Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)

2026-04-27 08:45:14 +00:00 · 2026-04-27 08:45:13 +00:00 · 2026-04-27 08:45:13 +00:00 · 2026-04-27 08:45:12 +00:00 · 2026-04-27 08:45:12 +00:00 · 2026-04-27 08:45:11 +00:00
39 changed files with 5583 additions and 0 deletions
--- a/addons/cetmix_tower_webhook/README.rst
+++ b/addons/cetmix_tower_webhook/README.rst
@@ -0,0 +1,190 @@
+====================
+Cetmix Tower Webhook
+====================
+
+.. 
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! This file is generated by oca-gen-addon-readme !!
+   !! changes will be overwritten.                   !!
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! source digest: sha256:6b28bb3bec0ce3e160c08d87fdf2735a4ca2fc271dbf3e361152240f0f02437c
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+
+.. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png
+    :target: https://odoo-community.org/page/development-status
+    :alt: Beta
+.. |badge2| image:: https://img.shields.io/badge/license-AGPL--3-blue.png
+    :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html
+    :alt: License: AGPL-3
+.. |badge3| image:: https://img.shields.io/badge/github-cetmix%2Fcetmix--tower-lightgray.png?logo=github
+    :target: https://github.com/cetmix/cetmix-tower/tree/16.0/cetmix_tower_webhook
+    :alt: cetmix/cetmix-tower
+
+|badge1| |badge2| |badge3|
+
+This module implements incoming webhooks for `Cetmix
+Tower <https://tower.cetmix.com>`__. Webhooks are authorised using
+customisable authenticators which can be pre-configured and reused
+across multiple webhooks. Webhooks and authenticators can be exported
+and imported using YAML format, which makes them easily sharable.
+
+This module is a part of Cetmix Tower, however it can be used to manage
+any other odoo applications.
+
+Please refer to the `official
+documentation <https://tower.cetmix.com>`__ for detailed information.
+
+**Table of contents**
+
+.. contents::
+   :local:
+
+Use Cases / Context
+===================
+
+Although Odoo has native support of webhooks staring 17.0, they still
+have some limitations. Another option is the OCA 'endpoint' module which
+although is more flexible still makes it usable with Cetmix Tower more
+complicated.
+
+Configuration
+=============
+
+Configure an Authenticator
+--------------------------
+
+**⚠️ WARNING: You must be a member of the "Cetmix Tower/Root" group to
+configure authenticators.**
+
+- Go to "Cetmix Tower > Settings > Automation > Webhook Authenticators"
+  and click "New".
+
+**Complete the following fields:**
+
+- Name. Authenticator name
+- Reference. Unique reference. Leave this field blank to auto generate
+  it
+- Code. Code that is used to authenticate the request. You can use all
+  Cetmix Tower - Python command variables except for the server plus the
+  following webhook specific ones:
+- headers: dictionary that contains the request headers
+- raw_data: string with the raw HTTP request body
+- payload: dictionary that contains the JSON payload or the GET
+  parameters of the request
+
+**The code returns the result variable in the following format:**
+
+.. code:: python
+
+   result = {"allowed": <bool, mandatory, default=False>, "http_code": <int, optional>, "message": <str, optional>}
+
+eg:
+
+.. code:: python
+
+   result = {"allowed": True}
+   result = {"allowed": False, "http_code": 403, "message": "Sorry..."}
+
+Configure a Webhook
+-------------------
+
+**⚠️ WARNING: You must be a member of the "Cetmix Tower/Root" group to
+configure webhooks.**
+
+- Go to "Cetmix Tower > Settings > Automation > Webhooks" and click
+  "New".
+
+**Complete the following fields:**
+
+- Enabled. Uncheck this field to disable the webhook without deleting it
+- Name. Authenticator name
+- Reference. Unique reference. Leave this field blank to auto generate
+  it
+- Authenticator. Select an Authenticator used for this webhook
+- Endpoint. Webhook andpoint. The complete webhook URL will be
+  <your_tower_url>/cetmix_tower_webhooks/
+- Run as User. Select a user to run the webhook on behalf of. CAREFUL!
+  You must realize and understand what you are doing, including all the
+  possible consequences when selecting a specific user.
+- Code. Code that processes the request. You can use all Cetmix Tower
+  Python command variables (except for the server) plus the following
+  webhook-specific one:
+
+  - headers: dictionary that contains the request headers
+  - payload: dictionary that contains the JSON payload or the GET
+    parameters of the request
+
+Webhook code returns a result using the Cetmix Tower Python command
+pattern:
+
+.. code:: python
+
+   result = {"exit_code": <int, default=0>, "message": <string, default=None}
+
+**To configure the time for which the webhook call logs are stored:**
+
+- Go to "Cetmix Tower > Settings > General Settings"
+- Put a number of days into the "Keep Webhook Logs for (days)" field.
+  Default value is 30.
+
+Please refer to the `official
+documentation <https://tower.cetmix.com>`__ for detailed configuration
+instructions.
+
+Usage
+=====
+
+When a request is received, Cetmix Tower will search for the webhook
+with the matching endpoint and authenticate the request using the
+selected authenticator. In case of successful authentication webhook
+code is run. Each webhook call is logged. Logs are available under the
+"Cetmix Tower > Logs > Webhook Calls" menu or under the "Logs" button
+directly in the Webhook.
+
+Please refer to the `official
+documentation <https://tower.cetmix.com>`__ for detailed usage
+instructions.
+
+Changelog
+=========
+
+16.0.1.0.4 (2025-12-11)
+-----------------------
+
+- Features: Improve search views, implement the search panel for
+  selected views. (5139)
+
+16.0.1.0.3 (2025-10-21)
+-----------------------
+
+- Features: Use native functions to convert payload to dict (5024)
+
+16.0.1.0.2 (2025-10-06)
+-----------------------
+
+- Bugfixes: Export related variables and secrets (4980)
+
+Bug Tracker
+===========
+
+Bugs are tracked on `GitHub Issues <https://github.com/cetmix/cetmix-tower/issues>`_.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us to smash it by providing a detailed and welcomed
+`feedback <https://github.com/cetmix/cetmix-tower/issues/new?body=module:%20cetmix_tower_webhook%0Aversion:%2016.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+
+Do not contact contributors directly about support or help with technical issues.
+
+Credits
+=======
+
+Authors
+-------
+
+* Cetmix
+
+Maintainers
+-----------
+
+This module is part of the `cetmix/cetmix-tower <https://github.com/cetmix/cetmix-tower/tree/16.0/cetmix_tower_webhook>`_ project on GitHub.
+
+You are welcome to contribute.
--- a/addons/cetmix_tower_webhook/init.py
+++ b/addons/cetmix_tower_webhook/init.py
@@ -0,0 +1,2 @@
+from . import controllers
+from . import models
--- a/addons/cetmix_tower_webhook/manifest.py
+++ b/addons/cetmix_tower_webhook/manifest.py
@@ -0,0 +1,28 @@
+# Copyright Cetmix OÜ 2025
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
+{
+    "name": "Cetmix Tower Webhook",
+    "summary": "Webhook implementation for Cetmix Tower",
+    "version": "16.0.1.0.5",
+    "development_status": "Beta",
+    "category": "Productivity",
+    "website": "https://tower.cetmix.com",
+    "live_test_url": "https://tower.cetmix.com/download",
+    "images": ["static/description/banner.png"],
+    "author": "Cetmix",
+    "license": "AGPL-3",
+    "installable": True,
+    "depends": ["cetmix_tower_yaml"],
+    "data": [
+        "security/ir.model.access.csv",
+        "views/cx_tower_webhook_authenticator_views.xml",
+        "views/cx_tower_webhook_log_views.xml",
+        "views/cx_tower_webhook_views.xml",
+        "views/cx_tower_variable_views.xml",
+        "views/res_config_settings_views.xml",
+        "views/menuitems.xml",
+    ],
+    "demo": [
+        "demo/demo_data.xml",
+    ],
+}
--- a/addons/cetmix_tower_webhook/controllers/init.py
+++ b/addons/cetmix_tower_webhook/controllers/init.py
@@ -0,0 +1,4 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+from . import main
--- a/addons/cetmix_tower_webhook/controllers/main.py
+++ b/addons/cetmix_tower_webhook/controllers/main.py
@@ -0,0 +1,250 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+import json
+import logging
+
+from odoo import http
+from odoo.http import Response, request
+
+_logger = logging.getLogger(__name__)
+
+
+class CetmixTowerWebhookController(http.Controller):
+    """
+    Handles incoming requests to Tower webhooks.
+    """
+
+    @http.route(
+        ["/cetmix_tower_webhooks/<string:endpoint>"],
+        type="http",
+        auth="public",
+        methods=["POST", "GET"],
+        csrf=False,
+        save_session=False,
+    )
+    def cetmix_webhook(self, endpoint, **kwargs):
+        """
+        Process an incoming webhook request.
+
+        Workflow:
+            1. Extract request headers, body, and HTTP method.
+            2. Match the request against a registered webhook.
+            3. Authenticate the request if required.
+            4. Execute the webhook code.
+            5. Log the request and return the response.
+
+        Args:
+            endpoint (str): The requested webhook endpoint.
+            **kwargs: Additional request parameters.
+
+        Returns:
+            Response: HTTP JSON response containing the result message.
+        """
+        # Step 1: Extract request data
+        headers = self._extract_webhook_request_headers()
+        raw_data = self._extract_webhook_request_raw_data()
+        http_method = request.httprequest.method.lower()
+
+        # Step 2. Find webhook
+        webhook = (
+            request.env["cx.tower.webhook"]
+            .sudo()
+            .search(
+                [
+                    ("endpoint", "=", endpoint),
+                    ("method", "=", http_method),
+                    ("active", "=", True),
+                ],
+            )
+        )
+        payload = self._extract_webhook_request_payload(webhook)
+
+        log_model = request.env["cx.tower.webhook.log"].sudo()
+        log_values = log_model._prepare_values(
+            webhook=webhook,
+            endpoint=endpoint,
+            request_method=http_method,
+            request_payload=payload,
+            request_headers=headers,
+            authentication_status="not_required",
+            code_status="skipped",
+        )
+
+        if not webhook:
+            log_values.update(
+                {
+                    "authentication_status": "failed",
+                    "http_status": 404,
+                }
+            )
+            return self._finalize_webhook_response(
+                message="Webhook not found",
+                error_message="Webhook not found",
+                **log_values,
+            )
+
+        # Step 3. Authenticate
+        auth_status, auth_error, http_auth_code = "success", None, 200
+        if webhook.authenticator_id:
+            if not webhook.authenticator_id.is_ip_allowed(self._get_remote_addr()):
+                auth_status, auth_error, http_auth_code = (
+                    "failed",
+                    "Address not allowed",
+                    403,
+                )
+                log_values.update(
+                    {
+                        "error_message": auth_error,
+                        "http_status": http_auth_code,
+                        "authentication_status": auth_status,
+                    }
+                )
+                return self._finalize_webhook_response(
+                    message=auth_error,
+                    **log_values,
+                )
+
+            try:
+                with request.env.cr.savepoint():
+                    auth_result = webhook.authenticator_id.sudo().authenticate(
+                        headers=headers,
+                        raw_data=raw_data,
+                        payload=payload,
+                    )
+                    if not auth_result.get("allowed"):
+                        raise Exception(
+                            auth_result.get("message", "Authentication not allowed")
+                        )
+            except Exception as e:
+                auth_status, auth_error, http_auth_code = "failed", str(e), 403
+        else:
+            auth_status = "not_required"
+
+        if auth_status == "failed":
+            # Authentication failed
+            log_values.update(
+                {
+                    "error_message": auth_error,
+                    "http_status": http_auth_code,
+                    "authentication_status": auth_status,
+                }
+            )
+            return self._finalize_webhook_response(
+                message=auth_error,
+                **log_values,
+            )
+
+        # Step 4. Execute webhook code
+        code_status, error_message, http_code, message = "success", None, 200, "OK"
+        try:
+            with request.env.cr.savepoint():
+                code_result = webhook.execute(payload, headers=headers)
+            if code_result.get("exit_code") != 0:
+                raise Exception(code_result.get("message"))
+            message = code_result.get("message") or "OK"
+        except Exception as e:
+            code_status, error_message, http_code, message = "failed", str(e), 500, None
+
+        # Step 5. Update log
+        log_values.update(
+            {
+                "code_status": code_status,
+                "error_message": error_message,
+                "http_status": http_code,
+                "result_message": message,
+                "authentication_status": auth_status,
+            }
+        )
+
+        return self._finalize_webhook_response(
+            message=message or error_message or "", **log_values
+        )
+
+    def _extract_webhook_request_payload(self, webhook):
+        """
+        Extract the request payload depending on HTTP method and content type.
+
+        Args:
+            webhook (cx.tower.webhook): Webhook record with configuration
+                (may be empty).
+
+        Returns:
+            dict: Parsed payload as a dictionary. Empty if parsing fails.
+        """
+        http_method = request.httprequest.method
+        try:
+            if http_method.upper() == "POST":
+                content_type = webhook.content_type if webhook else "json"
+                return self._get_payload_by_content_type(content_type)
+            elif http_method.upper() == "GET":
+                return request.httprequest.args.to_dict(flat=True)
+        except Exception:
+            return {}
+        return {}
+
+    def _get_payload_by_content_type(self, content_type):
+        """
+        Return the request payload for POST requests according to content type.
+
+        Args:
+            content_type (str): Payload format, e.g. "json" or "form".
+
+        Returns:
+            dict: Parsed payload as a dictionary.
+        """
+        if content_type == "form":
+            return request.httprequest.form.to_dict(flat=True)
+        data = request.httprequest.data
+        return json.loads(data or "{}") if data else {}
+
+    def _extract_webhook_request_headers(self):
+        """
+        Extract request headers.
+
+        Returns:
+            dict: Request headers as a dictionary.
+        """
+        return dict(request.httprequest.headers)
+
+    def _extract_webhook_request_raw_data(self):
+        """
+        Return raw request body.
+
+        Returns:
+            bytes: Raw HTTP request body.
+        """
+        return request.httprequest.data
+
+    def _finalize_webhook_response(self, message, **kwargs):
+        """
+        Create a log entry and return final HTTP response.
+
+        Args:
+            message (str): Response message text.
+            **kwargs: Log values for `cx.tower.webhook.log`.
+
+        Returns:
+            Response: HTTP JSON response with message and status code.
+        """
+        try:
+            with request.env.cr.savepoint():
+                request.env["cx.tower.webhook.log"].sudo().create_from_call(**kwargs)
+        except Exception:
+            # don't break controller if logging fails
+            _logger.error("Failed to create log entry", exc_info=True)
+
+        return Response(
+            status=kwargs.get("http_status"),
+            response=json.dumps({"message": message or ""}),
+            content_type="application/json",
+        )
+
+    def _get_remote_addr(self):
+        """
+        Return the remote IP address of the current request.
+
+        Returns:
+            str: Remote client IP address.
+        """
+        return request.httprequest.remote_addr
--- a/addons/cetmix_tower_webhook/demo/demo_data.xml
+++ b/addons/cetmix_tower_webhook/demo/demo_data.xml
@@ -0,0 +1,38 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<odoo noupdate="1">
+
+    <!-- Webhook Authenticators -->
+    <record id="webhook_authenticator_1" model="cx.tower.webhook.authenticator">
+        <field name="name">Demo Webhook Authenticator 1</field>
+        <field name="reference">demo_webhook_authenticator_1</field>
+        <field name="allowed_ip_addresses">192.168.1.10,192.168.2.0/24,10.0.0.1</field>
+        <field name="code">result = {"allowed": True}</field>
+    </record>
+
+    <record id="webhook_authenticator_2" model="cx.tower.webhook.authenticator">
+        <field name="name">Demo Webhook Authenticator 2</field>
+        <field name="reference">demo_webhook_authenticator_2</field>
+        <field
+            name="code"
+        >result = {"allowed": False, "http_code": 403, "message": "Sorry..."}</field>
+    </record>
+
+    <!-- Webhooks -->
+    <record id="webhook_1" model="cx.tower.webhook">
+        <field name="name">Demo Webhook 1</field>
+        <field name="reference">demo_webhook_1</field>
+        <field name="authenticator_id" ref="webhook_authenticator_1" />
+        <field name="endpoint">demo_webhook_1</field>
+        <field name="code">result = {"exit_code": 0, "message": "OK"}</field>
+    </record>
+
+    <record id="webhook_2" model="cx.tower.webhook">
+        <field name="name">Demo Webhook 2</field>
+        <field name="reference">demo_webhook_2</field>
+        <field name="authenticator_id" ref="webhook_authenticator_2" />
+        <field name="endpoint">demo_webhook_2</field>
+        <field name="method">get</field>
+        <field name="code">result = {"exit_code": 0, "message": "OK"}</field>
+    </record>
+
+</odoo>
--- a/addons/cetmix_tower_webhook/i18n/cetmix_tower_webhook.pot
+++ b/addons/cetmix_tower_webhook/i18n/cetmix_tower_webhook.pot
@@ -0,0 +1,793 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# 	* cetmix_tower_webhook
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: Odoo Server 16.0\n"
+"Report-Msgid-Bugs-To: \n"
+"Last-Translator: \n"
+"Language-Team: \n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: \n"
+"Plural-Forms: \n"
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/constants.py:0
+#, python-format
+msgid ""
+"\n"
+"<h3>Help for Webhook Authenticator Python Code</h3>\n"
+"<div style=\"margin-bottom: 10px;\">\n"
+"    <p>\n"
+"        The Python code for the webhook authenticator must return the <code>result</code> variable, which is a dictionary.<br>\n"
+"        <strong>Allowed keys:</strong>\n"
+"        <ul>\n"
+"            <li><code>allowed</code> (<b>bool</b>, required): Authentication result. <code>True</code> if allowed, <code>False</code> otherwise.</li>\n"
+"            <li><code>http_code</code> (<b>int</b>, optional): HTTP status code to return if authentication fails (default is 403).</li>\n"
+"            <li><code>message</code> (<b>str</b>, optional): Error message to show to the client.</li>\n"
+"        </ul>\n"
+"        <strong>Examples:</strong>\n"
+"        <pre style='background:#f7f7f7; padding:6px; border-radius:4px'>\n"
+"# Allow all requests\n"
+"result = {\"allowed\": True}\n"
+"\n"
+"# Deny with custom code and message\n"
+"result = {\"allowed\": False, \"http_code\": 401, \"message\": \"Unauthorized request\"}\n"
+"        </pre>\n"
+"    </p>\n"
+"    <strong>Available variables:</strong>\n"
+"</div>\n"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/constants.py:0
+#, python-format
+msgid ""
+"\n"
+"<h3>Help for Webhook Python Code</h3>\n"
+"<div style=\"margin-bottom: 10px;\">\n"
+"    <p>\n"
+"        The webhook Python code must set the <code>result</code> variable, which is a dictionary.<br>\n"
+"        <strong>Allowed keys:</strong>\n"
+"        <ul>\n"
+"            <li><code>exit_code</code> (<b>int</b>, optional, default=0): Exit code (0 means success, other values indicate failure).</li>\n"
+"            <li><code>message</code> (<b>str</b>, optional): Message to return in the HTTP response and log.</li>\n"
+"        </ul>\n"
+"        <strong>Example:</strong>\n"
+"        <pre style='background:#f7f7f7; padding:6px; border-radius:4px'>\n"
+"# Simple successful result\n"
+"result = {\"exit_code\": 0, \"message\": \"Webhook processed successfully\"}\n"
+"\n"
+"# Failure example\n"
+"result = {\"exit_code\": 1, \"message\": \"Something went wrong\"}\n"
+"        </pre>\n"
+"    </p>\n"
+"    <strong>Available variables:</strong>\n"
+"</div>\n"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/constants.py:0
+#, python-format
+msgid ""
+"# Please refer to the 'Help' tab and documentation for more information.\n"
+"#\n"
+"# You can return authenticator result in the 'result' variable which is a dictionary:\n"
+"#   result = {\"allowed\": <bool, mandatory, default=False>, \"http_code\": <int, optional>, \"message\": <str, optional>}\n"
+"#   default value is {\"allowed\": False}\n"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/constants.py:0
+#, python-format
+msgid ""
+"# Please refer to the 'Help' tab and documentation for more information.\n"
+"#\n"
+"# You can return webhook result in the 'result' variable which is a dictionary:\n"
+"#   result = {\"exit_code\": <int, default=0>, \"message\": <string, default=None}\n"
+"#   default value is {\"exit_code\": 0, \"message\": None}\n"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+msgid "10.0.0.1,192.168.1.0/24"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.actions.act_window,help:cetmix_tower_webhook.cx_tower_webhook_action
+msgid "Add a new webhook"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.actions.act_window,help:cetmix_tower_webhook.cx_tower_webhook_authenticator_action
+msgid "Add a new webhook authenticator"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "All"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__allowed_ip_addresses
+msgid "Allowed IPs"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "Auth Failed"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "Auth Status"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__authentication_status
+msgid "Authentication Status"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py:0
+#, python-format
+msgid "Authentication code error: %s"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__authenticator_id
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__authenticator_id
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Authenticator"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__reference
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__reference
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__reference
+msgid ""
+"Can contain English letters, digits and '_'. Leave blank to autogenerate"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model,name:cetmix_tower_webhook.model_cx_tower_variable
+msgid "Cetmix Tower Variable"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__code
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__code
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__code
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "Code"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "Code Failed"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__code_help
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__code_help
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__code_help
+msgid "Code Help"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "Code Status"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__allowed_ip_addresses
+msgid ""
+"Comma-separated list of IP addresses and/or subnets (e.g. "
+"192.168.1.10,192.168.2.0/24,10.0.0.1,2001:db8::/32,2a00:1450:4001:824::200e)."
+" Requests from other addresses will be denied."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__trusted_proxy_ips
+msgid ""
+"Comma-separated list of trusted proxy IP addresses or CIDR ranges (e.g., "
+"10.0.0.1,192.168.1.0/24). Only these proxies can set X-Forwarded-For "
+"headers."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model,name:cetmix_tower_webhook.model_res_config_settings
+msgid "Config Settings"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Content Type"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__country_id
+msgid "Country"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__country_id
+msgid "Country of the client that made the request."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__create_uid
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__create_uid
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__create_uid
+msgid "Created by"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__create_date
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__create_date
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__create_date
+msgid "Created on"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook.py:0
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py:0
+#, python-format
+msgid ""
+"Dictionary containing the request payload (JSON for POST, params for GET)"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook.py:0
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py:0
+#, python-format
+msgid "Dictionary of request headers"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Disabled"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__display_name
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__display_name
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__display_name
+msgid "Display Name"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__active
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Enabled"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__endpoint
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__endpoint
+msgid "Endpoint"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.constraint,message:cetmix_tower_webhook.constraint_cx_tower_webhook_endpoint_method_uniq
+msgid "Endpoint and method must be unique!"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook.py:0
+#, python-format
+msgid ""
+"Endpoint must start and end with a letter or digit, and may contain "
+"underscores, dashes, and slashes in between"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+msgid ""
+"Enter Python code here. Help about Python expression is available in the "
+"help tab of this document"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid ""
+"Enter Python code here. Help about Python expression is available in the "
+"help tab of this document."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_form
+msgid "Error"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__error_message
+msgid "Error Message"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__error_message
+msgid "Error message in case of authentication or code failure."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model,name:cetmix_tower_webhook.model_cx_tower_webhook_eval_mixin
+msgid "Eval context/code helper for Cetmix Tower Webhook"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.actions.act_window,name:cetmix_tower_webhook.action_cx_tower_webhook_authenticator_export_yaml
+#: model:ir.actions.act_window,name:cetmix_tower_webhook.action_cx_tower_webhook_export_yaml
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "Export YAML"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__authentication_status__failed
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__code_status__failed
+msgid "Failed"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook__content_type__form
+msgid "Form URL-Encoded"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__full_url
+msgid "Full URL of the webhook"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__full_url
+msgid "Full Url"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook__method__get
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__request_method__get
+msgid "GET"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Group By"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "HTTP 200"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__http_status
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "HTTP Status"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__http_status
+msgid "HTTP status code returned to the client."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__request_headers
+msgid "Headers of the received HTTP request (JSON-encoded)."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "Help"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__content_type
+msgid ""
+"How the payload is expected to be sent to this webhook: as JSON body or as "
+"URL-encoded form data"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__id
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__id
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__id
+msgid "ID"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__ip_address
+msgid "IP Address"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__ip_address
+msgid "IP address of the client that made the request."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py:0
+#, python-format
+msgid "Invalid allowed IP/CIDR entry: %s"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py:0
+#, python-format
+msgid "Invalid trusted proxy entry: %s"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook__content_type__json
+msgid "JSON"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_res_config_settings__cetmix_tower_webhook_log_duration
+msgid "Keep Webhook Logs for (days)"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook____last_update
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator____last_update
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log____last_update
+msgid "Last Modified on"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__write_uid
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__write_uid
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__write_uid
+msgid "Last Updated by"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__write_date
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__write_date
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__write_date
+msgid "Last Updated on"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__log_count
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__log_count
+msgid "Log Count"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "Logs"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__result_message
+msgid "Message returned by the webhook code or authenticator (if any)."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__method
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Method"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__name
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__name
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__name
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_form
+msgid "Name"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Name/Reference"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.actions.act_window,help:cetmix_tower_webhook.cx_tower_webhook_log_action
+msgid "No webhook logs found"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__authentication_status__not_required
+msgid "Not Required"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook__method__post
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__request_method__post
+msgid "POST"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__content_type
+msgid "Payload Type"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__request_payload
+msgid "Payload/body of the received HTTP request (JSON-encoded)."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py:0
+#, python-format
+msgid "Raw body of the request (bytes)"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__reference
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__reference
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__reference
+msgid "Reference"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__request_headers
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_form
+msgid "Request Headers"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__request_method
+msgid "Request Method"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__request_payload
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_form
+msgid "Request Payload"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_form
+msgid "Response Payload"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__result_message
+msgid "Result Message"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__authentication_status
+msgid "Result of authentication for this webhook call."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__code_status
+msgid "Result of webhook code execution."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__user_id
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__user_id
+msgid "Run as User"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_search
+msgid "Search Webhook Authenticators"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Search Webhooks"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__secret_ids
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__secret_ids
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__secret_ids
+msgid "Secrets"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__user_id
+msgid ""
+"Select a user to run the webhook from behalf of. If not set, the webhook will run as the current user.\n"
+"CAREFUL! You must realise and understand what you are doing including all the possible consequences when selecting a specific user"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__authenticator_id
+msgid "Select an Authenticator used for this webhook"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__method
+msgid "Select the HTTP method for this webhook"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__request_method
+msgid "Select the HTTP method for this webhook."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_res_config_settings__cetmix_tower_webhook_log_duration
+msgid ""
+"Set the number of days to keep webhook logs. Old logs will be deleted "
+"automatically."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.res_config_settings_view_form
+msgid ""
+"Set the number of days to keep webhook logs. Old logs will be deleted automatically.\n"
+"                            <br/>"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__code_status__skipped
+msgid "Skipped"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__authentication_status__success
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__code_status__success
+msgid "Success"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__code
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__code
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__code
+msgid "This field will be rendered using variables"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__trusted_proxy_ips
+msgid "Trusted Proxy IPs"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "User"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__user_id
+msgid "User as which the webhook code was executed (if set)."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__variable_ids
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__variable_ids
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__variable_ids
+msgid "Variables"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model,name:cetmix_tower_webhook.model_cx_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_variable__webhook_ids
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__webhook_id
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "Webhook"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model,name:cetmix_tower_webhook.model_cx_tower_webhook_authenticator
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_variable__webhook_authenticator_ids
+msgid "Webhook Authenticator"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_variable__webhook_authenticator_ids_count
+msgid "Webhook Authenticator Count"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.actions.act_window,name:cetmix_tower_webhook.cx_tower_webhook_authenticator_action
+#: model:ir.ui.menu,name:cetmix_tower_webhook.menu_cetmix_tower_webhook_authenticator
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_variable_view_form
+msgid "Webhook Authenticators"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model,name:cetmix_tower_webhook.model_cx_tower_webhook_log
+msgid "Webhook Call Log"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.ui.menu,name:cetmix_tower_webhook.menu_cetmix_tower_webhook_log
+msgid "Webhook Calls"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__code_status
+msgid "Webhook Code Status"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_variable__webhook_ids_count
+msgid "Webhook Count"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.actions.act_window,name:cetmix_tower_webhook.cx_tower_webhook_log_action
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "Webhook Logs"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook.py:0
+#, python-format
+msgid "Webhook code execution error: %(error)s"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__endpoint
+msgid ""
+"Webhook endpoint. The complete URL will be "
+"<your_tower_url>/cetmix_tower_webhooks/<endpoint>"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__webhook_id
+msgid "Webhook that received the call."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_eval_mixin.py:0
+#, python-format
+msgid "Webhook/Authenticator code error: result is not a dict"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.actions.act_window,name:cetmix_tower_webhook.cx_tower_webhook_action
+#: model:ir.ui.menu,name:cetmix_tower_webhook.menu_cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_variable_view_form
+msgid "Webhooks"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "YAML"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__yaml_code
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__yaml_code
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__yaml_code
+msgid "Yaml Code"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+msgid "You must be a member of the \"YAML/Export\" group to export data as YAML"
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "You must be a member of the \"YAML/Export\" group to export data as YAML."
+msgstr ""
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+msgid ""
+"e.g.: 192.168.1.10, 192.168.2.0/24, 2001:db8::/32, 2a00:1450:4001:824::200e"
+msgstr ""
--- a/addons/cetmix_tower_webhook/i18n/it.po
+++ b/addons/cetmix_tower_webhook/i18n/it.po
@@ -0,0 +1,822 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# 	* cetmix_tower_webhook
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: Odoo Server 16.0\n"
+"Report-Msgid-Bugs-To: \n"
+"Last-Translator: \n"
+"Language-Team: \n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: 8bit\n"
+"POT-Creation-Date: \n"
+"PO-Revision-Date: \n"
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/constants.py:0
+#, python-format
+msgid ""
+"\n"
+"<h3>Help for Webhook Authenticator Python Code</h3>\n"
+"<div style=\"margin-bottom: 10px;\">\n"
+"    <p>\n"
+"        The Python code for the webhook authenticator must return the <code>result</code> variable, which is a dictionary.<br>\n"
+"        <strong>Allowed keys:</strong>\n"
+"        <ul>\n"
+"            <li><code>allowed</code> (<b>bool</b>, required): Authentication result. <code>True</code> if allowed, <code>False</code> otherwise.</li>\n"
+"            <li><code>http_code</code> (<b>int</b>, optional): HTTP status code to return if authentication fails (default is 403).</li>\n"
+"            <li><code>message</code> (<b>str</b>, optional): Error message to show to the client.</li>\n"
+"        </ul>\n"
+"        <strong>Examples:</strong>\n"
+"        <pre style='background:#f7f7f7; padding:6px; border-radius:4px'>\n"
+"# Allow all requests\n"
+"result = {\"allowed\": True}\n"
+"\n"
+"# Deny with custom code and message\n"
+"result = {\"allowed\": False, \"http_code\": 401, \"message\": \"Unauthorized request\"}\n"
+"        </pre>\n"
+"    </p>\n"
+"    <strong>Available variables:</strong>\n"
+"</div>\n"
+msgstr ""
+"\n"
+"<h3>Aiuto per il codice Python di autenticazione webhook</h3>\n"
+"<div style=\"margin-bottom: 10px;\">\n"
+"    <p>\n"
+"        Il codice Python per l'autenticazione webhook deve restituire la variabile <code>result</code>, che è un dizionario.<br>\n"
+"        <strong>Chiavi consentite:</strong>\n"
+"        <ul>\n"
+"            <li><code>allowed</code> (<b>bool</b>, richiesto): risulatato autenticazione. <code>True</code> se abilitato, <code>False</code> altrimenti.</li>\n"
+"            <li><code>http_code</code> (<b>int</b>, opzionalel): codice stato HTTP da restituire se l'autenticazione fallisce (predefinito 403).</li>\n"
+"            <li><code>message</code> (<b>str</b>, opzionale): messaggio di errore da visualizzare al cliente.</li>\n"
+"        </ul>\n"
+"        <strong>Esempi:</strong>\n"
+"        <pre style='background:#f7f7f7; padding:6px; border-radius:4px'>\n"
+"# Consenti tutte le richieste\n"
+"result = {\"allowed\": True}\n"
+"\n"
+"# Nega con codie e messaggio personalizzati\n"
+"result = {\"allowed\": False, \"http_code\": 401, \"message\": \"Richiesta non autorizzata\"}\n"
+"        </pre>\n"
+"    </p>\n"
+"    <strong>Variabili disponibili:</strong>\n"
+"</div>\n"
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/constants.py:0
+#, python-format
+msgid ""
+"\n"
+"<h3>Help for Webhook Python Code</h3>\n"
+"<div style=\"margin-bottom: 10px;\">\n"
+"    <p>\n"
+"        The webhook Python code must set the <code>result</code> variable, which is a dictionary.<br>\n"
+"        <strong>Allowed keys:</strong>\n"
+"        <ul>\n"
+"            <li><code>exit_code</code> (<b>int</b>, optional, default=0): Exit code (0 means success, other values indicate failure).</li>\n"
+"            <li><code>message</code> (<b>str</b>, optional): Message to return in the HTTP response and log.</li>\n"
+"        </ul>\n"
+"        <strong>Example:</strong>\n"
+"        <pre style='background:#f7f7f7; padding:6px; border-radius:4px'>\n"
+"# Simple successful result\n"
+"result = {\"exit_code\": 0, \"message\": \"Webhook processed successfully\"}\n"
+"\n"
+"# Failure example\n"
+"result = {\"exit_code\": 1, \"message\": \"Something went wrong\"}\n"
+"        </pre>\n"
+"    </p>\n"
+"    <strong>Available variables:</strong>\n"
+"</div>\n"
+msgstr ""
+"\n"
+"<h3>Aiuto per codice Python webhook</h3>\n"
+"<div style=\"margin-bottom: 10px;\">\n"
+"    <p>\n"
+"        Il codice Python webhook deve impostare la variabile <code>result</code>, che è un dizionario.<br>\n"
+"        <strong>Chiavi consentitie:</strong>\n"
+"        <ul>\n"
+"            <li><code>exit_code</code> (<b>int</b>, opzionale, predefinito=0): codice di uscita (0 significa successo, altri valori indicano fallimento).</li>\n"
+"            <li><code>message</code> (<b>str</b>, opzionale): messaggio da restituire nella risposta HTTP e nel log.</li>\n"
+"        </ul>\n"
+"        <strong>Esempio:</strong>\n"
+"        <pre style='background:#f7f7f7; padding:6px; border-radius:4px'>\n"
+"# Risultato successo semplce\n"
+"result = {\"exit_code\": 0, \"message\": \"Webhook elaborato con successo\"}\n"
+"\n"
+"# Esempio di fallimento\n"
+"result = {\"exit_code\": 1, \"message\": \"Qualcosa è andato storto\"}\n"
+"        </pre>\n"
+"    </p>\n"
+"    <strong>Variabili disponibili:</strong>\n"
+"</div>\n"
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/constants.py:0
+#, python-format
+msgid ""
+"# Please refer to the 'Help' tab and documentation for more information.\n"
+"#\n"
+"# You can return authenticator result in the 'result' variable which is a dictionary:\n"
+"#   result = {\"allowed\": <bool, mandatory, default=False>, \"http_code\": <int, optional>, \"message\": <str, optional>}\n"
+"#   default value is {\"allowed\": False}\n"
+msgstr ""
+"# Fare riferimento alla libuetta 'Help' e alla documentazione per informazioni aggiuntive.\n"
+"#\n"
+"# Si può restituire il risultato dell'autenticazione nella variabile 'result' che è un dizionario:\n"
+"#   result = {\"allowed\": <bool, mandatory, default=False>, \"http_code\": <int, optional>, \"message\": <str, optional>}\n"
+"#   il valore predefinito è {\"allowed\": False}\n"
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/constants.py:0
+#, python-format
+msgid ""
+"# Please refer to the 'Help' tab and documentation for more information.\n"
+"#\n"
+"# You can return webhook result in the 'result' variable which is a dictionary:\n"
+"#   result = {\"exit_code\": <int, default=0>, \"message\": <string, default=None}\n"
+"#   default value is {\"exit_code\": 0, \"message\": None}\n"
+msgstr ""
+"# Fare riferimento alla libuetta 'Help' e alla documentazione per informazioni aggiuntive.\n"
+"#\n"
+"# Si può restituire il risultato del webhook nella variabile 'result' che è un dizionario:\n"
+"#   result = {\"exit_code\": <int, default=0>, \"message\": <string, default=None}\n"
+"#   valore predefinoto {\"exit_code\": 0, \"message\": None}\n"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+msgid "10.0.0.1,192.168.1.0/24"
+msgstr "10.0.0.1,192.168.1.0/24"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.actions.act_window,help:cetmix_tower_webhook.cx_tower_webhook_action
+msgid "Add a new webhook"
+msgstr "Aggiungi un nuovo webhook"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.actions.act_window,help:cetmix_tower_webhook.cx_tower_webhook_authenticator_action
+msgid "Add a new webhook authenticator"
+msgstr "Aggiungi un nuovo autenticatore webhook"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "All"
+msgstr "Tutti"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__allowed_ip_addresses
+msgid "Allowed IPs"
+msgstr "IP consentiti"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "Auth Failed"
+msgstr "Autenticazione fallita"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "Auth Status"
+msgstr "Stato autenticazione"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__authentication_status
+msgid "Authentication Status"
+msgstr "Stato autenticazione"
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py:0
+#, python-format
+msgid "Authentication code error: %s"
+msgstr "Codice errore autenticazione: %s"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__authenticator_id
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__authenticator_id
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Authenticator"
+msgstr "Autenticatore"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__reference
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__reference
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__reference
+msgid "Can contain English letters, digits and '_'. Leave blank to autogenerate"
+msgstr "Può contenere lettere inglesi, numeri e '_'. Lasciare vuoto per generarlo automaticamente"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model,name:cetmix_tower_webhook.model_cx_tower_variable
+msgid "Cetmix Tower Variable"
+msgstr "Variabile Cetmix Tower"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__code
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__code
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__code
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "Code"
+msgstr "Codice"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "Code Failed"
+msgstr "Codice fallito"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__code_help
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__code_help
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__code_help
+msgid "Code Help"
+msgstr "Aiuto codice"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "Code Status"
+msgstr "Stato codice"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__allowed_ip_addresses
+msgid "Comma-separated list of IP addresses and/or subnets (e.g. 192.168.1.10,192.168.2.0/24,10.0.0.1,2001:db8::/32,2a00:1450:4001:824::200e). Requests from other addresses will be denied."
+msgstr "Elenco indirizzi IP e/o sottoreti separati da virgola (es. 192.168.1.10,192.168.2.0/24,10.0.0.1,2001:db8::/32,2a00:1450:4001:824::200e). Richieste da altri indirizzi verranno rifiutate."
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__trusted_proxy_ips
+msgid "Comma-separated list of trusted proxy IP addresses or CIDR ranges (e.g., 10.0.0.1,192.168.1.0/24). Only these proxies can set X-Forwarded-For headers."
+msgstr "Elenco di indirizzi IP affidabili o intervalli CIDR separati da virgola (es. 10.0.0.1,192.168.1.0/24). Solo questi proxies possono impostare header X-Forwarded-For."
+
+#. module: cetmix_tower_webhook
+#: model:ir.model,name:cetmix_tower_webhook.model_res_config_settings
+msgid "Config Settings"
+msgstr "Impostazioni configurazione"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Content Type"
+msgstr "Tipo contenuto"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__country_id
+msgid "Country"
+msgstr "Nazione"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__country_id
+msgid "Country of the client that made the request."
+msgstr "Nazione del client che ha fatto la richiesta."
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__create_uid
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__create_uid
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__create_uid
+msgid "Created by"
+msgstr "Creato da"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__create_date
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__create_date
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__create_date
+msgid "Created on"
+msgstr "Creato il"
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook.py:0
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py:0
+#, python-format
+msgid "Dictionary containing the request payload (JSON for POST, params for GET)"
+msgstr "Dizionario che contiene le informazioni richieste (JSON per POST, parametri per GET)"
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook.py:0
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py:0
+#, python-format
+msgid "Dictionary of request headers"
+msgstr "Dizionario degli header richiesti"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Disabled"
+msgstr "Disabilitato"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__display_name
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__display_name
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__display_name
+msgid "Display Name"
+msgstr "Nome visualizzato"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__active
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Enabled"
+msgstr "Abilitato"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__endpoint
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__endpoint
+msgid "Endpoint"
+msgstr "Endpoint"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.constraint,message:cetmix_tower_webhook.constraint_cx_tower_webhook_endpoint_method_uniq
+msgid "Endpoint and method must be unique!"
+msgstr "L'endpoint e il motodo devono essere univoci!"
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook.py:0
+#, python-format
+msgid "Endpoint must start and end with a letter or digit, and may contain underscores, dashes, and slashes in between"
+msgstr "L'endpoint deve iniziare e finire con una lettera o un numero e può contenere underscore, trattini e slash nel mezzo"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+msgid "Enter Python code here. Help about Python expression is available in the help tab of this document"
+msgstr "Inserire qui codice Python. L'aiuto per l'espressione Python è disponibile nella linguetta di aiuto di questo documento"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "Enter Python code here. Help about Python expression is available in the help tab of this document."
+msgstr "Inserire qui codice Python. L'aiuto per l'espressione Python è disponibile nella linguetta di aiuto di questo documento."
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_form
+msgid "Error"
+msgstr "Errore"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__error_message
+msgid "Error Message"
+msgstr "Messaggio di errore"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__error_message
+msgid "Error message in case of authentication or code failure."
+msgstr "Messaggio di errore nel caso di fallimento dell'autenticazione o del codice."
+
+#. module: cetmix_tower_webhook
+#: model:ir.model,name:cetmix_tower_webhook.model_cx_tower_webhook_eval_mixin
+msgid "Eval context/code helper for Cetmix Tower Webhook"
+msgstr "Aiuto per la valutazione del context/codice per il webhook Cetmix Tower"
+
+#. module: cetmix_tower_webhook
+#: model:ir.actions.act_window,name:cetmix_tower_webhook.action_cx_tower_webhook_authenticator_export_yaml
+#: model:ir.actions.act_window,name:cetmix_tower_webhook.action_cx_tower_webhook_export_yaml
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "Export YAML"
+msgstr "Esporta YAML"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__authentication_status__failed
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__code_status__failed
+msgid "Failed"
+msgstr "Fallito"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook__content_type__form
+msgid "Form URL-Encoded"
+msgstr "Da URL codificato"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__full_url
+msgid "Full URL of the webhook"
+msgstr "URL completo del webhook"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__full_url
+msgid "Full Url"
+msgstr "URL completo"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook__method__get
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__request_method__get
+msgid "GET"
+msgstr "GET"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Group By"
+msgstr "Raggruppa per"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "HTTP 200"
+msgstr "HTTP 200"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__http_status
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "HTTP Status"
+msgstr "Stato HTTP"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__http_status
+msgid "HTTP status code returned to the client."
+msgstr "Codice stato HTTP restituito al client."
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__request_headers
+msgid "Headers of the received HTTP request (JSON-encoded)."
+msgstr "Header della richiesta HHTP rivevuta (codificata JSON)."
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "Help"
+msgstr "Aiuto"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__content_type
+msgid "How the payload is expected to be sent to this webhook: as JSON body or as URL-encoded form data"
+msgstr "Come è previsto che vengano inviati i dati a questo webhook: come struttura JSON o come URL codificato dai dati"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__id
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__id
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__id
+msgid "ID"
+msgstr "ID"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__ip_address
+msgid "IP Address"
+msgstr "Indirizzo IP"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__ip_address
+msgid "IP address of the client that made the request."
+msgstr "Indirizzo IP del client che ha effettuato la richiesta."
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py:0
+#, python-format
+msgid "Invalid allowed IP/CIDR entry: %s"
+msgstr "Valore IP/CIDR consentito non valido: %s"
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py:0
+#, python-format
+msgid "Invalid trusted proxy entry: %s"
+msgstr "Valore proxy validato non valido: %s"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook__content_type__json
+msgid "JSON"
+msgstr "JSON"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_res_config_settings__cetmix_tower_webhook_log_duration
+msgid "Keep Webhook Logs for (days)"
+msgstr "Mantenere i registri del webhook per (giorni)"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook____last_update
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator____last_update
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log____last_update
+msgid "Last Modified on"
+msgstr "Ultima modifica il"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__write_uid
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__write_uid
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__write_uid
+msgid "Last Updated by"
+msgstr "Ultima modifica di"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__write_date
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__write_date
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__write_date
+msgid "Last Updated on"
+msgstr "Ultimo aggiornamento di"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__log_count
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__log_count
+msgid "Log Count"
+msgstr "Conteggio registro"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "Logs"
+msgstr "Registri"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__result_message
+msgid "Message returned by the webhook code or authenticator (if any)."
+msgstr "Messaggio restituito dal codice webhook o dall'autenticatore (se presente)."
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__method
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Method"
+msgstr "Metodo"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__name
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__name
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__name
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_form
+msgid "Name"
+msgstr "nome"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.actions.act_window,help:cetmix_tower_webhook.cx_tower_webhook_log_action
+msgid "No webhook logs found"
+msgstr "Nessun registro webhook trovato"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__authentication_status__not_required
+msgid "Not Required"
+msgstr "Non richiesto"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook__method__post
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__request_method__post
+msgid "POST"
+msgstr "POST"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__content_type
+msgid "Payload Type"
+msgstr "Tipo dati"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__request_payload
+msgid "Payload/body of the received HTTP request (JSON-encoded)."
+msgstr "Dati/corpo della richiesta HTTP ricevuta (codificata JSON)."
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py:0
+#, python-format
+msgid "Raw body of the request (bytes)"
+msgstr "Corpo grezzo della richiesta (vyte)"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__reference
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__reference
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__reference
+msgid "Reference"
+msgstr "Riferimento"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__request_headers
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_form
+msgid "Request Headers"
+msgstr "Geader richiesta"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__request_method
+msgid "Request Method"
+msgstr "Metodo richiesta"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__request_payload
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_form
+msgid "Request Payload"
+msgstr "Dati richiesta"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_form
+msgid "Response Payload"
+msgstr "Dati risposta"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__result_message
+msgid "Result Message"
+msgstr "Messaggio risultato"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__authentication_status
+msgid "Result of authentication for this webhook call."
+msgstr "Risultato dell'autenticazione di questa chiamata webhook."
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__code_status
+msgid "Result of webhook code execution."
+msgstr "Risultato dell'esecuzione del codice webhook."
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__user_id
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__user_id
+msgid "Run as User"
+msgstr "Esegui come utente"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_search
+msgid "Search Webhook Authenticators"
+msgstr "Cerca autenticatori webhook"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "Search Webhooks"
+msgstr "Cerca webhook"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__secret_ids
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__secret_ids
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__secret_ids
+msgid "Secrets"
+msgstr "Segreti"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__user_id
+msgid ""
+"Select a user to run the webhook from behalf of. If not set, the webhook will run as the current user.\n"
+"CAREFUL! You must realise and understand what you are doing including all the possible consequences when selecting a specific user"
+msgstr "Selezionare un utente per cui eseguire il webhook. Se non impostato, il webhook verrà eseguito per conto dell'utente corrente.ATTENZIONE! Bisogna essere consapevoli e comprendere cosa si sta facendo, comprese tutte le possibili conseguenze quando si seleziona un utente specifico."
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__authenticator_id
+msgid "Select an Authenticator used for this webhook"
+msgstr "Selezionare un autenticatore per questo webhook"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__method
+msgid "Select the HTTP method for this webhook"
+msgstr "Selezionare il metodo HTTP per questo webhook"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__request_method
+msgid "Select the HTTP method for this webhook."
+msgstr "Selezionare il metodo HTTP per questo webhook."
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_res_config_settings__cetmix_tower_webhook_log_duration
+msgid "Set the number of days to keep webhook logs. Old logs will be deleted automatically."
+msgstr "Impostare il numero di giorni di mantenimento dei registri webhook."
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.res_config_settings_view_form
+msgid ""
+"Set the number of days to keep webhook logs. Old logs will be deleted automatically.\n"
+"                            <br/>"
+msgstr "Imposta il numero di giorni per cui conservare i registri dei webhook. I vecchi registri verranno eliminati automaticamente.                            <br/>"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__code_status__skipped
+msgid "Skipped"
+msgstr "Saltato"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__authentication_status__success
+#: model:ir.model.fields.selection,name:cetmix_tower_webhook.selection__cx_tower_webhook_log__code_status__success
+msgid "Success"
+msgstr "Successo"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__code
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__code
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__code
+msgid "This field will be rendered using variables"
+msgstr "Questo campo verrà visualizzato utilizzando le variabili"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__trusted_proxy_ips
+msgid "Trusted Proxy IPs"
+msgstr "IP proxy autorizzati"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_search
+msgid "User"
+msgstr "Utente"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__user_id
+msgid "User as which the webhook code was executed (if set)."
+msgstr "Utente per conto del quale è stato eseguito il codice webhook (se impostato)."
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__variable_ids
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__variable_ids
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__variable_ids
+msgid "Variables"
+msgstr "Variabili"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model,name:cetmix_tower_webhook.model_cx_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_variable__webhook_ids
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__webhook_id
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "Webhook"
+msgstr "Webhook"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model,name:cetmix_tower_webhook.model_cx_tower_webhook_authenticator
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_variable__webhook_authenticator_ids
+msgid "Webhook Authenticator"
+msgstr "Autenticatore webhook"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_variable__webhook_authenticator_ids_count
+msgid "Webhook Authenticator Count"
+msgstr "Conteggio autenticatore webhook"
+
+#. module: cetmix_tower_webhook
+#: model:ir.actions.act_window,name:cetmix_tower_webhook.cx_tower_webhook_authenticator_action
+#: model:ir.ui.menu,name:cetmix_tower_webhook.menu_cetmix_tower_webhook_authenticator
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_variable_view_form
+msgid "Webhook Authenticators"
+msgstr "Autenticatori webhook"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model,name:cetmix_tower_webhook.model_cx_tower_webhook_log
+msgid "Webhook Call Log"
+msgstr "Registro chiamata webhook"
+
+#. module: cetmix_tower_webhook
+#: model:ir.ui.menu,name:cetmix_tower_webhook.menu_cetmix_tower_webhook_log
+msgid "Webhook Calls"
+msgstr "Chiamate webhook"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_log__code_status
+msgid "Webhook Code Status"
+msgstr "Stato codice webhook"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_variable__webhook_ids_count
+msgid "Webhook Count"
+msgstr "Conteggio webhook"
+
+#. module: cetmix_tower_webhook
+#: model:ir.actions.act_window,name:cetmix_tower_webhook.cx_tower_webhook_log_action
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_log_view_search
+msgid "Webhook Logs"
+msgstr "Registri webhook"
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook.py:0
+#, python-format
+msgid "Webhook code execution error: %(error)s"
+msgstr "Errore esecuzione codie webhook: %(error)s"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook__endpoint
+msgid "Webhook endpoint. The complete URL will be <your_tower_url>/cetmix_tower_webhooks/<endpoint>"
+msgstr "Endpoint del webhook. L'URL completo sarà <your_tower_url>/cetmix_tower_webhooks/<endpoint>"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,help:cetmix_tower_webhook.field_cx_tower_webhook_log__webhook_id
+msgid "Webhook that received the call."
+msgstr "Webhook che ha ricevuto la chiamata"
+
+#. module: cetmix_tower_webhook
+#. odoo-python
+#: code:addons/cetmix_tower_webhook/models/cx_tower_webhook_eval_mixin.py:0
+#, python-format
+msgid "Webhook/Authenticator code error: result is not a dict"
+msgstr "Errore codice webhook/autenticatore: il risultato non è un dizionario"
+
+#. module: cetmix_tower_webhook
+#: model:ir.actions.act_window,name:cetmix_tower_webhook.cx_tower_webhook_action
+#: model:ir.ui.menu,name:cetmix_tower_webhook.menu_cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_variable_view_form
+msgid "Webhooks"
+msgstr "Webhook"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "YAML"
+msgstr "YAML"
+
+#. module: cetmix_tower_webhook
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook__yaml_code
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_authenticator__yaml_code
+#: model:ir.model.fields,field_description:cetmix_tower_webhook.field_cx_tower_webhook_eval_mixin__yaml_code
+msgid "Yaml Code"
+msgstr "Codice YAML"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+msgid "You must be a member of the \"YAML/Export\" group to export data as YAML"
+msgstr "Bisogna essere membro del gruppo \"YAML/Export\" per esportare i dati come YAML"
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_view_form
+msgid "You must be a member of the \"YAML/Export\" group to export data as YAML."
+msgstr "Bisogna essere membro del gruppo \"YAML/Export\" per esportare i dati come YAML."
+
+#. module: cetmix_tower_webhook
+#: model_terms:ir.ui.view,arch_db:cetmix_tower_webhook.cx_tower_webhook_authenticator_view_form
+msgid "e.g.: 192.168.1.10, 192.168.2.0/24, 2001:db8::/32, 2a00:1450:4001:824::200e"
+msgstr "es.: 192.168.1.10, 192.168.2.0/24, 2001:db8::/32, 2a00:1450:4001:824::200e"
+
--- a/addons/cetmix_tower_webhook/models/init.py
+++ b/addons/cetmix_tower_webhook/models/init.py
@@ -0,0 +1,9 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+from . import cx_tower_webhook_eval_mixin
+from . import cx_tower_webhook_authenticator
+from . import cx_tower_webhook_log
+from . import cx_tower_webhook
+from . import cx_tower_variable
+from . import res_config_settings
--- a/addons/cetmix_tower_webhook/models/constants.py
+++ b/addons/cetmix_tower_webhook/models/constants.py
@@ -0,0 +1,79 @@
+# flake8: noqa: E501
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+from odoo import _
+
+# Default Python code used in Webhook Authenticator
+DEFAULT_WEBHOOK_AUTHENTICATOR_CODE = _(
+    """# Please refer to the 'Help' tab and documentation for more information.
+#
+# You can return authenticator result in the 'result' variable which is a dictionary:
+#   result = {"allowed": <bool, mandatory, default=False>, "http_code": <int, optional>, "message": <str, optional>}
+#   default value is {"allowed": False}
+"""
+)
+
+# Default Python code help used in Webhook Authenticator
+DEFAULT_WEBHOOK_AUTHENTICATOR_CODE_HELP = _(
+    """
+<h3>Help for Webhook Authenticator Python Code</h3>
+<div style="margin-bottom: 10px;">
+    <p>
+        The Python code for the webhook authenticator must return the <code>result</code> variable, which is a dictionary.<br>
+        <strong>Allowed keys:</strong>
+        <ul>
+            <li><code>allowed</code> (<b>bool</b>, required): Authentication result. <code>True</code> if allowed, <code>False</code> otherwise.</li>
+            <li><code>http_code</code> (<b>int</b>, optional): HTTP status code to return if authentication fails (default is 403).</li>
+            <li><code>message</code> (<b>str</b>, optional): Error message to show to the client.</li>
+        </ul>
+        <strong>Examples:</strong>
+        <pre style='background:#f7f7f7; padding:6px; border-radius:4px'>
+# Allow all requests
+result = {"allowed": True}
+
+# Deny with custom code and message
+result = {"allowed": False, "http_code": 401, "message": "Unauthorized request"}
+        </pre>
+    </p>
+    <strong>Available variables:</strong>
+</div>
+"""
+)
+
+
+# Default Python code used in Webhook
+DEFAULT_WEBHOOK_CODE = _(
+    """# Please refer to the 'Help' tab and documentation for more information.
+#
+# You can return webhook result in the 'result' variable which is a dictionary:
+#   result = {"exit_code": <int, default=0>, "message": <string, default=None}
+#   default value is {"exit_code": 0, "message": None}
+"""
+)
+
+# Default Python code help used in Webhook
+DEFAULT_WEBHOOK_CODE_HELP = _(
+    """
+<h3>Help for Webhook Python Code</h3>
+<div style="margin-bottom: 10px;">
+    <p>
+        The webhook Python code must set the <code>result</code> variable, which is a dictionary.<br>
+        <strong>Allowed keys:</strong>
+        <ul>
+            <li><code>exit_code</code> (<b>int</b>, optional, default=0): Exit code (0 means success, other values indicate failure).</li>
+            <li><code>message</code> (<b>str</b>, optional): Message to return in the HTTP response and log.</li>
+        </ul>
+        <strong>Example:</strong>
+        <pre style='background:#f7f7f7; padding:6px; border-radius:4px'>
+# Simple successful result
+result = {"exit_code": 0, "message": "Webhook processed successfully"}
+
+# Failure example
+result = {"exit_code": 1, "message": "Something went wrong"}
+        </pre>
+    </p>
+    <strong>Available variables:</strong>
+</div>
+"""
+)
--- a/addons/cetmix_tower_webhook/models/cx_tower_variable.py
+++ b/addons/cetmix_tower_webhook/models/cx_tower_variable.py
@@ -0,0 +1,85 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+from odoo import fields, models
+
+
+class CxTowerVariable(models.Model):
+    _inherit = "cx.tower.variable"
+
+    # --- Link to records where the variable is used
+    webhook_ids = fields.Many2many(
+        comodel_name="cx.tower.webhook",
+        relation="cx_tower_webhook_variable_rel",
+        column1="variable_id",
+        column2="webhook_id",
+        copy=False,
+    )
+    webhook_ids_count = fields.Integer(
+        string="Webhook Count", compute="_compute_webhook_ids_count"
+    )
+    webhook_authenticator_ids = fields.Many2many(
+        comodel_name="cx.tower.webhook.authenticator",
+        relation="cx_tower_webhook_authenticator_variable_rel",
+        column1="variable_id",
+        column2="webhook_authenticator_id",
+        copy=False,
+    )
+    webhook_authenticator_ids_count = fields.Integer(
+        string="Webhook Authenticator Count", compute="_compute_webhook_ids_count"
+    )
+
+    def _compute_webhook_ids_count(self):
+        """
+        Count number of webhooks and webhook authenticators for the variable
+        """
+        for rec in self:
+            rec.update(
+                {
+                    "webhook_ids_count": len(rec.webhook_ids),
+                    "webhook_authenticator_ids_count": len(
+                        rec.webhook_authenticator_ids
+                    ),
+                }
+            )
+
+    def action_open_webhooks(self):
+        """Open the webhooks where the variable is used"""
+
+        self.ensure_one()
+        action = self.env["ir.actions.act_window"]._for_xml_id(
+            "cetmix_tower_webhook.cx_tower_webhook_action"
+        )
+        action.update(
+            {
+                "domain": [("variable_ids", "in", self.ids)],
+            }
+        )
+        return action
+
+    def action_open_webhook_authenticators(self):
+        """Open the webhook authenticators where the variable is used"""
+
+        self.ensure_one()
+        action = self.env["ir.actions.act_window"]._for_xml_id(
+            "cetmix_tower_webhook.cx_tower_webhook_authenticator_action"
+        )
+        action.update(
+            {
+                "domain": [("variable_ids", "in", self.ids)],
+            }
+        )
+        return action
+
+    def _get_propagation_field_mapping(self):
+        """
+        Override to add webhook and webhook authenticator
+        to the propagation field mapping.
+        """
+        res = super()._get_propagation_field_mapping()
+        res.update(
+            {
+                "cx.tower.webhook": ["code"],
+                "cx.tower.webhook.authenticator": ["code"],
+            }
+        )
+        return res
--- a/addons/cetmix_tower_webhook/models/cx_tower_webhook.py
+++ b/addons/cetmix_tower_webhook/models/cx_tower_webhook.py
@@ -0,0 +1,217 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+import re
+
+from odoo import SUPERUSER_ID, _, api, fields, models
+from odoo.exceptions import ValidationError
+
+from .constants import DEFAULT_WEBHOOK_CODE, DEFAULT_WEBHOOK_CODE_HELP
+
+
+class CxTowerWebhook(models.Model):
+    _name = "cx.tower.webhook"
+    _inherit = [
+        "cx.tower.webhook.eval.mixin",
+    ]
+    _description = "Webhook"
+
+    active = fields.Boolean(
+        default=True,
+        string="Enabled",
+    )
+    authenticator_id = fields.Many2one(
+        comodel_name="cx.tower.webhook.authenticator",
+        required=True,
+        help="Select an Authenticator used for this webhook",
+    )
+    endpoint = fields.Char(
+        required=True,
+        copy=False,
+        help="Webhook endpoint. The complete URL will be "
+        "<your_tower_url>/cetmix_tower_webhooks/<endpoint>",
+    )
+    full_url = fields.Char(
+        compute="_compute_full_url",
+        help="Full URL of the webhook",
+    )
+    method = fields.Selection(
+        [
+            ("post", "POST"),
+            ("get", "GET"),
+        ],
+        default="post",
+        required=True,
+        help="Select the HTTP method for this webhook",
+    )
+    content_type = fields.Selection(
+        [
+            ("json", "JSON"),
+            ("form", "Form URL-Encoded"),
+        ],
+        string="Payload Type",
+        default="json",
+        required=True,
+        help="How the payload is expected to be sent to this webhook: "
+        "as JSON body or as URL-encoded form data",
+    )
+    user_id = fields.Many2one(
+        comodel_name="res.users",
+        string="Run as User",
+        help="Select a user to run the webhook from behalf of. If not set, "
+        "the webhook will run as the current user.\n"
+        "CAREFUL! You must realise and understand what you are doing including "
+        "all the possible consequences when selecting a specific user",
+        default=SUPERUSER_ID,
+        required=True,
+        copy=False,
+    )
+    log_count = fields.Integer(
+        compute="_compute_log_count",
+    )
+    variable_ids = fields.Many2many(
+        comodel_name="cx.tower.variable",
+        relation="cx_tower_webhook_variable_rel",
+        column1="webhook_id",
+        column2="variable_id",
+    )
+
+    _sql_constraints = [
+        (
+            "endpoint_method_uniq",
+            "unique(endpoint, method)",
+            "Endpoint and method must be unique!",
+        ),
+    ]
+
+    def _compute_log_count(self):
+        """Compute log count."""
+        result = self.env["cx.tower.webhook.log"].read_group(
+            domain=[("webhook_id", "in", self.ids)],
+            fields=["webhook_id"],
+            groupby=["webhook_id"],
+        )
+        mapped_data = {r["webhook_id"][0]: r["webhook_id_count"] for r in result}
+        for rec in self:
+            rec.log_count = mapped_data.get(rec.id, 0)
+
+    @api.depends("endpoint")
+    def _compute_full_url(self):
+        """Compute full URL."""
+        base_url = (
+            self.env["ir.config_parameter"]
+            .sudo()
+            .get_param("web.base.url", "")
+            .rstrip("/")
+        )
+        for rec in self:
+            rec.full_url = f"{base_url}/cetmix_tower_webhooks/{rec.endpoint}"
+
+    @api.constrains("endpoint")
+    def _check_endpoint_format(self):
+        """Validate endpoint format."""
+        pattern = re.compile(r"^[A-Za-z0-9](?:[A-Za-z0-9_/-]*[A-Za-z0-9])?$")
+        for rec in self:
+            if rec.endpoint and not pattern.fullmatch(rec.endpoint):
+                raise ValidationError(
+                    _(
+                        "Endpoint must start and end with a letter or digit, "
+                        "and may contain underscores, dashes, and slashes in between"
+                    )
+                )
+
+    def _default_eval_code(self):
+        """
+        Returns the default code for the webhook.
+        """
+        return DEFAULT_WEBHOOK_CODE
+
+    def _get_default_python_eval_code_help(self):
+        """
+        Returns the default code help for the webhook.
+        """
+        return DEFAULT_WEBHOOK_CODE_HELP
+
+    def _get_python_eval_odoo_objects(self, **kwargs):
+        """
+        Override to add custom Odoo objects.
+        """
+        res = {
+            "headers": {
+                "import": kwargs.get("headers"),
+                "help": _("Dictionary of request headers"),
+            },
+            "payload": {
+                "import": kwargs.get("payload"),
+                "help": _(
+                    "Dictionary containing the request payload "
+                    "(JSON for POST, params for GET)"
+                ),
+            },
+        }
+        res.update(super()._get_python_eval_odoo_objects(**kwargs))
+        return res
+
+    def _get_fields_for_yaml(self):
+        """Override to add fields to YAML export."""
+        res = super()._get_fields_for_yaml()
+        res += [
+            "name",
+            "active",
+            "authenticator_id",
+            "endpoint",
+            "method",
+            "code",
+            "content_type",
+            "variable_ids",
+            "secret_ids",
+        ]
+        return res
+
+    def execute(self, payload=None, raise_on_error=True, **kwargs):
+        """
+        Run the webhook code and return a validated result.
+        Handles errors and checks result format.
+
+        Args:
+            payload (dict): The webhook payload. If not provided,
+                the payload will be empty.
+            raise_on_error (bool): Raise ValidationError on error if True.
+            **kwargs: Additional keyword arguments.
+
+        Returns:
+            dict: {
+                'exit_code': <int>,
+                'message': <str>
+            }
+        """
+        self.ensure_one()
+        self_with_user = self.with_user(self.user_id)
+        payload = payload or {}
+
+        try:
+            result = self_with_user._run_webhook_eval_code(
+                self_with_user.code,
+                context_extra={"payload": payload, "headers": kwargs.get("headers")},
+                default_result={"exit_code": 0, "message": None},
+            )
+        except Exception as e:
+            if raise_on_error:
+                raise ValidationError(
+                    _("Webhook code execution error: %(error)s", error=e)
+                ) from e
+            result = {
+                "exit_code": 1,
+                "message": str(e),
+            }
+
+        return result
+
+    def action_view_logs(self):
+        """Open logs related to this webhook."""
+        self.ensure_one()
+        action = self.env["ir.actions.actions"]._for_xml_id(
+            "cetmix_tower_webhook.cx_tower_webhook_log_action"
+        )
+        action["domain"] = [("webhook_id", "=", self.id)]
+        return action
--- a/addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py
+++ b/addons/cetmix_tower_webhook/models/cx_tower_webhook_authenticator.py
@@ -0,0 +1,381 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+import ipaddress
+import logging
+
+from odoo import _, api, fields, models
+from odoo.exceptions import ValidationError
+from odoo.http import request
+
+from .constants import (
+    DEFAULT_WEBHOOK_AUTHENTICATOR_CODE,
+    DEFAULT_WEBHOOK_AUTHENTICATOR_CODE_HELP,
+)
+
+_logger = logging.getLogger(__name__)
+
+
+class CxTowerWebhookAuthenticator(models.Model):
+    _name = "cx.tower.webhook.authenticator"
+    _inherit = [
+        "cx.tower.webhook.eval.mixin",
+    ]
+    _description = "Webhook Authenticator"
+
+    log_count = fields.Integer(
+        compute="_compute_log_count",
+    )
+    allowed_ip_addresses = fields.Text(
+        string="Allowed IPs",
+        help="Comma-separated list of IP addresses and/or subnets "
+        "(e.g. 192.168.1.10,192.168.2.0/24,10.0.0.1,2001:db8::/32,2a00:1450:4001:824::200e). "  # noqa: E501
+        "Requests from other addresses will be denied.",
+    )
+    trusted_proxy_ips = fields.Text(
+        string="Trusted Proxy IPs",
+        help="Comma-separated list of trusted proxy IP addresses or CIDR ranges "
+        "(e.g., 10.0.0.1,192.168.1.0/24). "
+        "Only these proxies can set X-Forwarded-For headers.",
+    )
+    variable_ids = fields.Many2many(
+        comodel_name="cx.tower.variable",
+        relation="cx_tower_webhook_authenticator_variable_rel",
+        column1="webhook_authenticator_id",
+        column2="variable_id",
+    )
+
+    @api.constrains("trusted_proxy_ips")
+    def _check_trusted_proxy_ips(self):
+        """
+        Validate 'trusted_proxy_ips' entries. Accepts single IPs and CIDR ranges
+        (IPv4/IPv6). Empty value is allowed.
+        """
+        for rec in self:
+            invalid = self._validate_ip_token((rec.trusted_proxy_ips or "").strip())
+            if invalid:
+                raise ValidationError(_("Invalid trusted proxy entry: %s") % invalid)
+
+    @api.constrains("allowed_ip_addresses")
+    def _check_allowed_ip_addresses(self):
+        """
+        Validate 'allowed_ip_addresses' entries. Accepts single IPs and CIDR
+        ranges (IPv4/IPv6). Empty value is allowed (means allow all).
+        """
+        for rec in self:
+            invalid = self._validate_ip_token((rec.allowed_ip_addresses or "").strip())
+            if invalid:
+                raise ValidationError(_("Invalid allowed IP/CIDR entry: %s") % invalid)
+
+    def _compute_log_count(self):
+        """Compute log count."""
+        result = self.env["cx.tower.webhook.log"].read_group(
+            domain=[("authenticator_id", "in", self.ids)],
+            fields=["authenticator_id"],
+            groupby=["authenticator_id"],
+        )
+        mapped_data = {
+            r["authenticator_id"][0]: r["authenticator_id_count"] for r in result
+        }
+        for rec in self:
+            rec.log_count = mapped_data.get(rec.id, 0)
+
+    def _default_eval_code(self):
+        """
+        Return the default Python code for the webhook authenticator.
+
+        Returns:
+            str: Default authenticator code.
+        """
+        return DEFAULT_WEBHOOK_AUTHENTICATOR_CODE
+
+    def _get_default_python_eval_code_help(self):
+        """
+        Return the default help text for the authenticator code.
+
+        Returns:
+            str: Code help description.
+        """
+        return DEFAULT_WEBHOOK_AUTHENTICATOR_CODE_HELP
+
+    def _get_python_eval_odoo_objects(self, **kwargs):
+        """
+        Extend the Python evaluation context with custom Odoo objects.
+
+        Args:
+            **kwargs: Extra context values, e.g.:
+                - "headers": request headers (dict)
+                - "raw_data": request body (bytes)
+                - "payload": parsed request payload (dict)
+
+        Returns:
+            dict: Mapping of variables available in evaluation context.
+        """
+        res = {
+            "headers": {
+                "import": kwargs.get("headers"),
+                "help": _("Dictionary of request headers"),
+            },
+            "raw_data": {
+                "import": kwargs.get("raw_data"),
+                "help": _("Raw body of the request (bytes)"),
+            },
+            "payload": {
+                "import": kwargs.get("payload"),
+                "help": _(
+                    "Dictionary containing the request payload "
+                    "(JSON for POST, params for GET)"
+                ),
+            },
+        }
+        res.update(super()._get_python_eval_odoo_objects(**kwargs))
+        return res
+
+    def _get_fields_for_yaml(self):
+        """
+        Extend fields available for YAML export.
+
+        Returns:
+            list[str]: List of field names.
+        """
+        res = super()._get_fields_for_yaml()
+        res += [
+            "name",
+            "code",
+            "allowed_ip_addresses",
+            "trusted_proxy_ips",
+            "variable_ids",
+            "secret_ids",
+        ]
+        return res
+
+    def authenticate(self, raise_on_error=True, **kwargs):
+        """
+        Run the authenticator code and return result.
+
+        Args:
+            raise_on_error (bool): Raise ValidationError on error if True.
+            kwargs: Additional variables passed to the code context, e.g.:
+                - "headers": request headers (dict)
+                - "raw_data": request body (bytes)
+                - "payload": parsed request payload (dict)
+
+        Returns:
+            dict: {
+                "allowed": <bool>,
+                "http_code": <int, optional>,
+                "message": <str, optional>,
+            }
+        """
+        self.ensure_one()
+        try:
+            result = self._run_webhook_eval_code(
+                self.code,
+                context_extra={
+                    "headers": kwargs.get("headers"),
+                    "raw_data": kwargs.get("raw_data"),
+                    "payload": kwargs.get("payload"),
+                },
+                default_result={"allowed": False},
+            )
+        except Exception as e:
+            if raise_on_error:
+                raise ValidationError(_("Authentication code error: %s") % e) from e
+            result = {
+                "allowed": False,
+                "http_code": 500,
+                "message": str(e),
+            }
+
+        return result
+
+    def action_view_logs(self):
+        """
+        Open the action displaying logs related to this authenticator.
+
+        Returns:
+            dict: Action dictionary for `ir.actions.act_window`.
+        """
+        self.ensure_one()
+        action = self.env["ir.actions.actions"]._for_xml_id(
+            "cetmix_tower_webhook.cx_tower_webhook_log_action"
+        )
+        action["domain"] = [("authenticator_id", "=", self.id)]
+        return action
+
+    def is_ip_allowed(self, remote_addr):
+        """
+        Proxy-aware allowlist check.
+
+        Steps:
+            1) Compute the effective client IP.
+            2) If 'allowed_ip_addresses' is empty: allow everyone (backward compatible).
+            3) Otherwise, allow only if the client IP belongs to any network in
+               'allowed_ip_addresses'.
+
+        Args:
+            remote_addr (str): Immediate TCP peer IP (controller-provided).
+
+        Returns:
+            bool: True if client IP is allowed, False otherwise.
+        """
+        self.ensure_one()
+
+        client_ip = self._effective_client_ip(remote_addr)
+        if not client_ip:
+            return False
+
+        spec = (self.allowed_ip_addresses or "").strip()
+        if not spec:
+            return True
+
+        allowed_nets = self._parse_ip_list_to_networks(spec)
+        if not allowed_nets:
+            # Misconfigured allowlist: fail closed
+            return False
+
+        return any(client_ip in net for net in allowed_nets)
+
+    def _effective_client_ip(self, remote_addr):
+        """
+        Compute the effective client IP for the current HTTP request.
+
+        Security model:
+            - The immediate TCP peer is 'remote_addr'
+              (or request.httprequest.remote_addr).
+            - X-Forwarded-For / X-Real-IP are honored ONLY if the immediate peer
+              is within 'trusted_proxy_ips' (single IPs or CIDR ranges).
+            - If not behind a trusted proxy, headers are ignored to prevent spoofing.
+
+        Args:
+            remote_addr (str): Immediate TCP peer IP passed by the controller.
+
+        Returns:
+            ipaddress.IPv4Address|ipaddress.IPv6Address|None:
+            Effective client IP or None.
+        """
+        immediate_peer = remote_addr or getattr(
+            getattr(request, "httprequest", None), "remote_addr", None
+        )
+        if not immediate_peer:
+            return None
+
+        try:
+            immediate_ip = ipaddress.ip_address(immediate_peer)
+        except (ValueError, TypeError):
+            return None
+
+        client_ip = immediate_ip  # default to immediate peer
+        trusted_nets = self._parse_ip_list_to_networks(
+            (self.trusted_proxy_ips or "").strip()
+        )
+        headers = getattr(getattr(request, "httprequest", None), "headers", {}) or {}
+        is_trusted_proxy = (
+            any(immediate_ip in net for net in trusted_nets) if trusted_nets else False
+        )
+
+        if is_trusted_proxy:
+            candidate = self._extract_ip_from_header(headers.get("X-Forwarded-For"))
+            if not candidate:
+                candidate = self._extract_ip_from_header(headers.get("X-Real-IP"))
+            if candidate:
+                try:
+                    client_ip = ipaddress.ip_address(candidate)
+                except ValueError:
+                    # Fall back to immediate peer if candidate is invalid.
+                    _logger.warning("Invalid IP/CIDR entry")
+
+        return client_ip
+
+    def _extract_ip_from_header(self, header_value):
+        """
+        Extract the first valid IP from a proxy-provided header.
+
+        Behavior:
+            - For X-Forwarded-For, the left-most entry is
+              considered the original client IP.
+            - For X-Real-IP, the value itself is considered.
+            - Any non-IP tokens are skipped.
+
+        Args:
+            header_value (str): Raw header value (may contain commas for XFF).
+
+        Returns:
+            str|None: Compressed IPv4/IPv6 string, or None if nothing valid is found.
+        """
+        if not header_value:
+            return None
+
+        for token in header_value.split(","):
+            ip_str = token.strip()
+            if not ip_str:
+                continue
+            try:
+                return ipaddress.ip_address(ip_str).compressed
+            except ValueError:
+                continue
+        return None
+
+    @staticmethod
+    def _parse_ip_list_to_networks(spec):
+        """
+        Convert a CSV of IPs/CIDRs into a list of ip_network objects.
+        Single IPs are normalized to /32 (IPv4) or /128 (IPv6).
+
+        Args:
+            spec (str): CSV of IPs/CIDRs.
+
+        Returns:
+            list[ipaddress.IPv4Network|ipaddress.IPv6Network]
+        """
+        nets = []
+        if not spec:
+            return nets
+        for part in spec.split(","):
+            s = (part or "").strip()
+            if not s:
+                continue
+            try:
+                nets.append(ipaddress.ip_network(s, strict=False))
+                continue
+            except ValueError:
+                _logger.warning(
+                    "Invalid IP/CIDR entry encountered in "
+                    "trusted_proxy_ips configuration."
+                )
+            try:
+                ip = ipaddress.ip_address(s)
+                nets.append(
+                    ipaddress.ip_network(
+                        ip.exploded + ("/32" if ip.version == 4 else "/128")
+                    )
+                )
+            except ValueError:
+                # Ignore invalid entries silently; validation is handled by constraints.
+                continue
+        return nets
+
+    def _validate_ip_token(self, spec):
+        """
+        Return the first invalid token from a CSV of IPs/CIDRs,
+        or None if all valid.
+        Accepts single IPs and CIDR ranges (IPv4/IPv6).
+        Empty/whitespace tokens are ignored.
+        """
+        if not spec:
+            return None
+        for part in spec.split(","):
+            s = (part or "").strip()
+            if not s:
+                continue
+            try:
+                ipaddress.ip_network(s, strict=False)
+                continue
+            except ValueError:
+                _logger.warning("Invalid IP/CIDR entry encountered")
+                pass
+            try:
+                ipaddress.ip_address(s)
+            except ValueError:
+                return s
+        return None
--- a/addons/cetmix_tower_webhook/models/cx_tower_webhook_eval_mixin.py
+++ b/addons/cetmix_tower_webhook/models/cx_tower_webhook_eval_mixin.py
@@ -0,0 +1,201 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+from odoo import _, fields, models
+from odoo.exceptions import ValidationError
+from odoo.tools.safe_eval import safe_eval
+
+
+class CxTowerWebhookEvalMixin(models.AbstractModel):
+    _name = "cx.tower.webhook.eval.mixin"
+    _inherit = [
+        "cx.tower.template.mixin",
+        "cx.tower.key.mixin",
+        "cx.tower.yaml.mixin",
+        "cx.tower.reference.mixin",
+    ]
+    _description = "Eval context/code helper for Cetmix Tower Webhook"
+
+    code_help = fields.Html(
+        compute="_compute_code_help",
+        default=lambda self: self._default_eval_code_help(),
+        compute_sudo=True,
+    )
+    code = fields.Text(
+        default=lambda self: self._default_eval_code(),
+        required=True,
+    )
+
+    @classmethod
+    def _get_depends_fields(cls):
+        """Add code to the depends fields."""
+        return ["code"]
+
+    def _compute_code_help(self):
+        """
+        Compute code help
+        """
+        self.code_help = self._default_eval_code_help()
+
+    def _default_eval_code_help(self):
+        """
+        Return the default code help text for webhook or authenticator.
+
+        We use default because the computation method for this field
+        would not be triggered before this record is saved. And we need
+        to show the value instantly.
+
+        Returns:
+            str: HTML-formatted help string containing available objects and libraries.
+        """
+        available_libraries = self._get_python_eval_odoo_objects()
+        available_libraries.update(self._get_python_eval_libraries())
+        help_text_fragments = []
+        for key, value in available_libraries.items():
+            if key == "server":
+                # Server is not available in the webhook/authenticator eval context
+                continue
+            help_text_fragments.append(f"<li><code>{key}</code>: {value['help']}</li>")
+
+        help_text = "<ul>" + "".join(help_text_fragments) + "</ul>"
+        return f"{self._get_default_python_eval_code_help()}{help_text}"
+
+    def _get_python_eval_odoo_objects(self, **kwargs):
+        """
+        Return Odoo objects available in the eval context.
+
+        Args:
+            **kwargs: Optional context values.
+
+        Returns:
+            dict: Mapping of object names to their import values and help.
+        """
+        return self.env["cx.tower.command"]._get_python_command_odoo_objects()
+
+    def _get_python_eval_libraries(self):
+        """
+        Return Python libraries available in the eval context.
+
+        Returns:
+            dict: Mapping of library names to their import values and help.
+        """
+        return self.env["cx.tower.command"]._get_python_command_libraries()
+
+    def _get_default_python_eval_code_help(self):
+        """
+        Return the default help text for eval code.
+
+        Returns:
+            str: Help text.
+        """
+        return ""
+
+    def _default_eval_code(self):
+        """
+        Return the default code for webhook or authenticator.
+
+        Returns:
+            str: Default Python code.
+        """
+        return ""
+
+    def _prepare_webhook_eval_context(self, context_extra=None, default_result=None):
+        """
+        Build the evaluation context for webhook or authenticator
+        safe_eval.
+
+        Args:
+            context_extra (dict): Additional context variables
+                (payload, headers, etc).
+            default_result (dict): Default value for the 'result' variable.
+
+        Returns:
+            dict: Prepared eval context.
+        """
+        context_extra = context_extra or {}
+        # Get the Odoo objects first
+        imports = self._get_python_eval_odoo_objects(**context_extra)
+
+        # Update with the libraries
+        imports.update(self._get_python_eval_libraries())
+        eval_context = {key: value["import"] for key, value in imports.items()}
+
+        # Remove server from eval context
+        eval_context.pop("server", None)
+
+        # Set default result
+        default_result = default_result or {}
+        eval_context["result"] = default_result.copy()
+
+        return eval_context
+
+    def _run_webhook_eval_code(self, code, **kwargs):
+        """
+        Helper to execute user code safely. Returns the 'result' variable from context.
+
+        Args:
+            code (str): User code to run
+            kwargs:
+                key (dict): Extra keys for secret parser
+                context_extra (dict): Extra context variables (payload, headers, etc)
+                default_result (dict): Default value for the 'result' variable
+
+        Returns:
+            dict: The 'result' variable from context
+        """
+        eval_context = self._prepare_webhook_eval_context(**kwargs)
+
+        if not code:
+            # if code is empty, return the default result
+            return eval_context["result"]
+
+        # prepare the code for evaluation
+        code_and_secrets = self.env["cx.tower.key"]._parse_code_and_return_key_values(
+            code, pythonic_mode=True, **kwargs.get("key", {})
+        )
+        secrets = code_and_secrets.get("key_values")
+        webhook_code = code_and_secrets["code"]
+
+        code = self.env["cx.tower.key"]._parse_code(
+            webhook_code, pythonic_mode=True, **kwargs.get("key", {})
+        )
+
+        # execute user code
+        safe_eval(
+            code,
+            eval_context,
+            mode="exec",
+            nocopy=True,
+        )
+        result = eval_context["result"]
+        return self._parse_eval_code_result(result, secrets=secrets, **kwargs)
+
+    def _parse_eval_code_result(self, result, secrets=None, **kwargs):
+        """
+        Post-processes the result returned from webhook/authenticator eval code.
+
+        If 'secrets' are provided, all occurrences of secret values in the
+        'message' field of result will be replaced with a spoiler string to
+        prevent sensitive information leakage.
+
+        Args:
+            result (dict): The dict returned from the executed eval code,
+                expected to have at least a 'message' key.
+            secrets (dict, optional): A mapping of secret key-value
+                pairs used for replacement in 'message'.
+
+        Returns:
+            dict: The processed result with secrets masked in the 'message'
+                field, if applicable.
+        """
+        if not isinstance(result, dict):
+            raise ValidationError(
+                _("Webhook/Authenticator code error: result is not a dict")
+            )
+
+        if secrets and isinstance(result.get("message"), str):
+            result["message"] = self.env["cx.tower.key"]._replace_with_spoiler(
+                result["message"], secrets
+            )
+
+        return result
--- a/addons/cetmix_tower_webhook/models/cx_tower_webhook_log.py
+++ b/addons/cetmix_tower_webhook/models/cx_tower_webhook_log.py
@@ -0,0 +1,195 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+from datetime import timedelta
+
+from odoo import api, fields, models
+from odoo.http import request
+
+
+class CxTowerWebhookLog(models.Model):
+    _name = "cx.tower.webhook.log"
+    _description = "Webhook Call Log"
+    _order = "create_date desc"
+    _rec_name = "display_name"
+
+    webhook_id = fields.Many2one(
+        comodel_name="cx.tower.webhook",
+        ondelete="cascade",
+        index=True,
+        help="Webhook that received the call.",
+    )
+    endpoint = fields.Char(
+        readonly=True,
+    )
+    authenticator_id = fields.Many2one(
+        comodel_name="cx.tower.webhook.authenticator",
+        readonly=True,
+    )
+    request_method = fields.Selection(
+        [
+            ("post", "POST"),
+            ("get", "GET"),
+        ],
+        default="post",
+        required=True,
+        help="Select the HTTP method for this webhook.",
+    )
+    request_headers = fields.Text(
+        help="Headers of the received HTTP request (JSON-encoded).",
+    )
+    request_payload = fields.Text(
+        help="Payload/body of the received HTTP request (JSON-encoded).",
+    )
+    authentication_status = fields.Selection(
+        [
+            ("success", "Success"),
+            ("failed", "Failed"),
+            ("not_required", "Not Required"),
+        ],
+        required=True,
+        default="failed",
+        help="Result of authentication for this webhook call.",
+    )
+    code_status = fields.Selection(
+        [
+            ("success", "Success"),
+            ("failed", "Failed"),
+            ("skipped", "Skipped"),
+        ],
+        string="Webhook Code Status",
+        required=True,
+        default="skipped",
+        help="Result of webhook code execution.",
+    )
+    http_status = fields.Integer(
+        string="HTTP Status",
+        help="HTTP status code returned to the client.",
+    )
+    result_message = fields.Text(
+        help="Message returned by the webhook code or authenticator (if any).",
+    )
+    error_message = fields.Text(
+        help="Error message in case of authentication or code failure.",
+    )
+    user_id = fields.Many2one(
+        comodel_name="res.users",
+        string="Run as User",
+        help="User as which the webhook code was executed (if set).",
+    )
+    ip_address = fields.Char(
+        string="IP Address",
+        help="IP address of the client that made the request.",
+    )
+    country_id = fields.Many2one(
+        comodel_name="res.country",
+        help="Country of the client that made the request.",
+    )
+    display_name = fields.Char(
+        compute="_compute_display_name",
+        store=True,
+        readonly=True,
+    )
+
+    @api.depends("webhook_id", "endpoint", "http_status")
+    def _compute_display_name(self):
+        """Compute display name."""
+        for rec in self:
+            rec.display_name = (
+                f"{rec.webhook_id.display_name or ''} ({rec.endpoint}) "
+                f"[{rec.http_status or ''}]"
+            )
+
+    @api.model
+    def _get_country_id(self):
+        """
+        Return the country ID of the client based on geoip information.
+
+        Returns:
+            int | bool: Country ID if found, otherwise False.
+        """
+        country_code = None
+        if request and hasattr(request, "geoip") and request.geoip:
+            country_code = request.geoip.get("country_code")
+        if country_code:
+            country = (
+                self.env["res.country"]
+                .sudo()
+                .search([("code", "=", country_code)], limit=1)
+            )
+            if country:
+                return country.id
+        return False
+
+    @api.model
+    def _get_ip_address(self):
+        """
+        Return the IP address of the client making the request.
+
+        Returns:
+            str | None: IP address string, or None if unavailable.
+        """
+        if not request:
+            return None
+        # Check for forwarded IP (common proxy headers)
+        forwarded_for = request.httprequest.headers.get("X-Forwarded-For")
+        if forwarded_for:
+            # Return the first IP in the chain
+            return forwarded_for.split(",")[0].strip()
+        return request.httprequest.remote_addr
+
+    @api.model
+    def create_from_call(self, **kwargs):
+        """
+        Create a log entry from webhook call parameters.
+
+        Args:
+            **kwargs: Values passed to `_prepare_values`.
+
+        Returns:
+            CxTowerWebhookLog: Newly created log record.
+        """
+        values = self._prepare_values(**kwargs)
+        return self.create(values)
+
+    @api.model
+    def _prepare_values(self, webhook=None, **kwargs):
+        """
+        Prepare values for creating a webhook log record.
+
+        Args:
+            webhook (RecordSet, optional): Webhook record.
+            **kwargs: Additional fields such as endpoint, request_method, etc.
+
+        Returns:
+            dict: Prepared values for log creation.
+        """
+        vals = {
+            "webhook_id": webhook.id if webhook else None,
+            "endpoint": webhook.endpoint if webhook else kwargs.get("endpoint"),
+            "authenticator_id": webhook.authenticator_id.id if webhook else None,
+            "request_method": webhook.method
+            if webhook
+            else kwargs.get("request_method"),
+            "user_id": webhook.user_id.id if webhook else None,
+            "ip_address": self._get_ip_address(),
+            "country_id": self._get_country_id(),
+            **kwargs,
+        }
+        return vals
+
+    @api.autovacuum
+    def _gc_delete_old_logs(self):
+        """
+        Remove old webhook log records beyond configured retention period.
+
+        This method is automatically triggered by Odoo's autovacuum.
+        """
+        days = int(
+            self.env["ir.config_parameter"]
+            .sudo()
+            .get_param("cetmix_tower_webhook.webhook_log_duration", 30)
+        )
+        cutoff = fields.Datetime.now() - timedelta(days=days)
+        logs_to_delete = self.sudo().search([("create_date", "<", cutoff)])
+        logs_to_delete.unlink()
--- a/addons/cetmix_tower_webhook/models/res_config_settings.py
+++ b/addons/cetmix_tower_webhook/models/res_config_settings.py
@@ -0,0 +1,13 @@
+from odoo import fields, models
+
+
+class ResConfigSettings(models.TransientModel):
+    _inherit = "res.config.settings"
+
+    cetmix_tower_webhook_log_duration = fields.Integer(
+        string="Keep Webhook Logs for (days)",
+        help="Set the number of days to keep webhook logs. "
+        "Old logs will be deleted automatically.",
+        default=30,
+        config_parameter="cetmix_tower_webhook.webhook_log_duration",
+    )
--- a/addons/cetmix_tower_webhook/pyproject.toml
+++ b/addons/cetmix_tower_webhook/pyproject.toml
@@ -0,0 +1,3 @@
+[build-system]
+requires = ["whool"]
+build-backend = "whool.buildapi"
--- a/addons/cetmix_tower_webhook/readme/CONFIGURE.md
+++ b/addons/cetmix_tower_webhook/readme/CONFIGURE.md
@@ -0,0 +1,58 @@
+## Configure an Authenticator
+
+**⚠️ WARNING: You must be a member of the "Cetmix Tower/Root" group to configure authenticators.**
+
+- Go to "Cetmix Tower > Settings > Automation > Webhook Authenticators" and click "New".
+
+**Complete the following fields:**
+
+- Name. Authenticator name
+- Reference. Unique reference. Leave this field blank to auto generate it
+- Code. Code that is used to authenticate the request. You can use all Cetmix Tower - Python command variables except for the server plus the following webhook specific ones:
+- headers: dictionary that contains the request headers
+- raw_data: string with the raw HTTP request body
+- payload: dictionary that contains the JSON payload or the GET parameters of the request
+
+**The code returns the result variable in the following format:**
+
+```python
+result = {"allowed": <bool, mandatory, default=False>, "http_code": <int, optional>, "message": <str, optional>}
+```
+
+eg:
+
+```python
+result = {"allowed": True}
+result = {"allowed": False, "http_code": 403, "message": "Sorry..."}
+```
+
+## Configure a Webhook
+
+**⚠️ WARNING: You must be a member of the "Cetmix Tower/Root" group to configure webhooks.**
+
+- Go to "Cetmix Tower > Settings > Automation > Webhooks" and click "New".
+
+**Complete the following fields:**
+
+- Enabled. Uncheck this field to disable the webhook without deleting it
+- Name. Authenticator name
+- Reference. Unique reference. Leave this field blank to auto generate it
+- Authenticator. Select an Authenticator used for this webhook
+- Endpoint. Webhook andpoint. The complete webhook URL will be <your_tower_url>/cetmix_tower_webhooks/<endpoint>
+- Run as User. Select a user to run the webhook on behalf of. CAREFUL! You must realize and understand what you are doing, including all the possible consequences when selecting a specific user.
+- Code. Code that processes the request. You can use all Cetmix Tower Python command variables (except for the server) plus the following webhook-specific one:
+  - headers: dictionary that contains the request headers 
+  - payload: dictionary that contains the JSON payload or the GET parameters of the request
+
+Webhook code returns a result using the Cetmix Tower Python command pattern:
+
+```python
+result = {"exit_code": <int, default=0>, "message": <string, default=None}
+```
+
+**To configure the time for which the webhook call logs are stored:**
+
+- Go to "Cetmix Tower > Settings > General Settings"
+- Put a number of days into the "Keep Webhook Logs for (days)" field. Default value is 30.
+
+Please refer to the [official documentation](https://tower.cetmix.com) for detailed configuration instructions.
--- a/addons/cetmix_tower_webhook/readme/CONTEXT.md
+++ b/addons/cetmix_tower_webhook/readme/CONTEXT.md
@@ -0,0 +1,2 @@
+Although Odoo has native support of webhooks staring 17.0, they still have some limitations. 
+Another option is the OCA 'endpoint' module which although is more flexible still makes it usable with Cetmix Tower more complicated.
--- a/addons/cetmix_tower_webhook/readme/DESCRIPTION.md
+++ b/addons/cetmix_tower_webhook/readme/DESCRIPTION.md
@@ -0,0 +1,5 @@
+This module implements incoming webhooks for [Cetmix Tower](https://tower.cetmix.com). Webhooks are authorised using customisable authenticators which can be pre-configured and reused across multiple webhooks. Webhooks and authenticators can be exported and imported using YAML format, which makes them easily sharable.
+
+This module is a part of Cetmix Tower, however it can be used to manage any other odoo applications. 
+
+Please refer to the [official documentation](https://tower.cetmix.com) for detailed information.
--- a/addons/cetmix_tower_webhook/readme/HISTORY.md
+++ b/addons/cetmix_tower_webhook/readme/HISTORY.md
@@ -0,0 +1,13 @@
+## 16.0.1.0.4 (2025-12-11)
+
+- Features: Improve search views, implement the search panel for selected views. (5139)
+
+
+## 16.0.1.0.3 (2025-10-21)
+
+- Features: Use native functions to convert payload to dict (5024)
+
+
+## 16.0.1.0.2 (2025-10-06)
+
+- Bugfixes: Export related variables and secrets (4980)
--- a/addons/cetmix_tower_webhook/readme/USAGE.md
+++ b/addons/cetmix_tower_webhook/readme/USAGE.md
@@ -0,0 +1,3 @@
+When a request is received, Cetmix Tower will search for the webhook with the matching endpoint and authenticate the request using the selected authenticator. In case of successful authentication webhook code is run. Each webhook call is logged. Logs are available under the  "Cetmix Tower > Logs > Webhook Calls" menu or under the "Logs" button directly in the Webhook.
+
+Please refer to the [official documentation](https://tower.cetmix.com) for detailed usage instructions.
--- a/addons/cetmix_tower_webhook/readme/newsfragments/.gitkeep
+++ b/addons/cetmix_tower_webhook/readme/newsfragments/.gitkeep
--- a/addons/cetmix_tower_webhook/security/ir.model.access.csv
+++ b/addons/cetmix_tower_webhook/security/ir.model.access.csv
@@ -0,0 +1,4 @@
+id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink
+access_cx_tower_webhook,Tower Webhook,model_cx_tower_webhook,cetmix_tower_server.group_root,1,1,1,1
+access_cx_tower_webhook_authenticator,Tower Webhook Authenticator,model_cx_tower_webhook_authenticator,cetmix_tower_server.group_root,1,1,1,1
+access_cx_tower_webhook_log,Tower Webhook Log,model_cx_tower_webhook_log,cetmix_tower_server.group_root,1,0,0,0
--- a/addons/cetmix_tower_webhook/static/description/banner.png
+++ b/addons/cetmix_tower_webhook/static/description/banner.png
--- a/addons/cetmix_tower_webhook/static/description/icon.png
+++ b/addons/cetmix_tower_webhook/static/description/icon.png
--- a/addons/cetmix_tower_webhook/static/description/index.html
+++ b/addons/cetmix_tower_webhook/static/description/index.html
@@ -0,0 +1,549 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<meta name="generator" content="Docutils: https://docutils.sourceforge.io/" />
+<title>Cetmix Tower Webhook</title>
+<style type="text/css">
+
+/*
+:Author: David Goodger (goodger@python.org)
+:Id: $Id: html4css1.css 9511 2024-01-13 09:50:07Z milde $
+:Copyright: This stylesheet has been placed in the public domain.
+
+Default cascading style sheet for the HTML output of Docutils.
+Despite the name, some widely supported CSS2 features are used.
+
+See https://docutils.sourceforge.io/docs/howto/html-stylesheets.html for how to
+customize this style sheet.
+*/
+
+/* used to remove borders from tables and images */
+.borderless, table.borderless td, table.borderless th {
+  border: 0 }
+
+table.borderless td, table.borderless th {
+  /* Override padding for "table.docutils td" with "! important".
+     The right padding separates the table cells. */
+  padding: 0 0.5em 0 0 ! important }
+
+.first {
+  /* Override more specific margin styles with "! important". */
+  margin-top: 0 ! important }
+
+.last, .with-subtitle {
+  margin-bottom: 0 ! important }
+
+.hidden {
+  display: none }
+
+.subscript {
+  vertical-align: sub;
+  font-size: smaller }
+
+.superscript {
+  vertical-align: super;
+  font-size: smaller }
+
+a.toc-backref {
+  text-decoration: none ;
+  color: black }
+
+blockquote.epigraph {
+  margin: 2em 5em ; }
+
+dl.docutils dd {
+  margin-bottom: 0.5em }
+
+object[type="image/svg+xml"], object[type="application/x-shockwave-flash"] {
+  overflow: hidden;
+}
+
+/* Uncomment (and remove this text!) to get bold-faced definition list terms
+dl.docutils dt {
+  font-weight: bold }
+*/
+
+div.abstract {
+  margin: 2em 5em }
+
+div.abstract p.topic-title {
+  font-weight: bold ;
+  text-align: center }
+
+div.admonition, div.attention, div.caution, div.danger, div.error,
+div.hint, div.important, div.note, div.tip, div.warning {
+  margin: 2em ;
+  border: medium outset ;
+  padding: 1em }
+
+div.admonition p.admonition-title, div.hint p.admonition-title,
+div.important p.admonition-title, div.note p.admonition-title,
+div.tip p.admonition-title {
+  font-weight: bold ;
+  font-family: sans-serif }
+
+div.attention p.admonition-title, div.caution p.admonition-title,
+div.danger p.admonition-title, div.error p.admonition-title,
+div.warning p.admonition-title, .code .error {
+  color: red ;
+  font-weight: bold ;
+  font-family: sans-serif }
+
+/* Uncomment (and remove this text!) to get reduced vertical space in
+   compound paragraphs.
+div.compound .compound-first, div.compound .compound-middle {
+  margin-bottom: 0.5em }
+
+div.compound .compound-last, div.compound .compound-middle {
+  margin-top: 0.5em }
+*/
+
+div.dedication {
+  margin: 2em 5em ;
+  text-align: center ;
+  font-style: italic }
+
+div.dedication p.topic-title {
+  font-weight: bold ;
+  font-style: normal }
+
+div.figure {
+  margin-left: 2em ;
+  margin-right: 2em }
+
+div.footer, div.header {
+  clear: both;
+  font-size: smaller }
+
+div.line-block {
+  display: block ;
+  margin-top: 1em ;
+  margin-bottom: 1em }
+
+div.line-block div.line-block {
+  margin-top: 0 ;
+  margin-bottom: 0 ;
+  margin-left: 1.5em }
+
+div.sidebar {
+  margin: 0 0 0.5em 1em ;
+  border: medium outset ;
+  padding: 1em ;
+  background-color: #ffffee ;
+  width: 40% ;
+  float: right ;
+  clear: right }
+
+div.sidebar p.rubric {
+  font-family: sans-serif ;
+  font-size: medium }
+
+div.system-messages {
+  margin: 5em }
+
+div.system-messages h1 {
+  color: red }
+
+div.system-message {
+  border: medium outset ;
+  padding: 1em }
+
+div.system-message p.system-message-title {
+  color: red ;
+  font-weight: bold }
+
+div.topic {
+  margin: 2em }
+
+h1.section-subtitle, h2.section-subtitle, h3.section-subtitle,
+h4.section-subtitle, h5.section-subtitle, h6.section-subtitle {
+  margin-top: 0.4em }
+
+h1.title {
+  text-align: center }
+
+h2.subtitle {
+  text-align: center }
+
+hr.docutils {
+  width: 75% }
+
+img.align-left, .figure.align-left, object.align-left, table.align-left {
+  clear: left ;
+  float: left ;
+  margin-right: 1em }
+
+img.align-right, .figure.align-right, object.align-right, table.align-right {
+  clear: right ;
+  float: right ;
+  margin-left: 1em }
+
+img.align-center, .figure.align-center, object.align-center {
+  display: block;
+  margin-left: auto;
+  margin-right: auto;
+}
+
+table.align-center {
+  margin-left: auto;
+  margin-right: auto;
+}
+
+.align-left {
+  text-align: left }
+
+.align-center {
+  clear: both ;
+  text-align: center }
+
+.align-right {
+  text-align: right }
+
+/* reset inner alignment in figures */
+div.align-right {
+  text-align: inherit }
+
+/* div.align-center * { */
+/*   text-align: left } */
+
+.align-top    {
+  vertical-align: top }
+
+.align-middle {
+  vertical-align: middle }
+
+.align-bottom {
+  vertical-align: bottom }
+
+ol.simple, ul.simple {
+  margin-bottom: 1em }
+
+ol.arabic {
+  list-style: decimal }
+
+ol.loweralpha {
+  list-style: lower-alpha }
+
+ol.upperalpha {
+  list-style: upper-alpha }
+
+ol.lowerroman {
+  list-style: lower-roman }
+
+ol.upperroman {
+  list-style: upper-roman }
+
+p.attribution {
+  text-align: right ;
+  margin-left: 50% }
+
+p.caption {
+  font-style: italic }
+
+p.credits {
+  font-style: italic ;
+  font-size: smaller }
+
+p.label {
+  white-space: nowrap }
+
+p.rubric {
+  font-weight: bold ;
+  font-size: larger ;
+  color: maroon ;
+  text-align: center }
+
+p.sidebar-title {
+  font-family: sans-serif ;
+  font-weight: bold ;
+  font-size: larger }
+
+p.sidebar-subtitle {
+  font-family: sans-serif ;
+  font-weight: bold }
+
+p.topic-title {
+  font-weight: bold }
+
+pre.address {
+  margin-bottom: 0 ;
+  margin-top: 0 ;
+  font: inherit }
+
+pre.literal-block, pre.doctest-block, pre.math, pre.code {
+  margin-left: 2em ;
+  margin-right: 2em }
+
+pre.code .ln { color: gray; } /* line numbers */
+pre.code, code { background-color: #eeeeee }
+pre.code .comment, code .comment { color: #5C6576 }
+pre.code .keyword, code .keyword { color: #3B0D06; font-weight: bold }
+pre.code .literal.string, code .literal.string { color: #0C5404 }
+pre.code .name.builtin, code .name.builtin { color: #352B84 }
+pre.code .deleted, code .deleted { background-color: #DEB0A1}
+pre.code .inserted, code .inserted { background-color: #A3D289}
+
+span.classifier {
+  font-family: sans-serif ;
+  font-style: oblique }
+
+span.classifier-delimiter {
+  font-family: sans-serif ;
+  font-weight: bold }
+
+span.interpreted {
+  font-family: sans-serif }
+
+span.option {
+  white-space: nowrap }
+
+span.pre {
+  white-space: pre }
+
+span.problematic, pre.problematic {
+  color: red }
+
+span.section-subtitle {
+  /* font-size relative to parent (h1..h6 element) */
+  font-size: 80% }
+
+table.citation {
+  border-left: solid 1px gray;
+  margin-left: 1px }
+
+table.docinfo {
+  margin: 2em 4em }
+
+table.docutils {
+  margin-top: 0.5em ;
+  margin-bottom: 0.5em }
+
+table.footnote {
+  border-left: solid 1px black;
+  margin-left: 1px }
+
+table.docutils td, table.docutils th,
+table.docinfo td, table.docinfo th {
+  padding-left: 0.5em ;
+  padding-right: 0.5em ;
+  vertical-align: top }
+
+table.docutils th.field-name, table.docinfo th.docinfo-name {
+  font-weight: bold ;
+  text-align: left ;
+  white-space: nowrap ;
+  padding-left: 0 }
+
+/* "booktabs" style (no vertical lines) */
+table.docutils.booktabs {
+  border: 0px;
+  border-top: 2px solid;
+  border-bottom: 2px solid;
+  border-collapse: collapse;
+}
+table.docutils.booktabs * {
+  border: 0px;
+}
+table.docutils.booktabs th {
+  border-bottom: thin solid;
+  text-align: left;
+}
+
+h1 tt.docutils, h2 tt.docutils, h3 tt.docutils,
+h4 tt.docutils, h5 tt.docutils, h6 tt.docutils {
+  font-size: 100% }
+
+ul.auto-toc {
+  list-style-type: none }
+
+</style>
+</head>
+<body>
+<div class="document" id="cetmix-tower-webhook">
+<h1 class="title">Cetmix Tower Webhook</h1>
+
+<!-- !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+!! This file is generated by oca-gen-addon-readme !!
+!! changes will be overwritten.                   !!
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+!! source digest: sha256:6b28bb3bec0ce3e160c08d87fdf2735a4ca2fc271dbf3e361152240f0f02437c
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
+<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/license-AGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/cetmix/cetmix-tower/tree/16.0/cetmix_tower_webhook"><img alt="cetmix/cetmix-tower" src="https://img.shields.io/badge/github-cetmix%2Fcetmix--tower-lightgray.png?logo=github" /></a></p>
+<p>This module implements incoming webhooks for <a class="reference external" href="https://tower.cetmix.com">Cetmix
+Tower</a>. Webhooks are authorised using
+customisable authenticators which can be pre-configured and reused
+across multiple webhooks. Webhooks and authenticators can be exported
+and imported using YAML format, which makes them easily sharable.</p>
+<p>This module is a part of Cetmix Tower, however it can be used to manage
+any other odoo applications.</p>
+<p>Please refer to the <a class="reference external" href="https://tower.cetmix.com">official
+documentation</a> for detailed information.</p>
+<p><strong>Table of contents</strong></p>
+<div class="contents local topic" id="contents">
+<ul class="simple">
+<li><a class="reference internal" href="#use-cases-context" id="toc-entry-1">Use Cases / Context</a></li>
+<li><a class="reference internal" href="#configuration" id="toc-entry-2">Configuration</a><ul>
+<li><a class="reference internal" href="#configure-an-authenticator" id="toc-entry-3">Configure an Authenticator</a></li>
+<li><a class="reference internal" href="#configure-a-webhook" id="toc-entry-4">Configure a Webhook</a></li>
+</ul>
+</li>
+<li><a class="reference internal" href="#usage" id="toc-entry-5">Usage</a></li>
+<li><a class="reference internal" href="#changelog" id="toc-entry-6">Changelog</a><ul>
+<li><a class="reference internal" href="#section-1" id="toc-entry-7">16.0.1.0.4 (2025-12-11)</a></li>
+<li><a class="reference internal" href="#section-2" id="toc-entry-8">16.0.1.0.3 (2025-10-21)</a></li>
+<li><a class="reference internal" href="#section-3" id="toc-entry-9">16.0.1.0.2 (2025-10-06)</a></li>
+</ul>
+</li>
+<li><a class="reference internal" href="#bug-tracker" id="toc-entry-10">Bug Tracker</a></li>
+<li><a class="reference internal" href="#credits" id="toc-entry-11">Credits</a><ul>
+<li><a class="reference internal" href="#authors" id="toc-entry-12">Authors</a></li>
+<li><a class="reference internal" href="#maintainers" id="toc-entry-13">Maintainers</a></li>
+</ul>
+</li>
+</ul>
+</div>
+<div class="section" id="use-cases-context">
+<h1><a class="toc-backref" href="#toc-entry-1">Use Cases / Context</a></h1>
+<p>Although Odoo has native support of webhooks staring 17.0, they still
+have some limitations. Another option is the OCA ‘endpoint’ module which
+although is more flexible still makes it usable with Cetmix Tower more
+complicated.</p>
+</div>
+<div class="section" id="configuration">
+<h1><a class="toc-backref" href="#toc-entry-2">Configuration</a></h1>
+<div class="section" id="configure-an-authenticator">
+<h2><a class="toc-backref" href="#toc-entry-3">Configure an Authenticator</a></h2>
+<p><strong>⚠️ WARNING: You must be a member of the “Cetmix Tower/Root” group to
+configure authenticators.</strong></p>
+<ul class="simple">
+<li>Go to “Cetmix Tower &gt; Settings &gt; Automation &gt; Webhook Authenticators”
+and click “New”.</li>
+</ul>
+<p><strong>Complete the following fields:</strong></p>
+<ul class="simple">
+<li>Name. Authenticator name</li>
+<li>Reference. Unique reference. Leave this field blank to auto generate
+it</li>
+<li>Code. Code that is used to authenticate the request. You can use all
+Cetmix Tower - Python command variables except for the server plus the
+following webhook specific ones:</li>
+<li>headers: dictionary that contains the request headers</li>
+<li>raw_data: string with the raw HTTP request body</li>
+<li>payload: dictionary that contains the JSON payload or the GET
+parameters of the request</li>
+</ul>
+<p><strong>The code returns the result variable in the following format:</strong></p>
+<pre class="code python literal-block">
+<span class="n">result</span> <span class="o">=</span> <span class="p">{</span><span class="s2">&quot;allowed&quot;</span><span class="p">:</span> <span class="o">&lt;</span><span class="nb">bool</span><span class="p">,</span> <span class="n">mandatory</span><span class="p">,</span> <span class="n">default</span><span class="o">=</span><span class="kc">False</span><span class="o">&gt;</span><span class="p">,</span> <span class="s2">&quot;http_code&quot;</span><span class="p">:</span> <span class="o">&lt;</span><span class="nb">int</span><span class="p">,</span> <span class="n">optional</span><span class="o">&gt;</span><span class="p">,</span> <span class="s2">&quot;message&quot;</span><span class="p">:</span> <span class="o">&lt;</span><span class="nb">str</span><span class="p">,</span> <span class="n">optional</span><span class="o">&gt;</span><span class="p">}</span>
+</pre>
+<p>eg:</p>
+<pre class="code python literal-block">
+<span class="n">result</span> <span class="o">=</span> <span class="p">{</span><span class="s2">&quot;allowed&quot;</span><span class="p">:</span> <span class="kc">True</span><span class="p">}</span><span class="w">
+</span><span class="n">result</span> <span class="o">=</span> <span class="p">{</span><span class="s2">&quot;allowed&quot;</span><span class="p">:</span> <span class="kc">False</span><span class="p">,</span> <span class="s2">&quot;http_code&quot;</span><span class="p">:</span> <span class="mi">403</span><span class="p">,</span> <span class="s2">&quot;message&quot;</span><span class="p">:</span> <span class="s2">&quot;Sorry...&quot;</span><span class="p">}</span>
+</pre>
+</div>
+<div class="section" id="configure-a-webhook">
+<h2><a class="toc-backref" href="#toc-entry-4">Configure a Webhook</a></h2>
+<p><strong>⚠️ WARNING: You must be a member of the “Cetmix Tower/Root” group to
+configure webhooks.</strong></p>
+<ul class="simple">
+<li>Go to “Cetmix Tower &gt; Settings &gt; Automation &gt; Webhooks” and click
+“New”.</li>
+</ul>
+<p><strong>Complete the following fields:</strong></p>
+<ul class="simple">
+<li>Enabled. Uncheck this field to disable the webhook without deleting it</li>
+<li>Name. Authenticator name</li>
+<li>Reference. Unique reference. Leave this field blank to auto generate
+it</li>
+<li>Authenticator. Select an Authenticator used for this webhook</li>
+<li>Endpoint. Webhook andpoint. The complete webhook URL will be
+&lt;your_tower_url&gt;/cetmix_tower_webhooks/</li>
+<li>Run as User. Select a user to run the webhook on behalf of. CAREFUL!
+You must realize and understand what you are doing, including all the
+possible consequences when selecting a specific user.</li>
+<li>Code. Code that processes the request. You can use all Cetmix Tower
+Python command variables (except for the server) plus the following
+webhook-specific one:<ul>
+<li>headers: dictionary that contains the request headers</li>
+<li>payload: dictionary that contains the JSON payload or the GET
+parameters of the request</li>
+</ul>
+</li>
+</ul>
+<p>Webhook code returns a result using the Cetmix Tower Python command
+pattern:</p>
+<pre class="code python literal-block">
+<span class="n">result</span> <span class="o">=</span> <span class="p">{</span><span class="s2">&quot;exit_code&quot;</span><span class="p">:</span> <span class="o">&lt;</span><span class="nb">int</span><span class="p">,</span> <span class="n">default</span><span class="o">=</span><span class="mi">0</span><span class="o">&gt;</span><span class="p">,</span> <span class="s2">&quot;message&quot;</span><span class="p">:</span> <span class="o">&lt;</span><span class="n">string</span><span class="p">,</span> <span class="n">default</span><span class="o">=</span><span class="kc">None</span><span class="p">}</span>
+</pre>
+<p><strong>To configure the time for which the webhook call logs are stored:</strong></p>
+<ul class="simple">
+<li>Go to “Cetmix Tower &gt; Settings &gt; General Settings”</li>
+<li>Put a number of days into the “Keep Webhook Logs for (days)” field.
+Default value is 30.</li>
+</ul>
+<p>Please refer to the <a class="reference external" href="https://tower.cetmix.com">official
+documentation</a> for detailed configuration
+instructions.</p>
+</div>
+</div>
+<div class="section" id="usage">
+<h1><a class="toc-backref" href="#toc-entry-5">Usage</a></h1>
+<p>When a request is received, Cetmix Tower will search for the webhook
+with the matching endpoint and authenticate the request using the
+selected authenticator. In case of successful authentication webhook
+code is run. Each webhook call is logged. Logs are available under the
+“Cetmix Tower &gt; Logs &gt; Webhook Calls” menu or under the “Logs” button
+directly in the Webhook.</p>
+<p>Please refer to the <a class="reference external" href="https://tower.cetmix.com">official
+documentation</a> for detailed usage
+instructions.</p>
+</div>
+<div class="section" id="changelog">
+<h1><a class="toc-backref" href="#toc-entry-6">Changelog</a></h1>
+<div class="section" id="section-1">
+<h2><a class="toc-backref" href="#toc-entry-7">16.0.1.0.4 (2025-12-11)</a></h2>
+<ul class="simple">
+<li>Features: Improve search views, implement the search panel for
+selected views. (5139)</li>
+</ul>
+</div>
+<div class="section" id="section-2">
+<h2><a class="toc-backref" href="#toc-entry-8">16.0.1.0.3 (2025-10-21)</a></h2>
+<ul class="simple">
+<li>Features: Use native functions to convert payload to dict (5024)</li>
+</ul>
+</div>
+<div class="section" id="section-3">
+<h2><a class="toc-backref" href="#toc-entry-9">16.0.1.0.2 (2025-10-06)</a></h2>
+<ul class="simple">
+<li>Bugfixes: Export related variables and secrets (4980)</li>
+</ul>
+</div>
+</div>
+<div class="section" id="bug-tracker">
+<h1><a class="toc-backref" href="#toc-entry-10">Bug Tracker</a></h1>
+<p>Bugs are tracked on <a class="reference external" href="https://github.com/cetmix/cetmix-tower/issues">GitHub Issues</a>.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us to smash it by providing a detailed and welcomed
+<a class="reference external" href="https://github.com/cetmix/cetmix-tower/issues/new?body=module:%20cetmix_tower_webhook%0Aversion:%2016.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<p>Do not contact contributors directly about support or help with technical issues.</p>
+</div>
+<div class="section" id="credits">
+<h1><a class="toc-backref" href="#toc-entry-11">Credits</a></h1>
+<div class="section" id="authors">
+<h2><a class="toc-backref" href="#toc-entry-12">Authors</a></h2>
+<ul class="simple">
+<li>Cetmix</li>
+</ul>
+</div>
+<div class="section" id="maintainers">
+<h2><a class="toc-backref" href="#toc-entry-13">Maintainers</a></h2>
+<p>This module is part of the <a class="reference external" href="https://github.com/cetmix/cetmix-tower/tree/16.0/cetmix_tower_webhook">cetmix/cetmix-tower</a> project on GitHub.</p>
+<p>You are welcome to contribute.</p>
+</div>
+</div>
+</div>
+</body>
+</html>
--- a/addons/cetmix_tower_webhook/tests/init.py
+++ b/addons/cetmix_tower_webhook/tests/init.py
@@ -0,0 +1,7 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+from . import test_cx_tower_webhook_authenticator
+from . import test_cx_tower_webhook_log
+from . import test_cx_tower_webhook
+from . import test_webhook_controller
--- a/addons/cetmix_tower_webhook/tests/common.py
+++ b/addons/cetmix_tower_webhook/tests/common.py
@@ -0,0 +1,38 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+from odoo.tests import TransactionCase
+
+
+class CetmixTowerWebhookCommon(TransactionCase):
+    def setUp(self):
+        super().setUp()
+
+        # Set base url for correct link generation
+        self.web_base_url = "https://example.com"
+        self.env["ir.config_parameter"].sudo().set_param(
+            "web.base.url", self.web_base_url
+        )
+
+        # Create simple authenticator that allows all requests
+        self.WebhookAuthenticator = self.env["cx.tower.webhook.authenticator"]
+        self.simple_authenticator = self.WebhookAuthenticator.create(
+            {
+                "name": "Simple Authenticator",
+                "code": "result = {'allowed': True, 'message': 'OK'}",
+            }
+        )
+
+        # Create Simple Webhook
+        self.Webhook = self.env["cx.tower.webhook"]
+        self.simple_webhook = self.Webhook.create(
+            {
+                "name": "Simple Webhook",
+                "endpoint": "simple_webhook",
+                "code": "result = {'exit_code': 0, 'message': 'OK'}",
+                "authenticator_id": self.simple_authenticator.id,
+            }
+        )
+
+        # Log model
+        self.Log = self.env["cx.tower.webhook.log"]
--- a/addons/cetmix_tower_webhook/tests/test_cx_tower_webhook.py
+++ b/addons/cetmix_tower_webhook/tests/test_cx_tower_webhook.py
@@ -0,0 +1,154 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+from odoo.exceptions import ValidationError
+
+from .common import CetmixTowerWebhookCommon
+
+
+class TestCetmixTowerWebhook(CetmixTowerWebhookCommon):
+    def test_simple_webhook_success(self):
+        """
+        Test that webhook is successful
+        """
+        result = self.simple_webhook.execute(
+            headers={}, payload={}, raw_data="", raise_on_error=False
+        )
+        self.assertEqual(result["exit_code"], 0)
+
+    def test_simple_webhook_without_optional_params(self):
+        """
+        Test that webhook is successful without optional params
+        """
+        result = self.simple_webhook.execute(raise_on_error=False)
+        self.assertEqual(result["exit_code"], 0)
+
+    def test_webhook_code_custom_message(self):
+        """
+        Test that custom message is returned from webhook code
+        """
+        self.simple_webhook.write(
+            {"code": "result = {'exit_code': 0, 'message': 'Webhook OK!'}"}
+        )
+        result = self.simple_webhook.execute(raise_on_error=False)
+        self.assertEqual(result["exit_code"], 0)
+        self.assertEqual(result["message"], "Webhook OK!")
+
+    def test_webhook_code_failure(self):
+        """
+        Test that webhook returns error when code sets exit_code != 0
+        """
+        self.simple_webhook.write(
+            {"code": "result = {'exit_code': 42, 'message': 'Error occurred'}"}
+        )
+        result = self.simple_webhook.execute(raise_on_error=False)
+        self.assertEqual(result["exit_code"], 42)
+        self.assertEqual(result["message"], "Error occurred")
+
+    def test_webhook_code_raises_exception(self):
+        """
+        Test that exception in webhook code is handled and returns exit_code 1
+        """
+        self.simple_webhook.write({"code": "raise Exception('Webhook boom!')"})
+        result = self.simple_webhook.execute(raise_on_error=False)
+        self.assertEqual(result["exit_code"], 1)
+        self.assertIn("Webhook boom!", result["message"])
+
+    def test_webhook_code_returns_non_dict(self):
+        """
+        Test that webhook fails gracefully if code returns non-dict
+        """
+        self.simple_webhook.write({"code": "result = 'not a dict'"})
+        result = self.simple_webhook.execute(raise_on_error=False)
+        self.assertEqual(result["exit_code"], 1)
+        self.assertEqual(
+            result["message"], "Webhook/Authenticator code error: result is not a dict"
+        )
+
+    def test_webhook_execute_raises_exception(self):
+        """
+        Test that webhook raises ValidationError if raise_on_error is True
+        """
+        self.simple_webhook.write({"code": "raise Exception('Validation failed!')"})
+        with self.assertRaises(ValidationError):
+            self.simple_webhook.execute(raise_on_error=True)
+
+    def test_webhook_execute_with_payload(self):
+        """
+        Test that webhook receives and processes payload correctly
+        """
+        self.simple_webhook.write(
+            {
+                "code": "result = {'exit_code': 0, 'message': str(payload.get('key', 'none'))}"  # noqa: E501
+            }
+        )
+        payload = {"key": "value123"}
+        result = self.simple_webhook.execute(payload=payload, raise_on_error=False)
+        self.assertEqual(result["exit_code"], 0)
+        self.assertEqual(result["message"], "value123")
+
+    def test_webhook_execute_with_user(self):
+        """
+        Test that webhook executes as specified user
+        """
+        test_user = self.env.ref("base.user_demo")
+        self.simple_webhook.user_id = test_user
+        self.simple_webhook.write(
+            {"code": "result = {'exit_code': 0, 'message': user.login}"}
+        )
+        result = self.simple_webhook.execute(raise_on_error=False)
+        self.assertEqual(result["message"], test_user.login)
+
+    def test_webhook_context_isolation(self):
+        """
+        Test that only payload is available in eval context;
+        extra kwargs are not accessible
+        """
+        self.simple_webhook.write(
+            {
+                "code": (
+                    "fail = []\n"
+                    "for var in ['headers', 'raw_data', 'custom_param']:\n"
+                    "    try:\n"
+                    "        _ = eval(var)\n"
+                    "        fail.append(var)\n"
+                    "    except Exception:\n"
+                    "        pass\n"
+                    "if fail:\n"
+                    "    result = {'exit_code': 99, 'message': 'Leaked vars: ' + ','.join(fail)}\n"  # noqa: E501
+                    "else:\n"
+                    "    result = {'exit_code': 0, 'message': 'Context clean'}\n"
+                )
+            }
+        )
+        result = self.simple_webhook.execute(
+            payload={"key": "val"},
+            headers={"x": "y"},
+            raw_data="boom",
+            custom_param="xxx",
+            raise_on_error=False,
+        )
+        self.assertEqual(result["exit_code"], 0, result["message"])
+        self.assertIn("Context clean", result["message"])
+
+    def test_webhook_execute_runs_as_user_id(self):
+        """
+        Test that the webhook code is always executed as the specified user_id,
+        regardless of the caller's user context or extra kwargs.
+        """
+        # set specific user
+        test_user = self.env.ref("base.user_demo")
+        self.simple_webhook.user_id = test_user
+        self.simple_webhook.write(
+            {"code": "result = {'exit_code': 0, 'message': user.login}"}
+        )
+
+        # run execute() with another user and try to pass user_id via kwargs
+        other_user = self.env.ref("base.user_admin")
+        result = self.simple_webhook.with_user(other_user).execute(
+            payload={},
+            user_id=self.env.ref("base.user_root").id,  # try to pass own user_id
+            raise_on_error=False,
+        )
+        # the result should be from user_demo anyway
+        self.assertEqual(result["message"], test_user.login)
--- a/addons/cetmix_tower_webhook/tests/test_cx_tower_webhook_authenticator.py
+++ b/addons/cetmix_tower_webhook/tests/test_cx_tower_webhook_authenticator.py
@@ -0,0 +1,143 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+from odoo.exceptions import ValidationError
+
+from .common import CetmixTowerWebhookCommon
+
+
+class TestCetmixTowerWebhookAuthenticator(CetmixTowerWebhookCommon):
+    def test_simple_authentication_success(self):
+        """
+        Test that authentication is successful
+        """
+        # check that authentication is successful for authenticator
+        # that allows all requests
+        result = self.simple_authenticator.authenticate(
+            headers={}, payload={}, raw_data=""
+        )
+        self.assertTrue(result["allowed"])
+
+    def test_simple_authentication_without_optional_params(self):
+        """
+        Test that authentication is successful without optional params
+        """
+        result = self.simple_authenticator.authenticate()
+        self.assertTrue(result["allowed"])
+
+    def test_token_authentication_success(self):
+        """
+        Test that authentication is successful for authenticator that allows requests
+        with specific token in header
+        """
+        auth_token_header = "X-Token"
+        auth_token = "secret123"
+        code = f"result = {{'allowed': headers.get('{auth_token_header}') == '{auth_token}'}}"  # noqa: E501
+        self.simple_authenticator.code = code
+        result = self.simple_authenticator.authenticate(
+            headers={auth_token_header: auth_token}
+        )
+        self.assertTrue(result["allowed"])
+
+    def test_token_authentication_failure(self):
+        """
+        Test that authentication is failed for authenticator that allows
+        requests with specific token in header
+        """
+        auth_token_header = "X-Token"
+        auth_token = "secret123"
+        code = f"result = {{'allowed': headers.get('{auth_token_header}') == '{auth_token}'}}"  # noqa: E501
+        self.simple_authenticator.code = code
+        result = self.simple_authenticator.authenticate(
+            headers={auth_token_header: "wrong_token"}, raise_on_error=False
+        )
+        self.assertFalse(result["allowed"])
+
+    def test_token_authentication_failure_without_optional_params(self):
+        """
+        Test that authentication is failed without optional params
+        """
+        auth_token_header = "X-Token"
+        auth_token = "secret123"
+        code = f"result = {{'allowed': headers.get('{auth_token_header}') == '{auth_token}'}}"  # noqa: E501
+        self.simple_authenticator.code = code
+        result = self.simple_authenticator.authenticate(raise_on_error=False)
+        self.assertFalse(result["allowed"])
+        self.assertEqual(result["http_code"], 500)
+        self.assertIn("object has no attribute 'get'", result["message"])
+
+    def test_authentication_code_error(self):
+        """
+        Test that authentication is failed with invalid code
+        """
+        self.simple_authenticator.code = "1/0"
+        result = self.simple_authenticator.authenticate(raise_on_error=False)
+        self.assertFalse(result["allowed"])
+        self.assertEqual(result["http_code"], 500)
+        self.assertEqual(result["message"], "division by zero")
+
+        # test with raise_on_error=True
+        with self.assertRaises(ValidationError) as e:
+            self.simple_authenticator.authenticate()
+        self.assertEqual(
+            str(e.exception), "Authentication code error: division by zero"
+        )
+
+    def test_authenticator_custom_http_code_and_message(self):
+        """
+        Test that custom http_code and message returned from code are respected
+        """
+        message = "I am a teapot!"
+        self.simple_authenticator.code = (
+            f"result = {{'allowed': False, 'http_code': 418, 'message': '{message}'}}"
+        )
+        result = self.simple_authenticator.authenticate(headers={})
+        self.assertFalse(result["allowed"])
+        self.assertEqual(result.get("http_code"), 418)
+        self.assertEqual(result.get("message"), message)
+
+    def test_authenticator_returns_non_dict(self):
+        """
+        Test that authentication fails if code returns non-dict result
+        """
+        self.simple_authenticator.write({"code": "result = 'not a dict'"})
+        result = self.simple_authenticator.authenticate(
+            headers={}, raise_on_error=False
+        )
+        self.assertFalse(result["allowed"])
+        self.assertEqual(result["http_code"], 500)
+        self.assertIn("result is not a dict", result["message"])
+
+    def test_authentication_with_raw_data(self):
+        """
+        Test that authentication works with raw_data and without headers
+        """
+        self.simple_authenticator.write(
+            {"code": "result = {'allowed': raw_data == 'magic'}"}
+        )
+        result = self.simple_authenticator.authenticate(raw_data="magic")
+        self.assertTrue(result["allowed"])
+        result = self.simple_authenticator.authenticate(raw_data="not_magic")
+        self.assertFalse(result["allowed"])
+
+    def test_authentication_code_exception(self):
+        """
+        Test that authentication code exception is captured in result['message']
+        """
+        self.simple_authenticator.write({"code": "raise Exception('custom failure')"})
+        result = self.simple_authenticator.authenticate(
+            headers={}, raise_on_error=False
+        )
+        self.assertFalse(result["allowed"])
+        self.assertEqual(result["http_code"], 500)
+        self.assertIn("custom failure", result["message"])
+
+    def test_authentication_minimal_false(self):
+        """
+        Test minimal code with only allowed: False
+        """
+        self.simple_authenticator.write({"code": "result = {'allowed': False}"})
+        result = self.simple_authenticator.authenticate(headers={})
+        self.assertFalse(result["allowed"])
+        self.assertIsNone(result.get("http_code"))
+        self.assertIsNone(result.get("message"))
--- a/addons/cetmix_tower_webhook/tests/test_cx_tower_webhook_log.py
+++ b/addons/cetmix_tower_webhook/tests/test_cx_tower_webhook_log.py
@@ -0,0 +1,68 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+import json
+from datetime import datetime, timedelta
+
+from .common import CetmixTowerWebhookCommon
+
+
+class TestCetmixTowerWebhookLog(CetmixTowerWebhookCommon):
+    def test_create_log_from_call(self):
+        """Test creating a log entry via create_from_call()."""
+        vals = {
+            "result_message": "Manual log",
+            "http_status": 201,
+            "authentication_status": "success",
+            "code_status": "success",
+            "request_payload": json.dumps({"foo": "bar"}),
+            "request_headers": json.dumps({"X-Test": "test"}),
+            "webhook_id": self.simple_webhook.id,
+        }
+        log = self.Log.create_from_call(webhook=self.simple_webhook, **vals)
+        self.assertEqual(log.webhook_id, self.simple_webhook)
+        self.assertEqual(log.result_message, "Manual log")
+        self.assertEqual(log.http_status, 201)
+        self.assertEqual(log.authentication_status, "success")
+        self.assertIn("foo", log.request_payload)
+        self.assertIn("X-Test", log.request_headers)
+
+    def test_gc_delete_old_logs(self):
+        """Test auto-removal of old logs via _gc_delete_old_logs()."""
+        # Create an "old" log
+        old_log = self.Log.create_from_call(
+            webhook=self.simple_webhook,
+            authentication_status="success",
+            code_status="success",
+            http_status=200,
+        )
+        # Set create_date in the past (we cannot use write
+        # because the create_date is MAGIC Field)
+        past_date = (datetime.now() - timedelta(days=100)).strftime("%Y-%m-%d %H:%M:%S")
+        self.env.cr.execute(
+            "UPDATE cx_tower_webhook_log SET create_date = %s WHERE id = %s",
+            (past_date, old_log.id),
+        )
+        self.env.invalidate_all()
+        # Create a new log
+        new_log = self.Log.create_from_call(
+            webhook=self.simple_webhook,
+            authentication_status="success",
+            code_status="success",
+            http_status=200,
+        )
+        # Set log duration to 30 days
+        self.env["ir.config_parameter"].sudo().set_param(
+            "cetmix_tower_webhook.webhook_log_duration", 30
+        )
+        # Enter test mode to run the autovacuum cron because
+        # `_run_vacuum_cleaner` makes a commit
+        self.registry.enter_test_mode(self.cr)
+        self.addCleanup(self.registry.leave_test_mode)
+        env = self.env(cr=self.registry.cursor())
+
+        # Run the autovacuum cron
+        env.ref("base.autovacuum_job").method_direct_trigger()
+
+        self.assertFalse(self.Log.browse(old_log.id).exists())
+        self.assertTrue(self.Log.browse(new_log.id).exists())
--- a/addons/cetmix_tower_webhook/tests/test_webhook_controller.py
+++ b/addons/cetmix_tower_webhook/tests/test_webhook_controller.py
@@ -0,0 +1,608 @@
+# Copyright (C) 2025 Cetmix OÜ
+# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
+
+import json
+from unittest.mock import patch
+
+from odoo.tests import HttpCase, tagged
+
+
+@tagged("-at_install", "post_install")
+class TestCxTowerWebhookController(HttpCase):
+    @classmethod
+    def setUpClass(cls):
+        super().setUpClass()
+        env = cls.env
+        # Authenticator that always allows requests
+        cls.authenticator = env["cx.tower.webhook.authenticator"].create(
+            {"name": "Always OK", "code": "result = {'allowed': True}"}
+        )
+        # POST webhook
+        cls.webhook_post = env["cx.tower.webhook"].create(
+            {
+                "name": "Test Webhook POST",
+                "endpoint": "webhook_post",
+                "method": "post",
+                "authenticator_id": cls.authenticator.id,
+                "code": "result = {'exit_code': 0, 'message': 'POST ok'}",
+            }
+        )
+        # GET webhook
+        cls.webhook_get = env["cx.tower.webhook"].create(
+            {
+                "name": "Test Webhook GET",
+                "endpoint": "webhook_get",
+                "method": "get",
+                "authenticator_id": cls.authenticator.id,
+                "code": "result = {'exit_code': 0, 'message': 'GET ok'}",
+            }
+        )
+        # Log model
+        cls.Log = env["cx.tower.webhook.log"]
+
+    def url_for(self, endpoint):
+        """Helper to build webhook url"""
+        url = f"/cetmix_tower_webhooks/{endpoint}"
+        return self.base_url() + url
+
+    def assert_log(self, log=None, request_payload=None, **expected):
+        """
+        Universal log checker for webhook log model.
+        Checks expected field values and substrings.
+        """
+        self.assertIsNotNone(log, "Log record was not created")
+        if request_payload is not None:
+            try:
+                log_payload = log.request_payload
+                # try to convert both to Python dict for comparison
+                if isinstance(log_payload, str):
+                    log_payload = log_payload.strip()
+                self.assertDictEqual(
+                    json.loads(
+                        log_payload.replace("'", '"')
+                    ),  # try to make JSON from possible str(dict)
+                    json.loads(request_payload),
+                )
+            except Exception as ex:
+                self.fail(
+                    f"Payload comparison failed: {ex}\nLog: {log.request_payload}\nExpected: {request_payload}"  # noqa: E501
+                )
+        for field, value in expected.items():
+            if field == "request_payload":
+                continue  # Already checked
+            actual = getattr(log, field)
+            self.assertEqual(actual, value, f"{field}: expected {value}, got {actual}")
+
+    def test_post_webhook_success(self):
+        """Success test for POST request with correct payload."""
+        data = json.dumps({"some": "data"})
+        response = self.url_open(
+            self.url_for(self.webhook_post.endpoint),
+            data=data,
+            headers={"Content-Type": "application/json"},
+        )
+        self.assertEqual(response.status_code, 200)
+        self.assertIn(b"POST ok", response.content)
+
+        log = self.Log.search([("webhook_id", "=", self.webhook_post.id)])
+        self.assert_log(
+            log,
+            code_status="success",
+            authentication_status="success",
+            http_status=200,
+            endpoint=self.webhook_post.endpoint,
+            request_payload=data,
+        )
+
+    def test_get_webhook_success(self):
+        """Success test for GET request with correct payload."""
+        response = self.url_open(
+            f"{self.url_for(self.webhook_get.endpoint)}?foo=bar",
+        )
+        self.assertEqual(response.status_code, 200)
+        self.assertIn(b"GET ok", response.content)
+
+        log = self.Log.search([("webhook_id", "=", self.webhook_get.id)])
+        self.assert_log(
+            log,
+            code_status="success",
+            authentication_status="success",
+            http_status=200,
+            endpoint=self.webhook_get.endpoint,
+        )
+        self.assertIn("foo", log.request_payload)
+
+    def test_webhook_not_found(self):
+        """Test request to a non-existing webhook endpoint."""
+        data = json.dumps({"test": 1})
+        response = self.url_open(
+            self.url_for("missing"),
+            data=data,
+            headers={"Content-Type": "application/json"},
+        )
+        self.assertEqual(response.status_code, 404)
+        self.assertIn(b"Webhook not found", response.content)
+
+        log = self.Log.search([("webhook_id", "=", False)])
+        self.assert_log(
+            log,
+            code_status="skipped",
+            authentication_status="failed",
+            http_status=404,
+            endpoint="missing",
+            error_message="Webhook not found",
+            request_payload=data,
+        )
+
+    def test_wrong_method(self):
+        """
+        Test GET request to POST-only webhook.
+        """
+        response = self.url_open(
+            self.url_for(self.webhook_post.endpoint),
+        )
+        self.assertEqual(response.status_code, 404)
+        self.assertIn(b"Webhook not found", response.content)
+
+        log = self.Log.search([("webhook_id", "=", False)])
+        self.assert_log(
+            log,
+            code_status="skipped",
+            authentication_status="failed",
+            http_status=404,
+            error_message="Webhook not found",
+            endpoint=self.webhook_post.endpoint,
+            request_method="get",
+        )
+
+    def test_missing_payload_post(self):
+        """
+        Test POST request with empty payload.
+        """
+        # use opener instead of url_open to avoid checking of data
+        response = self.opener.post(
+            self.url_for(self.webhook_post.endpoint),
+            timeout=1200000,
+            headers={"Content-Type": "application/json"},
+            allow_redirects=True,
+        )
+
+        self.assertEqual(response.status_code, 200)
+        self.assertIn(b"POST ok", response.content)
+
+        log = self.Log.search([("webhook_id", "=", self.webhook_post.id)])
+        self.assert_log(
+            log,
+            code_status="success",
+            authentication_status="success",
+            http_status=200,
+            endpoint=self.webhook_post.endpoint,
+            request_payload="{}",
+        )
+
+    def test_authentication_failed(self):
+        """
+        Test POST request with authenticator that always denies.
+        """
+        bad_auth = self.env["cx.tower.webhook.authenticator"].create(
+            {
+                "name": "Never OK",
+                "code": "result = {'allowed': False, 'custom_message': 'Forbidden'}",
+            }
+        )
+        webhook = self.env["cx.tower.webhook"].create(
+            {
+                "name": "Forbidden Webhook",
+                "endpoint": "forbidden",
+                "method": "post",
+                "authenticator_id": bad_auth.id,
+                "code": "result = {'exit_code': 0, 'message': 'Should not run'}",
+            }
+        )
+        data = json.dumps({"fail": 1})
+        response = self.url_open(
+            self.url_for(webhook.endpoint),
+            data=data,
+            headers={"Content-Type": "application/json"},
+        )
+        self.assertEqual(response.status_code, 403)
+        self.assertIn(b"Authentication not allowed", response.content)
+
+        log = self.Log.search([("webhook_id", "=", webhook.id)])
+        self.assert_log(
+            log,
+            code_status="skipped",
+            authentication_status="failed",
+            http_status=403,
+            endpoint=webhook.endpoint,
+            request_payload=data,
+        )
+
+    def test_webhook_code_failure(self):
+        """
+        Test POST request to a webhook that raises an exception in code.
+        """
+        self.webhook_post.code = "raise Exception('Some error!')"
+        response = self.url_open(
+            self.url_for(self.webhook_post.endpoint),
+            data=json.dumps({}),
+            headers={"Content-Type": "application/json"},
+        )
+        self.assertEqual(response.status_code, 500)
+        self.assertIn(b"Some error!", response.content)
+
+        log = self.Log.search([("webhook_id", "=", self.webhook_post.id)])
+        self.assert_log(
+            log,
+            code_status="failed",
+            authentication_status="success",
+            http_status=500,
+            endpoint=self.webhook_post.endpoint,
+            request_payload="{}",
+        )
+        self.assertIn("Some error!", log.error_message)
+
+    def test_json_headers_are_stored(self):
+        """
+        Test that request headers and payload are saved in webhook log record.
+        """
+        payload = {"foo": "bar"}
+        headers = {"X-Test-Header": "xxx", "Content-Type": "application/json"}
+        response = self.url_open(
+            self.url_for(self.webhook_post.endpoint),
+            data=json.dumps(payload),
+            headers=headers,
+        )
+
+        log = self.Log.search([("webhook_id", "=", self.webhook_post.id)])
+        self.assert_log(
+            log,
+            code_status="success",
+            authentication_status="success",
+            http_status=200,
+            endpoint=self.webhook_post.endpoint,
+        )
+        self.assertIn("foo", log.request_payload)
+        self.assertIn("X-Test-Header", log.request_headers)
+        self.assertIn(log.result_message, response.text)
+
+    def test_log_contains_ip(self):
+        """
+        Test that the log contains the client's IP address and country (if available).
+        """
+        payload = {"check": "ip"}
+        self.url_open(
+            self.url_for(self.webhook_post.endpoint),
+            data=json.dumps(payload),
+            headers={"Content-Type": "application/json"},
+        )
+
+        log = self.Log.search([("webhook_id", "=", self.webhook_post.id)])
+        self.assertTrue(log.ip_address)
+
+    def test_inactive_webhook(self):
+        """Test that inactive webhooks are not callable."""
+        self.webhook_post.active = False
+        response = self.url_open(
+            self.url_for(self.webhook_post.endpoint),
+            data=json.dumps({"a": 1}),
+            headers={"Content-Type": "application/json"},
+        )
+        self.assertEqual(response.status_code, 404)
+        self.assertIn(b"Webhook not found", response.content)
+
+    def test_authenticator_code_raises(self):
+        """
+        Test that if authenticator's code raises an error,
+        proper log is created and 403 returned.
+        """
+        bad_auth = self.env["cx.tower.webhook.authenticator"].create(
+            {"name": "Broken Auth", "code": "raise Exception('auth fail')"}
+        )
+        webhook = self.env["cx.tower.webhook"].create(
+            {
+                "name": "Web with bad auth",
+                "endpoint": "bad_auth",
+                "method": "post",
+                "authenticator_id": bad_auth.id,
+                "code": "result = {'exit_code': 0, 'message': 'Should not run'}",
+            }
+        )
+        response = self.url_open(
+            self.url_for(webhook.endpoint),
+            data=json.dumps({"x": 1}),
+            headers={"Content-Type": "application/json"},
+        )
+        self.assertEqual(response.status_code, 403)
+        self.assertIn(b"auth fail", response.content)
+
+        log = self.Log.search([("webhook_id", "=", webhook.id)])
+        self.assert_log(
+            log,
+            code_status="skipped",
+            authentication_status="failed",
+            http_status=403,
+            endpoint=webhook.endpoint,
+        )
+        self.assertIn("auth fail", log.error_message)
+
+    def test_post_webhook_json_content_type(self):
+        """
+        Test POST request with content_type json.
+        """
+        self.webhook_post.content_type = "json"
+        self.webhook_post.code = "result = {'exit_code': 0, 'message': 'POST JSON ok'}"
+
+        data = json.dumps({"json_test": "ok"})
+        response = self.url_open(
+            self.url_for(self.webhook_post.endpoint),
+            data=data,
+            headers={"Content-Type": "application/json"},
+        )
+        self.assertEqual(response.status_code, 200)
+        self.assertIn(b"POST JSON ok", response.content)
+
+        log = self.Log.search([("webhook_id", "=", self.webhook_post.id)])
+        self.assert_log(
+            log,
+            code_status="success",
+            authentication_status="success",
+            http_status=200,
+            endpoint=self.webhook_post.endpoint,
+            request_payload=data,
+        )
+
+    def test_post_webhook_form_content_type(self):
+        """
+        Test POST request with content_type form.
+        """
+        self.webhook_post.content_type = "form"
+        self.webhook_post.code = "result = {'exit_code': 0, 'message': 'POST FORM ok'}"
+
+        data = {"form_field": "ok"}
+        response = self.url_open(
+            self.url_for(self.webhook_post.endpoint),
+            data=data,
+            headers={"Content-Type": "application/x-www-form-urlencoded"},
+        )
+        self.assertEqual(response.status_code, 200)
+        self.assertIn(b"POST FORM ok", response.content)
+
+        log = self.Log.search([("webhook_id", "=", self.webhook_post.id)])
+        self.assertIn("form_field", log.request_payload)
+
+    def test_authenticator_ipv4_and_ipv6(self):
+        """
+        Test IP filter for IPv4, IPv6, and networks
+        by monkeypatching REMOTE_ADDR in environ.
+        """
+        auth = self.env["cx.tower.webhook.authenticator"].create(
+            {
+                "name": "IP Test",
+                "allowed_ip_addresses": "203.0.113.5,2001:db8::42,198.51.100.0/24,2001:db8:abcd::/48",  # noqa: E501
+                "code": "result = {'allowed': True}",
+            }
+        )
+        webhook = self.env["cx.tower.webhook"].create(
+            {
+                "name": "IP Webhook",
+                "endpoint": "webhook_iptest",
+                "method": "post",
+                "authenticator_id": auth.id,
+                "code": "result = {'exit_code': 0, 'message': 'IP OK'}",
+            }
+        )
+
+        data = json.dumps({"ip": "test"})
+
+        def do_req(ip):
+            # Patch _get_remote_addr to simulate requests coming
+            # from different IP addresses
+            with patch(
+                "odoo.addons.cetmix_tower_webhook.controllers.main.CetmixTowerWebhookController._get_remote_addr",
+                return_value=ip,
+            ):
+                return self.url_open(
+                    self.url_for(webhook.endpoint),
+                    data=data,
+                    headers={"Content-Type": "application/json"},
+                )
+
+        # IPv4 address allowed
+        resp = do_req("203.0.113.5")
+        self.assertEqual(resp.status_code, 200)
+        self.assertIn(b"IP OK", resp.content)
+
+        # IPv6 address allowed
+        resp = do_req("2001:db8::42")
+        self.assertEqual(resp.status_code, 200)
+        self.assertIn(b"IP OK", resp.content)
+
+        # IPv4 network allowed
+        resp = do_req("198.51.100.99")
+        self.assertEqual(resp.status_code, 200)
+        self.assertIn(b"IP OK", resp.content)
+
+        # IPv6 network allowed
+        resp = do_req("2001:db8:abcd::abcd")
+        self.assertEqual(resp.status_code, 200)
+        self.assertIn(b"IP OK", resp.content)
+
+        # Denied IPv4 address
+        resp = do_req("203.0.113.99")
+        self.assertEqual(resp.status_code, 403)
+        self.assertIn(b"Address not allowed", resp.content)
+
+        # Denied IPv6 address
+        resp = do_req("2001:db8:ffff::1")
+        self.assertEqual(resp.status_code, 403)
+        self.assertIn(b"Address not allowed", resp.content)
+
+    def _make_proxy_webhook(
+        self,
+        allowed,
+        trusted=None,
+        code="result = {'exit_code': 0, 'message': 'OK via proxy'}",
+    ):
+        """
+        Helper to create a webhook with a dedicated authenticator configured
+        for proxy-aware tests.
+        """
+        auth = self.env["cx.tower.webhook.authenticator"].create(
+            {
+                "name": "Proxy Aware",
+                "allowed_ip_addresses": allowed,
+                "trusted_proxy_ips": trusted or "",
+                "code": "result = {'allowed': True}",
+            }
+        )
+        wh = self.env["cx.tower.webhook"].create(
+            {
+                "name": "Proxy Webhook",
+                "endpoint": "proxy_webhook",
+                "method": "post",
+                "authenticator_id": auth.id,
+                "code": code,
+            }
+        )
+        return wh, auth
+
+    def test_proxy_headers_ignored_without_trusted_proxy(self):
+        """
+        When trusted_proxy_ips is empty, XFF/X-Real-IP must be ignored.
+        We fallback to immediate peer (proxy IP), which is not allowed -> 403.
+        """
+        # Allow only the real client network, not the proxy itself
+        webhook, _auth = self._make_proxy_webhook(
+            allowed="203.0.113.0/24", trusted=None
+        )
+
+        data = json.dumps({"k": "v"})
+        proxy_ip = "10.0.0.5"  # immediate peer (undocumented as trusted)
+        headers = {
+            "Content-Type": "application/json",
+            "X-Forwarded-For": "203.0.113.7, 10.0.0.5",  # should be ignored
+            "X-Real-IP": "203.0.113.7",  # should be ignored
+        }
+        with patch(
+            "odoo.addons.cetmix_tower_webhook.controllers.main.CetmixTowerWebhookController._get_remote_addr",
+            return_value=proxy_ip,
+        ):
+            resp = self.url_open(
+                self.url_for(webhook.endpoint), data=data, headers=headers
+            )
+
+        self.assertEqual(resp.status_code, 403)
+        self.assertIn(b"Address not allowed", resp.content)
+
+    def test_proxy_xff_honored_with_trusted_proxy(self):
+        """
+        With trusted proxy configured, take the left-most IP from X-Forwarded-For.
+        """
+        webhook, _auth = self._make_proxy_webhook(
+            allowed="203.0.113.0/24",
+            trusted="10.0.0.5",
+            code="result = {'exit_code': 0, 'message': 'OK XFF'}",
+        )
+
+        data = json.dumps({"k": "v"})
+        proxy_ip = "10.0.0.5"
+        headers = {
+            "Content-Type": "application/json",
+            # XFF list: client, proxy
+            "X-Forwarded-For": "203.0.113.7, 10.0.0.5",
+        }
+        with patch(
+            "odoo.addons.cetmix_tower_webhook.controllers.main.CetmixTowerWebhookController._get_remote_addr",
+            return_value=proxy_ip,
+        ):
+            resp = self.url_open(
+                self.url_for(webhook.endpoint), data=data, headers=headers
+            )
+
+        self.assertEqual(resp.status_code, 200)
+        self.assertIn(b"OK XFF", resp.content)
+
+    def test_proxy_x_real_ip_fallback_when_xff_missing(self):
+        """
+        If XFF is missing/invalid but trusted proxy is set, fall back to X-Real-IP.
+        """
+        webhook, _auth = self._make_proxy_webhook(
+            allowed="203.0.113.0/24",
+            trusted="10.0.0.5",
+            code="result = {'exit_code': 0, 'message': 'OK X-Real-IP'}",
+        )
+
+        data = json.dumps({"k": "v"})
+        proxy_ip = "10.0.0.5"
+        headers = {
+            "Content-Type": "application/json",
+            "X-Forwarded-For": "garbage, not_an_ip",  # invalids should be skipped
+            "X-Real-IP": "203.0.113.8",
+        }
+        with patch(
+            "odoo.addons.cetmix_tower_webhook.controllers.main.CetmixTowerWebhookController._get_remote_addr",
+            return_value=proxy_ip,
+        ):
+            resp = self.url_open(
+                self.url_for(webhook.endpoint), data=data, headers=headers
+            )
+
+        self.assertEqual(resp.status_code, 200)
+        self.assertIn(b"OK X-Real-IP", resp.content)
+
+    def test_proxy_invalid_headers_fall_back_to_immediate_peer(self):
+        """
+        If headers are invalid even with trusted proxy, fall back to immediate peer.
+        Since the proxy IP is not in allowlist, the request is denied.
+        """
+        webhook, _auth = self._make_proxy_webhook(
+            allowed="203.0.113.0/24",  # does NOT include proxy IP
+            trusted="10.0.0.5",
+        )
+
+        data = json.dumps({"k": "v"})
+        proxy_ip = "10.0.0.5"
+        headers = {
+            "Content-Type": "application/json",
+            "X-Forwarded-For": "not_an_ip, also_bad",
+            "X-Real-IP": "bad_ip_value",
+        }
+        with patch(
+            "odoo.addons.cetmix_tower_webhook.controllers.main.CetmixTowerWebhookController._get_remote_addr",
+            return_value=proxy_ip,
+        ):
+            resp = self.url_open(
+                self.url_for(webhook.endpoint), data=data, headers=headers
+            )
+
+        self.assertEqual(resp.status_code, 403)
+        self.assertIn(b"Address not allowed", resp.content)
+
+    def test_proxy_allows_via_immediate_peer_when_proxy_ip_in_allowlist(self):
+        """
+        If headers are ignored/invalid, but the proxy IP itself is allowed,
+        access should be granted based on immediate peer.
+        """
+        webhook, _auth = self._make_proxy_webhook(
+            allowed="10.0.0.5",  # allow the proxy itself
+            trusted="",  # no trusted proxies => headers ignored
+            code="result = {'exit_code': 0, 'message': 'OK immediate peer'}",
+        )
+
+        data = json.dumps({"k": "v"})
+        proxy_ip = "10.0.0.5"
+        headers = {
+            "Content-Type": "application/json",
+            "X-Forwarded-For": "203.0.113.7",  # should be ignored
+        }
+        with patch(
+            "odoo.addons.cetmix_tower_webhook.controllers.main.CetmixTowerWebhookController._get_remote_addr",
+            return_value=proxy_ip,
+        ):
+            resp = self.url_open(
+                self.url_for(webhook.endpoint), data=data, headers=headers
+            )
+
+        self.assertEqual(resp.status_code, 200)
+        self.assertIn(b"OK immediate peer", resp.content)
--- a/addons/cetmix_tower_webhook/views/cx_tower_variable_views.xml
+++ b/addons/cetmix_tower_webhook/views/cx_tower_variable_views.xml
@@ -0,0 +1,41 @@
+<odoo>
+    <record id="cx_tower_variable_view_form" model="ir.ui.view">
+        <field name="name">cx.tower.variable.view.form</field>
+        <field name="model">cx.tower.variable</field>
+        <field
+            name="inherit_id"
+            ref="cetmix_tower_server.cx_tower_variable_view_form"
+        />
+        <field name="arch" type="xml">
+            <xpath expr="//div[@name='button_box']" position="inside">
+                <button
+                    name="action_open_webhooks"
+                    type="object"
+                    class="oe_stat_button"
+                    icon="fa-link"
+                    attrs="{'invisible': [('webhook_ids_count', '=', 0)]}"
+                >
+                    <field
+                        name="webhook_ids_count"
+                        widget="statinfo"
+                        string="Webhooks"
+                    />
+                </button>
+                <button
+                    name="action_open_webhook_authenticators"
+                    type="object"
+                    class="oe_stat_button"
+                    icon="fa-key"
+                    attrs="{'invisible': [('webhook_authenticator_ids_count', '=', 0)]}"
+                >
+                    <field
+                        name="webhook_authenticator_ids_count"
+                        widget="statinfo"
+                        string="Webhook Authenticators"
+                    />
+                </button>
+
+            </xpath>
+        </field>
+    </record>
+</odoo>
--- a/addons/cetmix_tower_webhook/views/cx_tower_webhook_authenticator_views.xml
+++ b/addons/cetmix_tower_webhook/views/cx_tower_webhook_authenticator_views.xml
@@ -0,0 +1,129 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<odoo>
+
+    <record id="cx_tower_webhook_authenticator_view_form" model="ir.ui.view">
+        <field name="name">cx.tower.webhook.authenticator.view.form</field>
+        <field name="model">cx.tower.webhook.authenticator</field>
+        <field name="arch" type="xml">
+            <form>
+                <sheet>
+                    <div class="oe_button_box" name="button_box">
+                        <button
+                            type="object"
+                            name="action_view_logs"
+                            string="Logs"
+                            icon="fa-list"
+                            class="oe_stat_button"
+                            attrs="{'invisible': [('log_count', '=', 0)]}"
+                        >
+                            <field name="log_count" widget="statinfo" string="Logs" />
+                        </button>
+                    </div>
+                    <group>
+                        <group>
+                            <field name="name" />
+                            <field name="reference" />
+                            <field
+                                name="variable_ids"
+                                widget="many2many_tags"
+                                readonly="1"
+                                groups="cetmix_tower_server.group_manager,cetmix_tower_server.group_root"
+                                attrs="{'invisible': [('variable_ids', '=', [])]}"
+                            />
+                            <field
+                                name="secret_ids"
+                                widget="many2many_tags"
+                                groups="cetmix_tower_server.group_manager,cetmix_tower_server.group_root"
+                                attrs="{'invisible': [('secret_ids', '=', [])]}"
+                            />
+                        </group>
+                        <group>
+                            <field
+                                name="allowed_ip_addresses"
+                                placeholder="e.g.: 192.168.1.10, 192.168.2.0/24, 2001:db8::/32, 2a00:1450:4001:824::200e"
+                            />
+                            <field
+                                name="trusted_proxy_ips"
+                                placeholder="10.0.0.1,192.168.1.0/24"
+                            />
+                        </group>
+                    </group>
+                    <notebook>
+                        <page name="code" string="Code">
+                            <field
+                                name="code"
+                                widget="ace_tower"
+                                options="{'mode': 'python'}"
+                                placeholder="Enter Python code here. Help about Python expression is available in the help tab of this document"
+                            />
+                        </page>
+                        <page string="Help" name="python_help_info">
+                            <field name="code_help" />
+                        </page>
+                        <page name="yaml" string="YAML">
+                            <div groups="!cetmix_tower_yaml.group_export">
+                                <h3
+                                >You must be a member of the "YAML/Export" group to export data as YAML</h3>
+                            </div>
+                            <button
+                                type="object"
+                                groups="cetmix_tower_yaml.group_export"
+                                class="oe_highlight"
+                                name="action_open_yaml_export_wizard"
+                                string="Export YAML"
+                            />
+                        </page>
+                    </notebook>
+                </sheet>
+            </form>
+        </field>
+    </record>
+
+    <record id="cx_tower_webhook_authenticator_view_tree" model="ir.ui.view">
+        <field name="name">cx.tower.webhook.authenticator.view.tree</field>
+        <field name="model">cx.tower.webhook.authenticator</field>
+        <field name="arch" type="xml">
+            <tree>
+                <field name="name" />
+                <field name="reference" optional="show" />
+            </tree>
+        </field>
+    </record>
+
+    <record id="cx_tower_webhook_authenticator_view_search" model="ir.ui.view">
+        <field name="name">cx.tower.webhook.authenticator.view.search</field>
+        <field name="model">cx.tower.webhook.authenticator</field>
+        <field name="arch" type="xml">
+            <search string="Search Webhook Authenticators">
+                <field name="name" />
+                <field name="reference" />
+            </search>
+        </field>
+    </record>
+
+    <record id="cx_tower_webhook_authenticator_action" model="ir.actions.act_window">
+        <field name="name">Webhook Authenticators</field>
+        <field name="res_model">cx.tower.webhook.authenticator</field>
+        <field name="view_mode">tree,form</field>
+        <field name="search_view_id" ref="cx_tower_webhook_authenticator_view_search" />
+        <field name="help" type="html">
+          <p class="o_view_nocontent_smiling_face">
+            Add a new webhook authenticator
+          </p>
+        </field>
+    </record>
+
+    <record
+        id="action_cx_tower_webhook_authenticator_export_yaml"
+        model="ir.actions.act_window"
+    >
+        <field name="name">Export YAML</field>
+        <field name="res_model">cx.tower.yaml.export.wiz</field>
+        <field name="view_mode">form</field>
+        <field name="target">new</field>
+        <field name="binding_model_id" ref="model_cx_tower_webhook_authenticator" />
+        <field name="binding_view_types">list</field>
+        <field name="groups_id" eval="[(4, ref('cetmix_tower_yaml.group_export'))]" />
+    </record>
+
+</odoo>
--- a/addons/cetmix_tower_webhook/views/cx_tower_webhook_log_views.xml
+++ b/addons/cetmix_tower_webhook/views/cx_tower_webhook_log_views.xml
@@ -0,0 +1,185 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<odoo>
+
+    <record id="cx_tower_webhook_log_view_form" model="ir.ui.view">
+        <field name="name">cx.tower.webhook.log.view.form</field>
+        <field name="model">cx.tower.webhook.log</field>
+        <field name="arch" type="xml">
+            <form create="0">
+                <header>
+                    <field
+                        name="code_status"
+                        widget="statusbar"
+                        options="{'clickable': False}"
+                        statusbar_visible="success,failed,skipped"
+                    />
+                </header>
+                <sheet>
+                    <div class="oe_title">
+                        <label for="display_name" class="oe_edit_only" />
+                        <h1>
+                            <field
+                                name="display_name"
+                                placeholder="Name"
+                                required="1"
+                            />
+                        </h1>
+                    </div>
+                    <group>
+                        <group>
+                            <field name="webhook_id" />
+                            <field name="authenticator_id" />
+                            <field name="endpoint" />
+                            <field name="request_method" />
+                            <field name="http_status" />
+                            <field name="authentication_status" />
+                        </group>
+                        <group>
+                            <field name="user_id" />
+                            <field name="ip_address" />
+                            <field name="country_id" />
+                            <field name="create_date" />
+                        </group>
+                    </group>
+                    <notebook>
+                        <page name="request" string="Request Payload">
+                            <field
+                                name="request_payload"
+                                widget="ace"
+                                options="{'mode': 'json'}"
+                                readonly="1"
+                            />
+                        </page>
+                        <page name="request_headers" string="Request Headers">
+                            <field
+                                name="request_headers"
+                                widget="ace"
+                                options="{'mode': 'json'}"
+                                readonly="1"
+                            />
+                        </page>
+                        <page
+                            name="response"
+                            string="Response Payload"
+                            attrs="{'invisible': [('code_status', '!=', 'success')]}"
+                        >
+                            <field
+                                name="result_message"
+                                widget="ace"
+                                options="{'mode': 'json'}"
+                                readonly="1"
+                            />
+                        </page>
+                        <page
+                            name="error"
+                            string="Error"
+                            attrs="{'invisible': [('code_status', '!=', 'failed'), ('authentication_status', '!=', 'failed')]}"
+                        >
+                            <code>
+                                <field name="error_message" readonly="1" />
+                            </code>
+                        </page>
+                    </notebook>
+                </sheet>
+            </form>
+        </field>
+    </record>
+
+    <record id="cx_tower_webhook_log_view_tree" model="ir.ui.view">
+        <field name="name">cx.tower.webhook.log.view.tree</field>
+        <field name="model">cx.tower.webhook.log</field>
+        <field name="arch" type="xml">
+            <tree
+                decoration-info="authentication_status == 'success' and code_status == 'success'"
+                decoration-danger="authentication_status == 'failed' or code_status == 'failed'"
+                decoration-warning="authentication_status == 'not_required' or code_status == 'skipped'"
+            >
+                <field name="create_date" />
+                <field name="webhook_id" />
+                <field name="endpoint" />
+                <field name="request_method" />
+                <field name="http_status" />
+                <field name="authentication_status" />
+                <field name="code_status" />
+                <field name="user_id" />
+            </tree>
+        </field>
+    </record>
+
+    <record id="cx_tower_webhook_log_view_search" model="ir.ui.view">
+        <field name="name">cx.tower.webhook.log.view.search</field>
+        <field name="model">cx.tower.webhook.log</field>
+        <field name="arch" type="xml">
+            <search string="Webhook Logs">
+                <field name="webhook_id" />
+                <field name="endpoint" />
+                <field name="authentication_status" />
+                <field name="code_status" />
+                <field name="http_status" />
+                <field name="user_id" />
+                <field name="ip_address" />
+                <field name="create_date" />
+                <filter
+                    name="auth_failed"
+                    string="Auth Failed"
+                    domain="[('authentication_status','=','failed')]"
+                />
+                <filter
+                    name="code_failed"
+                    string="Code Failed"
+                    domain="[('code_status','=','failed')]"
+                />
+                <filter
+                    name="http_200"
+                    string="HTTP 200"
+                    domain="[('http_status','=',200)]"
+                />
+                <group expand="0" string="Group By">
+                    <filter
+                        name="group_by_webhook"
+                        string="Webhook"
+                        context="{'group_by': 'webhook_id'}"
+                    />
+                    <filter
+                        name="group_by_method"
+                        string="Method"
+                        context="{'group_by': 'request_method'}"
+                    />
+                    <filter
+                        name="group_by_user"
+                        string="User"
+                        context="{'group_by': 'user_id'}"
+                    />
+                    <filter
+                        name="group_by_auth_status"
+                        string="Auth Status"
+                        context="{'group_by': 'authentication_status'}"
+                    />
+                    <filter
+                        name="group_by_code_status"
+                        string="Code Status"
+                        context="{'group_by': 'code_status'}"
+                    />
+                    <filter
+                        name="group_by_http_status"
+                        string="HTTP Status"
+                        context="{'group_by': 'http_status'}"
+                    />
+                </group>
+            </search>
+        </field>
+    </record>
+
+    <record id="cx_tower_webhook_log_action" model="ir.actions.act_window">
+        <field name="name">Webhook Logs</field>
+        <field name="res_model">cx.tower.webhook.log</field>
+        <field name="view_mode">tree,form</field>
+        <field name="search_view_id" ref="cx_tower_webhook_log_view_search" />
+        <field name="help" type="html">
+            <p class="o_view_nocontent_smiling_face">
+                No webhook logs found
+            </p>
+        </field>
+    </record>
+
+</odoo>
--- a/addons/cetmix_tower_webhook/views/cx_tower_webhook_views.xml
+++ b/addons/cetmix_tower_webhook/views/cx_tower_webhook_views.xml
@@ -0,0 +1,207 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<odoo>
+
+    <record id="cx_tower_webhook_view_form" model="ir.ui.view">
+        <field name="name">cx.tower.webhook.view.form</field>
+        <field name="model">cx.tower.webhook</field>
+        <field name="arch" type="xml">
+            <form>
+                <sheet>
+                    <widget
+                        name="web_ribbon"
+                        title="Disabled"
+                        bg_color="bg-danger"
+                        attrs="{'invisible': [('active', '=', True)]}"
+                    />
+                    <div class="oe_button_box" name="button_box">
+                        <button
+                            type="object"
+                            name="action_view_logs"
+                            string="Logs"
+                            icon="fa-list"
+                            class="oe_stat_button"
+                            attrs="{'invisible': [('log_count', '=', 0)]}"
+                        >
+                            <field name="log_count" widget="statinfo" string="Logs" />
+                        </button>
+                    </div>
+                    <group>
+                        <group>
+                            <field name="name" />
+                            <field name="reference" />
+                            <field name="active" />
+                            <field name="authenticator_id" />
+                            <field
+                                name="variable_ids"
+                                widget="many2many_tags"
+                                readonly="1"
+                                groups="cetmix_tower_server.group_manager,cetmix_tower_server.group_root"
+                                attrs="{'invisible': [('variable_ids', '=', [])]}"
+                            />
+                            <field
+                                name="secret_ids"
+                                widget="many2many_tags"
+                                groups="cetmix_tower_server.group_manager,cetmix_tower_server.group_root"
+                                attrs="{'invisible': [('secret_ids', '=', [])]}"
+                            />
+                        </group>
+                        <group>
+                            <field name="endpoint" />
+                            <field
+                                name="full_url"
+                                attrs="{'invisible': [('endpoint', '=', False)]}"
+                                widget="CopyClipboardChar"
+                                options="{'string': 'Copy'}"
+                            />
+                            <field name="method" />
+                            <field
+                                name="content_type"
+                                attrs="{'invisible': [('method', '=', 'get')]}"
+                            />
+                            <field name="user_id" context="{'active_test': False}" />
+                        </group>
+                    </group>
+                    <notebook>
+                        <page name="code" string="Code">
+                            <field
+                                name="code"
+                                widget="ace_tower"
+                                options="{'mode': 'python'}"
+                                placeholder="Enter Python code here. Help about Python expression is available in the help tab of this document."
+                            />
+                        </page>
+                        <page string="Help" name="python_help_info">
+                            <field name="code_help" />
+                        </page>
+                        <page name="yaml" string="YAML">
+                            <div groups="!cetmix_tower_yaml.group_export">
+                                <h3
+                                >You must be a member of the "YAML/Export" group to export data as YAML.</h3>
+                            </div>
+                            <button
+                                type="object"
+                                groups="cetmix_tower_yaml.group_export"
+                                class="oe_highlight"
+                                name="action_open_yaml_export_wizard"
+                                string="Export YAML"
+                            />
+                        </page>
+                    </notebook>
+                </sheet>
+            </form>
+        </field>
+    </record>
+
+    <record id="cx_tower_webhook_view_tree" model="ir.ui.view">
+        <field name="name">cx.tower.webhook.view.tree</field>
+        <field name="model">cx.tower.webhook</field>
+        <field name="arch" type="xml">
+            <tree decoration-muted="not active">
+                <field name="name" />
+                <field name="reference" optional="show" />
+                <field name="authenticator_id" optional="show" />
+                <field name="user_id" optional="show" />
+                <field name="endpoint" optional="show" />
+                <field name="method" optional="show" />
+                <field name="content_type" optional="show" />
+                <field name="active" widget="boolean_toggle" />
+            </tree>
+        </field>
+    </record>
+
+    <record id="cx_tower_webhook_view_search" model="ir.ui.view">
+        <field name="name">cx.tower.webhook.view.search</field>
+        <field name="model">cx.tower.webhook</field>
+        <field name="arch" type="xml">
+            <search string="Search Webhooks">
+                <field
+                    name="name"
+                    string="Name/Reference"
+                    filter_domain="['|', ('name', 'ilike', self), ('reference', 'ilike', self)]"
+                />
+                <field name="endpoint" />
+                <filter
+                    string="All"
+                    name="all"
+                    domain="['|', ('active', '=', True), ('active', '=', False)]"
+                />
+                <filter
+                    name="filter_enabled"
+                    string="Enabled"
+                    domain="[('active', '=', True)]"
+                />
+                <filter
+                    name="filter_disabled"
+                    string="Disabled"
+                    domain="[('active', '=', False)]"
+                />
+                <group expand="0" string="Group By">
+                    <filter
+                        name="group_by_method"
+                        string="Method"
+                        context="{'group_by': 'method'}"
+                    />
+                    <filter
+                        name="group_by_authenticator_id"
+                        string="Authenticator"
+                        context="{'group_by': 'authenticator_id'}"
+                    />
+                    <filter
+                        name="group_by_user_id"
+                        string="User"
+                        context="{'group_by': 'user_id'}"
+                    />
+                    <filter
+                        name="group_by_content_type"
+                        string="Content Type"
+                        context="{'group_by': 'content_type'}"
+                    />
+                </group>
+                <searchpanel>
+                    <field
+                        name="method"
+                        string="Method"
+                        icon="fa-cog"
+                        enable_counters="1"
+                    />
+                    <field
+                        name="content_type"
+                        string="Content Type"
+                        icon="fa-file"
+                        enable_counters="1"
+                    />
+                    <field
+                        name="authenticator_id"
+                        string="Authenticator"
+                        icon="fa-shield"
+                        enable_counters="1"
+                    />
+                </searchpanel>
+            </search>
+        </field>
+    </record>
+
+    <record id="cx_tower_webhook_action" model="ir.actions.act_window">
+        <field name="name">Webhooks</field>
+        <field name="res_model">cx.tower.webhook</field>
+        <field name="view_mode">tree,form</field>
+        <field name="search_view_id" ref="cx_tower_webhook_view_search" />
+        <field name="context">{'search_default_all': 1}</field>
+        <field name="help" type="html">
+            <p class="o_view_nocontent_smiling_face">
+                Add a new webhook
+            </p>
+        </field>
+    </record>
+
+    <record id="action_cx_tower_webhook_export_yaml" model="ir.actions.act_window">
+        <field name="name">Export YAML</field>
+        <field name="res_model">cx.tower.yaml.export.wiz</field>
+        <field name="view_mode">form</field>
+        <field name="target">new</field>
+        <field name="binding_model_id" ref="model_cx_tower_webhook" />
+        <field name="binding_view_types">list</field>
+        <field name="groups_id" eval="[(4, ref('cetmix_tower_yaml.group_export'))]" />
+    </record>
+
+</odoo>
--- a/addons/cetmix_tower_webhook/views/menuitems.xml
+++ b/addons/cetmix_tower_webhook/views/menuitems.xml
@@ -0,0 +1,29 @@
+<odoo>
+
+    <menuitem
+        id="menu_cetmix_tower_webhook_authenticator"
+        name="Webhook Authenticators"
+        action="cx_tower_webhook_authenticator_action"
+        parent="cetmix_tower_server.menu_cx_tower_automation_root"
+        groups="cetmix_tower_server.group_root"
+        sequence="3"
+    />
+
+    <menuitem
+        id="menu_cetmix_tower_webhook"
+        name="Webhooks"
+        action="cx_tower_webhook_action"
+        parent="cetmix_tower_server.menu_cx_tower_automation_root"
+        groups="cetmix_tower_server.group_root"
+        sequence="4"
+    />
+
+    <menuitem
+        id="menu_cetmix_tower_webhook_log"
+        name="Webhook Calls"
+        action="cx_tower_webhook_log_action"
+        parent="cetmix_tower_server.menu_cx_tower_log_root"
+        sequence="150"
+    />
+
+</odoo>
--- a/addons/cetmix_tower_webhook/views/res_config_settings_views.xml
+++ b/addons/cetmix_tower_webhook/views/res_config_settings_views.xml
@@ -0,0 +1,30 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<odoo>
+    <record id="res_config_settings_view_form" model="ir.ui.view">
+        <field name="name">res.config.settings.view.form</field>
+        <field name="model">res.config.settings</field>
+        <field
+            name="inherit_id"
+            ref="cetmix_tower_server.res_config_settings_view_form"
+        />
+        <field name="arch" type="xml">
+            <xpath expr="//div[@id='cetmix_tower_settings']" position="inside">
+                <div class="col-12 col-lg-6 o_setting_box">
+                    <div class="cetmix_tower_webhook_log_duration">
+                        <label for="cetmix_tower_webhook_log_duration" />
+                        <div class="text-muted">
+                            Set the number of days to keep webhook logs. Old logs will be deleted automatically.
+                            <br />
+                        </div>
+                        <div class="content-group">
+                            <div class="mt16">
+                                <field name="cetmix_tower_webhook_log_duration" />
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </xpath>
+        </field>
+    </record>
+
+</odoo>
Author	SHA1	Message	Date
git_admin	9897dcfa04	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:14 +00:00
git_admin	01b7ffd8d3	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:13 +00:00
git_admin	0ed1b40384	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:13 +00:00
git_admin	0a1b6e156a	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:12 +00:00
git_admin	f09ad65b7a	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:12 +00:00
git_admin	92b30574c7	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:11 +00:00
git_admin	f5eb897143	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:10 +00:00
git_admin	8ed74a3aed	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:10 +00:00
git_admin	7158e9210f	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:09 +00:00
git_admin	9444f8805a	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:09 +00:00
git_admin	2095fde1f4	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:08 +00:00
git_admin	922c8a49d5	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:07 +00:00
git_admin	7acf00fc4d	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:07 +00:00
git_admin	86b416cb47	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:06 +00:00
git_admin	09ed1d8731	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:05 +00:00
git_admin	022f0cb891	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:05 +00:00
git_admin	8e4a3d8d4a	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:04 +00:00
git_admin	97f60c2aa5	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:03 +00:00
git_admin	7fb3d0a77d	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:03 +00:00
git_admin	82d2d1eff6	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:02 +00:00
git_admin	1ed5e88c7c	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:01 +00:00
git_admin	a1f473b8a3	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:01 +00:00
git_admin	0ed968a17b	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:45:00 +00:00
git_admin	1a3e7389fa	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:59 +00:00
git_admin	8199d0022d	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:59 +00:00
git_admin	8eb03de70b	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:58 +00:00
git_admin	1a43c797c3	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:58 +00:00
git_admin	668ff3da60	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:57 +00:00
git_admin	a3d8b01582	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:56 +00:00
git_admin	380afede5e	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:56 +00:00
git_admin	bf85022852	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:55 +00:00
git_admin	76f3b5cd0d	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:54 +00:00
git_admin	818c86a758	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:54 +00:00
git_admin	a718da84af	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:53 +00:00
git_admin	c7b7860fd6	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:53 +00:00
git_admin	31da31ec45	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:52 +00:00
git_admin	2fd5aa0787	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:51 +00:00
git_admin	d47e45ae64	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:51 +00:00
git_admin	1fea3621f5	Tower: upload cetmix_tower_webhook 16.0.1.0.5 (via marketplace)	2026-04-27 08:44:50 +00:00