it a clear name (e.g., “Inventory / Auditor”).
  • In the Access Rights tab of the group form, click Add a line, select the relevant inventory model (e.g., stock.move, stock.quant), and tick only the permissions needed (Read, Write, Create, Delete).
  • In the Users tab of the group form, add the users who should belong to this group.

Click Save.

Configuring Record Rules for Warehouse-Specific Access

If you operate multiple warehouses and need to restrict a user to only their warehouse’s data:

  • With Developer Mode active, go to Settings → Technical → Security → Record Rules.
  • Click Create and select the model to restrict (e.g., stock.picking for transfers).
  • Write a domain filter to limit visibility to a specific warehouse (e.g., [(‘warehouse_id’, ‘=’, 1)]).
  • Assign the rule to the relevant user group and save.

Important: Odoo recommends consulting an Odoo Business Analyst or Odoo’s Support Team before editing record rules, as incorrect configurations can lock users out of critical data or, in rare cases, affect the database integrity.

 

Understanding Permissions in Odoo 19 Inventory

Permissions in Odoo 19 are handled through Access Control Lists (ACLs). Each ACL entry defines what a group can do with a specific data model. There are four core permission types:

Permission Types

  • Read Access: Users can view records such as stock levels, product data, and history, but cannot make any changes.
  • Write Access: This allows users to edit existing stock records, such as inventory level, product, or stock movement.
  • Create Access: With this access, users may add new records, such as creating a new product or stock movement.
  • Delete Access: This access allows users to delete inventory records and is utilized for management-level activities. This asccess is mostly reserved for manager level roles.

Granular Permissions

Odoo 19 allows for highly specific permission combinations. A warehouse manager, for example, can be given full write access to product records but only read access to accounting-linked reports. In multi-warehouse setups, record rules ensure a manager for Warehouse A cannot see or modify Warehouse B’s inventory — keeping operational data clean and access contextually relevant.

Warehouse Permissions

If your business has more than one warehouse, permission could be granted warehouse by warehouse. For example, a Warehouse “A” manager will not be able to see the inventory of Warehouse “B”. The users could see only that data, which was against their functional area in this way.

Best Practices for Configuring Inventory Permissions

Odoo 19 permissions and roles do not offer reading and writing access. You need to stick to a few guidelines so that your stock role works in an error-free and violation-free environment.

Principle of Least Privilege

Always use the principle of least privilege, i.e., grant users the minimum rights required so that they will operate and achieve the task by whom the task has been assigned. A stockroom clerk must not look at accounting reports; an inventory controller must not count out. Denying access limits errors or acts of dishonesty.

Separation of Duties

Implement separation of duties to avoid fraud or conflict of interest. For instance, a user may complete taking stock, and another user may perform stock transferring. It would be impossible for a user to fake the process this way.

Customize Permissions Based on Job Function

Think about the work function in permissions. The stock manager will require more levels of control to handle products than a salesperson, who will only be able to view stock levels so that they can see what products they have. Building permissions around real workflows makes the system intuitive and reduces support requests.

Customizing User Access for Inventory Operations

There are situations when you require even more control over what you want users to see. Odoo 19 enables you to adjust permissions further. Here’s how:

Role-Based Permissions on Inventory Movement

If you have inventory movement procedures, you can restrict viewability to items such as transfers or adjustments. For instance, only an Inventory Manager or above can alter inventory.

Product and Category Access

The second most critical customization is product and category access. If you are an organization dealing with different products, you might have to grant view or edit permission to some categories or roles. For example, a warehouse admin dealing with electronics should never be permitted to view the inventory of clothes products.

Testing and Monitoring User Permissions

Having set up permissions and roles, testing and monitoring your environment is a good idea. Below are a couple of ways to do this:

Simulating User Access

Always test permissions after configuring them by logging in as a user in the affected group and navigating the Inventory module. What looks correct in a settings screen can sometimes behave differently in day-to-day navigation. Testing catches unintended side effects, especially after group membership changes, promotions, or workflow restructures.

Audit Trails

Track user activity through Odoo’s built-in logging. The system records who accessed or changed stock records and when, providing a clear defense against unauthorized activity and satisfying external audit requirements. Review permissions quarterly — roles change faster than most teams realize, especially with promotions, transfers, and organizational restructures.

Conclusion

Configuring user roles and permissions in Odoo 19 Inventory is not about restriction for its own sake — it is about ensuring your team can work effectively while keeping sensitive data in capable hands. With the step-by-step configuration guidance, permission types, and best practices covered in this guide, you have everything needed to build a secure and well-structured inventory environment.

Never forget to review roles and permissions whenever your business expands, or your operations are modified. With everything going according to plan, Odoo 19 will keep your inventory control in the pink of health without ever making security and control its casualty.

If you have progressed to the point where you have your company’s ideal configuration, an Odoo specialist will be able to manage your setup and get everything running so you can accomplish your goals.

Book a Free Demo!