This is one old issue that come into my mind while testing 1.0c.
I remember supporting a very weird issue back in 360. An unauthorized user has accidentally created an organization.
Upon a quite exhaustive tracing, I found out that the user has access to window Business Partner and he has accidentally click on the link organization button caused the mysterious org to be created.
Of course the best solution would be to be precise in removing the process from unauthorized role. But as it is hidden within the window, it is highly probable that the system admin missed to remove it from Role Process Access
My recommendation would be to make that process into an independent standalone process in the menu to make it more visible.
Create new org when not exist? So would it be better not to link if not exist?
This sounds good idea and easy to implement, but seems community is not very interested on it.
Please if somebody contributes a patch for this is good, otherwise I would suggest to close it and tag it as "Potential Idea"
It’s been a while and this ticket still open. Well.. it is a really annoying issue if it hits you.
if you think this is worth integrating to core, I’ll take on this ticket.
Yes , a pull request is welcome.