From c20f734c1c04d7cb3e11dacd5c0e077cefaa0455 Mon Sep 17 00:00:00 2001
From: Arnau <arnau.cruz@forgeflow.com>
Date: Thu, 8 Jan 2026 16:13:59 +0100
Subject: [PATCH 1/3] [ADD] base_tier_validation_confirm_auth

---
 base_tier_validation_confirm_auth/README.rst  |  87 ++++
 base_tier_validation_confirm_auth/__init__.py |   2 +
 .../__manifest__.py                           |  17 +
 .../models/__init__.py                        |   4 +
 .../models/res_users.py                       |  57 +++
 .../models/tier_definition.py                 |  14 +
 .../models/tier_review.py                     |  12 +
 .../models/tier_validation.py                 |  40 ++
 .../pyproject.toml                            |   3 +
 .../readme/CONFIGURE.md                       |   5 +
 .../readme/CONTRIBUTORS.md                    |   1 +
 .../readme/DESCRIPTION.md                     |   2 +
 .../static/description/index.html             | 435 ++++++++++++++++++
 .../tests/__init__.py                         |   1 +
 ..._tier_validation_authentication_confirm.py | 250 ++++++++++
 .../views/tier_definition_view.xml            |  13 +
 .../wizards/__init__.py                       |   1 +
 .../wizards/comment_wizard.py                 |  19 +
 18 files changed, 963 insertions(+)
 create mode 100644 base_tier_validation_confirm_auth/README.rst
 create mode 100644 base_tier_validation_confirm_auth/__init__.py
 create mode 100644 base_tier_validation_confirm_auth/__manifest__.py
 create mode 100644 base_tier_validation_confirm_auth/models/__init__.py
 create mode 100644 base_tier_validation_confirm_auth/models/res_users.py
 create mode 100644 base_tier_validation_confirm_auth/models/tier_definition.py
 create mode 100644 base_tier_validation_confirm_auth/models/tier_review.py
 create mode 100644 base_tier_validation_confirm_auth/models/tier_validation.py
 create mode 100644 base_tier_validation_confirm_auth/pyproject.toml
 create mode 100644 base_tier_validation_confirm_auth/readme/CONFIGURE.md
 create mode 100644 base_tier_validation_confirm_auth/readme/CONTRIBUTORS.md
 create mode 100644 base_tier_validation_confirm_auth/readme/DESCRIPTION.md
 create mode 100644 base_tier_validation_confirm_auth/static/description/index.html
 create mode 100644 base_tier_validation_confirm_auth/tests/__init__.py
 create mode 100644 base_tier_validation_confirm_auth/tests/test_tier_validation_authentication_confirm.py
 create mode 100644 base_tier_validation_confirm_auth/views/tier_definition_view.xml
 create mode 100644 base_tier_validation_confirm_auth/wizards/__init__.py
 create mode 100644 base_tier_validation_confirm_auth/wizards/comment_wizard.py

diff --git a/base_tier_validation_confirm_auth/README.rst b/base_tier_validation_confirm_auth/README.rst
new file mode 100644
index 0000000000..6ba38c12e5
--- /dev/null
+++ b/base_tier_validation_confirm_auth/README.rst
@@ -0,0 +1,87 @@
+=================================
+Base Tier Validation Confirm Auth
+=================================
+
+.. 
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! This file is generated by oca-gen-addon-readme !!
+   !! changes will be overwritten.                   !!
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! source digest: sha256:dc29a5a30d78467106dfe713b562de411e73d395f4ee15536d189548d1e43631
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+
+.. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png
+    :target: https://odoo-community.org/page/development-status
+    :alt: Beta
+.. |badge2| image:: https://img.shields.io/badge/licence-AGPL--3-blue.png
+    :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html
+    :alt: License: AGPL-3
+.. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--ux-lightgray.png?logo=github
+    :target: https://github.com/OCA/server-ux/tree/18.0/base_tier_validation_confirm_auth
+    :alt: OCA/server-ux
+.. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
+    :target: https://translation.odoo-community.org/projects/server-ux-18-0/server-ux-18-0-base_tier_validation_confirm_auth
+    :alt: Translate me on Weblate
+.. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png
+    :target: https://runboat.odoo-community.org/builds?repo=OCA/server-ux&target_branch=18.0
+    :alt: Try me on Runboat
+
+|badge1| |badge2| |badge3| |badge4| |badge5|
+
+Allows to add an authentication check to tier validation, where the user
+must confirm his authentication in order to approve or reject the tier
+review.
+
+**Table of contents**
+
+.. contents::
+   :local:
+
+Configuration
+=============
+
+To configure this module, you need to:
+
+1. Go to *Settings > Technical > Tier Validations > Tier Definition >
+   Select one tier definition*.
+2. Mark "Require Authentication" field.
+
+Bug Tracker
+===========
+
+Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-ux/issues>`_.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us to smash it by providing a detailed and welcomed
+`feedback <https://github.com/OCA/server-ux/issues/new?body=module:%20base_tier_validation_confirm_auth%0Aversion:%2018.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+
+Do not contact contributors directly about support or help with technical issues.
+
+Credits
+=======
+
+Authors
+-------
+
+* ForgeFlow
+
+Contributors
+------------
+
+- Arnau Cruz arnau.cruz@forgeflow.com
+
+Maintainers
+-----------
+
+This module is maintained by the OCA.
+
+.. image:: https://odoo-community.org/logo.png
+   :alt: Odoo Community Association
+   :target: https://odoo-community.org
+
+OCA, or the Odoo Community Association, is a nonprofit organization whose
+mission is to support the collaborative development of Odoo features and
+promote its widespread use.
+
+This module is part of the `OCA/server-ux <https://github.com/OCA/server-ux/tree/18.0/base_tier_validation_confirm_auth>`_ project on GitHub.
+
+You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/base_tier_validation_confirm_auth/__init__.py b/base_tier_validation_confirm_auth/__init__.py
new file mode 100644
index 0000000000..aee8895e7a
--- /dev/null
+++ b/base_tier_validation_confirm_auth/__init__.py
@@ -0,0 +1,2 @@
+from . import models
+from . import wizards
diff --git a/base_tier_validation_confirm_auth/__manifest__.py b/base_tier_validation_confirm_auth/__manifest__.py
new file mode 100644
index 0000000000..5783b8b033
--- /dev/null
+++ b/base_tier_validation_confirm_auth/__manifest__.py
@@ -0,0 +1,17 @@
+# Copyright 2026 ForgeFlow S.L. (https://www.forgeflow.com)
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
+{
+    "name": "Base Tier Validation Confirm Auth",
+    "summary": "Authentication confirmation for base tiers.",
+    "version": "18.0.1.0.0",
+    "category": "Tools",
+    "website": "https://github.com/OCA/server-ux",
+    "author": "ForgeFlow, Odoo Community Association (OCA)",
+    "license": "AGPL-3",
+    "depends": ["base_tier_validation"],
+    "data": [
+        "views/tier_definition_view.xml",
+    ],
+    "application": False,
+    "installable": True,
+}
diff --git a/base_tier_validation_confirm_auth/models/__init__.py b/base_tier_validation_confirm_auth/models/__init__.py
new file mode 100644
index 0000000000..d4e0af9ca8
--- /dev/null
+++ b/base_tier_validation_confirm_auth/models/__init__.py
@@ -0,0 +1,4 @@
+from . import tier_definition
+from . import tier_review
+from . import tier_validation
+from . import res_users
diff --git a/base_tier_validation_confirm_auth/models/res_users.py b/base_tier_validation_confirm_auth/models/res_users.py
new file mode 100644
index 0000000000..526d410937
--- /dev/null
+++ b/base_tier_validation_confirm_auth/models/res_users.py
@@ -0,0 +1,57 @@
+# Copyright 2026 ForgeFlow S.L. (https://www.forgeflow.com)
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
+
+import json
+from functools import wraps
+
+from odoo import _
+from odoo.exceptions import UserError
+from odoo.http import request
+
+
+def _jsonable(o):
+    try:
+        json.dumps(o)
+    except TypeError:
+        return False
+    else:
+        return True
+
+
+def check_authentication(fn):
+    @wraps(fn)
+    def wrapped(self, *args, **kwargs):
+        if not request:
+            raise UserError(_("This method can only be accessed over HTTP"))
+
+        if self.env.context.get("identity_checked"):
+            return fn(self, *args, **kwargs)
+
+        ctx = self.env.context.copy()
+        ctx["identity_checked"] = True
+
+        safe_context = {k: v for k, v in ctx.items() if _jsonable(v)}
+
+        w = (
+            self.sudo()
+            .env["res.users.identitycheck"]
+            .create(
+                {
+                    "request": json.dumps(
+                        [safe_context, self._name, self.ids, fn.__name__, args, kwargs]
+                    )
+                }
+            )
+        )
+
+        return {
+            "type": "ir.actions.act_window",
+            "res_model": "res.users.identitycheck",
+            "res_id": w.id,
+            "name": _("Security Control"),
+            "target": "new",
+            "views": [(False, "form")],
+        }
+
+    wrapped.__has_check_identity = True
+    return wrapped
diff --git a/base_tier_validation_confirm_auth/models/tier_definition.py b/base_tier_validation_confirm_auth/models/tier_definition.py
new file mode 100644
index 0000000000..67dc5334cf
--- /dev/null
+++ b/base_tier_validation_confirm_auth/models/tier_definition.py
@@ -0,0 +1,14 @@
+# Copyright 2026 ForgeFlow S.L. (https://www.forgeflow.com)
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
+
+from odoo import fields, models
+
+
+class TierDefinition(models.Model):
+    _inherit = "tier.definition"
+
+    require_authentication = fields.Boolean(
+        help="If enabled, the user will be asked to authenticate "
+        "himself in order to validate or reject the tier.",
+        default=False,
+    )
diff --git a/base_tier_validation_confirm_auth/models/tier_review.py b/base_tier_validation_confirm_auth/models/tier_review.py
new file mode 100644
index 0000000000..fe8f0d849c
--- /dev/null
+++ b/base_tier_validation_confirm_auth/models/tier_review.py
@@ -0,0 +1,12 @@
+# Copyright 2026 ForgeFlow S.L. (https://www.forgeflow.com)
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
+
+from odoo import fields, models
+
+
+class TierReview(models.Model):
+    _inherit = "tier.review"
+
+    require_authentication = fields.Boolean(
+        related="definition_id.require_authentication", readonly=True
+    )
diff --git a/base_tier_validation_confirm_auth/models/tier_validation.py b/base_tier_validation_confirm_auth/models/tier_validation.py
new file mode 100644
index 0000000000..9caea440dc
--- /dev/null
+++ b/base_tier_validation_confirm_auth/models/tier_validation.py
@@ -0,0 +1,40 @@
+# Copyright 2026 ForgeFlow S.L. (https://www.forgeflow.com)
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
+
+from odoo import fields, models
+
+from .res_users import check_authentication
+
+
+class TierValidation(models.AbstractModel):
+    _inherit = "tier.validation"
+
+    require_authentication = fields.Boolean(compute="_compute_require_authentication")
+
+    def _compute_require_authentication(self):
+        for rec in self:
+            require_authentication = rec.review_ids.filtered(
+                lambda r: r.status in ("waiting", "pending")
+                and (self.env.user in r.reviewer_ids)
+            ).mapped("require_authentication")
+            rec.require_authentication = True in require_authentication
+
+    def validate_tier(self):
+        self.ensure_one()
+        if not self.has_comment and self.require_authentication:
+            return self._validate_tier_with_identity_check()
+        return super().validate_tier()
+
+    def reject_tier(self):
+        self.ensure_one()
+        if not self.has_comment and self.require_authentication:
+            return self._reject_tier_with_identity_check()
+        return super().reject_tier()
+
+    @check_authentication
+    def _validate_tier_with_identity_check(self):
+        return super().validate_tier()
+
+    @check_authentication
+    def _reject_tier_with_identity_check(self):
+        return super().reject_tier()
diff --git a/base_tier_validation_confirm_auth/pyproject.toml b/base_tier_validation_confirm_auth/pyproject.toml
new file mode 100644
index 0000000000..4231d0cccb
--- /dev/null
+++ b/base_tier_validation_confirm_auth/pyproject.toml
@@ -0,0 +1,3 @@
+[build-system]
+requires = ["whool"]
+build-backend = "whool.buildapi"
diff --git a/base_tier_validation_confirm_auth/readme/CONFIGURE.md b/base_tier_validation_confirm_auth/readme/CONFIGURE.md
new file mode 100644
index 0000000000..887a1cfbac
--- /dev/null
+++ b/base_tier_validation_confirm_auth/readme/CONFIGURE.md
@@ -0,0 +1,5 @@
+To configure this module, you need to:
+
+1.  Go to *Settings \> Technical \> Tier Validations \> Tier
+    Definition \> Select one tier definition*.
+2.  Mark "Require Authentication" field.
diff --git a/base_tier_validation_confirm_auth/readme/CONTRIBUTORS.md b/base_tier_validation_confirm_auth/readme/CONTRIBUTORS.md
new file mode 100644
index 0000000000..629a347ae8
--- /dev/null
+++ b/base_tier_validation_confirm_auth/readme/CONTRIBUTORS.md
@@ -0,0 +1 @@
+- Arnau Cruz <arnau.cruz@forgeflow.com>
diff --git a/base_tier_validation_confirm_auth/readme/DESCRIPTION.md b/base_tier_validation_confirm_auth/readme/DESCRIPTION.md
new file mode 100644
index 0000000000..18c2248d8c
--- /dev/null
+++ b/base_tier_validation_confirm_auth/readme/DESCRIPTION.md
@@ -0,0 +1,2 @@
+Allows to add an authentication check to tier validation,
+where the user must confirm his authentication in order to approve or reject the tier review.
diff --git a/base_tier_validation_confirm_auth/static/description/index.html b/base_tier_validation_confirm_auth/static/description/index.html
new file mode 100644
index 0000000000..736b1443eb
--- /dev/null
+++ b/base_tier_validation_confirm_auth/static/description/index.html
@@ -0,0 +1,435 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<meta name="generator" content="Docutils: https://docutils.sourceforge.io/" />
+<title>Base Tier Validation Confirm Auth</title>
+<style type="text/css">
+
+/*
+:Author: David Goodger (goodger@python.org)
+:Id: $Id: html4css1.css 9511 2024-01-13 09:50:07Z milde $
+:Copyright: This stylesheet has been placed in the public domain.
+
+Default cascading style sheet for the HTML output of Docutils.
+Despite the name, some widely supported CSS2 features are used.
+
+See https://docutils.sourceforge.io/docs/howto/html-stylesheets.html for how to
+customize this style sheet.
+*/
+
+/* used to remove borders from tables and images */
+.borderless, table.borderless td, table.borderless th {
+  border: 0 }
+
+table.borderless td, table.borderless th {
+  /* Override padding for "table.docutils td" with "! important".
+     The right padding separates the table cells. */
+  padding: 0 0.5em 0 0 ! important }
+
+.first {
+  /* Override more specific margin styles with "! important". */
+  margin-top: 0 ! important }
+
+.last, .with-subtitle {
+  margin-bottom: 0 ! important }
+
+.hidden {
+  display: none }
+
+.subscript {
+  vertical-align: sub;
+  font-size: smaller }
+
+.superscript {
+  vertical-align: super;
+  font-size: smaller }
+
+a.toc-backref {
+  text-decoration: none ;
+  color: black }
+
+blockquote.epigraph {
+  margin: 2em 5em ; }
+
+dl.docutils dd {
+  margin-bottom: 0.5em }
+
+object[type="image/svg+xml"], object[type="application/x-shockwave-flash"] {
+  overflow: hidden;
+}
+
+/* Uncomment (and remove this text!) to get bold-faced definition list terms
+dl.docutils dt {
+  font-weight: bold }
+*/
+
+div.abstract {
+  margin: 2em 5em }
+
+div.abstract p.topic-title {
+  font-weight: bold ;
+  text-align: center }
+
+div.admonition, div.attention, div.caution, div.danger, div.error,
+div.hint, div.important, div.note, div.tip, div.warning {
+  margin: 2em ;
+  border: medium outset ;
+  padding: 1em }
+
+div.admonition p.admonition-title, div.hint p.admonition-title,
+div.important p.admonition-title, div.note p.admonition-title,
+div.tip p.admonition-title {
+  font-weight: bold ;
+  font-family: sans-serif }
+
+div.attention p.admonition-title, div.caution p.admonition-title,
+div.danger p.admonition-title, div.error p.admonition-title,
+div.warning p.admonition-title, .code .error {
+  color: red ;
+  font-weight: bold ;
+  font-family: sans-serif }
+
+/* Uncomment (and remove this text!) to get reduced vertical space in
+   compound paragraphs.
+div.compound .compound-first, div.compound .compound-middle {
+  margin-bottom: 0.5em }
+
+div.compound .compound-last, div.compound .compound-middle {
+  margin-top: 0.5em }
+*/
+
+div.dedication {
+  margin: 2em 5em ;
+  text-align: center ;
+  font-style: italic }
+
+div.dedication p.topic-title {
+  font-weight: bold ;
+  font-style: normal }
+
+div.figure {
+  margin-left: 2em ;
+  margin-right: 2em }
+
+div.footer, div.header {
+  clear: both;
+  font-size: smaller }
+
+div.line-block {
+  display: block ;
+  margin-top: 1em ;
+  margin-bottom: 1em }
+
+div.line-block div.line-block {
+  margin-top: 0 ;
+  margin-bottom: 0 ;
+  margin-left: 1.5em }
+
+div.sidebar {
+  margin: 0 0 0.5em 1em ;
+  border: medium outset ;
+  padding: 1em ;
+  background-color: #ffffee ;
+  width: 40% ;
+  float: right ;
+  clear: right }
+
+div.sidebar p.rubric {
+  font-family: sans-serif ;
+  font-size: medium }
+
+div.system-messages {
+  margin: 5em }
+
+div.system-messages h1 {
+  color: red }
+
+div.system-message {
+  border: medium outset ;
+  padding: 1em }
+
+div.system-message p.system-message-title {
+  color: red ;
+  font-weight: bold }
+
+div.topic {
+  margin: 2em }
+
+h1.section-subtitle, h2.section-subtitle, h3.section-subtitle,
+h4.section-subtitle, h5.section-subtitle, h6.section-subtitle {
+  margin-top: 0.4em }
+
+h1.title {
+  text-align: center }
+
+h2.subtitle {
+  text-align: center }
+
+hr.docutils {
+  width: 75% }
+
+img.align-left, .figure.align-left, object.align-left, table.align-left {
+  clear: left ;
+  float: left ;
+  margin-right: 1em }
+
+img.align-right, .figure.align-right, object.align-right, table.align-right {
+  clear: right ;
+  float: right ;
+  margin-left: 1em }
+
+img.align-center, .figure.align-center, object.align-center {
+  display: block;
+  margin-left: auto;
+  margin-right: auto;
+}
+
+table.align-center {
+  margin-left: auto;
+  margin-right: auto;
+}
+
+.align-left {
+  text-align: left }
+
+.align-center {
+  clear: both ;
+  text-align: center }
+
+.align-right {
+  text-align: right }
+
+/* reset inner alignment in figures */
+div.align-right {
+  text-align: inherit }
+
+/* div.align-center * { */
+/*   text-align: left } */
+
+.align-top    {
+  vertical-align: top }
+
+.align-middle {
+  vertical-align: middle }
+
+.align-bottom {
+  vertical-align: bottom }
+
+ol.simple, ul.simple {
+  margin-bottom: 1em }
+
+ol.arabic {
+  list-style: decimal }
+
+ol.loweralpha {
+  list-style: lower-alpha }
+
+ol.upperalpha {
+  list-style: upper-alpha }
+
+ol.lowerroman {
+  list-style: lower-roman }
+
+ol.upperroman {
+  list-style: upper-roman }
+
+p.attribution {
+  text-align: right ;
+  margin-left: 50% }
+
+p.caption {
+  font-style: italic }
+
+p.credits {
+  font-style: italic ;
+  font-size: smaller }
+
+p.label {
+  white-space: nowrap }
+
+p.rubric {
+  font-weight: bold ;
+  font-size: larger ;
+  color: maroon ;
+  text-align: center }
+
+p.sidebar-title {
+  font-family: sans-serif ;
+  font-weight: bold ;
+  font-size: larger }
+
+p.sidebar-subtitle {
+  font-family: sans-serif ;
+  font-weight: bold }
+
+p.topic-title {
+  font-weight: bold }
+
+pre.address {
+  margin-bottom: 0 ;
+  margin-top: 0 ;
+  font: inherit }
+
+pre.literal-block, pre.doctest-block, pre.math, pre.code {
+  margin-left: 2em ;
+  margin-right: 2em }
+
+pre.code .ln { color: gray; } /* line numbers */
+pre.code, code { background-color: #eeeeee }
+pre.code .comment, code .comment { color: #5C6576 }
+pre.code .keyword, code .keyword { color: #3B0D06; font-weight: bold }
+pre.code .literal.string, code .literal.string { color: #0C5404 }
+pre.code .name.builtin, code .name.builtin { color: #352B84 }
+pre.code .deleted, code .deleted { background-color: #DEB0A1}
+pre.code .inserted, code .inserted { background-color: #A3D289}
+
+span.classifier {
+  font-family: sans-serif ;
+  font-style: oblique }
+
+span.classifier-delimiter {
+  font-family: sans-serif ;
+  font-weight: bold }
+
+span.interpreted {
+  font-family: sans-serif }
+
+span.option {
+  white-space: nowrap }
+
+span.pre {
+  white-space: pre }
+
+span.problematic, pre.problematic {
+  color: red }
+
+span.section-subtitle {
+  /* font-size relative to parent (h1..h6 element) */
+  font-size: 80% }
+
+table.citation {
+  border-left: solid 1px gray;
+  margin-left: 1px }
+
+table.docinfo {
+  margin: 2em 4em }
+
+table.docutils {
+  margin-top: 0.5em ;
+  margin-bottom: 0.5em }
+
+table.footnote {
+  border-left: solid 1px black;
+  margin-left: 1px }
+
+table.docutils td, table.docutils th,
+table.docinfo td, table.docinfo th {
+  padding-left: 0.5em ;
+  padding-right: 0.5em ;
+  vertical-align: top }
+
+table.docutils th.field-name, table.docinfo th.docinfo-name {
+  font-weight: bold ;
+  text-align: left ;
+  white-space: nowrap ;
+  padding-left: 0 }
+
+/* "booktabs" style (no vertical lines) */
+table.docutils.booktabs {
+  border: 0px;
+  border-top: 2px solid;
+  border-bottom: 2px solid;
+  border-collapse: collapse;
+}
+table.docutils.booktabs * {
+  border: 0px;
+}
+table.docutils.booktabs th {
+  border-bottom: thin solid;
+  text-align: left;
+}
+
+h1 tt.docutils, h2 tt.docutils, h3 tt.docutils,
+h4 tt.docutils, h5 tt.docutils, h6 tt.docutils {
+  font-size: 100% }
+
+ul.auto-toc {
+  list-style-type: none }
+
+</style>
+</head>
+<body>
+<div class="document" id="base-tier-validation-confirm-auth">
+<h1 class="title">Base Tier Validation Confirm Auth</h1>
+
+<!-- !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+!! This file is generated by oca-gen-addon-readme !!
+!! changes will be overwritten.                   !!
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+!! source digest: sha256:dc29a5a30d78467106dfe713b562de411e73d395f4ee15536d189548d1e43631
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
+<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/licence-AGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-ux/tree/18.0/base_tier_validation_confirm_auth"><img alt="OCA/server-ux" src="https://img.shields.io/badge/github-OCA%2Fserver--ux-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-ux-18-0/server-ux-18-0-base_tier_validation_confirm_auth"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-ux&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
+<p>Allows to add an authentication check to tier validation, where the user
+must confirm his authentication in order to approve or reject the tier
+review.</p>
+<p><strong>Table of contents</strong></p>
+<div class="contents local topic" id="contents">
+<ul class="simple">
+<li><a class="reference internal" href="#configuration" id="toc-entry-1">Configuration</a></li>
+<li><a class="reference internal" href="#bug-tracker" id="toc-entry-2">Bug Tracker</a></li>
+<li><a class="reference internal" href="#credits" id="toc-entry-3">Credits</a><ul>
+<li><a class="reference internal" href="#authors" id="toc-entry-4">Authors</a></li>
+<li><a class="reference internal" href="#contributors" id="toc-entry-5">Contributors</a></li>
+<li><a class="reference internal" href="#maintainers" id="toc-entry-6">Maintainers</a></li>
+</ul>
+</li>
+</ul>
+</div>
+<div class="section" id="configuration">
+<h1><a class="toc-backref" href="#toc-entry-1">Configuration</a></h1>
+<p>To configure this module, you need to:</p>
+<ol class="arabic simple">
+<li>Go to <em>Settings &gt; Technical &gt; Tier Validations &gt; Tier Definition &gt;
+Select one tier definition</em>.</li>
+<li>Mark “Require Authentication” field.</li>
+</ol>
+</div>
+<div class="section" id="bug-tracker">
+<h1><a class="toc-backref" href="#toc-entry-2">Bug Tracker</a></h1>
+<p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-ux/issues">GitHub Issues</a>.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us to smash it by providing a detailed and welcomed
+<a class="reference external" href="https://github.com/OCA/server-ux/issues/new?body=module:%20base_tier_validation_confirm_auth%0Aversion:%2018.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<p>Do not contact contributors directly about support or help with technical issues.</p>
+</div>
+<div class="section" id="credits">
+<h1><a class="toc-backref" href="#toc-entry-3">Credits</a></h1>
+<div class="section" id="authors">
+<h2><a class="toc-backref" href="#toc-entry-4">Authors</a></h2>
+<ul class="simple">
+<li>ForgeFlow</li>
+</ul>
+</div>
+<div class="section" id="contributors">
+<h2><a class="toc-backref" href="#toc-entry-5">Contributors</a></h2>
+<ul class="simple">
+<li>Arnau Cruz <a class="reference external" href="mailto:arnau.cruz&#64;forgeflow.com">arnau.cruz&#64;forgeflow.com</a></li>
+</ul>
+</div>
+<div class="section" id="maintainers">
+<h2><a class="toc-backref" href="#toc-entry-6">Maintainers</a></h2>
+<p>This module is maintained by the OCA.</p>
+<a class="reference external image-reference" href="https://odoo-community.org">
+<img alt="Odoo Community Association" src="https://odoo-community.org/logo.png" />
+</a>
+<p>OCA, or the Odoo Community Association, is a nonprofit organization whose
+mission is to support the collaborative development of Odoo features and
+promote its widespread use.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-ux/tree/18.0/base_tier_validation_confirm_auth">OCA/server-ux</a> project on GitHub.</p>
+<p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
+</div>
+</div>
+</div>
+</body>
+</html>
diff --git a/base_tier_validation_confirm_auth/tests/__init__.py b/base_tier_validation_confirm_auth/tests/__init__.py
new file mode 100644
index 0000000000..2cab50552b
--- /dev/null
+++ b/base_tier_validation_confirm_auth/tests/__init__.py
@@ -0,0 +1 @@
+from . import test_tier_validation_authentication_confirm
diff --git a/base_tier_validation_confirm_auth/tests/test_tier_validation_authentication_confirm.py b/base_tier_validation_confirm_auth/tests/test_tier_validation_authentication_confirm.py
new file mode 100644
index 0000000000..ee40527345
--- /dev/null
+++ b/base_tier_validation_confirm_auth/tests/test_tier_validation_authentication_confirm.py
@@ -0,0 +1,250 @@
+# Copyright 2026 ForgeFlow S.L.
+# License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl.html).
+
+from unittest.mock import MagicMock, patch
+
+from odoo.tests import Form, tagged
+
+from odoo.addons.base_tier_validation.tests.common import CommonTierValidation
+
+
+@tagged("post_install", "-at_install")
+class TierTierValidationAuthenticationConfirm(CommonTierValidation):
+    @classmethod
+    def setUpClass(cls):
+        super().setUpClass()
+
+    def test_01_authentication_confirmation_and_comment(self):
+        # Set user password for validation
+        self.test_user_1.password = "test_user_1"
+
+        # Create new test record
+        test_record = self.test_model.create({"test_field": 2.5})
+
+        # Create tier definitions
+        self.tier_def_obj.create(
+            {
+                "model_id": self.tester_model.id,
+                "review_type": "individual",
+                "reviewer_id": self.test_user_1.id,
+                "definition_domain": "[('test_field', '>', 1.0)]",
+                "has_comment": True,
+                "require_authentication": True,
+            }
+        )
+        # Request validation
+        review = test_record.with_user(self.test_user_2.id).request_validation()
+        self.assertTrue(review)
+
+        # Let _compute_can_review assign status 'pending' instead of waiting
+        review.flush_recordset()
+        record = test_record.with_user(self.test_user_1.id)
+        res = record.validate_tier()
+        ctx = res.get("context")
+        wizard = Form(self.env["comment.wizard"].with_context(**ctx))
+        wizard.comment = "Test Comment"
+        wiz = wizard.save()
+
+        # Mock requests to avoid errors outside HTTP request
+        with patch(
+            "odoo.addons.base_tier_validation_confirm_auth.models.res_users.request",
+            MagicMock(),
+        ):
+            res = wiz.add_comment()
+
+        self.assertEqual(res["res_model"], "res.users.identitycheck")
+        identity_wiz_id = res["res_id"]
+        identity_wiz = (
+            self.env["res.users.identitycheck"]
+            .sudo()
+            .browse(identity_wiz_id)
+            .with_user(self.test_user_1)
+        )
+        identity_wiz.sudo().write({"password": "test_user_1"})
+
+        # Mock requests to avoid errors outside HTTP request
+        with (
+            patch("odoo.addons.base.models.res_users.request", MagicMock()),
+            patch(
+                "odoo.addons.base_tier_validation_confirm_auth.models.res_users.request",
+                MagicMock(),
+            ),
+        ):
+            identity_wiz.sudo().run_check()
+
+        self.assertTrue(review.status == "approved")
+        self.assertTrue(review.done_by == self.test_user_1)
+        self.assertTrue(review.comment == "Test Comment")
+
+    def test_02_authentication_confirmation_without_comment(self):
+        # Set user password for validation
+        self.test_user_1.password = "test_user_1"
+
+        # Create new test record
+        test_record = self.test_model.create({"test_field": 2.5})
+
+        # Create tier definition with no comment + require authentication
+        self.tier_def_obj.create(
+            {
+                "model_id": self.tester_model.id,
+                "review_type": "individual",
+                "reviewer_id": self.test_user_1.id,
+                "definition_domain": "[('test_field', '>', 1.0)]",
+                "has_comment": False,
+                "require_authentication": True,
+            }
+        )
+
+        # Request validation
+        review = test_record.with_user(self.test_user_2).request_validation()
+        self.assertTrue(review)
+        record = test_record.with_user(self.test_user_1)
+
+        # Mock requests to avoid errors outside HTTP request
+        with patch(
+            "odoo.addons.base_tier_validation_confirm_auth.models.res_users.request",
+            MagicMock(),
+        ):
+            res = record.validate_tier()
+
+        # Identity confirmation wizard
+        self.assertEqual(res["res_model"], "res.users.identitycheck")
+        identity_wiz_id = res["res_id"]
+        identity_wiz = (
+            self.env["res.users.identitycheck"]
+            .sudo()
+            .browse(identity_wiz_id)
+            .with_user(self.test_user_1)
+        )
+        identity_wiz.sudo().write({"password": "test_user_1"})
+
+        # Mock requests to avoid errors outside HTTP request
+        with (
+            patch("odoo.addons.base.models.res_users.request", MagicMock()),
+            patch(
+                "odoo.addons.base_tier_validation_confirm_auth.models.res_users.request",
+                MagicMock(),
+            ),
+        ):
+            identity_wiz.sudo().run_check()
+
+        self.assertTrue(review.status == "approved")
+        self.assertTrue(review.done_by == self.test_user_1)
+
+    def test_03_authentication_confirmation_reject_with_comment(self):
+        # Set user password for validation
+        self.test_user_1.password = "test_user_1"
+
+        # Create new test record
+        test_record = self.test_model.create({"test_field": 2.5})
+
+        # Create tier definitions
+        self.tier_def_obj.create(
+            {
+                "model_id": self.tester_model.id,
+                "review_type": "individual",
+                "reviewer_id": self.test_user_1.id,
+                "definition_domain": "[('test_field', '>', 1.0)]",
+                "has_comment": True,
+                "require_authentication": True,
+            }
+        )
+        # Request validation
+        review = test_record.with_user(self.test_user_2.id).request_validation()
+        self.assertTrue(review)
+
+        # Let _compute_can_review assign status 'pending' instead of waiting
+        review.flush_recordset()
+        record = test_record.with_user(self.test_user_1.id)
+        res = record.reject_tier()
+        ctx = res.get("context")
+        wizard = Form(self.env["comment.wizard"].with_context(**ctx))
+        wizard.comment = "Test Comment"
+        wiz = wizard.save()
+
+        # Mock requests to avoid errors outside HTTP request
+        with patch(
+            "odoo.addons.base_tier_validation_confirm_auth.models.res_users.request",
+            MagicMock(),
+        ):
+            res = wiz.add_comment()
+
+        # Identity confirmation wizard
+        self.assertEqual(res["res_model"], "res.users.identitycheck")
+        identity_wiz_id = res["res_id"]
+        identity_wiz = (
+            self.env["res.users.identitycheck"]
+            .sudo()
+            .browse(identity_wiz_id)
+            .with_user(self.test_user_1)
+        )
+        identity_wiz.sudo().write({"password": "test_user_1"})
+
+        # Mock requests to avoid errors outside HTTP request
+        with (
+            patch("odoo.addons.base.models.res_users.request", MagicMock()),
+            patch(
+                "odoo.addons.base_tier_validation_confirm_auth.models.res_users.request",
+                MagicMock(),
+            ),
+        ):
+            identity_wiz.sudo().run_check()
+
+        self.assertTrue(review.status == "rejected")
+        self.assertTrue(review.done_by == self.test_user_1)
+        self.assertTrue(review.comment == "Test Comment")
+
+    def test_04_authentication_confirmation_reject_without_comment(self):
+        # Set user password for validation
+        self.test_user_1.password = "test_user_1"
+
+        # Create new test record
+        test_record = self.test_model.create({"test_field": 2.5})
+
+        # Create tier definition with no comment + require authentication
+        self.tier_def_obj.create(
+            {
+                "model_id": self.tester_model.id,
+                "review_type": "individual",
+                "reviewer_id": self.test_user_1.id,
+                "definition_domain": "[('test_field', '>', 1.0)]",
+                "has_comment": False,
+                "require_authentication": True,
+            }
+        )
+
+        # Request validation
+        review = test_record.with_user(self.test_user_2).request_validation()
+        self.assertTrue(review)
+        record = test_record.with_user(self.test_user_1)
+
+        # Mock requests to avoid errors outside HTTP request
+        with patch(
+            "odoo.addons.base_tier_validation_confirm_auth.models.res_users.request",
+            MagicMock(),
+        ):
+            res = record.reject_tier()
+
+        # Identity confirmation wizard
+        self.assertEqual(res["res_model"], "res.users.identitycheck")
+        identity_wiz_id = res["res_id"]
+        identity_wiz = (
+            self.env["res.users.identitycheck"]
+            .sudo()
+            .browse(identity_wiz_id)
+            .with_user(self.test_user_1)
+        )
+        identity_wiz.sudo().write({"password": "test_user_1"})
+
+        # Mock requests to avoid errors outside HTTP request
+        with (
+            patch("odoo.addons.base.models.res_users.request", MagicMock()),
+            patch(
+                "odoo.addons.base_tier_validation_confirm_auth.models.res_users.request",
+                MagicMock(),
+            ),
+        ):
+            identity_wiz.sudo().run_check()
+
+        self.assertTrue(review.status == "rejected")
+        self.assertTrue(review.done_by == self.test_user_1)
diff --git a/base_tier_validation_confirm_auth/views/tier_definition_view.xml b/base_tier_validation_confirm_auth/views/tier_definition_view.xml
new file mode 100644
index 0000000000..24df48b423
--- /dev/null
+++ b/base_tier_validation_confirm_auth/views/tier_definition_view.xml
@@ -0,0 +1,13 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<odoo>
+    <record id="tier_definition_view_form" model="ir.ui.view">
+        <field name="name">tier.definition.form</field>
+        <field name="model">tier.definition</field>
+        <field name="inherit_id" ref="base_tier_validation.tier_definition_view_form" />
+        <field name="arch" type="xml">
+            <field name="has_comment" position="after">
+                <field name="require_authentication" />
+            </field>
+        </field>
+    </record>
+</odoo>
diff --git a/base_tier_validation_confirm_auth/wizards/__init__.py b/base_tier_validation_confirm_auth/wizards/__init__.py
new file mode 100644
index 0000000000..2484d9e0ab
--- /dev/null
+++ b/base_tier_validation_confirm_auth/wizards/__init__.py
@@ -0,0 +1 @@
+from . import comment_wizard
diff --git a/base_tier_validation_confirm_auth/wizards/comment_wizard.py b/base_tier_validation_confirm_auth/wizards/comment_wizard.py
new file mode 100644
index 0000000000..d1e9023343
--- /dev/null
+++ b/base_tier_validation_confirm_auth/wizards/comment_wizard.py
@@ -0,0 +1,19 @@
+# Copyright 2026 ForgeFlow S.L. (https://www.forgeflow.com)
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
+
+from odoo import models
+
+from ..models.res_users import check_authentication
+
+
+class CommentWizard(models.TransientModel):
+    _inherit = "comment.wizard"
+
+    def add_comment(self):
+        if any(review.require_authentication for review in self.review_ids):
+            return self._add_comment_with_identity_check()
+        return super().add_comment()
+
+    @check_authentication
+    def _add_comment_with_identity_check(self):
+        return super().add_comment()

From 003a562de7640e933ac64bdbc261d46664c07d38 Mon Sep 17 00:00:00 2001
From: oca-ci <oca-ci@odoo-community.org>
Date: Thu, 5 Feb 2026 09:36:47 +0000
Subject: [PATCH 2/3] [UPD] Update base_tier_validation_confirm_auth.pot

---
 .../base_tier_validation_confirm_auth.pot     | 61 +++++++++++++++++++
 1 file changed, 61 insertions(+)
 create mode 100644 base_tier_validation_confirm_auth/i18n/base_tier_validation_confirm_auth.pot

diff --git a/base_tier_validation_confirm_auth/i18n/base_tier_validation_confirm_auth.pot b/base_tier_validation_confirm_auth/i18n/base_tier_validation_confirm_auth.pot
new file mode 100644
index 0000000000..d5254235dc
--- /dev/null
+++ b/base_tier_validation_confirm_auth/i18n/base_tier_validation_confirm_auth.pot
@@ -0,0 +1,61 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# 	* base_tier_validation_confirm_auth
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: Odoo Server 18.0\n"
+"Report-Msgid-Bugs-To: \n"
+"Last-Translator: \n"
+"Language-Team: \n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: \n"
+"Plural-Forms: \n"
+
+#. module: base_tier_validation_confirm_auth
+#: model:ir.model,name:base_tier_validation_confirm_auth.model_comment_wizard
+msgid "Comment Wizard"
+msgstr ""
+
+#. module: base_tier_validation_confirm_auth
+#: model:ir.model.fields,help:base_tier_validation_confirm_auth.field_tier_definition__require_authentication
+#: model:ir.model.fields,help:base_tier_validation_confirm_auth.field_tier_review__require_authentication
+msgid ""
+"If enabled, the user will be asked to authenticate himself in order to "
+"validate or reject the tier."
+msgstr ""
+
+#. module: base_tier_validation_confirm_auth
+#: model:ir.model.fields,field_description:base_tier_validation_confirm_auth.field_tier_definition__require_authentication
+#: model:ir.model.fields,field_description:base_tier_validation_confirm_auth.field_tier_review__require_authentication
+#: model:ir.model.fields,field_description:base_tier_validation_confirm_auth.field_tier_validation__require_authentication
+msgid "Require Authentication"
+msgstr ""
+
+#. module: base_tier_validation_confirm_auth
+#. odoo-python
+#: code:addons/base_tier_validation_confirm_auth/models/res_users.py:0
+msgid "Security Control"
+msgstr ""
+
+#. module: base_tier_validation_confirm_auth
+#. odoo-python
+#: code:addons/base_tier_validation_confirm_auth/models/res_users.py:0
+msgid "This method can only be accessed over HTTP"
+msgstr ""
+
+#. module: base_tier_validation_confirm_auth
+#: model:ir.model,name:base_tier_validation_confirm_auth.model_tier_definition
+msgid "Tier Definition"
+msgstr ""
+
+#. module: base_tier_validation_confirm_auth
+#: model:ir.model,name:base_tier_validation_confirm_auth.model_tier_review
+msgid "Tier Review"
+msgstr ""
+
+#. module: base_tier_validation_confirm_auth
+#: model:ir.model,name:base_tier_validation_confirm_auth.model_tier_validation
+msgid "Tier Validation (abstract)"
+msgstr ""

From 8579fca1f68dbbfc57e970bb95799934c89d209c Mon Sep 17 00:00:00 2001
From: OCA-git-bot <oca-git-bot@odoo-community.org>
Date: Thu, 5 Feb 2026 09:41:10 +0000
Subject: [PATCH 3/3] [BOT] post-merge updates

---
 README.md                                     |   1 +
 base_tier_validation_confirm_auth/README.rst  |   8 +++--
 .../static/description/icon.png               | Bin 0 -> 10254 bytes
 .../static/description/index.html             |  28 +++++++++++-------
 setup/_metapackage/pyproject.toml             |   3 +-
 5 files changed, 26 insertions(+), 14 deletions(-)
 create mode 100644 base_tier_validation_confirm_auth/static/description/icon.png

diff --git a/README.md b/README.md
index 6de8cc4240..909404abaf 100644
--- a/README.md
+++ b/README.md
@@ -34,6 +34,7 @@ addon | version | maintainers | summary
 [base_substate](base_substate/) | 18.0.1.0.1 |  | Base Sub State
 [base_technical_features](base_technical_features/) | 18.0.1.0.2 |  | Access to technical features without activating debug mode
 [base_tier_validation](base_tier_validation/) | 18.0.3.1.2 | <a href='https://github.com/LoisRForgeFlow'><img src='https://github.com/LoisRForgeFlow.png' width='32' height='32' style='border-radius:50%;' alt='LoisRForgeFlow'/></a> | Implement a validation process based on tiers.
+[base_tier_validation_confirm_auth](base_tier_validation_confirm_auth/) | 18.0.1.0.0 |  | Authentication confirmation for base tiers.
 [base_tier_validation_correction](base_tier_validation_correction/) | 18.0.1.0.0 | <a href='https://github.com/kittiu'><img src='https://github.com/kittiu.png' width='32' height='32' style='border-radius:50%;' alt='kittiu'/></a> | Correct tier.review data after it has been created.
 [base_tier_validation_formula](base_tier_validation_formula/) | 18.0.1.0.0 |  | Formulas for Base tier validation
 [base_tier_validation_forward](base_tier_validation_forward/) | 18.0.2.0.1 | <a href='https://github.com/kittiu'><img src='https://github.com/kittiu.png' width='32' height='32' style='border-radius:50%;' alt='kittiu'/></a> | Forward option for base tiers
diff --git a/base_tier_validation_confirm_auth/README.rst b/base_tier_validation_confirm_auth/README.rst
index 6ba38c12e5..109d86c10d 100644
--- a/base_tier_validation_confirm_auth/README.rst
+++ b/base_tier_validation_confirm_auth/README.rst
@@ -1,3 +1,7 @@
+.. image:: https://odoo-community.org/readme-banner-image
+   :target: https://odoo-community.org/get-involved?utm_source=readme
+   :alt: Odoo Community Association
+
 =================================
 Base Tier Validation Confirm Auth
 =================================
@@ -7,13 +11,13 @@ Base Tier Validation Confirm Auth
    !! This file is generated by oca-gen-addon-readme !!
    !! changes will be overwritten.                   !!
    !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
-   !! source digest: sha256:dc29a5a30d78467106dfe713b562de411e73d395f4ee15536d189548d1e43631
+   !! source digest: sha256:0ddbbecda7996075b55be022b81821bfe09ed00649279f7cdb2a8297227e901a
    !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 
 .. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png
     :target: https://odoo-community.org/page/development-status
     :alt: Beta
-.. |badge2| image:: https://img.shields.io/badge/licence-AGPL--3-blue.png
+.. |badge2| image:: https://img.shields.io/badge/license-AGPL--3-blue.png
     :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html
     :alt: License: AGPL-3
 .. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--ux-lightgray.png?logo=github
diff --git a/base_tier_validation_confirm_auth/static/description/icon.png b/base_tier_validation_confirm_auth/static/description/icon.png
new file mode 100644
index 0000000000000000000000000000000000000000..1dcc49c24f364e9adf0afbc6fc0bac6dbecdeb11
GIT binary patch
literal 10254
zcmbt)WmufcvhH9Zc!C8B?l8#UE&&o;gF7=g3=D(IAOS+K1lK^25Zv7%L4sRw_uvvF
z*qyAk?>c**=lnR&y+1yw{;I3Hy6Ua2{<<SH)L!CYQ(yxC06fK4a$3k|;GgU9BjmkX
z(qaJlz;bzI;06HTfBkczBy!+W0s!cfb~^fSeN`1vE2tBf1sG}x;qr2FL2?5C;!<8N
z7FG@rIIShb#?D!S<*2!xh1L!%!J;Ri%A@M?0%B|T$_EC~_EFQZ@^P>d0kcR+VvBo;
zA_X`>;1;xAPL9rQqFxd#f5{a^zW*uaW<fH+z}BK#ati-qK~fSdws5$MC^xsKrze*u
z9~Ts6!_6xqBEroB;s$|$NDiQzw=>+r3+U{|fRunu`<Dzkh?^D6&IN7<b*B9z)4~$!
z4wqnI!KVF}Xc;&hW@q`2bZ0j%i@!?T|5V{ZD$Q*HcH`#d;`!4pT3YeH`9)>GZhy$X
z8_|Zi{zd#vIokczl8Xh*4Wi@i0+C?Rg1AB5VOEg8B>buLFCi~r5DPd2ED7QP2>^LO
zKpr7+?*I1bPaFSLLEa0l2$tj*;u8Qtc=&<BBK%+=zXhKF&{9Z15GW`NhFDk$TUhe`
zo1nj|{HGWNOQaM5kN`+fK!lf{S4c!anCG9C|N8i!{5nu~E89P+NP_-h`>(RUc*VK@
zjIN{I--GfO@vl+&r^eqy_BZ3dndN_PDzMc*W^!?dIsWAWU@LBjBg6^f4F6*!-hUYh
zY$Xb}gF8b0%S1Ac@c%Rs()UCiEu3v6SiFE>h_!{gBb-H2{e=wB5o!YkT0>#LKZFw$
z?CuD0Gvfsb(|XbVxx0AL0%`gG2X+6|f;jiTHU9shtjoW-{2!<M3weLs5%~eBDc`>|
zMN*<N?r>WuOj6elhD4zqgjNpX>F#JP{)hAbenX<+FPr>7jXM&q{|x+pbj8cU<=>Ej
zWE1_%qoFVzDAZB%g@v<+1ud%<#2E~ML11jOV5pUZoXktGmzB38%te^i-3<bhcrEi%
z)klS2SkK#&))Hpn43?1nQz8#l<#F_+g+rWN9FZ825a<5y;{QjL{?-y1IFKQP`=3CA
zB>o9i$lge>z>tBcK|P2K0H9w{l#|i%$~egM)Ys{q>p<9yaE*%v2cy1wXE{AXqG1_b
znfyg@Fq*e@yC)^(@$R*j^E;skyEM6pmL$1ctg*mWi<k29P3KD%^OwC{T^7moPdzjP
zM!LH{vTY9@w%BZCdRi|%<&iZv&xUAdjAo3Ej$(D7XBSt(4^ku=rH#ShjgNhOedXO<
zU1gK1w3B#m-@a|&V`beTn&Y^$2EVYi-NCW2u$V4FJ4by&M)u`xRMahD!?gZz#sVr=
z52J?WC&y4&-GnhGkmUSuGqSqc-(L|%&%khmg^$04Rf{fNJXMC4^h3?S&~Vts%+dPn
z$K$fE%=J2{^L8jcSMC<WCFazol9&z-15INjA3l5_3JD3h!~#5h`ZO{mI9PB}?dkpW
z(~k&OylJg!!{Wh%8i47?=iZm4y;!L{CC)l94UPBhWMpKvPbnyxo{!d(XCWFxdq4Wb
z=H!g)0v*MKK6d303PPhhmX^Xkz3`cifgPWmusxeDH$&9N#*Ro#eQG}v?b9B)FZiWA
zrxr=rc*%J8+oQMK_nCi6Y;0_M_LO}+Dj&)z&O0)Zi-0OOY?ar;9)?f!o?*s3HxAFt
zjFwb+gj?2jwN~tOkcc3P&(!XiE3Z@PLNC=ddZcg9Pw@!XMAk<k#!hKkt$1biuq*Wo
zULP1FJ&mf5n)lhdR_`7t?W2HSSgYVs^^?FAtB{%Pec=vm$o8$=$1@^wbEx@~)<VTs
zO4EoWJp?N&tDvHV;XAb?RE7-ny3ck|J$vZVm%pmnbu!p=C{?Ey6|!~mnM!lMy_@?<
z{A?Qc=oe7hJ<El!qA9trkQPUhGCR9?O3Jrc@8XFF$wJWd?PfHKGsBlD0q$=@+IzJP
z`gv0bd=H0vJz|W<@Ttvq;}R!E_xX*_#DQ-e@zRQZr(F@Cn>WM<W*ST5ys;raqMs9W
z(gILz9IMfY-0f*DRk5$Cd@4(&+~hQ$8ia~;s-mx0eh7<t1P>&q1{nj>E^)Odw$RPr
zhjesSk}k}@-e_%uZTy0t_*TJD&6%*HV0KH>xE@oBex6CL@`Ty3nH_2OF#M?6j(j|9
znRKGSfp3Q2i+|>}w?>8g$>r`|OcvG5r;p)z8DO8+O>EvYQ=_~`p}9!ReUEjUnNL@6
z+C*aoo67(sd|7QgW54@V9Y8PnBW$Q+7ZsRFA}Vj*viA!yWUfb!s*yJi6JKsXZCH4j
z*B%nJpad-DDvJ8d>xrxkkh6A}i7V3nULqHCiG~|)YY6{NE3M}c^s#PQhzhsJUf^QW
zR+F;up-dN*!)M1ZYl@d0HoqfVD2PNiQcPdz<kX<;Gjin?+;*h{XWBe9q3ki);GQtA
z&IrrInlK=kXIP$v2LYj&zF*#D=v5+q+c#dpRvYlVbAi_g<+zS;Mzkd0g<2V*Y0=bv
z+qiO!FQ#1@(jM%<uLkb&PHZL&dL?0=&uva`-oAD$vjXlrvb|p&RYk-$aULf;-Dl3#
z&xd>q4NDKO!8mUl{!t*ntBg_+-+lRlI0~Lr>5v!PiQj|hD7B-YFIs~6hIY*R6USZA
zlb}=UxqxpSzIsL3pPmiuixCN|3LFBd?0Ih8Y6GWQ;U>dkdXtQaQ&8H|TGAQbuHY=F
z_R83&B{1_hP7L#$^eAe<CMD0xCo>?GPB_83y#HZKTwD>e-@E2P>Gk$BBb9|Ivfmdp
za~s>3=aj(;xmz8n)sI}uFO$|C>0CZbcTY$Bq6~L-Bc9=vl@X#0S~Q@j8iKzuPeQE_
zQSI)wNz~CvJ>!%QszoCfUm9}h^DL!WYAN|FtMO#kpDXq74sYC87(uvv*jiCjV?Ta&
zgO1D0OP3TEN3YnBpD6GnmsEolzEbGM{&VlTz_)J(o{nl0+TmNt{xL%L6G&UR$^aYC
zQOA#W7R%9JsC5oTZJE>_?!Ci}mNH{0ObyUd%Q!k%5J8Z`8sR!m`~|Taje`(bLD7=a
z-{-=d7w;k@DIrgU{I@K}eN`>S**Lg<@ChAf$M(&kV9TLUixqFQ>YoYHrI!K#R6`S>
z%?d5hQ@&;Gje<|uRQZb%Hhibocl9(buI?=0aZW{JYXx?ZS@Lr%G8L<<OX{~O#CYf(
z<u-uao`qo=u>d+riEi2~+{HfHK{K^VrGYNi{2-WJOiC>Pz?f*)cxKCl>1H1=$jb!^
zpmYw>eoiM0Hy7$xbbX_e5o*+{7T2&-t%-h4i7MMo;k|tSqQAeNkwHS9hWY#EV7r3|
zTmOmN{;b9OUZpp`LP(I9Wo%R#$b6YdH7GD4*p6>a2N2A04pQ*n;INQMh%+mj;x7>S
z_(H?uJ^n!r1)kJH1*s+%$al#<t^sFT9ht0$*Vmi1j(q3`BQ=pePhF2YR@B~FTbuik
zh0u@GE#~bzgPGGXdnCBlX>?C^Cw{H@RA^QGB=Dubyc)XUaY>f`(VKTlIO-YNCp{1n
zOl*>jT?Dtf<fUktGj$xCP0^J~v?6^8C4@}aD^F7V;?(>5fD$DY-j&B*Xmn|2-u2OB
zBL@-lFs<bXzE<2C<E|LIVk0PAZ`|U?fM48hM^vs-Ra*AJ{CB#FR3aTAiumL%tw)#M
zkqsVCuIjTgh=NF4mi5%sDc4nhvAEikQgLnNUg~|CviJVkIK4Yw+srr=<0Pe_qtg*3
zaykAf#MvyvuypM--|c+YsGWLL%$#QvlK<5t8b$gEn6v5T=_#!G`s`9Qt_DA5So~yv
z@9Nin_vN1CR&;!7f<VrZH#{)e_gw~VmHC~yh_f}1uPqEEWsR#_QB!+1DW}7d`$Hcu
zsUsP^O-bY@+Ap>5lhcQKX<AgAodshhYtu~c1-jd-stD_#i-Ga+IPsr{r^1hxZ!j@0
z?hD(OZU=-~+J5uix%(IrHh0&5(%mcZwF+TgpQ@#la=N9;uiBcr__;PPG14BI*^1_H
zPxO5^KAiG4M#2$Ya))EvHX9?>BR*cIXmi%~EJcc^5#Xpg!E^A6sXf1#$qJGRpmU~A
zcdj-cvBfx(fIRAMU(1obztJR%I7v3R-%$#~r!0sS^I(iC*5i6296*88A7I=_JhU3p
zya!aCti0R5*RFT%LW0R|;u&oJ6=P-c$le4J0bi}u!!@;xzao|l6fJ{;Mld9hGhrJg
zr_B)=4yktp)yPB@tCC_L9h1>GzXD6DA!W7xt{1)8!07~gONkEWC8@y%lciB{9ojy)
zWm$drJ_9uVJ>Q$-`@q%OM7_S>(K=__CGY<J^N5){N<ezRZ)`C!Ozcy)@@5rCK9k??
zeg|;go<AFp{l47R@WZobTp4ROP|2K}oCVt@w&xJ>B~@@mE^Z=eT|x0Rv?Z-N)LLWR
zod*Zy3v)iMX@usPX-OKBDgC8yq?fMhqf8H)A&C)Hi29YFn!<DG+`_S*DSLtC@|(BF
zFl9a1Mu~~Z60msseAli&uK-ytW9c_F4}3hB;x5!lH!(}o7zs@O@o9=e*SdTO?Qxn5
z=ENz%sMtEsGGoy-r;I$zpgMANEhQ14qx~gVooKQ|RfliUq^G-$-l4jB=b+HKf4nyp
z*6VkFzb6z!eNUOFG;QWkYbf||EAUM|6qk}*?y77kA!#Y46<=5P$2mUP*N1@nG&J9b
z_g^D&`c^(!J;qN}vr&g?#jSf^n$vCPaP$j>NVf5!J0-F{wC&L<C%4-FJmptf4tSBu
zW5?XK=%e{QOL=2iOt^tN<NNnCJ27QthwlT>5-3`#id=4?=2>Zp6Pdu4N6#bG&atu7
z8IET&ciXy_Tp4YjMx3yIAbw#_e2#jgGJ~ogkv-|M7|%Gio%2@mnS89NKUOM#Bzg4_
z9e9oN;^m>G*#?)AawODi6YckRPmkSKD_4b4WFpj|@|eS!B0WN@?QscYzTH`~6e%iz
z!z1>ps)CG37%(E=kZ_>re)@ODv^0^=rWU^*m;6M&gD10EYImO98JVabRe5<pi~PXd
zs1^6>{#wrogYUKPB@_(#e7Ej9_x;n1oHDj5GawU)A&1hWj|HzJB(q{vMTX>jOW;Jz
zBsW&SqTaR7!NXXg_A}$XnFpg_n)Zi;{e9eb*k|b(y$a}12boJ7rqQXQpVhU8HxHTl
zt8Ln!KLFyfq!%}hdMXle^qajw2g6S{z&7tQ6J<O+L@}-#9~pWX8iMQ|q}QSBC$7m+
zVe?|bt3Q9n6sKcyIUhDOHSzI_WIR!&;vyAzVOUFAmgo?{Jys?4QrS2{p*`XoF>(w9
z3+!HTO{_TqM{9o$RR~lKFf4b4(xLUP?QG;McNFQc_Yd_mig9Ejy9%q~Ye>rIn3};U
z)w&1@QCK;cC(;x0G&YuSad+>{c@ZsFJcUdcs@PP-x{mrO)|6_#CjMlXsMJx;Cr?FF
zVFrlt@$Z-Ll^*7d0#`5Uez@bb{Xn(BQLhScBhF!6+aIso0=l{PP7P(6-ru>nVy%AP
z+|eZpY(ooMU7rtG$l#14v=Z?@ebOjm(A2)5k_${|wAA$oq+;42wiS78ezjgWWnTrF
z`1!i2h{fM91aD8uxz?tZpE(PsL37e3$*I6%un5Bzzpn10p`j72R;3=Oaug_|Z(y)@
z9$SJN@-5d1tNIy0=7|d&_HAnDx!yDd-u#qmfuDh)0a_CVje{hvQz9rDFHJTpQ0Dg@
zGQ3t*gZlcFSXfx%OG@Cds&NDROxd^osY_)abmo^dKMUY!R~kGH%*;rutPF@Mx$zrv
z6Q1soKnYYRW#;Bi-!H)>Br0<`y+Wy~p7_<>{ljuG`Dpje=v1x}-ND<)bWBr|<}v6B
zkDTUZ^@VsH>CyR}ml4j2rB{}0q8eGwX>ExkI9yZN0)(P}$N(yi$AxmBY#Xj`(7zs{
zJbn2&jE`-*0lww_r;|fNaWm_xp;c9JHIv|RExZGKP%18qjgYa);`N-^VqXNVz{~)~
z?^&D;ouy!pK<wHi9C<^J&knEH9r|w5&3@@g1=Eh!KR5{siz@2g)}U)2>Py?%@xH`A
z<Sp_-u5@5UjzsOn@=fzQVKt_@sKeNuJ2@L)wI=Y$k(gL!cA&k^Qfxy)(3$e7-0>SR
z7x%N3@o&{YE<l~fg-VKWyrTBDs|!N-hTh|c18KnCyPDdngrMZaz~sbXlu*4ybE=_c
z45L6qFmgJwLM!0$Szs(Fb$TmF`7P{M*83-j#&21zyS?04%Z;h7>jfa|1;*eW_4TU{
zt;qCcY3Hj(<0DJuny*QL!y!StcG{>bhpUP%eVMq=1xcR>yZT8X9)1;rXOmQjPcANs
zr>&Qb{rr66;s|4v3iGmQlMjr9j;G6pqNs%;TsyVNd3{i~hpDX8ugdcnd&UQJzj)rH
zh>S6#n`cCJ9CwHv<2Ht$o`R5(h#r||VB?%J?s5W48;^o)b`Pi1^~}5{Y1<n04GpXJ
zKan7zeEiJ@s;N~%d6}G?T*=}``N7wN$5D>9lg{&W@LfHt*gc1`w$RfLrK{~H?A1$5
z;5v?AIhpN%gQsR6+Act9-<yvEAZGZ71O+XFE}h}I@i+rC1`){2&hgemHCMT|{8>3y
z8>jCTMnWQq-^s3#Lb|WalgB$k3F>}lyCxs<2&A;LS0}s#<|hPx9kM#B+Lu2DiD_3P
zelg;N!80(j@HNc2pXs}re%sHi+{aqBt~qUOy86?zN>7)yiCEJqy@2Gh#gzJE6j6Rx
zBQK{77zW?gLWtQ20Dzntu16k9^N>DQ@Nmbx*mOg=F=k)8VJfM%y(Xu41;8YCz+@K|
z9u7vhlT`BOnk_oMTeC;u@OhhoTeA`^34^iMihCLM_uVD>rI-9@4l7ocZl@DJ8FWZU
zB0lRB<M`#@uEGpLjD?)<Og&3f5~?c^9OajDr>IqkHj4#pE&mD(X!e!~;G$`7f47k*
zOznM2@`&KM(|f5}sz)z%2}yJ5YmMj5Zwzr-W?v3R&@KuJ+l0zo==N@)nsbMHqHV}w
z7#_ntMGCNM21RuH^SYG+RH0sHUsF2z7ams57@2xbPj0y5)8h+caqv@P^q!do+}>+X
zzUBx|mikTawzXWYzJ4(AqAJpBF4ObmD_@gyg->oFGB6`k(8+?rFRV5P1yDkFM=8(c
z%RI)iG(rKtq-^V%B_(R9;tk6WIzA?x@cES<fo}iB=$;KGR?Y6mEaXT#p+Elu9*gLy
z*To6$C}~tqZC(jLW)LgY0_Dm{fz3^ge0D#L@t<EQFViEvY;18PD=tpfzsdIqk(Q0+
zIhl~3_qI%Ov9hiX15T+*u#aQY^)<Dj0X|tU@n!0^W|hz5_BWd6p#Ik`CIY@u&99$h
z(1;RA1@rA6OMclnBvQiP{_$AWvM}jj_w)2)6)u21FiJ|le|=j=bxwD&Tfux!m_=bx
zFxaI1p$iGko#kVDQqBNmPGeaIo&Q3xx4TT!XlyZg_EI3(YMAaZ$mjRvMEJqnJ>TXg
zWYDBxkoNB5v6J8BP&n@HVtBNb@r+<gfQ<$MVwd8s(x1?sxc^G;%sY6Fvo0*v7yw96
zy`@tS!?_id?R;EJ2x~(unfG#a9DnFM-<eGYw)+7!$<Th|f6k_jO-MlZPf-HaiWQhD
zBQdQ<4}d_J92aYb&6~XiDsAw2FUq%FHAzNCOnb^ckm5CkioMQ;%-WIc#i>XYpjgub
zR4oE*$ffXJuh2g8TCaLnpNoSxJ~Jx@ayx9z5Osa)=AI#bg^5eQb<6gpR%c+Qs#N*e
z@XE4pAmjdI#0%pV7sIN>mNa^jTkd=<==2_#t-}9Ju&Z^|Lp$%B92@eN%=MRc)LK$%
z@!XAg;dQ8bt=@ZNey7+a(dy^o;<Dy<-mj2FLgYqjlN|Gi%ev0lFg&wVLc4&Qzwb|4
z$>QKGP@Rb5NJYQRrGEC{J=FB(Irw-MAfoP(9RK<g<boH{`flR+y$KnQt?;}c!iGm=
zLd^ULdt%%GZ&<*?PZ%=aF)URW#|s=Dn>;)&jlxSCT=W;ODCf($WqRFhqN#LR^qVhK
zWhEp4`{Nnk;n0FHj}eNCZpRM`Y-@MIM&pvr7zQOZ3Ik5;CmZbR99b&22(!-07YNF)
z$o0MKej-jnvQV39{TH4r2R5univa1{ASc|VOTi<LA*<RCd~fhK?NdGU`=<y^L@?l(
z+NHbPy<I8@yK2s)bc}r}yH4|$<i6GJ_>4c@`t2FId|xkh5typ-rdU;1j){adk@*+(
zkHj{5B~eS<P*CONYZV?3O#>y&HrPOOvl_FJ98)0V;^d`0-u0FTslgiLBQVGSTiSyu
zgMGAu&R}SbNa-DgKJb?;fe3Qys$?=;5?V`eRiq*Kj$I`}<Db(%(hgt6O_Uem+}&iy
zYB$W;%q?!Rd5r2es%J4-l3xDiT2tv>Z*x4rC~eNM=DsOq(=nUW>(+7o@O8K-_U(X?
zTyg032nXKax5W~SF5|eBj%r8Fa>i!ejC72*sd}zJ)t7Xy!gFvM`c4@*Iw>z$u)j_l
zR-U<Lr0r6JeCGR)>qxymg}>Ti>i%9j*<oe#nrd*W;ySHI#rgq{cYqW?u`K9JH<9{Y
z9z`(kiwO9ukG?<H*g0PpmO$0vB}5+k4bl1YolC|~ue~M>4kwfC33i~kyIQ``n)r(L
z!|H2*)Mwj4dk%e*L0tgFdW185>j4<7YwLXwcOsed`%6mS{+=&d@d!B}GkbDV<x>*0
zNIWzW^|trz!&;qeI&mPiVDOUL70xpqVv0fpN9tjpu<g|(x77yQs!ki%$Sa%9jvj*J
z3zEbDUYo$osF(gj+Wihuf-C^kV;L!t=U~)k5dZ!lk7;ABF<3tWm7?@STZ$sr&{nh$
zy@#UmXW|!&Zy1S76<1MN&KNF6xkFfinN;kP8eb->)@1LD9D<9}9{57j9!W$`zC6&i
zl9lKkmPh`x)5+h>>JtiRNNBW5$_)%-)#+SVSGsjX2T=+SRX05>yJZd`1hyk<@{%1+
zDu^k>J$d*Qz6BZMwHx!@O**^Tx&fsHDw%$@J0nfj^je^Ihy*aIx{B(hkBvSvh46Z9
zRO)BjjXL_IHXKo~$4es=8Wxk;Y+&nVBCXA;=MVuLgVn8Mk(*y^+kP3f?Pr~4^A}<e
z$_F^Aj8*XFpVFvzBz&>hXj9UHS}qeI%XKD3KhHnkrNH0(Y20BWl&!Kfm`EVh2;i5C
zpirU^K0nc2-I{cqvjZKVx<pQJ0qTYSH!s#A&uE{?D@0Rt1O`YPUtDy|_M_Aqs;a4>
z=&hH#-d=gDWjVE}cMNAPJf;#NYd<tOcJb`_@gr?*4FuwI6QT4Ey~9+C&zv~t3$o|4
z)Hf3sn--3L+nP3*>Q=h`twjX6yquXuCNgGx1~uk{YHAmFpQF`ZLGC=~ukEyj?cFDI
zH=@XvV#AY1EY4qb`y*;Ki>KuFB|2|toL7__Cr0S1Dl{s#y0=~7HSq~&7lpBc*VLua
zvv3r&-<K<wPBf=GFU}}R{QzcJ!*5zoX{DUJhzL9x${HN#k|W=g84icJmkSzRXN%$S
zgKv2}9Pi%uQh!|DIO1_1XI0$POLp6Md;e>LM*{hq%IYP7<@)dG-G$kMrZaqs(MYoZ
zugEeJ@u(ip9rMoVtoFe;dF`^Br5x7v!rr5`hb5mJ#ocGqXHnm9m`yILjd0>UQSMv)
z^v}l5^bM6RZ6M%{<L(gzq5mp-Vc{$*F-%;nnb%$pu{D$$m=B5O`-mLVE1v^)>mkI)
zHOoSp&dX)*xUt+kXscna#a`XxI;Ul2Sxa^i5sZc=(Q)o<v3Qmk%ehJ3x3wORMm|1O
z(bc6s3OM#}UCym<=MH&v4x;e%?Q=0Up-L~+t6^k@qAWf3C8KmGoKHLwydA#kk3C)<
z5vufDRzz;ExUO1KAr3^8W+=@-7N-nUl0Is2z0<w%1z8Qsgn~}r$(Yrtn6Q*phb#}f
zNLniF@m|J!WRQ@+%-51PG!$HIjy)Ybd$3sQB0=sBy*iaRE>A^2-_<?3)NgTtwYui8
zR+%py;N9bY?#e^u*}Zs*yR)oKc=0pc>;!pfYHAul+oA@Ilelm;rw@FYR+SIaWS?;_
zUdw<|qqaYq(nqu>rG48E9dYAoT6GH;QRuBYK1}W#C_Z_?7~k*pJ3?MzVt&rhZTsBy
zw?nN$_Z>kimtwWcy`0?G#!)&7GjOcxCQps@p&ml8>~z(t=sjhR$6aFh!Vw5GA(lTh
z5GM)jCwloa6a}7mdfqNYE7oi`<N{NARBU!5OGwJ^{J4xO=8>Jv$m5>5qR%9eZ=)=a
z+K4j5NpcDHHdepCS+P*{@o=yNp&TE(Sd4b0Notqso-Kt_mhDk1<-fa>T4KdY2N`U)
zxu41vD%T&k$Gl?CW81%7r#-<cWMs-e>o1TZ0&PCcy}L4TPiV;sz`|S!&w8-s$rLdM
zF&)>@`7=)65PWn#oi|8tXNb|((2ojf9d0fNZ^l7xY~dX~%*Xf-v2W-2n$i~s!4?H;
z2qbQscFN21tqB{|x1+(^G~xQSrvX&Y;V-%?b1}zjBQX{GOFcVYTcwm>>}>6^HA=$x
zn+z^Biv_5}0!#@7z1~YXJFCT2?D^jm+kH7jAqBo?M@ZdMl|2|66oLnSJXUOJtVLxe
z0vH)N^t*qrjq=eFRMV>BFE<n7?su0DjmuaFwq9<R%*fnN1r>fS)-2R<oNF<P+X~Oh
zw;>zKlt973;d3D}4edwIE>kGc5<nci_HKmRgh!X2`vDT0Aj2E!LM(DeO4KVO?J*RO
z4P`Bhz<obAY<nja$3GRa@uuQym~uVe5)qyeyfIaCA1o&)Z;W%Gbl@Py7E#)aCV3<8
zo_403Ohgu7WEKJ++b##eyrS3p<vmrcjWX#<3VBiiV6YNLVI94D>-o=JV56ird)RlS
z{Jg@0t-b#Ife80%!E~(7`qkZ8O~Q-8_{j7G&tqwX&&>^tm-#*{v7j-f1n0}mCR#7P
z-4FkajD2$9?4Fc7-C_|0Z_G^bxIs%tWk|aFgSQ(qkM+5<oaRq7+tu5Mp(Zl{JOg|q
zqIj&1er;Z2lEj^I-z#^!A0@MEq47+KZX34z5D3ZsB8xk&gs=6n`||v3|HmnApv_%!
zv51Gc1hoBxOfAO4%j58s%gX3po0-#Lh9tgG`kvIlj)GMcmvp{XwbPC1p(+1sn!4Zl
zm?^C*%Lz$>PRh=g&ZeAZg35$-kn~}_;~&fP-dCNCzg>{gyW!~LZpn?aZ~Va3<htiB
zOCc4NBe{?@4|m(G*<m|0jL~F&3hZ(3S}}Gr^ihPmyvVtG?t7d8U&wX9`Y>~H0Ta)z
z<4XPVk@;#%1S@fq<(2#8T04#8$mz>vM;(jek0>Qh!K%t5*4tU(fVYwD3Ri~=D!AmI
zV$Dt#TEDX7{lpW%tF&DOlTO)vZodn_%wYu~)ZQ}Qo^cBbDHd{YajkzNxttQW>ST<^
z2~^xhB_y1<x*ZsbtEjYkbaECZgh$*whm<#*WOh%$t?sFKHSj4*8GU<7s4b^LSBN1w
z(yz^$iTl=<t*)*o-OPxR!!*E^yu9r+n^9bnE)m*x7mY;z+Wvkv!N>sjIF5;x<I+Vv
zIIcL{OfL+7cQLO87}`ILR&u@nOacF>chvCn{QVugIE2eYZDZ!-Y-4lJdb34*k({@M
zJ5!9Di^||~(IZ4iOoAbtggao+CaYvJynmB^;4r-tY2gS_*P!?U?hlEX;l+^*{%B2n
z)|1j9wOHQQ^5Xha>{Cu8_w^8=#6;Dz7kU~RgTqn;ynDm6{xdlkf2vk0UK^oS3yVy4
zE+v&qnlYtPHBk#X&2}r7`@K`J@^e~Qm?iRJ*tbAaZDZTmB&mWMkZp7Kj7^kth#_uX
z5z>gC(8Xz|Ie(+#&wiF3;Aey|Db(R*-U)!6;l_5@u?-$>j0SgEl5+c}Lfe-$p-dFH
zB_$bC<)x6#A_2Uuo8=^l1@}vK!gvbF#b&MoH8ac3xMxUz$LFb8KU(x$YhtHanM_sw
zYOFMBX2iNNSe&a}!;G9nv(tsW4@%3iQcqczOCF*JOBQ@4Orw=o?_vc(9$hfO`>U6&
zyY_CUa9pASiJpmv`@oR!k;&$`h8!)$uS=}d-fPddfIdMDUW@%3y1LI(1Q=e$)s<zo
z7v5eeH*Cx$5Xt@KqJ<q{A(_U&7`$N!Zkk))>z(QC*E;Nfl99YTgk+|@jl<CBCw~`@
znwO<x$jug61#2$eWWxKg7C9sHiCE}Uel;7i367v1Vh(L0H#V7Z<E2;c-YG}CEqQp-
zpPo8QEx_`rFAxSWTOOWC34#=5CVd<Jk><Q;|HHB`5Do~H9Uc@zQ+-|LVHlChhx%c_
zLE!~R8p@A2t;C4y^Kj<cfPLtt`EUp)MB!y+wZ-4rnyNJfViE`ibXbZx#Uf|89GVBc
z4{VW9Q46>`+iF?<_D?4YqV0Zl)lO8YWC@1ZWW^mi{5ePQN<~FQ2NMG$|K{py5akJa
zkezmqhN)>MGMp$7=sOo2(7ppv``dCIwf&MaQQis7S596kkiw8Do(jO?EY4iJ4Hec6
z4Hymzu`w)cI9Pbq6GPtTP)x&Lmk;FT=ZCB4>(5}c0?;2l`p&?>&<;2(P8a3lOTNP#
zdEzF5qDpkRR&PZC&cS{7xD@qV;(g5X%xI?m$9Q<H44j;t*zj-{MdVqK6l!APnnycx
zT@a^&U$bOL!t!XT6?q&aiuw%^^4tYEF)=?2KR-V@nR+u%&1+at1M)P91o9w<S$JqD
d`Bl+1V$Dz%f0&<d<<E&dMR_&3GFkKB{{v?wO5*?k

literal 0
HcmV?d00001

diff --git a/base_tier_validation_confirm_auth/static/description/index.html b/base_tier_validation_confirm_auth/static/description/index.html
index 736b1443eb..8142946455 100644
--- a/base_tier_validation_confirm_auth/static/description/index.html
+++ b/base_tier_validation_confirm_auth/static/description/index.html
@@ -3,7 +3,7 @@
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
 <meta name="generator" content="Docutils: https://docutils.sourceforge.io/" />
-<title>Base Tier Validation Confirm Auth</title>
+<title>README.rst</title>
 <style type="text/css">
 
 /*
@@ -360,16 +360,21 @@
 </style>
 </head>
 <body>
-<div class="document" id="base-tier-validation-confirm-auth">
-<h1 class="title">Base Tier Validation Confirm Auth</h1>
+<div class="document">
 
+
+<a class="reference external image-reference" href="https://odoo-community.org/get-involved?utm_source=readme">
+<img alt="Odoo Community Association" src="https://odoo-community.org/readme-banner-image" />
+</a>
+<div class="section" id="base-tier-validation-confirm-auth">
+<h1>Base Tier Validation Confirm Auth</h1>
 <!-- !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 !! This file is generated by oca-gen-addon-readme !!
 !! changes will be overwritten.                   !!
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
-!! source digest: sha256:dc29a5a30d78467106dfe713b562de411e73d395f4ee15536d189548d1e43631
+!! source digest: sha256:0ddbbecda7996075b55be022b81821bfe09ed00649279f7cdb2a8297227e901a
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
-<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/licence-AGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-ux/tree/18.0/base_tier_validation_confirm_auth"><img alt="OCA/server-ux" src="https://img.shields.io/badge/github-OCA%2Fserver--ux-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-ux-18-0/server-ux-18-0-base_tier_validation_confirm_auth"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-ux&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
+<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/license-AGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-ux/tree/18.0/base_tier_validation_confirm_auth"><img alt="OCA/server-ux" src="https://img.shields.io/badge/github-OCA%2Fserver--ux-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-ux-18-0/server-ux-18-0-base_tier_validation_confirm_auth"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-ux&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
 <p>Allows to add an authentication check to tier validation, where the user
 must confirm his authentication in order to approve or reject the tier
 review.</p>
@@ -387,7 +392,7 @@ <h1 class="title">Base Tier Validation Confirm Auth</h1>
 </ul>
 </div>
 <div class="section" id="configuration">
-<h1><a class="toc-backref" href="#toc-entry-1">Configuration</a></h1>
+<h2><a class="toc-backref" href="#toc-entry-1">Configuration</a></h2>
 <p>To configure this module, you need to:</p>
 <ol class="arabic simple">
 <li>Go to <em>Settings &gt; Technical &gt; Tier Validations &gt; Tier Definition &gt;
@@ -396,7 +401,7 @@ <h1><a class="toc-backref" href="#toc-entry-1">Configuration</a></h1>
 </ol>
 </div>
 <div class="section" id="bug-tracker">
-<h1><a class="toc-backref" href="#toc-entry-2">Bug Tracker</a></h1>
+<h2><a class="toc-backref" href="#toc-entry-2">Bug Tracker</a></h2>
 <p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-ux/issues">GitHub Issues</a>.
 In case of trouble, please check there if your issue has already been reported.
 If you spotted it first, help us to smash it by providing a detailed and welcomed
@@ -404,21 +409,21 @@ <h1><a class="toc-backref" href="#toc-entry-2">Bug Tracker</a></h1>
 <p>Do not contact contributors directly about support or help with technical issues.</p>
 </div>
 <div class="section" id="credits">
-<h1><a class="toc-backref" href="#toc-entry-3">Credits</a></h1>
+<h2><a class="toc-backref" href="#toc-entry-3">Credits</a></h2>
 <div class="section" id="authors">
-<h2><a class="toc-backref" href="#toc-entry-4">Authors</a></h2>
+<h3><a class="toc-backref" href="#toc-entry-4">Authors</a></h3>
 <ul class="simple">
 <li>ForgeFlow</li>
 </ul>
 </div>
 <div class="section" id="contributors">
-<h2><a class="toc-backref" href="#toc-entry-5">Contributors</a></h2>
+<h3><a class="toc-backref" href="#toc-entry-5">Contributors</a></h3>
 <ul class="simple">
 <li>Arnau Cruz <a class="reference external" href="mailto:arnau.cruz&#64;forgeflow.com">arnau.cruz&#64;forgeflow.com</a></li>
 </ul>
 </div>
 <div class="section" id="maintainers">
-<h2><a class="toc-backref" href="#toc-entry-6">Maintainers</a></h2>
+<h3><a class="toc-backref" href="#toc-entry-6">Maintainers</a></h3>
 <p>This module is maintained by the OCA.</p>
 <a class="reference external image-reference" href="https://odoo-community.org">
 <img alt="Odoo Community Association" src="https://odoo-community.org/logo.png" />
@@ -431,5 +436,6 @@ <h2><a class="toc-backref" href="#toc-entry-6">Maintainers</a></h2>
 </div>
 </div>
 </div>
+</div>
 </body>
 </html>
diff --git a/setup/_metapackage/pyproject.toml b/setup/_metapackage/pyproject.toml
index 783a37c809..01b983f84a 100644
--- a/setup/_metapackage/pyproject.toml
+++ b/setup/_metapackage/pyproject.toml
@@ -1,6 +1,6 @@
 [project]
 name = "odoo-addons-oca-server-ux"
-version = "18.0.20260121.0"
+version = "18.0.20260205.0"
 dependencies = [
     "odoo-addon-announcement==18.0.*",
     "odoo-addon-barcode_action==18.0.*",
@@ -15,6 +15,7 @@ dependencies = [
     "odoo-addon-base_substate==18.0.*",
     "odoo-addon-base_technical_features==18.0.*",
     "odoo-addon-base_tier_validation==18.0.*",
+    "odoo-addon-base_tier_validation_confirm_auth==18.0.*",
     "odoo-addon-base_tier_validation_correction==18.0.*",
     "odoo-addon-base_tier_validation_formula==18.0.*",
     "odoo-addon-base_tier_validation_forward==18.0.*",