diff --git a/base_model_restrict_update/README.rst b/base_model_restrict_update/README.rst
new file mode 100644
index 00000000000..a6710d01160
--- /dev/null
+++ b/base_model_restrict_update/README.rst
@@ -0,0 +1,98 @@
+=====================
+Update Restrict Model
+=====================
+
+.. 
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! This file is generated by oca-gen-addon-readme !!
+   !! changes will be overwritten.                   !!
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! source digest: sha256:bbcc1b9486884cea6b487847ab39a959539b77ae21276a8362033ed9280e90d8
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+
+.. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png
+    :target: https://odoo-community.org/page/development-status
+    :alt: Beta
+.. |badge2| image:: https://img.shields.io/badge/licence-LGPL--3-blue.png
+    :target: http://www.gnu.org/licenses/lgpl-3.0-standalone.html
+    :alt: License: LGPL-3
+.. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--tools-lightgray.png?logo=github
+    :target: https://github.com/OCA/server-tools/tree/16.0/base_model_restrict_update
+    :alt: OCA/server-tools
+.. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
+    :target: https://translation.odoo-community.org/projects/server-tools-16-0/server-tools-16-0-base_model_restrict_update
+    :alt: Translate me on Weblate
+.. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png
+    :target: https://runboat.odoo-community.org/builds?repo=OCA/server-tools&target_branch=16.0
+    :alt: Try me on Runboat
+
+|badge1| |badge2| |badge3| |badge4| |badge5|
+
+This module adds a config to apply a global update restriction to specific model,
+while only certain users can update the records if the config is enabled.
+
+**Table of contents**
+
+.. contents::
+   :local:
+
+Configuration
+=============
+
+Enable the "Update Restrict Model" of specific model to restrict update from unpermitted users.
+To set a user as a permitted user to update restricted model(s), click on "Unrestrict
+Update" toggle button in the user form.
+
+Optionally, to set a user as read-only user to all models, click on "Read-only" toggle
+button in the user form.
+
+Bug Tracker
+===========
+
+Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-tools/issues>`_.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us to smash it by providing a detailed and welcomed
+`feedback <https://github.com/OCA/server-tools/issues/new?body=module:%20base_model_restrict_update%0Aversion:%2016.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+
+Do not contact contributors directly about support or help with technical issues.
+
+Credits
+=======
+
+Authors
+~~~~~~~
+
+* Quartile Limited
+
+Contributors
+~~~~~~~~~~~~
+
+* Quartile Limited
+
+  * Yoshi Tashiro <tashiro@quartile.co>
+
+* Ecosoft
+
+  * Kitti U. <kittiu@ecosoft.co.th>
+
+Other credits
+~~~~~~~~~~~~~
+
+* This module borrows the idea from 'Moises Lopez <https://odoo-community.org/groups/contributors-15/contributors-161807>'
+
+Maintainers
+~~~~~~~~~~~
+
+This module is maintained by the OCA.
+
+.. image:: https://odoo-community.org/logo.png
+   :alt: Odoo Community Association
+   :target: https://odoo-community.org
+
+OCA, or the Odoo Community Association, is a nonprofit organization whose
+mission is to support the collaborative development of Odoo features and
+promote its widespread use.
+
+This module is part of the `OCA/server-tools <https://github.com/OCA/server-tools/tree/16.0/base_model_restrict_update>`_ project on GitHub.
+
+You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/base_model_restrict_update/__init__.py b/base_model_restrict_update/__init__.py
new file mode 100644
index 00000000000..0650744f6bc
--- /dev/null
+++ b/base_model_restrict_update/__init__.py
@@ -0,0 +1 @@
+from . import models
diff --git a/base_model_restrict_update/__manifest__.py b/base_model_restrict_update/__manifest__.py
new file mode 100644
index 00000000000..c2ea27d7874
--- /dev/null
+++ b/base_model_restrict_update/__manifest__.py
@@ -0,0 +1,13 @@
+# Copyright 2021 Quartile Limited
+# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
+{
+    "name": "Update Restrict Model",
+    "version": "16.0.1.0.0",
+    "depends": ["base"],
+    "website": "https://github.com/OCA/server-tools",
+    "author": "Odoo Community Association (OCA), Quartile Limited",
+    "category": "Others",
+    "license": "LGPL-3",
+    "data": ["views/ir_model_views.xml", "views/res_users_views.xml"],
+    "installable": True,
+}
diff --git a/base_model_restrict_update/i18n/base_model_restrict_update.po b/base_model_restrict_update/i18n/base_model_restrict_update.po
new file mode 100644
index 00000000000..d7c1fc2a74a
--- /dev/null
+++ b/base_model_restrict_update/i18n/base_model_restrict_update.po
@@ -0,0 +1,84 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# 	* base_model_restrict_update
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: Odoo Server 12.0\n"
+"Report-Msgid-Bugs-To: \n"
+"Last-Translator: <>\n"
+"Language-Team: \n"
+"Language: \n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: \n"
+"Plural-Forms: \n"
+
+#. module: base_model_restrict_update
+#: model_terms:ir.ui.view,arch_db:base_model_restrict_update.view_users_form
+msgid "<span style=\"padding: 0 10px;\">Read-only</span>"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model_terms:ir.ui.view,arch_db:base_model_restrict_update.view_users_form
+msgid "<span style=\"padding: 0 10px;\">Unrestrict Update</span>"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_ir_model_access
+msgid "Model Access"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_ir_model
+msgid "Models"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_res_users__is_readonly_user
+msgid "Ready User"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_res_users__is_readonly_user
+msgid "Set to true and the user are readonly user on all models"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_res_users__unrestrict_model_update
+msgid "Set to true and the user can update restricted model."
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_res_users__unrestrict_model_update
+msgid "Unrestrict Model Update"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_ir_model__restrict_update
+msgid "Update Restrict Model"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_res_users
+msgid "Users"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_ir_model__restrict_update
+msgid ""
+"When selected, the model is restricted to read-only unless the user has the "
+"special permission."
+msgstr ""
+
+#. module: base_model_restrict_update
+#: code:addons/base_model_restrict_update/models/ir_model_access.py:0
+#, python-format
+msgid "You are only allowed to read this record. (%(model)s - %(mode)s)"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: code:addons/base_model_restrict_update/models/res_users.py:0
+#, python-format
+msgid "You cannot set admin user as a readonly user."
+msgstr ""
diff --git a/base_model_restrict_update/i18n/base_model_restrict_update.pot b/base_model_restrict_update/i18n/base_model_restrict_update.pot
new file mode 100644
index 00000000000..2ab2873d370
--- /dev/null
+++ b/base_model_restrict_update/i18n/base_model_restrict_update.pot
@@ -0,0 +1,83 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# 	* base_model_restrict_update
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: Odoo Server 15.0\n"
+"Report-Msgid-Bugs-To: \n"
+"Last-Translator: \n"
+"Language-Team: \n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: \n"
+"Plural-Forms: \n"
+
+#. module: base_model_restrict_update
+#: model_terms:ir.ui.view,arch_db:base_model_restrict_update.view_users_form
+msgid "<span style=\"padding: 0 10px;\">Read-only</span>"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model_terms:ir.ui.view,arch_db:base_model_restrict_update.view_users_form
+msgid "<span style=\"padding: 0 10px;\">Unrestrict Update</span>"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_ir_model_access
+msgid "Model Access"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_ir_model
+msgid "Models"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_res_users__is_readonly_user
+msgid "Ready User"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_res_users__is_readonly_user
+msgid "Set to true and the user are readonly user on all models"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_res_users__unrestrict_model_update
+msgid "Set to true and the user can update restricted model."
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_res_users__unrestrict_model_update
+msgid "Unrestrict Model Update"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_ir_model__restrict_update
+msgid "Update Restrict Model"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_res_users
+msgid "Users"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_ir_model__restrict_update
+msgid ""
+"When selected, the model is restricted to read-only unless the user has the "
+"special permission."
+msgstr ""
+
+#. module: base_model_restrict_update
+#: code:addons/base_model_restrict_update/models/ir_model_access.py:0
+#, python-format
+msgid "You are only allowed to read this record. (%(model)s - %(mode)s)"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: code:addons/base_model_restrict_update/models/res_users.py:0
+#, python-format
+msgid "You cannot set admin user as a readonly user."
+msgstr ""
diff --git a/base_model_restrict_update/i18n/es.po b/base_model_restrict_update/i18n/es.po
new file mode 100644
index 00000000000..49d151caa86
--- /dev/null
+++ b/base_model_restrict_update/i18n/es.po
@@ -0,0 +1,95 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# 	* base_model_restrict_update
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: Odoo Server 15.0\n"
+"Report-Msgid-Bugs-To: \n"
+"PO-Revision-Date: 2023-11-09 19:36+0000\n"
+"Last-Translator: Ivorra78 <informatica@totmaterial.es>\n"
+"Language-Team: none\n"
+"Language: es\n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: \n"
+"Plural-Forms: nplurals=2; plural=n != 1;\n"
+"X-Generator: Weblate 4.17\n"
+
+#. module: base_model_restrict_update
+#: model_terms:ir.ui.view,arch_db:base_model_restrict_update.view_users_form
+msgid "<span style=\"padding: 0 10px;\">Read-only</span>"
+msgstr "<span style=\"padding: 0 10px;\">Solo-Lectura</span>"
+
+#. module: base_model_restrict_update
+#: model_terms:ir.ui.view,arch_db:base_model_restrict_update.view_users_form
+msgid "<span style=\"padding: 0 10px;\">Unrestrict Update</span>"
+msgstr ""
+"<span style=\"padding: 0 10px;\">Actualización sin restricciones</span>"
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_ir_model_access
+msgid "Model Access"
+msgstr "Acceso Modelo"
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_ir_model
+msgid "Models"
+msgstr "Modelos"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_res_users__is_readonly_user
+msgid "Ready User"
+msgstr "Usuario listo"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_res_users__is_readonly_user
+msgid "Set to true and the user are readonly user on all models"
+msgstr ""
+"Establecer a true y el usuario son de sólo lectura en todos los modelos"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_res_users__unrestrict_model_update
+msgid "Set to true and the user can update restricted model."
+msgstr ""
+"Si se establece en true, el usuario puede actualizar el modelo restringido."
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_res_users__unrestrict_model_update
+msgid "Unrestrict Model Update"
+msgstr "Actualización del modelo Sin restricciones"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_ir_model__restrict_update
+msgid "Update Restrict Model"
+msgstr "Actualizar el modelo de restricciones"
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_res_users
+msgid "Users"
+msgstr "Usuarios"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_ir_model__restrict_update
+msgid ""
+"When selected, the model is restricted to read-only unless the user has the "
+"special permission."
+msgstr ""
+"Cuando se selecciona, el modelo se restringe a sólo lectura a menos que el "
+"usuario tenga el permiso especial."
+
+#. module: base_model_restrict_update
+#: code:addons/base_model_restrict_update/models/ir_model_access.py:0
+#, python-format
+msgid "You are only allowed to read this record. (%(model)s - %(mode)s)"
+msgstr "Sólo puede leer este registro. (%(model)s - %(mode)s)"
+
+#. module: base_model_restrict_update
+#: code:addons/base_model_restrict_update/models/res_users.py:0
+#, python-format
+msgid "You cannot set admin user as a readonly user."
+msgstr "No se puede establecer el usuario admin como usuario de sólo lectura."
+
+#, python-format
+#~ msgid "You are only allowed to read this record. ({} - {})"
+#~ msgstr "Sólo puede leer este registro. ({} - {})"
diff --git a/base_model_restrict_update/i18n/es_AR.po b/base_model_restrict_update/i18n/es_AR.po
new file mode 100644
index 00000000000..e18407abf22
--- /dev/null
+++ b/base_model_restrict_update/i18n/es_AR.po
@@ -0,0 +1,110 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# 	* base_model_restrict_update
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: Odoo Server 14.0\n"
+"Report-Msgid-Bugs-To: \n"
+"PO-Revision-Date: 2023-10-29 23:45+0000\n"
+"Last-Translator: Ignacio Buioli <ibuioli@gmail.com>\n"
+"Language-Team: none\n"
+"Language: es_AR\n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: \n"
+"Plural-Forms: nplurals=2; plural=n != 1;\n"
+"X-Generator: Weblate 4.17\n"
+
+#. module: base_model_restrict_update
+#: model_terms:ir.ui.view,arch_db:base_model_restrict_update.view_users_form
+msgid "<span style=\"padding: 0 10px;\">Read-only</span>"
+msgstr "<span style=\"padding: 0 10px;\">Solo lectura</span>"
+
+#. module: base_model_restrict_update
+#: model_terms:ir.ui.view,arch_db:base_model_restrict_update.view_users_form
+msgid "<span style=\"padding: 0 10px;\">Unrestrict Update</span>"
+msgstr "<span style=\"padding: 0 10px;\">Actualización Irrestricta</span>"
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_ir_model_access
+msgid "Model Access"
+msgstr "Modelo de Acceso"
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_ir_model
+msgid "Models"
+msgstr "Modelos"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_res_users__is_readonly_user
+msgid "Ready User"
+msgstr "Usuario Listo"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_res_users__is_readonly_user
+msgid "Set to true and the user are readonly user on all models"
+msgstr ""
+"Establezcalo como verdadero y el usuario es un usuario de solo lectura en "
+"todos los modelos"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_res_users__unrestrict_model_update
+msgid "Set to true and the user can update restricted model."
+msgstr ""
+"Establezcalo como verdadero y bel usuario podrá actualizar el modelo "
+"restringido."
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_res_users__unrestrict_model_update
+msgid "Unrestrict Model Update"
+msgstr "Actualización del Modelo sin Restricciones"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_ir_model__restrict_update
+msgid "Update Restrict Model"
+msgstr "Actualizar Modelo Restricto"
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_res_users
+msgid "Users"
+msgstr "Usuarios"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_ir_model__restrict_update
+msgid ""
+"When selected, the model is restricted to read-only unless the user has the "
+"special permission."
+msgstr ""
+"Cuando está seleccionado, el modelo está restringido a solo lectura a menos "
+"que el usuario tenga permisos especiales."
+
+#. module: base_model_restrict_update
+#: code:addons/base_model_restrict_update/models/ir_model_access.py:0
+#, python-format
+msgid "You are only allowed to read this record. (%(model)s - %(mode)s)"
+msgstr "Está permitido solo a leer este registro. (%(model)s - %(mode)s)"
+
+#. module: base_model_restrict_update
+#: code:addons/base_model_restrict_update/models/res_users.py:0
+#, python-format
+msgid "You cannot set admin user as a readonly user."
+msgstr ""
+"No puede configurar al usuario administrador como un usuario de sólo lectura."
+
+#, python-format
+#~ msgid "You are only allowed to read this record. ({} - {})"
+#~ msgstr "Solo le está permitido leer este registro. ({} - {})"
+
+#~ msgid "Display Name"
+#~ msgstr "Mostrar Nombre"
+
+#~ msgid "ID"
+#~ msgstr "ID"
+
+#~ msgid "Last Modified on"
+#~ msgstr "Última modificación en"
+
+#, python-format
+#~ msgid "You are only allowed to read this record. (%s - %s)"
+#~ msgstr "No está permitido para leer este registro. (%s - %s)"
diff --git a/base_model_restrict_update/i18n/ja_JP.po b/base_model_restrict_update/i18n/ja_JP.po
new file mode 100644
index 00000000000..8b94c45b4b9
--- /dev/null
+++ b/base_model_restrict_update/i18n/ja_JP.po
@@ -0,0 +1,92 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# 	* base_model_restrict_update
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: Odoo Server 12.0\n"
+"Report-Msgid-Bugs-To: \n"
+"POT-Creation-Date: 2021-02-04 09:47+0000\n"
+"PO-Revision-Date: 2021-02-04 09:47+0000\n"
+"Last-Translator: <>\n"
+"Language-Team: \n"
+"Language: \n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: \n"
+"Plural-Forms: \n"
+
+#. module: base_model_restrict_update
+#: model_terms:ir.ui.view,arch_db:base_model_restrict_update.view_users_form
+msgid "<span style=\"padding: 0 10px;\">Read-only</span>"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model_terms:ir.ui.view,arch_db:base_model_restrict_update.view_users_form
+msgid "<span style=\"padding: 0 10px;\">Unrestrict Update</span>"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_ir_model_access
+msgid "Model Access"
+msgstr "モデルアクセス"
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_ir_model
+msgid "Models"
+msgstr "モデル"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_res_users__is_readonly_user
+msgid "Ready User"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_res_users__is_readonly_user
+msgid "Set to true and the user are readonly user on all models"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_res_users__unrestrict_model_update
+msgid "Set to true and the user can update restricted model."
+msgstr "有効化にすると制限されたモデルを更新することができます。"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_res_users__unrestrict_model_update
+msgid "Unrestrict Model Update"
+msgstr "制限モデル更新許可"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,field_description:base_model_restrict_update.field_ir_model__restrict_update
+msgid "Update Restrict Model"
+msgstr "更新制限モデル"
+
+#. module: base_model_restrict_update
+#: model:ir.model,name:base_model_restrict_update.model_res_users
+msgid "Users"
+msgstr "ユーザ"
+
+#. module: base_model_restrict_update
+#: model:ir.model.fields,help:base_model_restrict_update.field_ir_model__restrict_update
+msgid ""
+"When selected, the model is restricted to read-only unless the user has the "
+"special permission."
+msgstr ""
+"有効化にすると、「制限モデル更新許可」を持ちユーザのみモデルレコードを更新で"
+"きます。"
+
+#. module: base_model_restrict_update
+#: code:addons/base_model_restrict_update/models/ir_model_access.py:0
+#, python-format
+msgid "You are only allowed to read this record. (%(model)s - %(mode)s)"
+msgstr ""
+
+#. module: base_model_restrict_update
+#: code:addons/base_model_restrict_update/models/res_users.py:0
+#, python-format
+msgid "You cannot set admin user as a readonly user."
+msgstr ""
+
+#, python-format
+#~ msgid "You are only allowed to read this record. (%s - %s)"
+#~ msgstr "レコードを更新することはできません。(%s - %s)"
diff --git a/base_model_restrict_update/models/__init__.py b/base_model_restrict_update/models/__init__.py
new file mode 100644
index 00000000000..4f02d73ba29
--- /dev/null
+++ b/base_model_restrict_update/models/__init__.py
@@ -0,0 +1,3 @@
+from . import ir_model_access
+from . import ir_model
+from . import res_users
diff --git a/base_model_restrict_update/models/ir_model.py b/base_model_restrict_update/models/ir_model.py
new file mode 100644
index 00000000000..a60b6b8759d
--- /dev/null
+++ b/base_model_restrict_update/models/ir_model.py
@@ -0,0 +1,14 @@
+# Copyright 2021 Quartile Limited
+# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
+
+from odoo import fields, models
+
+
+class IrModel(models.Model):
+    _inherit = "ir.model"
+
+    restrict_update = fields.Boolean(
+        "Update Restrict Model",
+        help="When selected, the model is restricted to read-only unless the "
+        "user has the special permission.",
+    )
diff --git a/base_model_restrict_update/models/ir_model_access.py b/base_model_restrict_update/models/ir_model_access.py
new file mode 100644
index 00000000000..5e46a3d3ea9
--- /dev/null
+++ b/base_model_restrict_update/models/ir_model_access.py
@@ -0,0 +1,60 @@
+# Copyright 2021 Quartile Limited
+# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
+
+from odoo import api, models
+from odoo.exceptions import AccessError
+from odoo.tools.translate import _
+
+
+class IrModelAccess(models.Model):
+    _inherit = "ir.model.access"
+
+    @api.model
+    def _readonly_exclude_models(self):
+        """Models updtate/create by system, and should be excluded from checking"""
+        return (
+            self.sudo()
+            .search(
+                [
+                    ("group_id", "=", False),
+                    "|",
+                    ("perm_write", "=", True),
+                    "|",
+                    ("perm_create", "=", True),
+                    ("perm_unlink", "=", True),
+                ]
+            )
+            .mapped("model_id.model")
+        )
+
+    @api.model
+    def _test_readonly(self, model):
+        exclude_models = self._readonly_exclude_models()
+        if model not in exclude_models and self.env.user.is_readonly_user:
+            return True
+        return False
+
+    @api.model
+    def _test_restrict_update(self, model):
+        self.env.cr.execute(
+            "SELECT restrict_update FROM ir_model WHERE model = %s", (model,)
+        )
+        query_res = self.env.cr.dictfetchone()
+        if query_res["restrict_update"] and not self.env.user.unrestrict_model_update:
+            return True
+        return False
+
+    @api.model
+    def check(self, model, mode="read", raise_exception=True):
+        if self.env.su:
+            return True
+        res = super().check(model, mode, raise_exception)
+        if mode != "read" and raise_exception:
+            if self._test_readonly(model) or self._test_restrict_update(model):
+                raise AccessError(
+                    _(
+                        "You are only allowed to read this record. (%(model)s - %(mode)s)"
+                    )
+                    % {"model": model, "mode": mode}
+                )
+        return res
diff --git a/base_model_restrict_update/models/res_users.py b/base_model_restrict_update/models/res_users.py
new file mode 100644
index 00000000000..ebf122fa9db
--- /dev/null
+++ b/base_model_restrict_update/models/res_users.py
@@ -0,0 +1,23 @@
+# Copyright 2021 Quartile Limited
+# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
+
+from odoo import _, api, fields, models
+from odoo.exceptions import UserError
+
+
+class ResUsers(models.Model):
+    _inherit = "res.users"
+
+    unrestrict_model_update = fields.Boolean(
+        help="Set to true and the user can update restricted model.",
+    )
+    is_readonly_user = fields.Boolean(
+        "Ready User",
+        help="Set to true and the user are readonly user on all models",
+    )
+
+    @api.constrains("is_readonly_user")
+    def _check_is_readonly_user(self):
+        for user in self:
+            if self.env.ref("base.group_system") in user.groups_id:
+                raise UserError(_("You cannot set admin user as a readonly user."))
diff --git a/base_model_restrict_update/readme/CONFIGURE.rst b/base_model_restrict_update/readme/CONFIGURE.rst
new file mode 100644
index 00000000000..8594c5f79a6
--- /dev/null
+++ b/base_model_restrict_update/readme/CONFIGURE.rst
@@ -0,0 +1,6 @@
+Enable the "Update Restrict Model" of specific model to restrict update from unpermitted users.
+To set a user as a permitted user to update restricted model(s), click on "Unrestrict
+Update" toggle button in the user form.
+
+Optionally, to set a user as read-only user to all models, click on "Read-only" toggle
+button in the user form.
diff --git a/base_model_restrict_update/readme/CONTRIBUTORS.rst b/base_model_restrict_update/readme/CONTRIBUTORS.rst
new file mode 100644
index 00000000000..6a2d7b3a99c
--- /dev/null
+++ b/base_model_restrict_update/readme/CONTRIBUTORS.rst
@@ -0,0 +1,7 @@
+* Quartile Limited
+
+  * Yoshi Tashiro <tashiro@quartile.co>
+
+* Ecosoft
+
+  * Kitti U. <kittiu@ecosoft.co.th>
diff --git a/base_model_restrict_update/readme/CREDITS.rst b/base_model_restrict_update/readme/CREDITS.rst
new file mode 100644
index 00000000000..ac1be061efa
--- /dev/null
+++ b/base_model_restrict_update/readme/CREDITS.rst
@@ -0,0 +1 @@
+* This module borrows the idea from 'Moises Lopez <https://odoo-community.org/groups/contributors-15/contributors-161807>'
diff --git a/base_model_restrict_update/readme/DESCRIPTION.rst b/base_model_restrict_update/readme/DESCRIPTION.rst
new file mode 100644
index 00000000000..0a8c8c551c1
--- /dev/null
+++ b/base_model_restrict_update/readme/DESCRIPTION.rst
@@ -0,0 +1,2 @@
+This module adds a config to apply a global update restriction to specific model,
+while only certain users can update the records if the config is enabled.
diff --git a/base_model_restrict_update/static/description/icon.png b/base_model_restrict_update/static/description/icon.png
new file mode 100644
index 00000000000..3a0328b516c
Binary files /dev/null and b/base_model_restrict_update/static/description/icon.png differ
diff --git a/base_model_restrict_update/static/description/index.html b/base_model_restrict_update/static/description/index.html
new file mode 100644
index 00000000000..5a4201752fe
--- /dev/null
+++ b/base_model_restrict_update/static/description/index.html
@@ -0,0 +1,444 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<meta name="generator" content="Docutils: https://docutils.sourceforge.io/" />
+<title>Update Restrict Model</title>
+<style type="text/css">
+
+/*
+:Author: David Goodger (goodger@python.org)
+:Id: $Id: html4css1.css 8954 2022-01-20 10:10:25Z milde $
+:Copyright: This stylesheet has been placed in the public domain.
+
+Default cascading style sheet for the HTML output of Docutils.
+
+See https://docutils.sourceforge.io/docs/howto/html-stylesheets.html for how to
+customize this style sheet.
+*/
+
+/* used to remove borders from tables and images */
+.borderless, table.borderless td, table.borderless th {
+  border: 0 }
+
+table.borderless td, table.borderless th {
+  /* Override padding for "table.docutils td" with "! important".
+     The right padding separates the table cells. */
+  padding: 0 0.5em 0 0 ! important }
+
+.first {
+  /* Override more specific margin styles with "! important". */
+  margin-top: 0 ! important }
+
+.last, .with-subtitle {
+  margin-bottom: 0 ! important }
+
+.hidden {
+  display: none }
+
+.subscript {
+  vertical-align: sub;
+  font-size: smaller }
+
+.superscript {
+  vertical-align: super;
+  font-size: smaller }
+
+a.toc-backref {
+  text-decoration: none ;
+  color: black }
+
+blockquote.epigraph {
+  margin: 2em 5em ; }
+
+dl.docutils dd {
+  margin-bottom: 0.5em }
+
+object[type="image/svg+xml"], object[type="application/x-shockwave-flash"] {
+  overflow: hidden;
+}
+
+/* Uncomment (and remove this text!) to get bold-faced definition list terms
+dl.docutils dt {
+  font-weight: bold }
+*/
+
+div.abstract {
+  margin: 2em 5em }
+
+div.abstract p.topic-title {
+  font-weight: bold ;
+  text-align: center }
+
+div.admonition, div.attention, div.caution, div.danger, div.error,
+div.hint, div.important, div.note, div.tip, div.warning {
+  margin: 2em ;
+  border: medium outset ;
+  padding: 1em }
+
+div.admonition p.admonition-title, div.hint p.admonition-title,
+div.important p.admonition-title, div.note p.admonition-title,
+div.tip p.admonition-title {
+  font-weight: bold ;
+  font-family: sans-serif }
+
+div.attention p.admonition-title, div.caution p.admonition-title,
+div.danger p.admonition-title, div.error p.admonition-title,
+div.warning p.admonition-title, .code .error {
+  color: red ;
+  font-weight: bold ;
+  font-family: sans-serif }
+
+/* Uncomment (and remove this text!) to get reduced vertical space in
+   compound paragraphs.
+div.compound .compound-first, div.compound .compound-middle {
+  margin-bottom: 0.5em }
+
+div.compound .compound-last, div.compound .compound-middle {
+  margin-top: 0.5em }
+*/
+
+div.dedication {
+  margin: 2em 5em ;
+  text-align: center ;
+  font-style: italic }
+
+div.dedication p.topic-title {
+  font-weight: bold ;
+  font-style: normal }
+
+div.figure {
+  margin-left: 2em ;
+  margin-right: 2em }
+
+div.footer, div.header {
+  clear: both;
+  font-size: smaller }
+
+div.line-block {
+  display: block ;
+  margin-top: 1em ;
+  margin-bottom: 1em }
+
+div.line-block div.line-block {
+  margin-top: 0 ;
+  margin-bottom: 0 ;
+  margin-left: 1.5em }
+
+div.sidebar {
+  margin: 0 0 0.5em 1em ;
+  border: medium outset ;
+  padding: 1em ;
+  background-color: #ffffee ;
+  width: 40% ;
+  float: right ;
+  clear: right }
+
+div.sidebar p.rubric {
+  font-family: sans-serif ;
+  font-size: medium }
+
+div.system-messages {
+  margin: 5em }
+
+div.system-messages h1 {
+  color: red }
+
+div.system-message {
+  border: medium outset ;
+  padding: 1em }
+
+div.system-message p.system-message-title {
+  color: red ;
+  font-weight: bold }
+
+div.topic {
+  margin: 2em }
+
+h1.section-subtitle, h2.section-subtitle, h3.section-subtitle,
+h4.section-subtitle, h5.section-subtitle, h6.section-subtitle {
+  margin-top: 0.4em }
+
+h1.title {
+  text-align: center }
+
+h2.subtitle {
+  text-align: center }
+
+hr.docutils {
+  width: 75% }
+
+img.align-left, .figure.align-left, object.align-left, table.align-left {
+  clear: left ;
+  float: left ;
+  margin-right: 1em }
+
+img.align-right, .figure.align-right, object.align-right, table.align-right {
+  clear: right ;
+  float: right ;
+  margin-left: 1em }
+
+img.align-center, .figure.align-center, object.align-center {
+  display: block;
+  margin-left: auto;
+  margin-right: auto;
+}
+
+table.align-center {
+  margin-left: auto;
+  margin-right: auto;
+}
+
+.align-left {
+  text-align: left }
+
+.align-center {
+  clear: both ;
+  text-align: center }
+
+.align-right {
+  text-align: right }
+
+/* reset inner alignment in figures */
+div.align-right {
+  text-align: inherit }
+
+/* div.align-center * { */
+/*   text-align: left } */
+
+.align-top    {
+  vertical-align: top }
+
+.align-middle {
+  vertical-align: middle }
+
+.align-bottom {
+  vertical-align: bottom }
+
+ol.simple, ul.simple {
+  margin-bottom: 1em }
+
+ol.arabic {
+  list-style: decimal }
+
+ol.loweralpha {
+  list-style: lower-alpha }
+
+ol.upperalpha {
+  list-style: upper-alpha }
+
+ol.lowerroman {
+  list-style: lower-roman }
+
+ol.upperroman {
+  list-style: upper-roman }
+
+p.attribution {
+  text-align: right ;
+  margin-left: 50% }
+
+p.caption {
+  font-style: italic }
+
+p.credits {
+  font-style: italic ;
+  font-size: smaller }
+
+p.label {
+  white-space: nowrap }
+
+p.rubric {
+  font-weight: bold ;
+  font-size: larger ;
+  color: maroon ;
+  text-align: center }
+
+p.sidebar-title {
+  font-family: sans-serif ;
+  font-weight: bold ;
+  font-size: larger }
+
+p.sidebar-subtitle {
+  font-family: sans-serif ;
+  font-weight: bold }
+
+p.topic-title {
+  font-weight: bold }
+
+pre.address {
+  margin-bottom: 0 ;
+  margin-top: 0 ;
+  font: inherit }
+
+pre.literal-block, pre.doctest-block, pre.math, pre.code {
+  margin-left: 2em ;
+  margin-right: 2em }
+
+pre.code .ln { color: grey; } /* line numbers */
+pre.code, code { background-color: #eeeeee }
+pre.code .comment, code .comment { color: #5C6576 }
+pre.code .keyword, code .keyword { color: #3B0D06; font-weight: bold }
+pre.code .literal.string, code .literal.string { color: #0C5404 }
+pre.code .name.builtin, code .name.builtin { color: #352B84 }
+pre.code .deleted, code .deleted { background-color: #DEB0A1}
+pre.code .inserted, code .inserted { background-color: #A3D289}
+
+span.classifier {
+  font-family: sans-serif ;
+  font-style: oblique }
+
+span.classifier-delimiter {
+  font-family: sans-serif ;
+  font-weight: bold }
+
+span.interpreted {
+  font-family: sans-serif }
+
+span.option {
+  white-space: nowrap }
+
+span.pre {
+  white-space: pre }
+
+span.problematic {
+  color: red }
+
+span.section-subtitle {
+  /* font-size relative to parent (h1..h6 element) */
+  font-size: 80% }
+
+table.citation {
+  border-left: solid 1px gray;
+  margin-left: 1px }
+
+table.docinfo {
+  margin: 2em 4em }
+
+table.docutils {
+  margin-top: 0.5em ;
+  margin-bottom: 0.5em }
+
+table.footnote {
+  border-left: solid 1px black;
+  margin-left: 1px }
+
+table.docutils td, table.docutils th,
+table.docinfo td, table.docinfo th {
+  padding-left: 0.5em ;
+  padding-right: 0.5em ;
+  vertical-align: top }
+
+table.docutils th.field-name, table.docinfo th.docinfo-name {
+  font-weight: bold ;
+  text-align: left ;
+  white-space: nowrap ;
+  padding-left: 0 }
+
+/* "booktabs" style (no vertical lines) */
+table.docutils.booktabs {
+  border: 0px;
+  border-top: 2px solid;
+  border-bottom: 2px solid;
+  border-collapse: collapse;
+}
+table.docutils.booktabs * {
+  border: 0px;
+}
+table.docutils.booktabs th {
+  border-bottom: thin solid;
+  text-align: left;
+}
+
+h1 tt.docutils, h2 tt.docutils, h3 tt.docutils,
+h4 tt.docutils, h5 tt.docutils, h6 tt.docutils {
+  font-size: 100% }
+
+ul.auto-toc {
+  list-style-type: none }
+
+</style>
+</head>
+<body>
+<div class="document" id="update-restrict-model">
+<h1 class="title">Update Restrict Model</h1>
+
+<!-- !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+!! This file is generated by oca-gen-addon-readme !!
+!! changes will be overwritten.                   !!
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+!! source digest: sha256:bbcc1b9486884cea6b487847ab39a959539b77ae21276a8362033ed9280e90d8
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
+<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl-3.0-standalone.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/licence-LGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-tools/tree/16.0/base_model_restrict_update"><img alt="OCA/server-tools" src="https://img.shields.io/badge/github-OCA%2Fserver--tools-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-tools-16-0/server-tools-16-0-base_model_restrict_update"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-tools&amp;target_branch=16.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
+<p>This module adds a config to apply a global update restriction to specific model,
+while only certain users can update the records if the config is enabled.</p>
+<p><strong>Table of contents</strong></p>
+<div class="contents local topic" id="contents">
+<ul class="simple">
+<li><a class="reference internal" href="#configuration" id="toc-entry-1">Configuration</a></li>
+<li><a class="reference internal" href="#bug-tracker" id="toc-entry-2">Bug Tracker</a></li>
+<li><a class="reference internal" href="#credits" id="toc-entry-3">Credits</a><ul>
+<li><a class="reference internal" href="#authors" id="toc-entry-4">Authors</a></li>
+<li><a class="reference internal" href="#contributors" id="toc-entry-5">Contributors</a></li>
+<li><a class="reference internal" href="#other-credits" id="toc-entry-6">Other credits</a></li>
+<li><a class="reference internal" href="#maintainers" id="toc-entry-7">Maintainers</a></li>
+</ul>
+</li>
+</ul>
+</div>
+<div class="section" id="configuration">
+<h1><a class="toc-backref" href="#toc-entry-1">Configuration</a></h1>
+<p>Enable the “Update Restrict Model” of specific model to restrict update from unpermitted users.
+To set a user as a permitted user to update restricted model(s), click on “Unrestrict
+Update” toggle button in the user form.</p>
+<p>Optionally, to set a user as read-only user to all models, click on “Read-only” toggle
+button in the user form.</p>
+</div>
+<div class="section" id="bug-tracker">
+<h1><a class="toc-backref" href="#toc-entry-2">Bug Tracker</a></h1>
+<p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-tools/issues">GitHub Issues</a>.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us to smash it by providing a detailed and welcomed
+<a class="reference external" href="https://github.com/OCA/server-tools/issues/new?body=module:%20base_model_restrict_update%0Aversion:%2016.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<p>Do not contact contributors directly about support or help with technical issues.</p>
+</div>
+<div class="section" id="credits">
+<h1><a class="toc-backref" href="#toc-entry-3">Credits</a></h1>
+<div class="section" id="authors">
+<h2><a class="toc-backref" href="#toc-entry-4">Authors</a></h2>
+<ul class="simple">
+<li>Quartile Limited</li>
+</ul>
+</div>
+<div class="section" id="contributors">
+<h2><a class="toc-backref" href="#toc-entry-5">Contributors</a></h2>
+<ul class="simple">
+<li>Quartile Limited<ul>
+<li>Yoshi Tashiro &lt;<a class="reference external" href="mailto:tashiro&#64;quartile.co">tashiro&#64;quartile.co</a>&gt;</li>
+</ul>
+</li>
+<li>Ecosoft<ul>
+<li>Kitti U. &lt;<a class="reference external" href="mailto:kittiu&#64;ecosoft.co.th">kittiu&#64;ecosoft.co.th</a>&gt;</li>
+</ul>
+</li>
+</ul>
+</div>
+<div class="section" id="other-credits">
+<h2><a class="toc-backref" href="#toc-entry-6">Other credits</a></h2>
+<ul class="simple">
+<li>This module borrows the idea from ‘Moises Lopez &lt;<a class="reference external" href="https://odoo-community.org/groups/contributors-15/contributors-161807">https://odoo-community.org/groups/contributors-15/contributors-161807</a>&gt;’</li>
+</ul>
+</div>
+<div class="section" id="maintainers">
+<h2><a class="toc-backref" href="#toc-entry-7">Maintainers</a></h2>
+<p>This module is maintained by the OCA.</p>
+<a class="reference external image-reference" href="https://odoo-community.org"><img alt="Odoo Community Association" src="https://odoo-community.org/logo.png" /></a>
+<p>OCA, or the Odoo Community Association, is a nonprofit organization whose
+mission is to support the collaborative development of Odoo features and
+promote its widespread use.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-tools/tree/16.0/base_model_restrict_update">OCA/server-tools</a> project on GitHub.</p>
+<p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
+</div>
+</div>
+</div>
+</body>
+</html>
diff --git a/base_model_restrict_update/tests/__init__.py b/base_model_restrict_update/tests/__init__.py
new file mode 100644
index 00000000000..6b23d93c704
--- /dev/null
+++ b/base_model_restrict_update/tests/__init__.py
@@ -0,0 +1 @@
+from . import test_base_model_restrict_update
diff --git a/base_model_restrict_update/tests/test_base_model_restrict_update.py b/base_model_restrict_update/tests/test_base_model_restrict_update.py
new file mode 100644
index 00000000000..9927dff90c3
--- /dev/null
+++ b/base_model_restrict_update/tests/test_base_model_restrict_update.py
@@ -0,0 +1,63 @@
+# Copyright 2021 Quartile Limited
+# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl).
+
+from odoo.exceptions import AccessError
+from odoo.tests import common, tagged
+
+
+@tagged("post_install", "-at_install")
+class TestBaseModelRestrictUpdate(common.TransactionCase):
+    @classmethod
+    def setUpClass(cls):
+        super().setUpClass()
+        cls.partner_model = cls.env["ir.model"].search([("model", "=", "res.partner")])[
+            0
+        ]
+        cls.partner_model.restrict_update = True
+        cls.test_partner = cls.env["res.partner"].create({"name": "Test Partner"})
+        cls.restrict_test_user = cls.env["res.users"].create(
+            {
+                "name": "Resticted user",
+                "login": "resticted@example.com",
+                "unrestrict_model_update": False,
+            }
+        )
+        cls.permit_test_user = cls.env["res.users"].create(
+            {
+                "name": "Permit user",
+                "login": "permit@example.com",
+                "email": "permit@example.com",
+                "unrestrict_model_update": True,
+            }
+        )
+
+    def test_01_create_partner(self):
+        with self.assertRaises(AccessError):
+            self.env["res.partner"].with_user(self.restrict_test_user.id).create(
+                {"name": "Test Partner"}
+            )
+        self.env["res.partner"].with_user(self.permit_test_user.id).create(
+            {"name": "Test Partner"}
+        )
+
+    def test_02_update_partner(self):
+        with self.assertRaises(AccessError):
+            self.test_partner.with_user(self.restrict_test_user.id).update(
+                {"name": "Test Partner 2"}
+            )
+        self.test_partner.with_user(self.permit_test_user.id).update(
+            {"name": "Test Partner 2"}
+        )
+
+    def test_03_unlink_partner(self):
+        test_partner = self.test_partner.sudo().copy()
+        with self.assertRaises(AccessError):
+            test_partner.with_user(self.restrict_test_user.id).unlink()
+        test_partner.with_user(self.permit_test_user.id).unlink()
+
+    def test_04_readonly_user_update_partner(self):
+        self.permit_test_user.write({"is_readonly_user": True})
+        with self.assertRaises(AccessError):
+            self.test_partner.with_user(self.permit_test_user.id).update(
+                {"name": "Test Partner 2"}
+            )
diff --git a/base_model_restrict_update/views/ir_model_views.xml b/base_model_restrict_update/views/ir_model_views.xml
new file mode 100644
index 00000000000..e4b754e6dd3
--- /dev/null
+++ b/base_model_restrict_update/views/ir_model_views.xml
@@ -0,0 +1,13 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<odoo>
+    <record id="view_model_form" model="ir.ui.view">
+        <field name="name">ir.model form</field>
+        <field name="model">ir.model</field>
+        <field name="inherit_id" ref="base.view_model_form" />
+        <field name="arch" type="xml">
+            <field name="transient" position="after">
+                <field name="restrict_update" />
+            </field>
+        </field>
+    </record>
+</odoo>
diff --git a/base_model_restrict_update/views/res_users_views.xml b/base_model_restrict_update/views/res_users_views.xml
new file mode 100644
index 00000000000..819c64a8d26
--- /dev/null
+++ b/base_model_restrict_update/views/res_users_views.xml
@@ -0,0 +1,29 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<odoo>
+    <record id="view_users_form" model="ir.ui.view">
+        <field name="name">res.users.form</field>
+        <field name="model">res.users</field>
+        <field name="inherit_id" ref="base.view_users_form" />
+        <field name="arch" type="xml">
+            <div class="oe_button_box" name="button_box" position="inside">
+                <div
+                    name="toggle_unrestrict_model_update"
+                    class="btn-group btn oe_stat_button"
+                    attrs="{'invisible': [('is_readonly_user', '=', True)]}"
+                    style="align-items: center;"
+                >
+                    <span style="padding: 0 10px;">Unrestrict Update</span>
+                    <field name="unrestrict_model_update" widget="boolean_toggle" />
+                </div>
+                <div
+                    name="toggle_is_readonly_user"
+                    class="btn-group btn oe_stat_button"
+                    style="align-items: center;"
+                >
+                    <span style="padding: 0 10px;">Read-only</span>
+                    <field name="is_readonly_user" widget="boolean_toggle" />
+                </div>
+            </div>
+        </field>
+    </record>
+</odoo>
diff --git a/setup/base_model_restrict_update/odoo/addons/base_model_restrict_update b/setup/base_model_restrict_update/odoo/addons/base_model_restrict_update
new file mode 120000
index 00000000000..5feb2772198
--- /dev/null
+++ b/setup/base_model_restrict_update/odoo/addons/base_model_restrict_update
@@ -0,0 +1 @@
+../../../../base_model_restrict_update
\ No newline at end of file
diff --git a/setup/base_model_restrict_update/setup.py b/setup/base_model_restrict_update/setup.py
new file mode 100644
index 00000000000..28c57bb6403
--- /dev/null
+++ b/setup/base_model_restrict_update/setup.py
@@ -0,0 +1,6 @@
+import setuptools
+
+setuptools.setup(
+    setup_requires=['setuptools-odoo'],
+    odoo_addon=True,
+)