From 6bf4bb13aba899dcc4aca54d31c2aa022c144f0e Mon Sep 17 00:00:00 2001
From: tendil <mejta.diman@gmail.com>
Date: Thu, 12 Feb 2026 20:02:53 +0000
Subject: [PATCH 01/11] [ADD] auditlog_clickhouse: add module

Task: 5246
---
 auditlog_clickhouse/README.rst                | 134 +++++
 auditlog_clickhouse/__init__.py               |   1 +
 auditlog_clickhouse/__manifest__.py           |  21 +
 auditlog_clickhouse/data/ir_cron.xml          |  12 +
 auditlog_clickhouse/models/__init__.py        |   4 +
 .../models/auditlog_clickhouse_config.py      | 331 ++++++++++++
 .../models/auditlog_log_buffer.py             | 311 +++++++++++
 auditlog_clickhouse/models/auditlog_rule.py   | 356 +++++++++++++
 .../models/clickhouse_client.py               |  58 +++
 auditlog_clickhouse/pyproject.toml            |   3 +
 auditlog_clickhouse/readme/CONFIGURE.md       |  16 +
 auditlog_clickhouse/readme/CONTEXT.md         |   5 +
 auditlog_clickhouse/readme/DESCRIPTION.md     |   4 +
 auditlog_clickhouse/readme/USAGE.md           |   7 +
 .../security/ir.model.access.csv              |   3 +
 .../static/description/index.html             | 492 ++++++++++++++++++
 auditlog_clickhouse/tests/__init__.py         |   2 +
 auditlog_clickhouse/tests/common.py           |  90 ++++
 .../tests/test_auditlog_clickhouse.py         | 211 ++++++++
 .../tests/test_clickhouse_config.py           |  57 ++
 .../auditlog_clickhouse_config_views.xml      |  73 +++
 requirements.txt                              |   1 +
 22 files changed, 2192 insertions(+)
 create mode 100644 auditlog_clickhouse/README.rst
 create mode 100644 auditlog_clickhouse/__init__.py
 create mode 100644 auditlog_clickhouse/__manifest__.py
 create mode 100644 auditlog_clickhouse/data/ir_cron.xml
 create mode 100644 auditlog_clickhouse/models/__init__.py
 create mode 100644 auditlog_clickhouse/models/auditlog_clickhouse_config.py
 create mode 100644 auditlog_clickhouse/models/auditlog_log_buffer.py
 create mode 100644 auditlog_clickhouse/models/auditlog_rule.py
 create mode 100644 auditlog_clickhouse/models/clickhouse_client.py
 create mode 100644 auditlog_clickhouse/pyproject.toml
 create mode 100644 auditlog_clickhouse/readme/CONFIGURE.md
 create mode 100644 auditlog_clickhouse/readme/CONTEXT.md
 create mode 100644 auditlog_clickhouse/readme/DESCRIPTION.md
 create mode 100644 auditlog_clickhouse/readme/USAGE.md
 create mode 100644 auditlog_clickhouse/security/ir.model.access.csv
 create mode 100644 auditlog_clickhouse/static/description/index.html
 create mode 100644 auditlog_clickhouse/tests/__init__.py
 create mode 100644 auditlog_clickhouse/tests/common.py
 create mode 100644 auditlog_clickhouse/tests/test_auditlog_clickhouse.py
 create mode 100644 auditlog_clickhouse/tests/test_clickhouse_config.py
 create mode 100644 auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml

diff --git a/auditlog_clickhouse/README.rst b/auditlog_clickhouse/README.rst
new file mode 100644
index 00000000000..1879ea5c8cb
--- /dev/null
+++ b/auditlog_clickhouse/README.rst
@@ -0,0 +1,134 @@
+===================================
+Audit Log ClickHouse store and read
+===================================
+
+.. 
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! This file is generated by oca-gen-addon-readme !!
+   !! changes will be overwritten.                   !!
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! source digest: sha256:11aaa38bad24a890554c0d34d74d31e13b933facbba3fea31f4cbf22ae8fd842
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+
+.. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png
+    :target: https://odoo-community.org/page/development-status
+    :alt: Beta
+.. |badge2| image:: https://img.shields.io/badge/licence-AGPL--3-blue.png
+    :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html
+    :alt: License: AGPL-3
+.. |badge3| image:: https://img.shields.io/badge/github-OCA%2Fserver--tools-lightgray.png?logo=github
+    :target: https://github.com/OCA/server-tools/tree/18.0/auditlog_clickhouse
+    :alt: OCA/server-tools
+.. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
+    :target: https://translation.odoo-community.org/projects/server-tools-18-0/server-tools-18-0-auditlog_clickhouse
+    :alt: Translate me on Weblate
+.. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png
+    :target: https://runboat.odoo-community.org/builds?repo=OCA/server-tools&target_branch=18.0
+    :alt: Try me on Runboat
+
+|badge1| |badge2| |badge3| |badge4| |badge5|
+
+This module implements a buffered asynchronous transfers audit logs from
+PostgreSQL to ClickHouse. Storing audit data in a columnar database that
+is write-only prevents database bloat, makes audit records effectively
+immutable, and allows for scaling to very large volumes of logs without
+slowing down normal transactions. Audit logs are written asynchronously
+to reduce the load on business operations.
+
+**Table of contents**
+
+.. contents::
+   :local:
+
+Use Cases / Context
+===================
+
+The auditlog module stores audit data in PostgreSQL. In production
+systems with extensive audit rules, these tables grow without limits,
+causing three issues:
+
+- Database bloat;
+- Immutability gap: Members of group_auditlog_manager (implied by
+  base.group_system) have full CRUD access to audit tables, allowing
+  audit records to be altered or deleted via UI, ORM, or SQL;
+- Performance overhead: Audit logging runs synchronously in the same
+  transaction and performs multiple ORM create() calls, adding latency
+  to audited operations.
+
+Configuration
+=============
+
+- Make sure ``clickhouse-driver`` is available in your system.
+- Install the module.
+- Configure the connection parameters in Odoo:
+
+  - **Settings > Technical > Auditlog > Clickhouse configuration**
+  - Fill in the following parameters:
+
++--------------------------+
+| Field                    |
++==========================+
+| Hostname or IP           |
++--------------------------+
+| TCP port                 |
++--------------------------+
+| ClickHouse database name |
++--------------------------+
+| ClickHouse user          |
++--------------------------+
+| ClickHouse Password      |
++--------------------------+
+
+- Click **Test connection**.
+- Optionally, click **Create Auditlog Tables** to create the tables and
+  User in the target database.
+
+Usage
+=====
+
+Once auditlog_clickhouse is installed and configured:
+
+- Users perform tracked operations (create, write, unlink, read, export)
+  on models with active auditlog.rule subscriptions. This behavior is
+  unchanged from the base auditlog module.
+- Log data is serialized and stored in the local auditlog.log.buffer
+  table instantly. The standard auditlog tables are not populated.
+- Every 5 minutes (default), the Cron job runs, pushes data to
+  ClickHouse, and cleans the local buffer.
+- Data is permanently stored in ClickHouse and cannot be modified or
+  deleted via Odoo.
+
+Bug Tracker
+===========
+
+Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-tools/issues>`_.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us to smash it by providing a detailed and welcomed
+`feedback <https://github.com/OCA/server-tools/issues/new?body=module:%20auditlog_clickhouse%0Aversion:%2018.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+
+Do not contact contributors directly about support or help with technical issues.
+
+Credits
+=======
+
+Authors
+-------
+
+* Cetmix
+
+Maintainers
+-----------
+
+This module is maintained by the OCA.
+
+.. image:: https://odoo-community.org/logo.png
+   :alt: Odoo Community Association
+   :target: https://odoo-community.org
+
+OCA, or the Odoo Community Association, is a nonprofit organization whose
+mission is to support the collaborative development of Odoo features and
+promote its widespread use.
+
+This module is part of the `OCA/server-tools <https://github.com/OCA/server-tools/tree/18.0/auditlog_clickhouse>`_ project on GitHub.
+
+You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/auditlog_clickhouse/__init__.py b/auditlog_clickhouse/__init__.py
new file mode 100644
index 00000000000..0650744f6bc
--- /dev/null
+++ b/auditlog_clickhouse/__init__.py
@@ -0,0 +1 @@
+from . import models
diff --git a/auditlog_clickhouse/__manifest__.py b/auditlog_clickhouse/__manifest__.py
new file mode 100644
index 00000000000..2be0256da33
--- /dev/null
+++ b/auditlog_clickhouse/__manifest__.py
@@ -0,0 +1,21 @@
+{
+    "name": "Audit Log ClickHouse store and read",
+    "version": "18.0.1.0.0",
+    "summary": "Asynchronous audit log storage in ClickHouse",
+    "category": "Tools",
+    "license": "AGPL-3",
+    "author": "Odoo Community Association (OCA), Cetmix",
+    "website": "https://github.com/OCA/server-tools",
+    "depends": [
+        "auditlog",
+    ],
+    "external_dependencies": {
+        "python": ["clickhouse_driver"],
+    },
+    "data": [
+        "security/ir.model.access.csv",
+        "views/auditlog_clickhouse_config_views.xml",
+        "data/ir_cron.xml",
+    ],
+    "installable": True,
+}
diff --git a/auditlog_clickhouse/data/ir_cron.xml b/auditlog_clickhouse/data/ir_cron.xml
new file mode 100644
index 00000000000..c8e82c353db
--- /dev/null
+++ b/auditlog_clickhouse/data/ir_cron.xml
@@ -0,0 +1,12 @@
+<odoo noupdate="1">
+    <record id="ir_cron_auditlog_clickhouse_flush" model="ir.cron">
+        <field name="name">Auditlog ClickHouse: flush buffer</field>
+        <field name="model_id" ref="model_auditlog_log_buffer" />
+        <field name="state">code</field>
+        <field name="code">model._cron_flush_to_clickhouse()</field>
+        <field name="interval_number">5</field>
+        <field name="interval_type">minutes</field>
+        <field name="active">True</field>
+        <field name="user_id" ref="base.user_root" />
+    </record>
+</odoo>
diff --git a/auditlog_clickhouse/models/__init__.py b/auditlog_clickhouse/models/__init__.py
new file mode 100644
index 00000000000..9791cf29bce
--- /dev/null
+++ b/auditlog_clickhouse/models/__init__.py
@@ -0,0 +1,4 @@
+from . import auditlog_clickhouse_config
+from . import clickhouse_client
+from . import auditlog_log_buffer
+from . import auditlog_rule
diff --git a/auditlog_clickhouse/models/auditlog_clickhouse_config.py b/auditlog_clickhouse/models/auditlog_clickhouse_config.py
new file mode 100644
index 00000000000..e5905f0053c
--- /dev/null
+++ b/auditlog_clickhouse/models/auditlog_clickhouse_config.py
@@ -0,0 +1,331 @@
+import logging
+from typing import Any, Optional
+
+from odoo import api, fields, models
+from odoo.exceptions import UserError
+
+from .clickhouse_client import get_clickhouse_client
+
+_logger = logging.getLogger(__name__)
+
+
+class AuditlogClickhouseConfig(models.Model):
+    """
+    ClickHouse connection configuration for auditlog_clickhouse.
+
+    Business rules:
+      - Only one configuration can be active at a time.
+      - UI provides tools to test the connection and (optionally) create tables.
+
+    Security note:
+      - This model is intended for technical users (auditlog manager).
+      - Password is stored in DB (standard Odoo behavior for such wizards/settings).
+    """
+
+    _name = "auditlog.clickhouse.config"
+    _description = "Auditlog ClickHouse Configuration"
+
+    DEFAULT_PORT = 9000
+    DEFAULT_DB = "odoo_audit"
+    DEFAULT_USER = "odoo_audit_writer"
+
+    is_active = fields.Boolean(
+        help="If unchecked, no audit logs will be flushed to ClickHouse.",
+    )
+    host = fields.Char(
+        string="Hostname or IP",
+        required=True,
+        help=(
+            "ClickHouse server hostname or IP address. "
+            "Must be reachable from the Odoo server."
+        ),
+    )
+    port = fields.Integer(
+        string="TCP Port",
+        required=True,
+        default=DEFAULT_PORT,
+        help=(
+            "ClickHouse native TCP port used by clickhouse-driver " "(default is 9000)."
+        ),
+    )
+    database = fields.Char(
+        string="Database name",
+        required=True,
+        default=DEFAULT_DB,
+        help=(
+            "Target ClickHouse database where auditlog tables exist "
+            "(or will be created by the setup button)."
+        ),
+    )
+    user = fields.Char(
+        required=True,
+        default=DEFAULT_USER,
+        help=(
+            "ClickHouse user name used for INSERT operations into auditlog tables. "
+            "Recommended: a dedicated user with INSERT-only privileges."
+        ),
+    )
+    password = fields.Char(
+        help="Password for the ClickHouse user.",
+    )
+
+    @api.model
+    def get_active_config(self) -> Optional["AuditlogClickhouseConfig"]:
+        """Return the currently active configuration (if any)."""
+        config = self.search([("is_active", "=", True)], limit=1)
+        _logger.debug(
+            "auditlog_clickhouse: get_active_config -> %s",
+            config.id if config else None,
+        )
+        return config
+
+    def _deactivate_other_configs(self) -> None:
+        """
+        Silently deactivate all other active configurations.
+
+        Called after the current record(s) become active to keep the
+        "single active" rule without DB constraint errors.
+        """
+        other_configs = self.search(
+            [("is_active", "=", True), ("id", "not in", self.ids)]
+        )
+        if other_configs:
+            _logger.info(
+                "auditlog_clickhouse: deactivating other configs %s (activated=%s)",
+                other_configs.ids,
+                self.ids,
+            )
+            other_configs.write({"is_active": False})
+
+    @api.model_create_multi
+    def create(self, vals_list: list[dict[str, Any]]):
+        """
+        Enforce single active config on creation.
+
+        If any newly created record is active, deactivate all other active
+        configs after the create succeeds.
+        """
+        records = super().create(vals_list)
+        active_records = records.filtered("is_active")
+        if active_records:
+            _logger.info(
+                "auditlog_clickhouse: created active config(s) %s",
+                active_records.ids,
+            )
+            active_records._deactivate_other_configs()
+        else:
+            _logger.debug("auditlog_clickhouse: created config(s) %s", records.ids)
+        return records
+
+    def write(self, vals: dict[str, Any]) -> bool:
+        """
+        Enforce single active config on update.
+
+        If this write enables the current record(s), deactivate all other active
+        configs after the write succeeds.
+        """
+        turning_on = vals.get("is_active") is True
+        result = super().write(vals)
+
+        if turning_on:
+            activated = self.filtered("is_active")
+            _logger.info(
+                "auditlog_clickhouse: activated config(s) %s (via write)",
+                activated.ids,
+            )
+            activated._deactivate_other_configs()
+        else:
+            _logger.debug(
+                "auditlog_clickhouse: updated config(s) %s (vals=%s)",
+                self.ids,
+                sorted(vals.keys()),
+            )
+
+        return result
+
+    def action_test_connection(self) -> dict[str, Any]:
+        """UI button: verify ClickHouse connectivity with a trivial query."""
+        self.ensure_one()
+        _logger.info(
+            "auditlog_clickhouse: testing connection "
+            "(config=%s host=%s port=%s db=%s user=%s)",
+            self.id,
+            self.host,
+            self.port,
+            self.database,
+            self.user,
+        )
+
+        client = self._get_client()
+        try:
+            client.execute("SELECT 1")
+        except Exception as exc:
+            _logger.exception(
+                "auditlog_clickhouse: connection test FAILED "
+                "(config=%s host=%s port=%s db=%s user=%s)",
+                self.id,
+                self.host,
+                self.port,
+                self.database,
+                self.user,
+            )
+            raise UserError(
+                self.env._("ClickHouse connection failed: %s") % exc
+            ) from exc
+
+        _logger.info(
+            "auditlog_clickhouse: connection test OK "
+            "(config=%s host=%s port=%s db=%s user=%s)",
+            self.id,
+            self.host,
+            self.port,
+            self.database,
+            self.user,
+        )
+
+        return self._notify(
+            title=self.env._("Success"),
+            message=self.env._("Connection to ClickHouse is OK."),
+            notif_type="success",
+        )
+
+    def action_create_auditlog_tables(self) -> dict[str, Any]:
+        """
+        UI button: create ClickHouse database/tables if they do not exist.
+
+        Important:
+          - This is optional. In production you may point to an existing DB.
+          - We intentionally do not create users/grants in this project.
+        """
+        self.ensure_one()
+        _logger.info(
+            "auditlog_clickhouse: creating tables (config=%s db=%s host=%s:%s)",
+            self.id,
+            self.database,
+            self.host,
+            self.port,
+        )
+
+        client = self._get_client()
+        try:
+            for statement in self._get_clickhouse_ddl():
+                preview = " ".join(statement.strip().splitlines())[:120]
+                _logger.debug(
+                    "auditlog_clickhouse: executing DDL (config=%s): %s...",
+                    self.id,
+                    preview,
+                )
+                client.execute(statement)
+        except Exception as exc:
+            _logger.exception(
+                "auditlog_clickhouse: create tables FAILED "
+                "(config=%s db=%s host=%s:%s)",
+                self.id,
+                self.database,
+                self.host,
+                self.port,
+            )
+            raise UserError(
+                self.env._("Failed to create ClickHouse tables: %s") % exc
+            ) from exc
+
+        _logger.info(
+            "auditlog_clickhouse: create tables OK (config=%s db=%s)",
+            self.id,
+            self.database,
+        )
+
+        return self._notify(
+            title=self.env._("Success"),
+            message=self.env._("Auditlog tables were created (if they did not exist)."),
+            notif_type="success",
+        )
+
+    def _get_client(self):
+        """Build a clickhouse-driver client from the current record values."""
+        self.ensure_one()
+        _logger.debug(
+            "auditlog_clickhouse: building client "
+            "(config=%s host=%s port=%s db=%s user=%s)",
+            self.id,
+            self.host,
+            self.port,
+            self.database,
+            self.user,
+        )
+        return get_clickhouse_client(
+            host=self.host,
+            port=self.port,
+            database=self.database,
+            user=self.user,
+            password=self.password,
+        )
+
+    def _get_clickhouse_ddl(self) -> list[str]:
+        """
+        Return ClickHouse DDL statements for required objects.
+
+        Schema is based on the reference provided in the task. Engines/ORDER BY
+        are chosen as safe defaults for append-only workloads.
+        """
+        self.ensure_one()
+        db_name = self.database
+
+        return [
+            f"CREATE DATABASE IF NOT EXISTS {db_name}",
+            f"""
+            CREATE TABLE IF NOT EXISTS {db_name}.auditlog_log
+            (
+                id String,
+                name Nullable(String),
+                model_id Int32,
+                model_name Nullable(String),
+                model_model String,
+                res_id Nullable(Int64),
+                res_ids Nullable(String),
+                user_id Int32,
+                method String,
+                http_request_id Nullable(Int64),
+                http_session_id Nullable(Int64),
+                log_type Nullable(String),
+                create_date DateTime64(3, 'UTC'),
+                create_uid Int32
+            )
+            ENGINE = MergeTree
+            ORDER BY (create_date, id)
+            """,
+            f"""
+            CREATE TABLE IF NOT EXISTS {db_name}.auditlog_log_line
+            (
+                id String,
+                log_id String,
+                field_id Int32,
+                field_name Nullable(String),
+                field_description Nullable(String),
+                old_value Nullable(String),
+                new_value Nullable(String),
+                old_value_text Nullable(String),
+                new_value_text Nullable(String),
+                create_date DateTime64(3, 'UTC'),
+                create_uid Int32
+            )
+            ENGINE = MergeTree
+            ORDER BY (create_date, id)
+            """,
+        ]
+
+    @staticmethod
+    def _notify(
+        *, title: str, message: str, notif_type: str = "info"
+    ) -> dict[str, Any]:
+        """Return standard Odoo UI notification action."""
+        return {
+            "type": "ir.actions.client",
+            "tag": "display_notification",
+            "params": {
+                "title": title,
+                "message": message,
+                "type": notif_type,
+                "sticky": False,
+            },
+        }
diff --git a/auditlog_clickhouse/models/auditlog_log_buffer.py b/auditlog_clickhouse/models/auditlog_log_buffer.py
new file mode 100644
index 00000000000..b9097eae93e
--- /dev/null
+++ b/auditlog_clickhouse/models/auditlog_log_buffer.py
@@ -0,0 +1,311 @@
+import json
+import logging
+import time
+from datetime import datetime, timezone
+from typing import Any
+
+from dateutil import parser as dt_parser
+
+from odoo import api, fields, models
+from odoo.exceptions import UserError
+
+_logger = logging.getLogger(__name__)
+
+JsonMapping = dict[str, Any]
+ChRow = tuple[Any, ...]
+
+
+class AuditlogLogBuffer(models.Model):
+    """
+    Buffered audit log payloads waiting to be flushed into ClickHouse.
+
+    Each record stores a pre-serialized JSON payload produced by the auditlog.rule
+    override. A periodic cron:
+      - reads pending buffer rows
+      - converts payload into ClickHouse rows (tuple order matches schema)
+      - inserts them in batches
+      - deletes successfully flushed buffer rows from PostgreSQL
+
+    Notes:
+      - No user-facing ACLs should be provided for this model by design.
+      - The cron runs with sudo and is the only expected consumer.
+    """
+
+    _name = "auditlog.log.buffer"
+    _description = "Auditlog ClickHouse Buffer"
+    _order = "create_date asc, id asc"
+
+    STATE_PENDING = "pending"
+    STATE_ERROR = "error"
+
+    # Column order MUST match CREATE TABLE schema and inserted tuples.
+    _CH_LOG_COLUMNS: tuple[str, ...] = (
+        "id",
+        "name",
+        "model_id",
+        "model_name",
+        "model_model",
+        "res_id",
+        "res_ids",
+        "user_id",
+        "method",
+        "http_request_id",
+        "http_session_id",
+        "log_type",
+        "create_date",
+        "create_uid",
+    )
+    _CH_LINE_COLUMNS: tuple[str, ...] = (
+        "id",
+        "log_id",
+        "field_id",
+        "field_name",
+        "field_description",
+        "old_value",
+        "new_value",
+        "old_value_text",
+        "new_value_text",
+        "create_date",
+        "create_uid",
+    )
+
+    @api.model
+    def _selection_state(self) -> list[tuple[str, str]]:
+        """Centralized selection for `state`."""
+        return [
+            (self.STATE_PENDING, self.env._("Pending")),
+            (self.STATE_ERROR, self.env._("Error")),
+        ]
+
+    payload_json = fields.Text(required=True)
+    state = fields.Selection(
+        selection=_selection_state,
+        default=STATE_PENDING,
+        required=True,
+        index=True,
+    )
+    attempt_count = fields.Integer(default=0, required=True)
+    error_message = fields.Text()
+
+    @staticmethod
+    def _to_ch_nullable_string(value: Any) -> str | None:
+        """
+        Convert value into ClickHouse Nullable(String).
+
+        - None/False -> None
+        - str -> as is
+        - list/dict/tuple -> JSON string (unicode preserved)
+        - other -> str(value)
+        """
+        if value in (None, False):
+            return None
+        if isinstance(value, str):
+            return value
+        if isinstance(value, (dict | list | tuple)):
+            return json.dumps(value, ensure_ascii=False, default=str)
+        return str(value)
+
+    @staticmethod
+    def _to_ch_datetime_utc(value: Any) -> datetime | None:
+        """
+        Convert incoming value to tz-aware UTC datetime.
+
+        We normalize to UTC to keep consistent semantics for ClickHouse
+        DateTime64(3, 'UTC').
+        """
+        if not value:
+            return None
+
+        if isinstance(value, datetime):
+            parsed = value
+        else:
+            raw = str(value).strip().replace("Z", "+00:00")
+            try:
+                parsed = dt_parser.parse(raw)
+            except (ValueError, TypeError, OverflowError):
+                # Fallback: Odoo parser usually returns naive datetime.
+                parsed = fields.Datetime.from_string(value)
+
+        if parsed.tzinfo is None:
+            return parsed.replace(tzinfo=timezone.utc)
+        return parsed.astimezone(timezone.utc)
+
+    def _set_error(self, message: str) -> None:
+        """
+        Mark records as error + increment attempt_count + store error_message.
+
+        We update per-record to ensure attempt_count increments correctly.
+        """
+        for rec in self:
+            rec.write(
+                {
+                    "state": self.STATE_ERROR,
+                    "attempt_count": rec.attempt_count + 1,
+                    "error_message": message,
+                }
+            )
+
+    @api.model
+    def _cron_flush_to_clickhouse(self, batch_size: int = 1000) -> bool:
+        """
+        Flush pending buffer rows to ClickHouse.
+
+        Steps:
+          1) Fetch active ClickHouse configuration.
+          2) Read up to `batch_size` pending buffer rows (oldest first).
+          3) Deserialize JSON payloads; invalid payloads -> error.
+          4) Convert payloads to tuples in CH schema order.
+          5) INSERT into ClickHouse in batches.
+          6) Delete successfully flushed buffer rows.
+
+        :param batch_size: max number of buffer rows to process per run.
+        :return: True for cron compatibility.
+        """
+        started = time.monotonic()
+
+        config = self.env["auditlog.clickhouse.config"].sudo().get_active_config()
+        if not config:
+            _logger.warning("auditlog_clickhouse: flush skipped (no active config)")
+            raise UserError(self.env._("No active ClickHouse configuration found."))
+
+        pending_buffers = self.sudo().search(
+            [("state", "=", self.STATE_PENDING)],
+            order="id asc",
+            limit=batch_size,
+        )
+        if not pending_buffers:
+            _logger.debug(
+                "auditlog_clickhouse: flush skipped (no pending buffers) (config=%s)",
+                config.id,
+            )
+            return True
+
+        _logger.info(
+            "auditlog_clickhouse: flush started (config=%s host=%s:%s db=%s batch_size=%s pending=%s)",
+            config.id,
+            config.host,
+            config.port,
+            config.database,
+            batch_size,
+            len(pending_buffers),
+        )
+
+        client = config._get_client()
+
+        log_rows: list[ChRow] = []
+        line_rows: list[ChRow] = []
+        invalid_buffers = self.browse()
+
+        for buffer_rec in pending_buffers:
+            try:
+                payload: JsonMapping = json.loads(buffer_rec.payload_json)
+            except Exception as exc:
+                buffer_rec._set_error(self.env._("Invalid JSON payload: %s") % exc)
+                invalid_buffers |= buffer_rec
+                continue
+
+            log_data = payload.get("log") or {}
+            lines_data = payload.get("lines") or []
+
+            if log_data:
+                log_rows.append(self._build_ch_log_row(log_data))
+
+            for line_data in lines_data:
+                line_rows.append(self._build_ch_line_row(line_data))
+
+        valid_buffers = pending_buffers - invalid_buffers
+        if invalid_buffers:
+            _logger.warning(
+                "auditlog_clickhouse: invalid JSON payloads=%s (marked error)",
+                len(invalid_buffers),
+            )
+
+        if not valid_buffers:
+            _logger.info(
+                "auditlog_clickhouse: flush finished "
+                "(nothing valid to insert) (invalid=%s) in %.3fs",
+                len(invalid_buffers),
+                time.monotonic() - started,
+            )
+            return True
+
+        # Insert (logs first, then lines) to reduce chance of "orphan lines"
+        try:
+            # ruff: noqa: E501
+            if log_rows:
+                client.execute(
+                    f"INSERT INTO {config.database}.auditlog_log ({', '.join(self._CH_LOG_COLUMNS)}) VALUES",
+                    log_rows,
+                )
+            if line_rows:
+                client.execute(
+                    f"INSERT INTO {config.database}.auditlog_log_line ({', '.join(self._CH_LINE_COLUMNS)}) VALUES",
+                    line_rows,
+                )
+        except Exception as exc:
+            error_msg = self.env._("ClickHouse insert failed: %s") % exc
+            _logger.exception(
+                "auditlog_clickhouse: INSERT failed "
+                "(config=%s valid_buffers=%s log_rows=%s line_rows=%s)",
+                config.id,
+                len(valid_buffers),
+                len(log_rows),
+                len(line_rows),
+            )
+            valid_buffers._set_error(error_msg)
+            return True
+
+        flushed_count = len(valid_buffers)
+        valid_buffers.unlink()
+
+        _logger.info(
+            "auditlog_clickhouse: flush OK (config=%s flushed_buffers=%s "
+            "inserted_logs=%s inserted_lines=%s invalid=%s) in %.3fs",
+            config.id,
+            flushed_count,
+            len(log_rows),
+            len(line_rows),
+            len(invalid_buffers),
+            time.monotonic() - started,
+        )
+        return True
+
+    @classmethod
+    def _build_ch_log_row(cls, log_data: JsonMapping) -> ChRow:
+        """Convert payload['log'] dict into CH tuple (order matches _CH_LOG_COLUMNS)."""
+        return (
+            log_data.get("id"),
+            cls._to_ch_nullable_string(log_data.get("name")),
+            int(log_data.get("model_id") or 0),
+            cls._to_ch_nullable_string(log_data.get("model_name")),
+            (log_data.get("model_model") or "unknown"),
+            log_data.get("res_id"),
+            cls._to_ch_nullable_string(log_data.get("res_ids")),
+            int(log_data.get("user_id") or 0),
+            (log_data.get("method") or "unknown"),
+            log_data.get("http_request_id"),
+            log_data.get("http_session_id"),
+            cls._to_ch_nullable_string(log_data.get("log_type")),
+            cls._to_ch_datetime_utc(log_data.get("create_date")),
+            int(log_data.get("create_uid") or 0),
+        )
+
+    @classmethod
+    def _build_ch_line_row(cls, line_data: JsonMapping) -> ChRow:
+        """
+        Convert payload['lines'][] dict into CH
+        tuple (order matches _CH_LINE_COLUMNS).
+        """
+        return (
+            line_data.get("id"),
+            line_data.get("log_id"),
+            int(line_data.get("field_id") or 0),
+            cls._to_ch_nullable_string(line_data.get("field_name")),
+            cls._to_ch_nullable_string(line_data.get("field_description")),
+            cls._to_ch_nullable_string(line_data.get("old_value")),
+            cls._to_ch_nullable_string(line_data.get("new_value")),
+            cls._to_ch_nullable_string(line_data.get("old_value_text")),
+            cls._to_ch_nullable_string(line_data.get("new_value_text")),
+            cls._to_ch_datetime_utc(line_data.get("create_date")),
+            int(line_data.get("create_uid") or 0),
+        )
diff --git a/auditlog_clickhouse/models/auditlog_rule.py b/auditlog_clickhouse/models/auditlog_rule.py
new file mode 100644
index 00000000000..b2a559bfa63
--- /dev/null
+++ b/auditlog_clickhouse/models/auditlog_rule.py
@@ -0,0 +1,356 @@
+import json
+import logging
+import time
+import uuid
+from collections.abc import Callable, Iterable, Mapping, Sequence
+from datetime import date, datetime, timezone
+from typing import (
+    Any,
+    TypedDict,
+)
+
+from odoo import models
+
+from odoo.addons.auditlog.models.rule import EMPTY_DICT, FIELDS_BLACKLIST, DictDiffer
+
+_logger = logging.getLogger(__name__)
+
+
+class _PayloadLog(TypedDict, total=False):
+    id: str
+    name: str | None
+    model_id: int
+    model_name: str | None
+    model_model: str
+    res_id: int | None
+    res_ids: str | None
+    user_id: int
+    method: str
+    http_request_id: int | None
+    http_session_id: int | None
+    log_type: str | None
+    create_date: str
+    create_uid: int
+
+
+class _PayloadLine(TypedDict, total=False):
+    id: str
+    log_id: str
+    field_id: int
+    field_name: str | None
+    field_description: str | None
+    old_value: Any | None
+    new_value: Any | None
+    old_value_text: Any | None
+    new_value_text: Any | None
+    create_date: str
+    create_uid: int
+
+
+class _Payload(TypedDict):
+    log: _PayloadLog
+    lines: list[_PayloadLine]
+
+
+def _json_default(obj: Any) -> str:
+    """json.dumps(default=...) helper.
+
+    Keeps the payload JSON-friendly even if auditlog values contain datetime/date.
+    """
+    if isinstance(obj, datetime | date):
+        return obj.isoformat()
+    return str(obj)
+
+
+class AuditlogRule(models.Model):
+    _inherit = "auditlog.rule"
+
+    def _get_rule_settings(self, model_id: int) -> tuple[set[str], bool]:
+        """Return (fields_to_exclude_set, capture_record) for the given model_id.
+
+        We cache the result on the registry pool to avoid
+        a DB hit for every audited call.
+        Cache is naturally reset on registry reload
+        (auditlog invalidates registry on rule changes).
+        """
+        cache: dict[int, tuple[set[str], bool]] = getattr(
+            self.pool, "_auditlog_clickhouse_rule_cache", {}
+        )
+        if not hasattr(self.pool, "_auditlog_clickhouse_rule_cache"):
+            self.pool._auditlog_clickhouse_rule_cache = cache
+
+        if model_id in cache:
+            return cache[model_id]
+
+        rule = self.sudo().search([("model_id", "=", model_id)], limit=1)
+        excluded = set(
+            (rule.fields_to_exclude_ids.mapped("name") if rule else [])
+            + FIELDS_BLACKLIST
+        )
+        capture_record = bool(rule and rule.capture_record)
+
+        cache[model_id] = (excluded, capture_record)
+
+        _logger.debug(
+            "auditlog_clickhouse: cached rule settings "
+            "for model_id=%s (excluded=%s capture_record=%s)",
+            model_id,
+            len(excluded),
+            capture_record,
+        )
+        return cache[model_id]
+
+    # flake8: noqa: C901
+    def create_logs(
+        self,
+        uid: int,
+        res_model: str,
+        res_ids: Sequence[int],
+        method: str,
+        old_values: Mapping[int, Mapping[str, Any]] | None = None,
+        new_values: Mapping[int, Mapping[str, Any]] | None = None,
+        additional_log_values: Mapping[str, Any] | None = None,
+    ) -> None:
+        """Write audit logs to ClickHouse buffer instead of PostgreSQL audit tables.
+
+        This overrides `auditlog.rule.create_logs()`:
+        - No rows are created in `auditlog.log` / `auditlog.log.line` (PostgreSQL).
+        - A single JSON payload is stored in `auditlog.log.buffer` per logged entry.
+        - The cron will later flush these payloads into ClickHouse.
+
+        Logging:
+          - DEBUG: timings + counts of generated buffer rows/lines.
+          - WARNING/EXCEPTION: failures creating buffer payload rows.
+        """
+        started = time.monotonic()
+
+        old_values = old_values or EMPTY_DICT
+        new_values = new_values or EMPTY_DICT
+        additional_log_values = dict(additional_log_values or {})
+        log_type = additional_log_values.get("log_type")  # 'full' / 'fast'
+
+        if _logger.isEnabledFor(logging.DEBUG):
+            _logger.debug(
+                "auditlog_clickhouse: create_logs start "
+                "(uid=%s model=%s method=%s res_ids=%s log_type=%s)",
+                uid,
+                res_model,
+                method,
+                len(res_ids),
+                log_type,
+            )
+
+        # Prefer auditlog's model cache (filled by their _register_hook),
+        # fallback to ir.model lookup.
+        model_id = self.pool._auditlog_model_cache.get(res_model)
+        if not model_id:
+            model_id = self.env["ir.model"].sudo()._get(res_model).id
+
+        model_rec = self.env["ir.model"].sudo().browse(model_id)
+        model_rs = self.env[res_model]
+
+        fields_to_exclude_set, capture_record = self._get_rule_settings(model_id)
+
+        # Single timestamp for the whole batch: consistent ordering for log + lines.
+        now_iso = datetime.now(timezone.utc).isoformat(timespec="milliseconds")
+
+        base_log: _PayloadLog = {
+            "model_id": int(model_id),
+            "model_name": model_rec.name,
+            "model_model": model_rec.model,
+            "user_id": int(uid),
+            "method": method,
+            # Intentionally not creating auditlog
+            # HTTP PG tables in the write-only module.
+            "http_request_id": None,
+            "http_session_id": None,
+            "log_type": log_type,
+            "create_date": now_iso,
+            "create_uid": int(uid),
+        }
+
+        buffer_model = self.env["auditlog.log.buffer"].sudo()
+        buffer_vals_list: list[dict[str, Any]] = []
+
+        # Fast-path: export_data produces one entry, no lines.
+        if method == "export_data":
+            payload: _Payload = {
+                "log": {
+                    "id": str(uuid.uuid4()),
+                    "name": res_model,
+                    "res_id": None,
+                    "res_ids": str(list(res_ids)),
+                    **base_log,
+                },
+                "lines": [],
+            }
+            buffer_vals_list.append(
+                {
+                    "payload_json": json.dumps(
+                        payload, ensure_ascii=False, default=_json_default
+                    )
+                }
+            )
+
+            try:
+                buffer_model.create(buffer_vals_list)
+            except Exception:
+                _logger.exception(
+                    "auditlog_clickhouse: buffer create failed "
+                    "(export_data) (model=%s uid=%s)",
+                    res_model,
+                    uid,
+                )
+                raise
+
+            _logger.debug(
+                "auditlog_clickhouse: create_logs end "
+                "(export_data) (buffer_rows=1 elapsed=%.3fs)",
+                time.monotonic() - started,
+            )
+            return
+
+        # Select correct line builder + field source for each method.
+        # We reuse auditlog's own _prepare_* helpers to keep semantics aligned.
+        line_builder: Callable[..., dict[str, Any]] | None
+        values_src: tuple[Mapping[int, Mapping[str, Any]], ...]
+        include_lines_on_unlink = method == "unlink" and capture_record
+
+        if method == "create":
+            line_builder = self._prepare_log_line_vals_on_create
+            values_src = (new_values,)
+        elif method == "read":
+            line_builder = self._prepare_log_line_vals_on_read
+            values_src = (old_values,)
+        elif method == "write":
+            line_builder = self._prepare_log_line_vals_on_write
+            values_src = (old_values, new_values)
+        elif include_lines_on_unlink:
+            line_builder = self._prepare_log_line_vals_on_read
+            values_src = (old_values,)
+        else:
+            line_builder = None
+            values_src = ()
+
+        total_lines = 0
+        produced_payloads = 0
+
+        for res_id in res_ids:
+            log_id = str(uuid.uuid4())
+            record = model_rs.browse(res_id)
+
+            log: _PayloadLog = {
+                "id": log_id,
+                "name": record.display_name,
+                "res_id": int(res_id),
+                "res_ids": None,
+                **base_log,
+            }
+
+            # Determine which fields should produce lines for this record.
+            diff = DictDiffer(
+                dict(new_values.get(res_id, EMPTY_DICT)),
+                dict(old_values.get(res_id, EMPTY_DICT)),
+            )
+
+            if method == "create":
+                fields_list: Iterable[str] = diff.added()
+            elif method == "read":
+                fields_list = old_values.get(res_id, EMPTY_DICT).keys()
+            elif method == "write":
+                fields_list = diff.changed()
+            elif include_lines_on_unlink:
+                fields_list = old_values.get(res_id, EMPTY_DICT).keys()
+            else:
+                fields_list = ()
+
+            log_ctx = {"res_id": res_id, "model_id": model_id, "log_type": log_type}
+            lines: list[_PayloadLine] = []
+
+            if line_builder:
+                for field_name in fields_list:
+                    if field_name in fields_to_exclude_set:
+                        continue
+
+                    field = self._get_field(model_id, field_name)
+                    if not field:
+                        # Dummy / non-loggable field (no ir.model.fields row)
+                        continue
+
+                    # Reuse auditlog helper to keep the same old/new/text semantics.
+                    if method in ("create", "read") or include_lines_on_unlink:
+                        vals = line_builder(log_ctx, field, values_src[0])
+                    else:
+                        vals = line_builder(
+                            log_ctx, field, values_src[0], values_src[1]
+                        )
+
+                    lines.append(
+                        {
+                            "id": str(uuid.uuid4()),
+                            "log_id": log_id,
+                            "field_id": int(field["id"]),
+                            "field_name": field.get("name"),
+                            "field_description": field.get("field_description"),
+                            "old_value": vals.get("old_value"),
+                            "new_value": vals.get("new_value"),
+                            "old_value_text": vals.get("old_value_text"),
+                            "new_value_text": vals.get("new_value_text"),
+                            "create_date": now_iso,
+                            "create_uid": int(uid),
+                        }
+                    )
+
+            # Match original semantics: unlink is always logged;
+            # others only if there are lines.
+            if method == "unlink" or lines:
+                payload = {"log": log, "lines": lines}
+                buffer_vals_list.append(
+                    {
+                        "payload_json": json.dumps(
+                            payload, ensure_ascii=False, default=_json_default
+                        )
+                    }
+                )
+                produced_payloads += 1
+                total_lines += len(lines)
+
+        if not buffer_vals_list:
+            # This can legitimately happen when method != unlink and there are no
+            # changed fields after exclusions; still useful to know during debugging.
+            _logger.debug(
+                "auditlog_clickhouse: no payloads produced "
+                "(model=%s method=%s res_ids=%s excluded=%s capture_record=%s)",
+                res_model,
+                method,
+                len(res_ids),
+                len(fields_to_exclude_set),
+                capture_record,
+            )
+            return
+
+        try:
+            # Batch insert into PostgreSQL buffer to minimize ORM overhead.
+            buffer_model.create(buffer_vals_list)
+        except Exception:
+            _logger.exception(
+                "auditlog_clickhouse: buffer create failed "
+                "(model=%s method=%s uid=%s payloads=%s lines=%s)",
+                res_model,
+                method,
+                uid,
+                produced_payloads,
+                total_lines,
+            )
+            raise
+
+        _logger.debug(
+            "auditlog_clickhouse: create_logs end (model=%s method=%s "
+            "payloads=%s lines=%s res_ids=%s elapsed=%.3fs)",
+            res_model,
+            method,
+            produced_payloads,
+            total_lines,
+            len(res_ids),
+            time.monotonic() - started,
+        )
diff --git a/auditlog_clickhouse/models/clickhouse_client.py b/auditlog_clickhouse/models/clickhouse_client.py
new file mode 100644
index 00000000000..9e7f403eb6b
--- /dev/null
+++ b/auditlog_clickhouse/models/clickhouse_client.py
@@ -0,0 +1,58 @@
+from collections.abc import Mapping
+from typing import Any
+
+from odoo import _
+from odoo.exceptions import UserError
+
+try:
+    from clickhouse_driver import Client as ClickHouseClient
+except Exception:
+    ClickHouseClient = None
+
+
+def _require_driver() -> None:
+    """Ensure clickhouse-driver is importable in the current Odoo environment."""
+    if ClickHouseClient is None:
+        raise UserError(
+            _(
+                "Python package 'clickhouse-driver' is not available. "
+                "Install it in the Odoo environment to use ClickHouse storage."
+            )
+        )
+
+
+def get_clickhouse_client(
+    *,
+    host: str,
+    port: int,
+    database: str,
+    user: str,
+    password: str | None = None,
+    settings: Mapping[str, Any] | None = None,
+) -> "ClickHouseClient":
+    """Create and return a ClickHouse client (clickhouse-driver).
+
+    Args:
+        host: ClickHouse host or IP.
+        port: ClickHouse TCP port (native protocol).
+        database: Default database to use for queries.
+        user: ClickHouse username.
+        password: ClickHouse password (optional).
+        settings: Optional clickhouse-driver settings dict.
+
+    Returns:
+        clickhouse_driver.Client instance configured for native TCP protocol.
+
+    Raises:
+        UserError: If the clickhouse-driver package is not installed.
+    """
+    _require_driver()
+    # `settings` is passed as-is to clickhouse-driver, keep it optional and immutable.
+    return ClickHouseClient(
+        host=host,
+        port=port,
+        database=database,
+        user=user,
+        password=password or "",
+        settings=dict(settings or {}),
+    )
diff --git a/auditlog_clickhouse/pyproject.toml b/auditlog_clickhouse/pyproject.toml
new file mode 100644
index 00000000000..4231d0cccb3
--- /dev/null
+++ b/auditlog_clickhouse/pyproject.toml
@@ -0,0 +1,3 @@
+[build-system]
+requires = ["whool"]
+build-backend = "whool.buildapi"
diff --git a/auditlog_clickhouse/readme/CONFIGURE.md b/auditlog_clickhouse/readme/CONFIGURE.md
new file mode 100644
index 00000000000..7d676bcf45e
--- /dev/null
+++ b/auditlog_clickhouse/readme/CONFIGURE.md
@@ -0,0 +1,16 @@
+- Make sure `clickhouse-driver` is available in your system.
+- Install the module.
+- Configure the connection parameters in Odoo:
+  - **Settings > Technical > Auditlog > Clickhouse configuration**
+  - Fill in the following parameters:
+
+| Field |
+|:-----|
+| Hostname or IP |
+| TCP port |
+| ClickHouse database name |
+| ClickHouse user |
+| ClickHouse Password |
+
+- Click **Test connection**.
+- Optionally, click **Create Auditlog Tables** to create the tables and User in the target database.
diff --git a/auditlog_clickhouse/readme/CONTEXT.md b/auditlog_clickhouse/readme/CONTEXT.md
new file mode 100644
index 00000000000..18dccc08791
--- /dev/null
+++ b/auditlog_clickhouse/readme/CONTEXT.md
@@ -0,0 +1,5 @@
+The auditlog module  stores audit data in PostgreSQL. In production systems with extensive audit rules, these tables grow without limits, causing three issues:
+
+- Database bloat;
+- Immutability gap: Members of group_auditlog_manager (implied by base.group_system) have full CRUD access to audit tables, allowing audit records to be altered or deleted via UI, ORM, or SQL;
+- Performance overhead: Audit logging runs synchronously in the same transaction and performs multiple ORM create() calls, adding latency to audited operations.
diff --git a/auditlog_clickhouse/readme/DESCRIPTION.md b/auditlog_clickhouse/readme/DESCRIPTION.md
new file mode 100644
index 00000000000..44a06a99899
--- /dev/null
+++ b/auditlog_clickhouse/readme/DESCRIPTION.md
@@ -0,0 +1,4 @@
+This module implements a buffered asynchronous transfers audit logs from PostgreSQL to ClickHouse.
+Storing audit data in a columnar database that is write-only prevents database bloat, makes audit records effectively
+immutable, and allows for scaling to very large volumes of logs without slowing down normal transactions.
+Audit logs are written asynchronously to reduce the load on business operations.
diff --git a/auditlog_clickhouse/readme/USAGE.md b/auditlog_clickhouse/readme/USAGE.md
new file mode 100644
index 00000000000..87f468233b7
--- /dev/null
+++ b/auditlog_clickhouse/readme/USAGE.md
@@ -0,0 +1,7 @@
+Once auditlog_clickhouse is installed and configured:
+
+- Users perform tracked operations (create, write, unlink, read, export) on models with active auditlog.rule subscriptions.
+  This behavior is unchanged from the base auditlog module.
+- Log data is serialized and stored in the local auditlog.log.buffer table instantly. The standard auditlog tables are not populated.
+- Every 5 minutes (default), the Cron job runs, pushes data to ClickHouse, and cleans the local buffer.
+- Data is permanently stored in ClickHouse and cannot be modified or deleted via Odoo.
diff --git a/auditlog_clickhouse/security/ir.model.access.csv b/auditlog_clickhouse/security/ir.model.access.csv
new file mode 100644
index 00000000000..7fe73ca3790
--- /dev/null
+++ b/auditlog_clickhouse/security/ir.model.access.csv
@@ -0,0 +1,3 @@
+id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink
+access_auditlog_clickhouse_config_manager,auditlog.clickhouse.config manager,model_auditlog_clickhouse_config,auditlog.group_auditlog_manager,1,1,1,1
+access_auditlog_log_buffer_no_one,auditlog.log.buffer (no one),model_auditlog_log_buffer,base.group_no_one,1,1,1,1
diff --git a/auditlog_clickhouse/static/description/index.html b/auditlog_clickhouse/static/description/index.html
new file mode 100644
index 00000000000..521bcb6a042
--- /dev/null
+++ b/auditlog_clickhouse/static/description/index.html
@@ -0,0 +1,492 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<meta name="generator" content="Docutils: https://docutils.sourceforge.io/" />
+<title>Audit Log ClickHouse store and read</title>
+<style type="text/css">
+
+/*
+:Author: David Goodger (goodger@python.org)
+:Id: $Id: html4css1.css 9511 2024-01-13 09:50:07Z milde $
+:Copyright: This stylesheet has been placed in the public domain.
+
+Default cascading style sheet for the HTML output of Docutils.
+Despite the name, some widely supported CSS2 features are used.
+
+See https://docutils.sourceforge.io/docs/howto/html-stylesheets.html for how to
+customize this style sheet.
+*/
+
+/* used to remove borders from tables and images */
+.borderless, table.borderless td, table.borderless th {
+  border: 0 }
+
+table.borderless td, table.borderless th {
+  /* Override padding for "table.docutils td" with "! important".
+     The right padding separates the table cells. */
+  padding: 0 0.5em 0 0 ! important }
+
+.first {
+  /* Override more specific margin styles with "! important". */
+  margin-top: 0 ! important }
+
+.last, .with-subtitle {
+  margin-bottom: 0 ! important }
+
+.hidden {
+  display: none }
+
+.subscript {
+  vertical-align: sub;
+  font-size: smaller }
+
+.superscript {
+  vertical-align: super;
+  font-size: smaller }
+
+a.toc-backref {
+  text-decoration: none ;
+  color: black }
+
+blockquote.epigraph {
+  margin: 2em 5em ; }
+
+dl.docutils dd {
+  margin-bottom: 0.5em }
+
+object[type="image/svg+xml"], object[type="application/x-shockwave-flash"] {
+  overflow: hidden;
+}
+
+/* Uncomment (and remove this text!) to get bold-faced definition list terms
+dl.docutils dt {
+  font-weight: bold }
+*/
+
+div.abstract {
+  margin: 2em 5em }
+
+div.abstract p.topic-title {
+  font-weight: bold ;
+  text-align: center }
+
+div.admonition, div.attention, div.caution, div.danger, div.error,
+div.hint, div.important, div.note, div.tip, div.warning {
+  margin: 2em ;
+  border: medium outset ;
+  padding: 1em }
+
+div.admonition p.admonition-title, div.hint p.admonition-title,
+div.important p.admonition-title, div.note p.admonition-title,
+div.tip p.admonition-title {
+  font-weight: bold ;
+  font-family: sans-serif }
+
+div.attention p.admonition-title, div.caution p.admonition-title,
+div.danger p.admonition-title, div.error p.admonition-title,
+div.warning p.admonition-title, .code .error {
+  color: red ;
+  font-weight: bold ;
+  font-family: sans-serif }
+
+/* Uncomment (and remove this text!) to get reduced vertical space in
+   compound paragraphs.
+div.compound .compound-first, div.compound .compound-middle {
+  margin-bottom: 0.5em }
+
+div.compound .compound-last, div.compound .compound-middle {
+  margin-top: 0.5em }
+*/
+
+div.dedication {
+  margin: 2em 5em ;
+  text-align: center ;
+  font-style: italic }
+
+div.dedication p.topic-title {
+  font-weight: bold ;
+  font-style: normal }
+
+div.figure {
+  margin-left: 2em ;
+  margin-right: 2em }
+
+div.footer, div.header {
+  clear: both;
+  font-size: smaller }
+
+div.line-block {
+  display: block ;
+  margin-top: 1em ;
+  margin-bottom: 1em }
+
+div.line-block div.line-block {
+  margin-top: 0 ;
+  margin-bottom: 0 ;
+  margin-left: 1.5em }
+
+div.sidebar {
+  margin: 0 0 0.5em 1em ;
+  border: medium outset ;
+  padding: 1em ;
+  background-color: #ffffee ;
+  width: 40% ;
+  float: right ;
+  clear: right }
+
+div.sidebar p.rubric {
+  font-family: sans-serif ;
+  font-size: medium }
+
+div.system-messages {
+  margin: 5em }
+
+div.system-messages h1 {
+  color: red }
+
+div.system-message {
+  border: medium outset ;
+  padding: 1em }
+
+div.system-message p.system-message-title {
+  color: red ;
+  font-weight: bold }
+
+div.topic {
+  margin: 2em }
+
+h1.section-subtitle, h2.section-subtitle, h3.section-subtitle,
+h4.section-subtitle, h5.section-subtitle, h6.section-subtitle {
+  margin-top: 0.4em }
+
+h1.title {
+  text-align: center }
+
+h2.subtitle {
+  text-align: center }
+
+hr.docutils {
+  width: 75% }
+
+img.align-left, .figure.align-left, object.align-left, table.align-left {
+  clear: left ;
+  float: left ;
+  margin-right: 1em }
+
+img.align-right, .figure.align-right, object.align-right, table.align-right {
+  clear: right ;
+  float: right ;
+  margin-left: 1em }
+
+img.align-center, .figure.align-center, object.align-center {
+  display: block;
+  margin-left: auto;
+  margin-right: auto;
+}
+
+table.align-center {
+  margin-left: auto;
+  margin-right: auto;
+}
+
+.align-left {
+  text-align: left }
+
+.align-center {
+  clear: both ;
+  text-align: center }
+
+.align-right {
+  text-align: right }
+
+/* reset inner alignment in figures */
+div.align-right {
+  text-align: inherit }
+
+/* div.align-center * { */
+/*   text-align: left } */
+
+.align-top    {
+  vertical-align: top }
+
+.align-middle {
+  vertical-align: middle }
+
+.align-bottom {
+  vertical-align: bottom }
+
+ol.simple, ul.simple {
+  margin-bottom: 1em }
+
+ol.arabic {
+  list-style: decimal }
+
+ol.loweralpha {
+  list-style: lower-alpha }
+
+ol.upperalpha {
+  list-style: upper-alpha }
+
+ol.lowerroman {
+  list-style: lower-roman }
+
+ol.upperroman {
+  list-style: upper-roman }
+
+p.attribution {
+  text-align: right ;
+  margin-left: 50% }
+
+p.caption {
+  font-style: italic }
+
+p.credits {
+  font-style: italic ;
+  font-size: smaller }
+
+p.label {
+  white-space: nowrap }
+
+p.rubric {
+  font-weight: bold ;
+  font-size: larger ;
+  color: maroon ;
+  text-align: center }
+
+p.sidebar-title {
+  font-family: sans-serif ;
+  font-weight: bold ;
+  font-size: larger }
+
+p.sidebar-subtitle {
+  font-family: sans-serif ;
+  font-weight: bold }
+
+p.topic-title {
+  font-weight: bold }
+
+pre.address {
+  margin-bottom: 0 ;
+  margin-top: 0 ;
+  font: inherit }
+
+pre.literal-block, pre.doctest-block, pre.math, pre.code {
+  margin-left: 2em ;
+  margin-right: 2em }
+
+pre.code .ln { color: gray; } /* line numbers */
+pre.code, code { background-color: #eeeeee }
+pre.code .comment, code .comment { color: #5C6576 }
+pre.code .keyword, code .keyword { color: #3B0D06; font-weight: bold }
+pre.code .literal.string, code .literal.string { color: #0C5404 }
+pre.code .name.builtin, code .name.builtin { color: #352B84 }
+pre.code .deleted, code .deleted { background-color: #DEB0A1}
+pre.code .inserted, code .inserted { background-color: #A3D289}
+
+span.classifier {
+  font-family: sans-serif ;
+  font-style: oblique }
+
+span.classifier-delimiter {
+  font-family: sans-serif ;
+  font-weight: bold }
+
+span.interpreted {
+  font-family: sans-serif }
+
+span.option {
+  white-space: nowrap }
+
+span.pre {
+  white-space: pre }
+
+span.problematic, pre.problematic {
+  color: red }
+
+span.section-subtitle {
+  /* font-size relative to parent (h1..h6 element) */
+  font-size: 80% }
+
+table.citation {
+  border-left: solid 1px gray;
+  margin-left: 1px }
+
+table.docinfo {
+  margin: 2em 4em }
+
+table.docutils {
+  margin-top: 0.5em ;
+  margin-bottom: 0.5em }
+
+table.footnote {
+  border-left: solid 1px black;
+  margin-left: 1px }
+
+table.docutils td, table.docutils th,
+table.docinfo td, table.docinfo th {
+  padding-left: 0.5em ;
+  padding-right: 0.5em ;
+  vertical-align: top }
+
+table.docutils th.field-name, table.docinfo th.docinfo-name {
+  font-weight: bold ;
+  text-align: left ;
+  white-space: nowrap ;
+  padding-left: 0 }
+
+/* "booktabs" style (no vertical lines) */
+table.docutils.booktabs {
+  border: 0px;
+  border-top: 2px solid;
+  border-bottom: 2px solid;
+  border-collapse: collapse;
+}
+table.docutils.booktabs * {
+  border: 0px;
+}
+table.docutils.booktabs th {
+  border-bottom: thin solid;
+  text-align: left;
+}
+
+h1 tt.docutils, h2 tt.docutils, h3 tt.docutils,
+h4 tt.docutils, h5 tt.docutils, h6 tt.docutils {
+  font-size: 100% }
+
+ul.auto-toc {
+  list-style-type: none }
+
+</style>
+</head>
+<body>
+<div class="document" id="audit-log-clickhouse-store-and-read">
+<h1 class="title">Audit Log ClickHouse store and read</h1>
+
+<!-- !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+!! This file is generated by oca-gen-addon-readme !!
+!! changes will be overwritten.                   !!
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+!! source digest: sha256:11aaa38bad24a890554c0d34d74d31e13b933facbba3fea31f4cbf22ae8fd842
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
+<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/licence-AGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-tools/tree/18.0/auditlog_clickhouse"><img alt="OCA/server-tools" src="https://img.shields.io/badge/github-OCA%2Fserver--tools-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-tools-18-0/server-tools-18-0-auditlog_clickhouse"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-tools&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
+<p>This module implements a buffered asynchronous transfers audit logs from
+PostgreSQL to ClickHouse. Storing audit data in a columnar database that
+is write-only prevents database bloat, makes audit records effectively
+immutable, and allows for scaling to very large volumes of logs without
+slowing down normal transactions. Audit logs are written asynchronously
+to reduce the load on business operations.</p>
+<p><strong>Table of contents</strong></p>
+<div class="contents local topic" id="contents">
+<ul class="simple">
+<li><a class="reference internal" href="#use-cases-context" id="toc-entry-1">Use Cases / Context</a></li>
+<li><a class="reference internal" href="#configuration" id="toc-entry-2">Configuration</a></li>
+<li><a class="reference internal" href="#usage" id="toc-entry-3">Usage</a></li>
+<li><a class="reference internal" href="#bug-tracker" id="toc-entry-4">Bug Tracker</a></li>
+<li><a class="reference internal" href="#credits" id="toc-entry-5">Credits</a><ul>
+<li><a class="reference internal" href="#authors" id="toc-entry-6">Authors</a></li>
+<li><a class="reference internal" href="#maintainers" id="toc-entry-7">Maintainers</a></li>
+</ul>
+</li>
+</ul>
+</div>
+<div class="section" id="use-cases-context">
+<h1><a class="toc-backref" href="#toc-entry-1">Use Cases / Context</a></h1>
+<p>The auditlog module stores audit data in PostgreSQL. In production
+systems with extensive audit rules, these tables grow without limits,
+causing three issues:</p>
+<ul class="simple">
+<li>Database bloat;</li>
+<li>Immutability gap: Members of group_auditlog_manager (implied by
+base.group_system) have full CRUD access to audit tables, allowing
+audit records to be altered or deleted via UI, ORM, or SQL;</li>
+<li>Performance overhead: Audit logging runs synchronously in the same
+transaction and performs multiple ORM create() calls, adding latency
+to audited operations.</li>
+</ul>
+</div>
+<div class="section" id="configuration">
+<h1><a class="toc-backref" href="#toc-entry-2">Configuration</a></h1>
+<ul class="simple">
+<li>Make sure <tt class="docutils literal"><span class="pre">clickhouse-driver</span></tt> is available in your system.</li>
+<li>Install the module.</li>
+<li>Configure the connection parameters in Odoo:<ul>
+<li><strong>Settings &gt; Technical &gt; Auditlog &gt; Clickhouse configuration</strong></li>
+<li>Fill in the following parameters:</li>
+</ul>
+</li>
+</ul>
+<table border="1" class="docutils">
+<colgroup>
+<col width="100%" />
+</colgroup>
+<thead valign="bottom">
+<tr><th class="head">Field</th>
+</tr>
+</thead>
+<tbody valign="top">
+<tr><td>Hostname or IP</td>
+</tr>
+<tr><td>TCP port</td>
+</tr>
+<tr><td>ClickHouse database name</td>
+</tr>
+<tr><td>ClickHouse user</td>
+</tr>
+<tr><td>ClickHouse Password</td>
+</tr>
+</tbody>
+</table>
+<ul class="simple">
+<li>Click <strong>Test connection</strong>.</li>
+<li>Optionally, click <strong>Create Auditlog Tables</strong> to create the tables and
+User in the target database.</li>
+</ul>
+</div>
+<div class="section" id="usage">
+<h1><a class="toc-backref" href="#toc-entry-3">Usage</a></h1>
+<p>Once auditlog_clickhouse is installed and configured:</p>
+<ul class="simple">
+<li>Users perform tracked operations (create, write, unlink, read, export)
+on models with active auditlog.rule subscriptions. This behavior is
+unchanged from the base auditlog module.</li>
+<li>Log data is serialized and stored in the local auditlog.log.buffer
+table instantly. The standard auditlog tables are not populated.</li>
+<li>Every 5 minutes (default), the Cron job runs, pushes data to
+ClickHouse, and cleans the local buffer.</li>
+<li>Data is permanently stored in ClickHouse and cannot be modified or
+deleted via Odoo.</li>
+</ul>
+</div>
+<div class="section" id="bug-tracker">
+<h1><a class="toc-backref" href="#toc-entry-4">Bug Tracker</a></h1>
+<p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-tools/issues">GitHub Issues</a>.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us to smash it by providing a detailed and welcomed
+<a class="reference external" href="https://github.com/OCA/server-tools/issues/new?body=module:%20auditlog_clickhouse%0Aversion:%2018.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<p>Do not contact contributors directly about support or help with technical issues.</p>
+</div>
+<div class="section" id="credits">
+<h1><a class="toc-backref" href="#toc-entry-5">Credits</a></h1>
+<div class="section" id="authors">
+<h2><a class="toc-backref" href="#toc-entry-6">Authors</a></h2>
+<ul class="simple">
+<li>Cetmix</li>
+</ul>
+</div>
+<div class="section" id="maintainers">
+<h2><a class="toc-backref" href="#toc-entry-7">Maintainers</a></h2>
+<p>This module is maintained by the OCA.</p>
+<a class="reference external image-reference" href="https://odoo-community.org">
+<img alt="Odoo Community Association" src="https://odoo-community.org/logo.png" />
+</a>
+<p>OCA, or the Odoo Community Association, is a nonprofit organization whose
+mission is to support the collaborative development of Odoo features and
+promote its widespread use.</p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/server-tools/tree/18.0/auditlog_clickhouse">OCA/server-tools</a> project on GitHub.</p>
+<p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
+</div>
+</div>
+</div>
+</body>
+</html>
diff --git a/auditlog_clickhouse/tests/__init__.py b/auditlog_clickhouse/tests/__init__.py
new file mode 100644
index 00000000000..ca453c38480
--- /dev/null
+++ b/auditlog_clickhouse/tests/__init__.py
@@ -0,0 +1,2 @@
+from . import test_auditlog_clickhouse
+from . import test_clickhouse_config
diff --git a/auditlog_clickhouse/tests/common.py b/auditlog_clickhouse/tests/common.py
new file mode 100644
index 00000000000..916a57b3016
--- /dev/null
+++ b/auditlog_clickhouse/tests/common.py
@@ -0,0 +1,90 @@
+import contextlib
+from unittest.mock import patch
+
+from odoo.tests.common import TransactionCase
+
+
+class DummyClickHouseClient:
+    """Tiny fake clickhouse client collecting execute() calls."""
+
+    def __init__(self, *, raise_on_insert: bool = False):
+        self.raise_on_insert = raise_on_insert
+        self.calls = []  # list[(query, params)]
+
+    def execute(self, query, params=None):
+        self.calls.append((query, params))
+        q = (query or "").strip().upper()
+        if q.startswith("SELECT"):
+            return [(1,)]
+        if self.raise_on_insert and "INSERT INTO" in q:
+            raise Exception("Simulated ClickHouse insert error")
+        return []
+
+
+class AuditLogClickhouseCommon(TransactionCase):
+    @classmethod
+    def setUpClass(cls):
+        super().setUpClass()
+        cls._patched_models = set()
+        cls._created_rules = cls.env["auditlog.rule"]
+        cls.base_cfg = cls.create_config(is_active=True)
+
+    @classmethod
+    def create_rule(cls, vals):
+        """Create an auditlog.rule and track patched models for cleanup."""
+        rule = cls.env["auditlog.rule"].with_context(tracking_disable=True).create(vals)
+        cls._created_rules |= rule
+        cls._patched_models |= set(rule.model_id.mapped("model"))
+        return rule
+
+    @classmethod
+    def create_config(cls, **vals):
+        """Create ClickHouse config. Keep defaults minimal and test-friendly."""
+        defaults = {
+            "host": "localhost",
+            "port": 9000,
+            "database": "db",
+            "user": "user",
+            "password": "pass",
+            "is_active": True,
+        }
+        defaults.update(vals)
+        return (
+            cls.env["auditlog.clickhouse.config"]
+            .with_context(tracking_disable=True)
+            .create(defaults)
+        )
+
+    @classmethod
+    def tearDownClass(cls):
+        # Unsubscribe rules created by this test module (avoid leaving patched methods).
+        for rule in cls._created_rules:
+            try:
+                rule.unsubscribe()
+            except KeyError:
+                continue
+
+        # Assert no patched methods remain.
+        for model in cls._patched_models:
+            for method in ["create", "read", "write", "unlink"]:
+                assert not hasattr(
+                    getattr(cls.env[model], method), "origin"
+                ), f"{model} {method} still patched"
+
+        super().tearDownClass()
+
+    @contextlib.contextmanager
+    def _patched_clickhouse_client(self, *, raise_on_insert: bool = False):
+        """
+        Patch get_clickhouse_client used inside auditlog.clickhouse.config._get_client()
+        so tests don't require clickhouse-driver nor real ClickHouse.
+        """
+        dummy = DummyClickHouseClient(raise_on_insert=raise_on_insert)
+        target = "odoo.addons.auditlog_clickhouse.models.auditlog_clickhouse_config.get_clickhouse_client"  # noqa: E501
+        with patch(target, autospec=True, return_value=dummy):
+            yield dummy
+
+    def _parse_payloads(self):
+        """Return list of decoded payload dicts from buffer (oldest first)."""
+        buf = self.env["auditlog.log.buffer"].sudo().search([], order="id asc")
+        return [__import__("json").loads(r.payload_json) for r in buf]
diff --git a/auditlog_clickhouse/tests/test_auditlog_clickhouse.py b/auditlog_clickhouse/tests/test_auditlog_clickhouse.py
new file mode 100644
index 00000000000..21ab9038b3f
--- /dev/null
+++ b/auditlog_clickhouse/tests/test_auditlog_clickhouse.py
@@ -0,0 +1,211 @@
+import json
+
+from odoo.tests import tagged
+from odoo.tools import mute_logger
+
+from .common import AuditLogClickhouseCommon
+
+
+@tagged("-at_install", "post_install")
+class TestAuditlogClickhouseBuffer(AuditLogClickhouseCommon):
+    @classmethod
+    def setUpClass(cls):
+        super().setUpClass()
+        cls.groups_model_id = cls.env.ref("base.model_res_groups").id
+        cls.partner_model_id = cls.env.ref("base.model_res_partner").id
+
+        # Rule for groups: full logging
+        cls.groups_rule = cls.create_rule(
+            {
+                "name": "testrule groups clickhouse",
+                "model_id": cls.groups_model_id,
+                "log_read": True,
+                "log_create": True,
+                "log_write": True,
+                "log_unlink": True,
+                "log_export_data": True,
+                "log_type": "full",
+                "capture_record": False,
+            }
+        )
+
+    def setUp(self):
+        super().setUp()
+        # Ensure rule is subscribed per test.
+        self.groups_rule.subscribe()
+
+    def test_01_create_writes_to_buffer_not_auditlog_tables(self):
+        buf = self.env["auditlog.log.buffer"].sudo()
+        log_model = self.env["auditlog.log"]
+
+        start_buf = buf.search_count([])
+        start_logs = log_model.search_count([("model_id", "=", self.groups_model_id)])
+
+        group = (
+            self.env["res.groups"]
+            .with_context(tracking_disable=True)
+            .create({"name": "ch_test_group_1"})
+        )
+
+        self.assertEqual(
+            log_model.search_count([("model_id", "=", self.groups_model_id)])
+            - start_logs,
+            0,
+            "auditlog.log must NOT be written by auditlog_clickhouse",
+        )
+        self.assertEqual(buf.search_count([]) - start_buf, 1)
+
+        payload = json.loads(buf.search([], order="id desc", limit=1).payload_json)
+        self.assertEqual(payload["log"]["method"], "create")
+        self.assertEqual(payload["log"]["model_id"], self.groups_model_id)
+        self.assertEqual(payload["log"]["res_id"], group.id)
+
+    def test_02_write_creates_lines(self):
+        buf = self.env["auditlog.log.buffer"].sudo()
+        start_buf = buf.search_count([])
+
+        group = self.env["res.groups"].create({"name": "CH Group"})
+        group.write({"name": "CH Group v2"})
+
+        self.assertGreater(buf.search_count([]), start_buf)
+
+        payload = json.loads(buf.search([], order="id desc", limit=1).payload_json)
+        self.assertEqual(payload["log"]["method"], "write")
+        self.assertEqual(payload["log"]["model_model"], "res.groups")
+
+        field_names = {line.get("field_name") for line in payload["lines"]}
+        self.assertIn("name", field_names)
+
+    def test_03_export_data_creates_single_payload_no_lines(self):
+        buf = self.env["auditlog.log.buffer"].sudo()
+        start_buf = buf.search_count([])
+
+        self.env["res.groups"].search([]).export_data(["name"])
+
+        self.assertEqual(buf.search_count([]) - start_buf, 1)
+        payload = json.loads(buf.search([], order="id desc", limit=1).payload_json)
+        self.assertEqual(payload["log"]["method"], "export_data")
+        self.assertEqual(payload["lines"], [])
+
+    def test_04_unlink_is_always_logged_even_without_capture_record(self):
+        buf = self.env["auditlog.log.buffer"].sudo()
+        start_buf = buf.search_count([])
+
+        g = (
+            self.env["res.groups"]
+            .with_context(tracking_disable=True)
+            .create({"name": "ch_test_group_unlink"})
+        )
+        g.unlink()
+
+        self.assertGreater(buf.search_count([]), start_buf)
+        payload = json.loads(buf.search([], order="id desc", limit=1).payload_json)
+        self.assertEqual(payload["log"]["method"], "unlink")
+        # capture_record=False => lines may be empty, but payload must exist
+        self.assertIsInstance(payload["lines"], list)
+
+
+@tagged("-at_install", "post_install")
+class TestAuditlogClickhouseCron(AuditLogClickhouseCommon):
+    @classmethod
+    def setUpClass(cls):
+        super().setUpClass()
+        cls.partner_model_id = cls.env.ref("base.model_res_partner").id
+        cls.rule = cls.create_rule(
+            {
+                "name": "testrule partner clickhouse cron",
+                "model_id": cls.partner_model_id,
+                "log_create": True,
+                "log_write": True,
+                "log_unlink": True,
+                "log_type": "full",
+            }
+        )
+        cls.config = cls.create_config(is_active=True)
+
+    def setUp(self):
+        super().setUp()
+        self.rule.subscribe()
+
+    def test_01_cron_flush_success_deletes_buffers_and_calls_insert(self):
+        buf = self.env["auditlog.log.buffer"].sudo()
+
+        partner = (
+            self.env["res.partner"]
+            .with_context(tracking_disable=True)
+            .create({"name": "Cron Test"})
+        )
+        partner.with_context(tracking_disable=True).write({"name": "Cron Test v2"})
+
+        self.assertGreater(buf.search_count([]), 0)
+
+        with self._patched_clickhouse_client() as dummy:
+            buf._cron_flush_to_clickhouse(batch_size=1000)
+
+        self.assertEqual(
+            buf.search_count([]), 0, "Buffers must be removed after successful flush"
+        )
+
+        # Assert we did at least one INSERT call.
+        insert_calls = [
+            q for (q, params) in dummy.calls if "INSERT INTO" in (q or "").upper()
+        ]
+        self.assertTrue(insert_calls, "Cron must insert into ClickHouse")
+
+    def test_02_cron_invalid_json_marks_error_and_keeps_row(self):
+        buf = self.env["auditlog.log.buffer"].sudo()
+        rec = buf.create(
+            {
+                "payload_json": "NOT A JSON",
+                "state": buf.STATE_PENDING,
+            }
+        )
+
+        with self._patched_clickhouse_client() as dummy:
+            with mute_logger(
+                "odoo.addons.auditlog_clickhouse.models.auditlog_log_buffer"
+            ):
+                res = buf._cron_flush_to_clickhouse(batch_size=1000)
+
+        self.assertTrue(res)
+
+        rec.invalidate_recordset()
+        self.assertEqual(rec.state, buf.STATE_ERROR)
+        self.assertTrue(rec.error_message)
+        self.assertGreaterEqual(rec.attempt_count, 1)
+
+        insert_calls = [
+            q for (q, _params) in dummy.calls if "INSERT INTO" in (q or "").upper()
+        ]
+        self.assertFalse(insert_calls)
+
+    @mute_logger("odoo.addons.auditlog_clickhouse.models.auditlog_log_buffer")
+    def test_03_cron_insert_failure_marks_pending_as_error(self):
+        buf = self.env["auditlog.log.buffer"].sudo()
+
+        partner = (
+            self.env["res.partner"]
+            .with_context(tracking_disable=True)
+            .create({"name": "Fail Test"})
+        )
+        partner.with_context(tracking_disable=True).write({"name": "Fail Test v2"})
+
+        pending = buf.search([("state", "=", "pending")])
+        self.assertTrue(pending, "Expected pending buffer rows to be created")
+
+        with self._patched_clickhouse_client(raise_on_insert=True):
+            res = buf._cron_flush_to_clickhouse(batch_size=1000)
+
+        self.assertTrue(res)
+
+        # Re-read from DB
+        errored = buf.search([("id", "in", pending.ids), ("state", "=", "error")])
+        self.assertEqual(
+            len(errored),
+            len(pending),
+            "All pending buffer rows must be marked as error on insert failure",
+        )
+
+        # Ensure they were not deleted
+        remaining = buf.search([("id", "in", pending.ids)])
+        self.assertEqual(len(remaining), len(pending))
diff --git a/auditlog_clickhouse/tests/test_clickhouse_config.py b/auditlog_clickhouse/tests/test_clickhouse_config.py
new file mode 100644
index 00000000000..31b6e2f933c
--- /dev/null
+++ b/auditlog_clickhouse/tests/test_clickhouse_config.py
@@ -0,0 +1,57 @@
+from odoo.exceptions import UserError
+from odoo.tests import tagged
+from odoo.tools import mute_logger
+
+from .common import AuditLogClickhouseCommon
+
+
+@tagged("-at_install", "post_install")
+class TestAuditlogClickhouseConfig(AuditLogClickhouseCommon):
+    def test_01_single_active_on_create(self):
+        cfg1 = self.create_config(is_active=True, host="h1")
+        cfg2 = self.create_config(is_active=True, host="h2")
+
+        cfg1.invalidate_recordset()
+        cfg2.invalidate_recordset()
+
+        active = self.env["auditlog.clickhouse.config"].search(
+            [("is_active", "=", True)]
+        )
+        self.assertEqual(len(active), 1)
+        self.assertTrue(cfg2.is_active)
+        self.assertFalse(cfg1.is_active)
+
+    def test_02_single_active_on_write(self):
+        cfg1 = self.create_config(is_active=False, host="h1")
+        cfg2 = self.create_config(is_active=True, host="h2")
+
+        cfg1.write({"is_active": True})
+        cfg1.invalidate_recordset()
+        cfg2.invalidate_recordset()
+
+        active = self.env["auditlog.clickhouse.config"].search(
+            [("is_active", "=", True)]
+        )
+        self.assertEqual(len(active), 1)
+        self.assertTrue(cfg1.is_active)
+        self.assertFalse(cfg2.is_active)
+
+    def test_03_test_connection_uses_client(self):
+        cfg = self.create_config(is_active=True)
+
+        # Without patch, get_clickhouse_client may
+        # raise if clickhouse-driver isn't installed
+        with self._patched_clickhouse_client() as dummy:
+            action = cfg.action_test_connection()
+
+        self.assertTrue(action)
+        self.assertTrue(any("SELECT 1" in (q or "") for (q, params) in dummy.calls))
+
+    def test_04_cron_requires_active_config(self):
+        self.env["auditlog.clickhouse.config"].search([]).write({"is_active": False})
+
+        with mute_logger("odoo.addons.auditlog_clickhouse.models.auditlog_log_buffer"):
+            with self.assertRaises(UserError):
+                self.env["auditlog.log.buffer"].sudo()._cron_flush_to_clickhouse(
+                    batch_size=10
+                )
diff --git a/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml b/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
new file mode 100644
index 00000000000..dae229ed907
--- /dev/null
+++ b/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
@@ -0,0 +1,73 @@
+<odoo>
+    <record id="view_auditlog_clickhouse_config_form" model="ir.ui.view">
+        <field name="name">auditlog.clickhouse.config.form</field>
+        <field name="model">auditlog.clickhouse.config</field>
+        <field name="arch" type="xml">
+            <form string="Auditlog ClickHouse Configuration">
+                <header>
+                    <button
+                        name="action_test_connection"
+                        type="object"
+                        string="Test connection"
+                        class="btn-primary"
+                    />
+                    <button
+                        name="action_create_auditlog_tables"
+                        type="object"
+                        string="Create Auditlog Tables"
+                        class="btn-secondary"
+                    />
+                </header>
+
+                <sheet>
+                    <group>
+                        <field name="is_active" />
+                    </group>
+
+                    <group string="Connection">
+                        <field name="host" />
+                        <field name="port" />
+                        <field name="database" />
+                        <field name="user" />
+                        <field name="password" password="True" />
+                    </group>
+
+                    <group string="Notes">
+                        <div class="text-muted">
+                            Logs are buffered in PostgreSQL and periodically flushed to ClickHouse by cron.
+                        </div>
+                    </group>
+                </sheet>
+            </form>
+        </field>
+    </record>
+
+    <record id="view_auditlog_clickhouse_config_list" model="ir.ui.view">
+        <field name="name">auditlog.clickhouse.config.list</field>
+        <field name="model">auditlog.clickhouse.config</field>
+        <field name="arch" type="xml">
+            <list string="ClickHouse Configuration">
+                <field name="is_active" widget="boolean_toggle" />
+                <field name="host" />
+                <field name="port" optional="hide" />
+                <field name="database" />
+                <field name="user" optional="hide" />
+            </list>
+        </field>
+    </record>
+
+    <record id="action_auditlog_clickhouse_config" model="ir.actions.act_window">
+        <field name="name">ClickHouse Configuration</field>
+        <field name="res_model">auditlog.clickhouse.config</field>
+        <field name="view_mode">list,form</field>
+    </record>
+
+    <menuitem
+        id="menu_auditlog_clickhouse_config"
+        name="ClickHouse configuration"
+        parent="auditlog.menu_audit"
+        action="action_auditlog_clickhouse_config"
+        groups="auditlog.group_auditlog_manager"
+        sequence="50"
+    />
+</odoo>
diff --git a/requirements.txt b/requirements.txt
index 5d1fefa6f23..4a4228825ba 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,4 +1,5 @@
 # generated from manifests external_dependencies
+clickhouse_driver
 cryptography
 dataclasses
 odoo_test_helper

From a427b041ab119f6982d3f28c72e4ed8dd17e4d20 Mon Sep 17 00:00:00 2001
From: tendil <mejta.diman@gmail.com>
Date: Thu, 12 Feb 2026 20:49:43 +0000
Subject: [PATCH 02/11] [FIX] auditlog_clickhouse: fix logic for tests

Task: 5246
---
 .../models/auditlog_log_buffer.py             |  3 +--
 auditlog_clickhouse/models/auditlog_rule.py   | 11 +++++++++
 .../tests/test_clickhouse_config.py           | 24 +++++++++++++------
 3 files changed, 29 insertions(+), 9 deletions(-)

diff --git a/auditlog_clickhouse/models/auditlog_log_buffer.py b/auditlog_clickhouse/models/auditlog_log_buffer.py
index b9097eae93e..194c97c07cd 100644
--- a/auditlog_clickhouse/models/auditlog_log_buffer.py
+++ b/auditlog_clickhouse/models/auditlog_log_buffer.py
@@ -7,7 +7,6 @@
 from dateutil import parser as dt_parser
 
 from odoo import api, fields, models
-from odoo.exceptions import UserError
 
 _logger = logging.getLogger(__name__)
 
@@ -166,7 +165,7 @@ def _cron_flush_to_clickhouse(self, batch_size: int = 1000) -> bool:
         config = self.env["auditlog.clickhouse.config"].sudo().get_active_config()
         if not config:
             _logger.warning("auditlog_clickhouse: flush skipped (no active config)")
-            raise UserError(self.env._("No active ClickHouse configuration found."))
+            return True
 
         pending_buffers = self.sudo().search(
             [("state", "=", self.STATE_PENDING)],
diff --git a/auditlog_clickhouse/models/auditlog_rule.py b/auditlog_clickhouse/models/auditlog_rule.py
index b2a559bfa63..c5193457d83 100644
--- a/auditlog_clickhouse/models/auditlog_rule.py
+++ b/auditlog_clickhouse/models/auditlog_rule.py
@@ -122,6 +122,17 @@ def create_logs(
           - DEBUG: timings + counts of generated buffer rows/lines.
           - WARNING/EXCEPTION: failures creating buffer payload rows.
         """
+        config = self.env["auditlog.clickhouse.config"].sudo().get_active_config()
+        if not config:
+            return super().create_logs(
+                uid,
+                res_model,
+                res_ids,
+                method,
+                old_values=old_values,
+                new_values=new_values,
+                additional_log_values=additional_log_values,
+            )
         started = time.monotonic()
 
         old_values = old_values or EMPTY_DICT
diff --git a/auditlog_clickhouse/tests/test_clickhouse_config.py b/auditlog_clickhouse/tests/test_clickhouse_config.py
index 31b6e2f933c..cf5bee29835 100644
--- a/auditlog_clickhouse/tests/test_clickhouse_config.py
+++ b/auditlog_clickhouse/tests/test_clickhouse_config.py
@@ -1,4 +1,3 @@
-from odoo.exceptions import UserError
 from odoo.tests import tagged
 from odoo.tools import mute_logger
 
@@ -47,11 +46,22 @@ def test_03_test_connection_uses_client(self):
         self.assertTrue(action)
         self.assertTrue(any("SELECT 1" in (q or "") for (q, params) in dummy.calls))
 
-    def test_04_cron_requires_active_config(self):
+    def test_04_cron_skips_without_active_config(self):
         self.env["auditlog.clickhouse.config"].search([]).write({"is_active": False})
 
-        with mute_logger("odoo.addons.auditlog_clickhouse.models.auditlog_log_buffer"):
-            with self.assertRaises(UserError):
-                self.env["auditlog.log.buffer"].sudo()._cron_flush_to_clickhouse(
-                    batch_size=10
-                )
+        buf = self.env["auditlog.log.buffer"].sudo()
+        rec = buf.create({"payload_json": "NOT A JSON", "state": buf.STATE_PENDING})
+
+        with self._patched_clickhouse_client() as dummy:
+            with mute_logger(
+                "odoo.addons.auditlog_clickhouse.models.auditlog_log_buffer"
+            ):
+                res = buf._cron_flush_to_clickhouse(batch_size=10)
+
+        self.assertTrue(res)
+
+        rec.invalidate_recordset()
+        self.assertEqual(rec.state, buf.STATE_PENDING)
+        self.assertFalse(rec.error_message)
+
+        self.assertFalse(dummy.calls)

From ef1d89c94f054dc27e5524cb90b5b284f26a4050 Mon Sep 17 00:00:00 2001
From: tendil <mejta.diman@gmail.com>
Date: Fri, 13 Feb 2026 09:09:05 +0000
Subject: [PATCH 03/11] [FIX] auditlog_clickhouse: resolve comments

Task: 5246
---
 auditlog_clickhouse/README.rst                |  2 +-
 .../models/auditlog_log_buffer.py             | 41 ++++++++++++----
 auditlog_clickhouse/models/auditlog_rule.py   | 47 +++++++++++--------
 auditlog_clickhouse/readme/CONTEXT.md         |  2 +-
 auditlog_clickhouse/readme/DESCRIPTION.md     |  2 +-
 .../static/description/index.html             |  2 +-
 6 files changed, 63 insertions(+), 33 deletions(-)

diff --git a/auditlog_clickhouse/README.rst b/auditlog_clickhouse/README.rst
index 1879ea5c8cb..661fc27aaf8 100644
--- a/auditlog_clickhouse/README.rst
+++ b/auditlog_clickhouse/README.rst
@@ -28,7 +28,7 @@ Audit Log ClickHouse store and read
 
 |badge1| |badge2| |badge3| |badge4| |badge5|
 
-This module implements a buffered asynchronous transfers audit logs from
+This module implements buffered asynchronous transfers audit logs from
 PostgreSQL to ClickHouse. Storing audit data in a columnar database that
 is write-only prevents database bloat, makes audit records effectively
 immutable, and allows for scaling to very large volumes of logs without
diff --git a/auditlog_clickhouse/models/auditlog_log_buffer.py b/auditlog_clickhouse/models/auditlog_log_buffer.py
index 194c97c07cd..b0f8e7d85d8 100644
--- a/auditlog_clickhouse/models/auditlog_log_buffer.py
+++ b/auditlog_clickhouse/models/auditlog_log_buffer.py
@@ -7,6 +7,7 @@
 from dateutil import parser as dt_parser
 
 from odoo import api, fields, models
+from odoo.tools import SQL
 
 _logger = logging.getLogger(__name__)
 
@@ -96,7 +97,7 @@ def _to_ch_nullable_string(value: Any) -> str | None:
         - list/dict/tuple -> JSON string (unicode preserved)
         - other -> str(value)
         """
-        if value in (None, False):
+        if value is None or value is False:
             return None
         if isinstance(value, str):
             return value
@@ -144,6 +145,31 @@ def _set_error(self, message: str) -> None:
                 }
             )
 
+    @api.model
+    def _lock_pending_buffers(self, batch_size: int) -> "AuditlogLogBuffer":
+        """
+        Fetch up to `batch_size` pending buffers and lock them (FOR UPDATE SKIP LOCKED).
+
+        This prevents concurrent cron executions from selecting the same rows and
+        inserting duplicates into ClickHouse.
+        """
+        query = SQL(
+            """
+            SELECT id
+            FROM %s
+            WHERE state = %s
+            ORDER BY id
+                FOR UPDATE SKIP LOCKED
+                 LIMIT %s
+            """,
+            SQL.identifier(self._table),
+            self.STATE_PENDING,
+            batch_size,
+        )
+        self.env.cr.execute(query)
+        ids = [row[0] for row in self.env.cr.fetchall()]
+        return self.browse(ids)
+
     @api.model
     def _cron_flush_to_clickhouse(self, batch_size: int = 1000) -> bool:
         """
@@ -151,7 +177,7 @@ def _cron_flush_to_clickhouse(self, batch_size: int = 1000) -> bool:
 
         Steps:
           1) Fetch active ClickHouse configuration.
-          2) Read up to `batch_size` pending buffer rows (oldest first).
+          2) Atomically lock up to `batch_size` pending rows (SKIP LOCKED).
           3) Deserialize JSON payloads; invalid payloads -> error.
           4) Convert payloads to tuples in CH schema order.
           5) INSERT into ClickHouse in batches.
@@ -167,11 +193,7 @@ def _cron_flush_to_clickhouse(self, batch_size: int = 1000) -> bool:
             _logger.warning("auditlog_clickhouse: flush skipped (no active config)")
             return True
 
-        pending_buffers = self.sudo().search(
-            [("state", "=", self.STATE_PENDING)],
-            order="id asc",
-            limit=batch_size,
-        )
+        pending_buffers = self.sudo()._lock_pending_buffers(batch_size)
         if not pending_buffers:
             _logger.debug(
                 "auditlog_clickhouse: flush skipped (no pending buffers) (config=%s)",
@@ -230,15 +252,16 @@ def _cron_flush_to_clickhouse(self, batch_size: int = 1000) -> bool:
 
         # Insert (logs first, then lines) to reduce chance of "orphan lines"
         try:
+            db = f"`{config.database.replace('`', '``')}`"
             # ruff: noqa: E501
             if log_rows:
                 client.execute(
-                    f"INSERT INTO {config.database}.auditlog_log ({', '.join(self._CH_LOG_COLUMNS)}) VALUES",
+                    f"INSERT INTO {db}.auditlog_log ({', '.join(self._CH_LOG_COLUMNS)}) VALUES",
                     log_rows,
                 )
             if line_rows:
                 client.execute(
-                    f"INSERT INTO {config.database}.auditlog_log_line ({', '.join(self._CH_LINE_COLUMNS)}) VALUES",
+                    f"INSERT INTO {db}.auditlog_log_line ({', '.join(self._CH_LINE_COLUMNS)}) VALUES",
                     line_rows,
                 )
         except Exception as exc:
diff --git a/auditlog_clickhouse/models/auditlog_rule.py b/auditlog_clickhouse/models/auditlog_rule.py
index c5193457d83..d1eb44442f1 100644
--- a/auditlog_clickhouse/models/auditlog_rule.py
+++ b/auditlog_clickhouse/models/auditlog_rule.py
@@ -73,32 +73,39 @@ def _get_rule_settings(self, model_id: int) -> tuple[set[str], bool]:
         Cache is naturally reset on registry reload
         (auditlog invalidates registry on rule changes).
         """
-        cache: dict[int, tuple[set[str], bool]] = getattr(
+        cache: dict[tuple[int, tuple[int, ...]], tuple[set[str], bool]] = getattr(
             self.pool, "_auditlog_clickhouse_rule_cache", {}
         )
         if not hasattr(self.pool, "_auditlog_clickhouse_rule_cache"):
             self.pool._auditlog_clickhouse_rule_cache = cache
 
-        if model_id in cache:
-            return cache[model_id]
-
-        rule = self.sudo().search([("model_id", "=", model_id)], limit=1)
-        excluded = set(
-            (rule.fields_to_exclude_ids.mapped("name") if rule else [])
-            + FIELDS_BLACKLIST
-        )
-        capture_record = bool(rule and rule.capture_record)
-
-        cache[model_id] = (excluded, capture_record)
+        rules = self.filtered(lambda r: r.model_id.id == model_id)
+        if not rules:
+            domain = [("model_id", "=", model_id)]
+            if "state" in self._fields:
+                domain.append(("state", "=", "subscribed"))
+            rules = self.sudo().search(domain)
+
+        key = (model_id, tuple(sorted(rules.ids)))
+        if key in cache:
+            return cache[key]
+
+        excluded: set[str] = set(FIELDS_BLACKLIST)
+        capture_record = False
+
+        if len(rules) > 1:
+            _logger.warning(
+                "auditlog_clickhouse: multiple rules found for model_id=%s (rules=%s); "
+                "using union of excluded fields and any(capture_record).",
+                model_id,
+                rules.ids,
+            )
+        for rule in rules:
+            excluded |= set(rule.fields_to_exclude_ids.mapped("name"))
+            capture_record = capture_record or bool(rule.capture_record)
 
-        _logger.debug(
-            "auditlog_clickhouse: cached rule settings "
-            "for model_id=%s (excluded=%s capture_record=%s)",
-            model_id,
-            len(excluded),
-            capture_record,
-        )
-        return cache[model_id]
+        cache[key] = (excluded, capture_record)
+        return cache[key]
 
     # flake8: noqa: C901
     def create_logs(
diff --git a/auditlog_clickhouse/readme/CONTEXT.md b/auditlog_clickhouse/readme/CONTEXT.md
index 18dccc08791..af8999013bb 100644
--- a/auditlog_clickhouse/readme/CONTEXT.md
+++ b/auditlog_clickhouse/readme/CONTEXT.md
@@ -1,4 +1,4 @@
-The auditlog module  stores audit data in PostgreSQL. In production systems with extensive audit rules, these tables grow without limits, causing three issues:
+The auditlog module stores audit data in PostgreSQL. In production systems with extensive audit rules, these tables grow without limits, causing three issues:
 
 - Database bloat;
 - Immutability gap: Members of group_auditlog_manager (implied by base.group_system) have full CRUD access to audit tables, allowing audit records to be altered or deleted via UI, ORM, or SQL;
diff --git a/auditlog_clickhouse/readme/DESCRIPTION.md b/auditlog_clickhouse/readme/DESCRIPTION.md
index 44a06a99899..9fe3ba7b4f5 100644
--- a/auditlog_clickhouse/readme/DESCRIPTION.md
+++ b/auditlog_clickhouse/readme/DESCRIPTION.md
@@ -1,4 +1,4 @@
-This module implements a buffered asynchronous transfers audit logs from PostgreSQL to ClickHouse.
+This module implements buffered asynchronous transfers audit logs from PostgreSQL to ClickHouse.
 Storing audit data in a columnar database that is write-only prevents database bloat, makes audit records effectively
 immutable, and allows for scaling to very large volumes of logs without slowing down normal transactions.
 Audit logs are written asynchronously to reduce the load on business operations.
diff --git a/auditlog_clickhouse/static/description/index.html b/auditlog_clickhouse/static/description/index.html
index 521bcb6a042..ee1548ccd89 100644
--- a/auditlog_clickhouse/static/description/index.html
+++ b/auditlog_clickhouse/static/description/index.html
@@ -370,7 +370,7 @@ <h1 class="title">Audit Log ClickHouse store and read</h1>
 !! source digest: sha256:11aaa38bad24a890554c0d34d74d31e13b933facbba3fea31f4cbf22ae8fd842
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
 <p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/licence-AGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-tools/tree/18.0/auditlog_clickhouse"><img alt="OCA/server-tools" src="https://img.shields.io/badge/github-OCA%2Fserver--tools-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-tools-18-0/server-tools-18-0-auditlog_clickhouse"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-tools&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
-<p>This module implements a buffered asynchronous transfers audit logs from
+<p>This module implements buffered asynchronous transfers audit logs from
 PostgreSQL to ClickHouse. Storing audit data in a columnar database that
 is write-only prevents database bloat, makes audit records effectively
 immutable, and allows for scaling to very large volumes of logs without

From 6b0740af7bbc4527a97ef94e05fe7f0d44b47d40 Mon Sep 17 00:00:00 2001
From: tendil <mejta.diman@gmail.com>
Date: Mon, 16 Feb 2026 16:47:09 +0000
Subject: [PATCH 04/11] [FIX] auditlog_clickhouse: resolve comments

Task: 5246
---
 auditlog_clickhouse/README.rst                |  18 +
 .../i18n/auditlog_clickhouse.pot              | 274 ++++++++++
 .../models/auditlog_clickhouse_config.py      |  42 +-
 .../models/auditlog_log_buffer.py             | 174 ++++---
 auditlog_clickhouse/models/auditlog_rule.py   | 493 ++++++++++++------
 auditlog_clickhouse/readme/CONFIGURE.md       |  13 +
 .../static/description/index.html             |  17 +
 .../auditlog_clickhouse_config_views.xml      |   3 +-
 8 files changed, 795 insertions(+), 239 deletions(-)
 create mode 100644 auditlog_clickhouse/i18n/auditlog_clickhouse.pot

diff --git a/auditlog_clickhouse/README.rst b/auditlog_clickhouse/README.rst
index 661fc27aaf8..2e801a13597 100644
--- a/auditlog_clickhouse/README.rst
+++ b/auditlog_clickhouse/README.rst
@@ -58,6 +58,24 @@ causing three issues:
 Configuration
 =============
 
+This module requires:
+
+- A reachable ClickHouse server.
+- Python dependency ``clickhouse-driver`` available in the Odoo
+  environment.
+- A ClickHouse database created in advance (the module does **not**
+  create databases/users/grants).
+- A ClickHouse user with at least:
+
+  - ``INSERT`` and ``CREATE TABLE`` privileges on the target database.
+
+..
+
+   ClickHouse installation (Docker guide):
+   ``https://clickhouse.com/docs/install/docker``
+
+Steps:
+
 - Make sure ``clickhouse-driver`` is available in your system.
 - Install the module.
 - Configure the connection parameters in Odoo:
diff --git a/auditlog_clickhouse/i18n/auditlog_clickhouse.pot b/auditlog_clickhouse/i18n/auditlog_clickhouse.pot
new file mode 100644
index 00000000000..84f3b0a30f8
--- /dev/null
+++ b/auditlog_clickhouse/i18n/auditlog_clickhouse.pot
@@ -0,0 +1,274 @@
+# Translation of Odoo Server.
+# This file contains the translation of the following modules:
+# 	* auditlog_clickhouse
+#
+msgid ""
+msgstr ""
+"Project-Id-Version: Odoo Server 18.0\n"
+"Report-Msgid-Bugs-To: \n"
+"Last-Translator: \n"
+"Language-Team: \n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: \n"
+"Plural-Forms: \n"
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_log_buffer__attempt_count
+msgid "Attempt Count"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model,name:auditlog_clickhouse.model_auditlog_rule
+msgid "Auditlog - Rule"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model,name:auditlog_clickhouse.model_auditlog_log_buffer
+msgid "Auditlog ClickHouse Buffer"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model,name:auditlog_clickhouse.model_auditlog_clickhouse_config
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
+msgid "Auditlog ClickHouse Configuration"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.actions.server,name:auditlog_clickhouse.ir_cron_auditlog_clickhouse_flush_ir_actions_server
+msgid "Auditlog ClickHouse: flush buffer"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid "Auditlog tables were created (if they did not exist)."
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.actions.act_window,name:auditlog_clickhouse.action_auditlog_clickhouse_config
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_list
+msgid "ClickHouse Configuration"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.ui.menu,name:auditlog_clickhouse.menu_auditlog_clickhouse_config
+msgid "ClickHouse configuration"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid "ClickHouse connection failed: %s"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_log_buffer.py:0
+msgid "ClickHouse insert failed: %s"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,help:auditlog_clickhouse.field_auditlog_clickhouse_config__port
+msgid ""
+"ClickHouse native TCP port used by clickhouse-driver (default is 9000)."
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,help:auditlog_clickhouse.field_auditlog_clickhouse_config__host
+msgid ""
+"ClickHouse server hostname or IP address. Must be reachable from the Odoo "
+"server."
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,help:auditlog_clickhouse.field_auditlog_clickhouse_config__user
+msgid ""
+"ClickHouse user name used for INSERT operations into auditlog tables. "
+"Recommended: a dedicated user with INSERT-only privileges."
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
+msgid "Connection"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid "Connection to ClickHouse is OK."
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
+msgid "Create Auditlog Tables"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__create_uid
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_log_buffer__create_uid
+msgid "Created by"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__create_date
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_log_buffer__create_date
+msgid "Created on"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__database
+msgid "Database name"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__display_name
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_log_buffer__display_name
+msgid "Display Name"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_log_buffer.py:0
+msgid "Error"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_log_buffer__error_message
+msgid "Error Message"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid "Failed to create ClickHouse tables: %s"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__host
+msgid "Hostname or IP"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__id
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_log_buffer__id
+msgid "ID"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,help:auditlog_clickhouse.field_auditlog_clickhouse_config__is_active
+msgid "If unchecked, no audit logs will be flushed to ClickHouse."
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_log_buffer.py:0
+msgid "Invalid JSON payload: %s"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__is_active
+msgid "Is Active"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__write_uid
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_log_buffer__write_uid
+msgid "Last Updated by"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__write_date
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_log_buffer__write_date
+msgid "Last Updated on"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
+msgid ""
+"Logs are buffered in PostgreSQL and periodically flushed to ClickHouse by "
+"cron."
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
+msgid "Notes"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid ""
+"Only one ClickHouse connection can be active at a time\n"
+"\n"
+"If you save this configuration as active, the currently active one will be deactivated:\n"
+"- %s"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid "Only one active connection"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__password
+msgid "Password"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,help:auditlog_clickhouse.field_auditlog_clickhouse_config__password
+msgid "Password for the ClickHouse user."
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_log_buffer__payload_json
+msgid "Payload Json"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_log_buffer.py:0
+msgid "Pending"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/clickhouse_client.py:0
+msgid ""
+"Python package 'clickhouse-driver' is not available. Install it in the Odoo "
+"environment to use ClickHouse storage."
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_log_buffer__state
+msgid "State"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid "Success"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__port
+msgid "TCP Port"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,help:auditlog_clickhouse.field_auditlog_clickhouse_config__database
+msgid ""
+"Target ClickHouse database where auditlog tables exist (or will be created "
+"by the setup button)."
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
+msgid "Test connection"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__user
+msgid "User"
+msgstr ""
diff --git a/auditlog_clickhouse/models/auditlog_clickhouse_config.py b/auditlog_clickhouse/models/auditlog_clickhouse_config.py
index e5905f0053c..49587be4c96 100644
--- a/auditlog_clickhouse/models/auditlog_clickhouse_config.py
+++ b/auditlog_clickhouse/models/auditlog_clickhouse_config.py
@@ -24,6 +24,7 @@ class AuditlogClickhouseConfig(models.Model):
 
     _name = "auditlog.clickhouse.config"
     _description = "Auditlog ClickHouse Configuration"
+    _rec_name = "database"
 
     DEFAULT_PORT = 9000
     DEFAULT_DB = "odoo_audit"
@@ -69,6 +70,15 @@ class AuditlogClickhouseConfig(models.Model):
         help="Password for the ClickHouse user.",
     )
 
+    @api.depends("host", "port", "database", "user", "is_active")
+    def _compute_display_name(self):
+        for rec in self:
+            base = (
+                f"{rec.host or ''}:{rec.port or ''}/"
+                f"{rec.database or ''} ({rec.user or ''})"
+            )
+            rec.display_name = f"{base} [active]" if rec.is_active else base
+
     @api.model
     def get_active_config(self) -> Optional["AuditlogClickhouseConfig"]:
         """Return the currently active configuration (if any)."""
@@ -97,6 +107,34 @@ def _deactivate_other_configs(self) -> None:
             )
             other_configs.write({"is_active": False})
 
+    @api.onchange("is_active")
+    def _onchange_is_active(self):
+        """
+        Warn user that only one config can be active;
+        others will be deactivated on save.
+        """
+        for rec in self:
+            if not rec.is_active:
+                continue
+
+            domain = [("is_active", "=", True)]
+            if rec.id:
+                domain.append(("id", "!=", rec.id))
+
+            other = rec.env["auditlog.clickhouse.config"].sudo().search(domain, limit=1)
+            if other:
+                return {
+                    "warning": {
+                        "title": rec.env._("Only one active connection"),
+                        "message": rec.env._(
+                            "Only one ClickHouse connection can be active at a time\n\n"
+                            "If you save this configuration as active, "
+                            "the currently active one will be deactivated:\n- %s"
+                        )
+                        % (other.display_name,),
+                    }
+                }
+
     @api.model_create_multi
     def create(self, vals_list: list[dict[str, Any]]):
         """
@@ -191,10 +229,11 @@ def action_test_connection(self) -> dict[str, Any]:
 
     def action_create_auditlog_tables(self) -> dict[str, Any]:
         """
-        UI button: create ClickHouse database/tables if they do not exist.
+        UI button: create ClickHouse tables if they do not exist.
 
         Important:
           - This is optional. In production you may point to an existing DB.
+          - Database must already exist.
           - We intentionally do not create users/grants in this project.
         """
         self.ensure_one()
@@ -272,7 +311,6 @@ def _get_clickhouse_ddl(self) -> list[str]:
         db_name = self.database
 
         return [
-            f"CREATE DATABASE IF NOT EXISTS {db_name}",
             f"""
             CREATE TABLE IF NOT EXISTS {db_name}.auditlog_log
             (
diff --git a/auditlog_clickhouse/models/auditlog_log_buffer.py b/auditlog_clickhouse/models/auditlog_log_buffer.py
index b0f8e7d85d8..1ae07c6e838 100644
--- a/auditlog_clickhouse/models/auditlog_log_buffer.py
+++ b/auditlog_clickhouse/models/auditlog_log_buffer.py
@@ -171,7 +171,12 @@ def _lock_pending_buffers(self, batch_size: int) -> "AuditlogLogBuffer":
         return self.browse(ids)
 
     @api.model
-    def _cron_flush_to_clickhouse(self, batch_size: int = 1000) -> bool:
+    def _cron_flush_to_clickhouse(
+        self,
+        batch_size: int = 1000,
+        max_batches: int = 50,
+        max_seconds: float = 25.0,
+    ) -> bool:
         """
         Flush pending buffer rows to ClickHouse.
 
@@ -193,101 +198,100 @@ def _cron_flush_to_clickhouse(self, batch_size: int = 1000) -> bool:
             _logger.warning("auditlog_clickhouse: flush skipped (no active config)")
             return True
 
-        pending_buffers = self.sudo()._lock_pending_buffers(batch_size)
-        if not pending_buffers:
-            _logger.debug(
-                "auditlog_clickhouse: flush skipped (no pending buffers) (config=%s)",
-                config.id,
-            )
-            return True
-
-        _logger.info(
-            "auditlog_clickhouse: flush started (config=%s host=%s:%s db=%s batch_size=%s pending=%s)",
-            config.id,
-            config.host,
-            config.port,
-            config.database,
-            batch_size,
-            len(pending_buffers),
-        )
-
         client = config._get_client()
 
-        log_rows: list[ChRow] = []
-        line_rows: list[ChRow] = []
-        invalid_buffers = self.browse()
+        total_flushed = 0
+        total_invalid = 0
+        total_inserted_logs = 0
+        total_inserted_lines = 0
+        batches = 0
+
+        while True:
+            if batches >= max_batches or (time.monotonic() - started) >= max_seconds:
+                break
+
+            pending_buffers = self.sudo()._lock_pending_buffers(batch_size)
+            if not pending_buffers:
+                break
+
+            batches += 1
+
+            log_rows: list[ChRow] = []
+            line_rows: list[ChRow] = []
+            invalid_buffers = self.browse()
+
+            for buffer_rec in pending_buffers:
+                try:
+                    payload: JsonMapping = json.loads(buffer_rec.payload_json)
+                except Exception as exc:
+                    buffer_rec._set_error(self.env._("Invalid JSON payload: %s") % exc)
+                    invalid_buffers |= buffer_rec
+                    continue
+
+                log_data = payload.get("log") or {}
+                lines_data = payload.get("lines") or []
+
+                if log_data:
+                    log_rows.append(self._build_ch_log_row(log_data))
+                for line_data in lines_data:
+                    line_rows.append(self._build_ch_line_row(line_data))
+
+            valid_buffers = pending_buffers - invalid_buffers
+            if invalid_buffers:
+                total_invalid += len(invalid_buffers)
+                _logger.warning(
+                    "auditlog_clickhouse: invalid JSON payloads=%s "
+                    "(marked error) (config=%s)",
+                    len(invalid_buffers),
+                    config.id,
+                )
 
-        for buffer_rec in pending_buffers:
-            try:
-                payload: JsonMapping = json.loads(buffer_rec.payload_json)
-            except Exception as exc:
-                buffer_rec._set_error(self.env._("Invalid JSON payload: %s") % exc)
-                invalid_buffers |= buffer_rec
+            if not valid_buffers:
                 continue
 
-            log_data = payload.get("log") or {}
-            lines_data = payload.get("lines") or []
-
-            if log_data:
-                log_rows.append(self._build_ch_log_row(log_data))
-
-            for line_data in lines_data:
-                line_rows.append(self._build_ch_line_row(line_data))
-
-        valid_buffers = pending_buffers - invalid_buffers
-        if invalid_buffers:
-            _logger.warning(
-                "auditlog_clickhouse: invalid JSON payloads=%s (marked error)",
-                len(invalid_buffers),
-            )
-
-        if not valid_buffers:
-            _logger.info(
-                "auditlog_clickhouse: flush finished "
-                "(nothing valid to insert) (invalid=%s) in %.3fs",
-                len(invalid_buffers),
-                time.monotonic() - started,
-            )
-            return True
-
-        # Insert (logs first, then lines) to reduce chance of "orphan lines"
-        try:
-            db = f"`{config.database.replace('`', '``')}`"
-            # ruff: noqa: E501
-            if log_rows:
-                client.execute(
-                    f"INSERT INTO {db}.auditlog_log ({', '.join(self._CH_LOG_COLUMNS)}) VALUES",
-                    log_rows,
-                )
-            if line_rows:
-                client.execute(
-                    f"INSERT INTO {db}.auditlog_log_line ({', '.join(self._CH_LINE_COLUMNS)}) VALUES",
-                    line_rows,
+            try:
+                if log_rows:
+                    client.execute(
+                        f"INSERT INTO {config.database}.auditlog_log ("
+                        f"{', '.join(self._CH_LOG_COLUMNS)}) VALUES",
+                        log_rows,
+                    )
+                if line_rows:
+                    client.execute(
+                        f"INSERT INTO {config.database}.auditlog_log_line ("
+                        f"{', '.join(self._CH_LINE_COLUMNS)}) VALUES",
+                        line_rows,
+                    )
+            except Exception as exc:
+                error_msg = self.env._("ClickHouse insert failed: %s") % exc
+                _logger.exception(
+                    "auditlog_clickhouse: INSERT failed "
+                    "(config=%s valid_buffers=%s log_rows=%s line_rows=%s)",
+                    config.id,
+                    len(valid_buffers),
+                    len(log_rows),
+                    len(line_rows),
                 )
-        except Exception as exc:
-            error_msg = self.env._("ClickHouse insert failed: %s") % exc
-            _logger.exception(
-                "auditlog_clickhouse: INSERT failed "
-                "(config=%s valid_buffers=%s log_rows=%s line_rows=%s)",
-                config.id,
-                len(valid_buffers),
-                len(log_rows),
-                len(line_rows),
-            )
-            valid_buffers._set_error(error_msg)
-            return True
+                valid_buffers._set_error(error_msg)
+                return True
+
+            flushed_count = len(valid_buffers)
+            valid_buffers.unlink()
 
-        flushed_count = len(valid_buffers)
-        valid_buffers.unlink()
+            total_flushed += flushed_count
+            total_inserted_logs += len(log_rows)
+            total_inserted_lines += len(line_rows)
 
         _logger.info(
-            "auditlog_clickhouse: flush OK (config=%s flushed_buffers=%s "
+            "auditlog_clickhouse: flush finished "
+            "(config=%s batches=%s flushed_buffers=%s "
             "inserted_logs=%s inserted_lines=%s invalid=%s) in %.3fs",
             config.id,
-            flushed_count,
-            len(log_rows),
-            len(line_rows),
-            len(invalid_buffers),
+            batches,
+            total_flushed,
+            total_inserted_logs,
+            total_inserted_lines,
+            total_invalid,
             time.monotonic() - started,
         )
         return True
diff --git a/auditlog_clickhouse/models/auditlog_rule.py b/auditlog_clickhouse/models/auditlog_rule.py
index d1eb44442f1..f00aa99c122 100644
--- a/auditlog_clickhouse/models/auditlog_rule.py
+++ b/auditlog_clickhouse/models/auditlog_rule.py
@@ -107,7 +107,293 @@ def _get_rule_settings(self, model_id: int) -> tuple[set[str], bool]:
         cache[key] = (excluded, capture_record)
         return cache[key]
 
-    # flake8: noqa: C901
+    def _get_audit_model_id(self, res_model: str) -> int:
+        """
+        Resolve `ir.model` id for a given model name.
+
+        Prefer auditlog's in-memory model cache (filled by auditlog hooks) to avoid
+        extra DB lookups. If cache is missing, fall back to `ir.model._get()`.
+
+        Args:
+            res_model: Technical model name (e.g. "res.partner").
+
+        Returns:
+            The `ir.model` record id for the given model name.
+        """
+        model_id = self.pool._auditlog_model_cache.get(res_model)
+        if model_id:
+            return int(model_id)
+        return int(self.env["ir.model"].sudo()._get(res_model).id)
+
+    def _build_base_log(
+        self,
+        *,
+        uid: int,
+        method: str,
+        model_id: int,
+        log_type: Any,
+        now_iso: str,
+    ) -> _PayloadLog:
+        """
+        Build base (common) payload for the `log` part of ClickHouse audit entries.
+
+        The returned dict is later merged into per-record log data, and contains
+        denormalized model metadata and common fields.
+
+        Args:
+            uid: Acting user id.
+            method: Audited operation (create, read, write, unlink, export_data).
+            model_id: `ir.model` id for the audited model.
+            log_type: Auditlog rule log type (e.g. "full" / "fast") or None.
+            now_iso: UTC ISO timestamp string used for `create_date`.
+
+        Returns:
+            A dict compatible with `_PayloadLog`.
+        """
+        model_rec = self.env["ir.model"].sudo().browse(model_id)
+        return {
+            "model_id": int(model_id),
+            "model_name": model_rec.name,
+            "model_model": model_rec.model,
+            "user_id": int(uid),
+            "method": method,
+            "http_request_id": None,
+            "http_session_id": None,
+            "log_type": log_type,
+            "create_date": now_iso,
+            "create_uid": int(uid),
+        }
+
+    def _build_export_payload(
+        self,
+        *,
+        res_model: str,
+        res_ids: Sequence[int],
+        base_log: _PayloadLog,
+    ) -> dict[str, Any]:
+        """
+        Build a payload for the `export_data` audit method.
+
+        Args:
+            res_model: Technical model name.
+            res_ids: Record ids being exported.
+            base_log: Common log payload built by `_build_base_log()`.
+
+        Returns:
+            Full payload dict to be JSON-serialized and written into buffer.
+        """
+        return {
+            "log": {
+                "id": str(uuid.uuid4()),
+                "name": res_model,
+                "res_id": None,
+                "res_ids": str(list(res_ids)),
+                **base_log,
+            },
+            "lines": [],
+        }
+
+    def _select_line_builder(
+        self,
+        *,
+        method: str,
+        capture_record: bool,
+        old_values: Mapping[int, Mapping[str, Any]],
+        new_values: Mapping[int, Mapping[str, Any]],
+    ) -> tuple[
+        Callable[..., dict[str, Any]] | None,
+        tuple[Mapping[int, Mapping[str, Any]], ...],
+        bool,
+    ]:
+        """
+        Select auditlog line builder and value sources for the given method.
+
+        Args:
+            method: Audited operation ("create", "read", "write", "unlink", ...).
+            capture_record: Rule flag that enables capturing record values on unlink
+            old_values: Mapping `{res_id: {field: value}}` captured before the operation
+            new_values: Mapping `{res_id: {field: value}}` captured after the operation
+
+        Returns:
+            A tuple of:
+              - line_builder: Callable used to build a single log line values dict,
+                or None if lines should not be produced for this method.
+              - values_src: Tuple containing old/new mappings passed to `line_builder`.
+              - include_lines_on_unlink: Whether unlink should produce lines.
+        """
+        include_lines_on_unlink = method == "unlink" and capture_record
+
+        if method == "create":
+            return (
+                self._prepare_log_line_vals_on_create,
+                (new_values,),
+                include_lines_on_unlink,
+            )
+        if method == "read":
+            return (
+                self._prepare_log_line_vals_on_read,
+                (old_values,),
+                include_lines_on_unlink,
+            )
+        if method == "write":
+            return (
+                self._prepare_log_line_vals_on_write,
+                (old_values, new_values),
+                include_lines_on_unlink,
+            )
+        if include_lines_on_unlink:
+            return (
+                self._prepare_log_line_vals_on_read,
+                (old_values,),
+                include_lines_on_unlink,
+            )
+
+        return None, (), include_lines_on_unlink
+
+    def _fields_list_for_record(
+        self,
+        *,
+        method: str,
+        include_lines_on_unlink: bool,
+        res_id: int,
+        old_values: Mapping[int, Mapping[str, Any]],
+        new_values: Mapping[int, Mapping[str, Any]],
+    ) -> Iterable[str]:
+        """
+        Determine which field names should be turned into audit lines for a record.
+
+        Args:
+            method: Audited operation.
+            include_lines_on_unlink: True when unlink lines are enabled by the rule.
+            res_id: Record id being processed.
+            old_values: Mapping `{res_id: {field: value}}` captured before operation.
+            new_values: Mapping `{res_id: {field: value}}` captured after operation.
+
+        Returns:
+            Iterable of field technical names to process into payload lines.
+        """
+        diff = DictDiffer(
+            dict(new_values.get(res_id, EMPTY_DICT)),
+            dict(old_values.get(res_id, EMPTY_DICT)),
+        )
+
+        if method == "create":
+            return diff.added()
+        if method == "read" or include_lines_on_unlink:
+            return old_values.get(res_id, EMPTY_DICT).keys()
+        if method == "write":
+            return diff.changed()
+        return ()
+
+    def _build_lines_for_record(
+        self,
+        *,
+        uid: int,
+        now_iso: str,
+        model_id: int,
+        log_id: str,
+        log_ctx: dict[str, Any],
+        method: str,
+        include_lines_on_unlink: bool,
+        line_builder: Callable[..., dict[str, Any]] | None,
+        values_src: tuple[Mapping[int, Mapping[str, Any]], ...],
+        fields_list: Iterable[str],
+        fields_to_exclude_set: set[str],
+    ) -> list[_PayloadLine]:
+        """
+        Build payload line entries for a single audited record.
+
+        Args:
+            uid: Acting user id.
+            now_iso: UTC ISO timestamp string used for line `create_date`.
+            model_id: `ir.model` id for the audited model.
+            log_id: UUID of the parent log entry.
+            log_ctx: Context dict passed to auditlog helper.
+            method: Audited operation.
+            include_lines_on_unlink: Whether unlink should be treated as read for lines.
+            line_builder: Selected builder callable, or None to return no lines.
+            values_src: Tuple of source mappings passed into `line_builder`.
+            fields_list: Field names selected by `_fields_list_for_record()`.
+            fields_to_exclude_set: Set of field names to ignore.
+
+        Returns:
+            List of `_PayloadLine` dicts.
+        """
+        if not line_builder:
+            return []
+
+        one_source = method in ("create", "read") or include_lines_on_unlink
+        lines: list[_PayloadLine] = []
+
+        for field_name in fields_list:
+            if field_name in fields_to_exclude_set:
+                continue
+
+            field = self._get_field(model_id, field_name)
+            if not field:
+                continue  # Dummy / non-loggable field
+
+            if one_source:
+                vals = line_builder(log_ctx, field, values_src[0])
+            else:
+                vals = line_builder(log_ctx, field, values_src[0], values_src[1])
+
+            lines.append(
+                {
+                    "id": str(uuid.uuid4()),
+                    "log_id": log_id,
+                    "field_id": int(field["id"]),
+                    "field_name": field.get("name"),
+                    "field_description": field.get("field_description"),
+                    "old_value": vals.get("old_value"),
+                    "new_value": vals.get("new_value"),
+                    "old_value_text": vals.get("old_value_text"),
+                    "new_value_text": vals.get("new_value_text"),
+                    "create_date": now_iso,
+                    "create_uid": int(uid),
+                }
+            )
+
+        return lines
+
+    def _dump_payload_json(self, payload: dict[str, Any]) -> str:
+        """
+        Serialize a payload dict to JSON for storing in the PostgreSQL buffer.
+
+        Args:
+            payload: Payload dict with structure {"log": ..., "lines": ...}.
+
+        Returns:
+            JSON string ready to be written into `auditlog.log.buffer.payload_json`.
+        """
+        return json.dumps(payload, ensure_ascii=False, default=_json_default)
+
+    def _buffer_create_or_log(
+        self,
+        *,
+        buffer_model,
+        buffer_vals_list: list[dict[str, Any]],
+        on_fail_msg: str,
+        on_fail_args: tuple[Any, ...],
+    ) -> None:
+        """
+        Create buffer rows and log a consistent exception message on failure.
+
+        Args:
+            buffer_model: Recordset of `auditlog.log.buffer` (typically sudo()).
+            buffer_vals_list: List of dicts passed to `create()`.
+            on_fail_msg: Logger message template used on exception.
+            on_fail_args: Arguments for the logger template.
+
+        Raises:
+            Any exception raised by `buffer_model.create()` is re-raised.
+        """
+        try:
+            buffer_model.create(buffer_vals_list)
+        except Exception:
+            _logger.exception(on_fail_msg, *on_fail_args)
+            raise
+
     def create_logs(
         self,
         uid: int,
@@ -118,17 +404,7 @@ def create_logs(
         new_values: Mapping[int, Mapping[str, Any]] | None = None,
         additional_log_values: Mapping[str, Any] | None = None,
     ) -> None:
-        """Write audit logs to ClickHouse buffer instead of PostgreSQL audit tables.
-
-        This overrides `auditlog.rule.create_logs()`:
-        - No rows are created in `auditlog.log` / `auditlog.log.line` (PostgreSQL).
-        - A single JSON payload is stored in `auditlog.log.buffer` per logged entry.
-        - The cron will later flush these payloads into ClickHouse.
-
-        Logging:
-          - DEBUG: timings + counts of generated buffer rows/lines.
-          - WARNING/EXCEPTION: failures creating buffer payload rows.
-        """
+        """Write audit logs to ClickHouse buffer instead of PostgreSQL audit tables."""
         config = self.env["auditlog.clickhouse.config"].sudo().get_active_config()
         if not config:
             return super().create_logs(
@@ -158,68 +434,37 @@ def create_logs(
                 log_type,
             )
 
-        # Prefer auditlog's model cache (filled by their _register_hook),
-        # fallback to ir.model lookup.
-        model_id = self.pool._auditlog_model_cache.get(res_model)
-        if not model_id:
-            model_id = self.env["ir.model"].sudo()._get(res_model).id
-
-        model_rec = self.env["ir.model"].sudo().browse(model_id)
+        model_id = self._get_audit_model_id(res_model)
         model_rs = self.env[res_model]
-
         fields_to_exclude_set, capture_record = self._get_rule_settings(model_id)
 
-        # Single timestamp for the whole batch: consistent ordering for log + lines.
         now_iso = datetime.now(timezone.utc).isoformat(timespec="milliseconds")
-
-        base_log: _PayloadLog = {
-            "model_id": int(model_id),
-            "model_name": model_rec.name,
-            "model_model": model_rec.model,
-            "user_id": int(uid),
-            "method": method,
-            # Intentionally not creating auditlog
-            # HTTP PG tables in the write-only module.
-            "http_request_id": None,
-            "http_session_id": None,
-            "log_type": log_type,
-            "create_date": now_iso,
-            "create_uid": int(uid),
-        }
+        base_log = self._build_base_log(
+            uid=uid,
+            method=method,
+            model_id=model_id,
+            log_type=log_type,
+            now_iso=now_iso,
+        )
 
         buffer_model = self.env["auditlog.log.buffer"].sudo()
         buffer_vals_list: list[dict[str, Any]] = []
 
-        # Fast-path: export_data produces one entry, no lines.
         if method == "export_data":
-            payload: _Payload = {
-                "log": {
-                    "id": str(uuid.uuid4()),
-                    "name": res_model,
-                    "res_id": None,
-                    "res_ids": str(list(res_ids)),
-                    **base_log,
-                },
-                "lines": [],
-            }
-            buffer_vals_list.append(
-                {
-                    "payload_json": json.dumps(
-                        payload, ensure_ascii=False, default=_json_default
-                    )
-                }
+            payload = self._build_export_payload(
+                res_model=res_model, res_ids=res_ids, base_log=base_log
             )
+            buffer_vals_list.append({"payload_json": self._dump_payload_json(payload)})
 
-            try:
-                buffer_model.create(buffer_vals_list)
-            except Exception:
-                _logger.exception(
+            self._buffer_create_or_log(
+                buffer_model=buffer_model,
+                buffer_vals_list=buffer_vals_list,
+                on_fail_msg=(
                     "auditlog_clickhouse: buffer create failed "
-                    "(export_data) (model=%s uid=%s)",
-                    res_model,
-                    uid,
-                )
-                raise
+                    "(export_data) (model=%s uid=%s)"
+                ),
+                on_fail_args=(res_model, uid),
+            )
 
             _logger.debug(
                 "auditlog_clickhouse: create_logs end "
@@ -228,27 +473,12 @@ def create_logs(
             )
             return
 
-        # Select correct line builder + field source for each method.
-        # We reuse auditlog's own _prepare_* helpers to keep semantics aligned.
-        line_builder: Callable[..., dict[str, Any]] | None
-        values_src: tuple[Mapping[int, Mapping[str, Any]], ...]
-        include_lines_on_unlink = method == "unlink" and capture_record
-
-        if method == "create":
-            line_builder = self._prepare_log_line_vals_on_create
-            values_src = (new_values,)
-        elif method == "read":
-            line_builder = self._prepare_log_line_vals_on_read
-            values_src = (old_values,)
-        elif method == "write":
-            line_builder = self._prepare_log_line_vals_on_write
-            values_src = (old_values, new_values)
-        elif include_lines_on_unlink:
-            line_builder = self._prepare_log_line_vals_on_read
-            values_src = (old_values,)
-        else:
-            line_builder = None
-            values_src = ()
+        line_builder, values_src, include_lines_on_unlink = self._select_line_builder(
+            method=method,
+            capture_record=capture_record,
+            old_values=old_values,
+            new_values=new_values,
+        )
 
         total_lines = 0
         produced_payloads = 0
@@ -265,68 +495,34 @@ def create_logs(
                 **base_log,
             }
 
-            # Determine which fields should produce lines for this record.
-            diff = DictDiffer(
-                dict(new_values.get(res_id, EMPTY_DICT)),
-                dict(old_values.get(res_id, EMPTY_DICT)),
+            fields_list = self._fields_list_for_record(
+                method=method,
+                include_lines_on_unlink=include_lines_on_unlink,
+                res_id=res_id,
+                old_values=old_values,
+                new_values=new_values,
             )
 
-            if method == "create":
-                fields_list: Iterable[str] = diff.added()
-            elif method == "read":
-                fields_list = old_values.get(res_id, EMPTY_DICT).keys()
-            elif method == "write":
-                fields_list = diff.changed()
-            elif include_lines_on_unlink:
-                fields_list = old_values.get(res_id, EMPTY_DICT).keys()
-            else:
-                fields_list = ()
-
             log_ctx = {"res_id": res_id, "model_id": model_id, "log_type": log_type}
-            lines: list[_PayloadLine] = []
-
-            if line_builder:
-                for field_name in fields_list:
-                    if field_name in fields_to_exclude_set:
-                        continue
-
-                    field = self._get_field(model_id, field_name)
-                    if not field:
-                        # Dummy / non-loggable field (no ir.model.fields row)
-                        continue
-
-                    # Reuse auditlog helper to keep the same old/new/text semantics.
-                    if method in ("create", "read") or include_lines_on_unlink:
-                        vals = line_builder(log_ctx, field, values_src[0])
-                    else:
-                        vals = line_builder(
-                            log_ctx, field, values_src[0], values_src[1]
-                        )
+            lines = self._build_lines_for_record(
+                uid=uid,
+                now_iso=now_iso,
+                model_id=model_id,
+                log_id=log_id,
+                log_ctx=log_ctx,
+                method=method,
+                include_lines_on_unlink=include_lines_on_unlink,
+                line_builder=line_builder,
+                values_src=values_src,
+                fields_list=fields_list,
+                fields_to_exclude_set=fields_to_exclude_set,
+            )
 
-                    lines.append(
-                        {
-                            "id": str(uuid.uuid4()),
-                            "log_id": log_id,
-                            "field_id": int(field["id"]),
-                            "field_name": field.get("name"),
-                            "field_description": field.get("field_description"),
-                            "old_value": vals.get("old_value"),
-                            "new_value": vals.get("new_value"),
-                            "old_value_text": vals.get("old_value_text"),
-                            "new_value_text": vals.get("new_value_text"),
-                            "create_date": now_iso,
-                            "create_uid": int(uid),
-                        }
-                    )
-
-            # Match original semantics: unlink is always logged;
-            # others only if there are lines.
             if method == "unlink" or lines:
-                payload = {"log": log, "lines": lines}
                 buffer_vals_list.append(
                     {
-                        "payload_json": json.dumps(
-                            payload, ensure_ascii=False, default=_json_default
+                        "payload_json": self._dump_payload_json(
+                            {"log": log, "lines": lines}
                         )
                     }
                 )
@@ -347,20 +543,15 @@ def create_logs(
             )
             return
 
-        try:
-            # Batch insert into PostgreSQL buffer to minimize ORM overhead.
-            buffer_model.create(buffer_vals_list)
-        except Exception:
-            _logger.exception(
+        self._buffer_create_or_log(
+            buffer_model=buffer_model,
+            buffer_vals_list=buffer_vals_list,
+            on_fail_msg=(
                 "auditlog_clickhouse: buffer create failed "
-                "(model=%s method=%s uid=%s payloads=%s lines=%s)",
-                res_model,
-                method,
-                uid,
-                produced_payloads,
-                total_lines,
-            )
-            raise
+                "(model=%s method=%s uid=%s payloads=%s lines=%s)"
+            ),
+            on_fail_args=(res_model, method, uid, produced_payloads, total_lines),
+        )
 
         _logger.debug(
             "auditlog_clickhouse: create_logs end (model=%s method=%s "
diff --git a/auditlog_clickhouse/readme/CONFIGURE.md b/auditlog_clickhouse/readme/CONFIGURE.md
index 7d676bcf45e..b7547f82e09 100644
--- a/auditlog_clickhouse/readme/CONFIGURE.md
+++ b/auditlog_clickhouse/readme/CONFIGURE.md
@@ -1,3 +1,16 @@
+This module requires:
+
+- A reachable ClickHouse server.
+- Python dependency `clickhouse-driver` available in the Odoo environment.
+- A ClickHouse database created in advance (the module does **not** create databases/users/grants).
+- A ClickHouse user with at least:
+  - `INSERT` and `CREATE TABLE` privileges on the target database.
+
+> ClickHouse installation (Docker guide):
+> `https://clickhouse.com/docs/install/docker`
+
+Steps:
+
 - Make sure `clickhouse-driver` is available in your system.
 - Install the module.
 - Configure the connection parameters in Odoo:
diff --git a/auditlog_clickhouse/static/description/index.html b/auditlog_clickhouse/static/description/index.html
index ee1548ccd89..4eb20c418ae 100644
--- a/auditlog_clickhouse/static/description/index.html
+++ b/auditlog_clickhouse/static/description/index.html
@@ -407,6 +407,23 @@ <h1><a class="toc-backref" href="#toc-entry-1">Use Cases / Context</a></h1>
 </div>
 <div class="section" id="configuration">
 <h1><a class="toc-backref" href="#toc-entry-2">Configuration</a></h1>
+<p>This module requires:</p>
+<ul class="simple">
+<li>A reachable ClickHouse server.</li>
+<li>Python dependency <tt class="docutils literal"><span class="pre">clickhouse-driver</span></tt> available in the Odoo
+environment.</li>
+<li>A ClickHouse database created in advance (the module does <strong>not</strong>
+create databases/users/grants).</li>
+<li>A ClickHouse user with at least:<ul>
+<li><tt class="docutils literal">INSERT</tt> and <tt class="docutils literal">CREATE TABLE</tt> privileges on the target database.</li>
+</ul>
+</li>
+</ul>
+<!--  -->
+<blockquote>
+ClickHouse installation (Docker guide):
+<tt class="docutils literal"><span class="pre">https://clickhouse.com/docs/install/docker</span></tt></blockquote>
+<p>Steps:</p>
 <ul class="simple">
 <li>Make sure <tt class="docutils literal"><span class="pre">clickhouse-driver</span></tt> is available in your system.</li>
 <li>Install the module.</li>
diff --git a/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml b/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
index dae229ed907..1910af446fc 100644
--- a/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
+++ b/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
@@ -47,7 +47,8 @@
         <field name="model">auditlog.clickhouse.config</field>
         <field name="arch" type="xml">
             <list string="ClickHouse Configuration">
-                <field name="is_active" widget="boolean_toggle" />
+                <field name="is_active" />
+                <field name="display_name" />
                 <field name="host" />
                 <field name="port" optional="hide" />
                 <field name="database" />

From 509dbeb27cb62a2b79b99e49f46f9fc997e053e1 Mon Sep 17 00:00:00 2001
From: tendil <mejta.diman@gmail.com>
Date: Mon, 16 Feb 2026 19:06:33 +0000
Subject: [PATCH 05/11] [FIX] auditlog_clickhouse: resolve comments

Task: 5246
---
 auditlog_clickhouse/models/auditlog_log_buffer.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/auditlog_clickhouse/models/auditlog_log_buffer.py b/auditlog_clickhouse/models/auditlog_log_buffer.py
index 1ae07c6e838..f4ff7d8ecb3 100644
--- a/auditlog_clickhouse/models/auditlog_log_buffer.py
+++ b/auditlog_clickhouse/models/auditlog_log_buffer.py
@@ -79,8 +79,8 @@ def _selection_state(self) -> list[tuple[str, str]]:
 
     payload_json = fields.Text(required=True)
     state = fields.Selection(
-        selection=_selection_state,
-        default=STATE_PENDING,
+        selection=lambda self: self._selection_state(),
+        default=lambda self: self.STATE_PENDING,
         required=True,
         index=True,
     )

From 0aad761e1f6fb0f8c357e2d6fc5dada809dd60eb Mon Sep 17 00:00:00 2001
From: tendil <mejta.diman@gmail.com>
Date: Wed, 18 Feb 2026 16:35:00 +0000
Subject: [PATCH 06/11] [FIX] auditlog_clickhouse: resolve comments

Task: 5246
---
 auditlog_clickhouse/README.rst                |  30 +-
 auditlog_clickhouse/__manifest__.py           |   3 +-
 .../data/auditlog_clickhouse_queue.xml        |  27 ++
 auditlog_clickhouse/data/ir_cron.xml          |  12 -
 .../models/auditlog_clickhouse_config.py      |  69 +++-
 .../models/auditlog_log_buffer.py             | 367 ++++++++++++------
 auditlog_clickhouse/models/auditlog_rule.py   |  52 ++-
 auditlog_clickhouse/readme/CONFIGURE.md       |   2 +
 .../static/description/index.html             |   4 +
 auditlog_clickhouse/tests/common.py           |  50 ++-
 .../tests/test_auditlog_clickhouse.py         | 252 +++++++++---
 .../auditlog_clickhouse_config_views.xml      |  45 ++-
 12 files changed, 665 insertions(+), 248 deletions(-)
 create mode 100644 auditlog_clickhouse/data/auditlog_clickhouse_queue.xml
 delete mode 100644 auditlog_clickhouse/data/ir_cron.xml

diff --git a/auditlog_clickhouse/README.rst b/auditlog_clickhouse/README.rst
index 2e801a13597..ea0f3ae5434 100644
--- a/auditlog_clickhouse/README.rst
+++ b/auditlog_clickhouse/README.rst
@@ -83,19 +83,23 @@ Steps:
   - **Settings > Technical > Auditlog > Clickhouse configuration**
   - Fill in the following parameters:
 
-+--------------------------+
-| Field                    |
-+==========================+
-| Hostname or IP           |
-+--------------------------+
-| TCP port                 |
-+--------------------------+
-| ClickHouse database name |
-+--------------------------+
-| ClickHouse user          |
-+--------------------------+
-| ClickHouse Password      |
-+--------------------------+
++---------------------------------------+
+| Field                                 |
++=======================================+
+| Hostname or IP                        |
++---------------------------------------+
+| TCP port                              |
++---------------------------------------+
+| ClickHouse database name              |
++---------------------------------------+
+| ClickHouse user                       |
++---------------------------------------+
+| ClickHouse Password                   |
++---------------------------------------+
+| queue_job_batch_size (default = 1000) |
++---------------------------------------+
+| channel_id (default root)             |
++---------------------------------------+
 
 - Click **Test connection**.
 - Optionally, click **Create Auditlog Tables** to create the tables and
diff --git a/auditlog_clickhouse/__manifest__.py b/auditlog_clickhouse/__manifest__.py
index 2be0256da33..818c34c0e70 100644
--- a/auditlog_clickhouse/__manifest__.py
+++ b/auditlog_clickhouse/__manifest__.py
@@ -8,14 +8,15 @@
     "website": "https://github.com/OCA/server-tools",
     "depends": [
         "auditlog",
+        "queue_job",
     ],
     "external_dependencies": {
         "python": ["clickhouse_driver"],
     },
     "data": [
         "security/ir.model.access.csv",
+        "data/auditlog_clickhouse_queue.xml",
         "views/auditlog_clickhouse_config_views.xml",
-        "data/ir_cron.xml",
     ],
     "installable": True,
 }
diff --git a/auditlog_clickhouse/data/auditlog_clickhouse_queue.xml b/auditlog_clickhouse/data/auditlog_clickhouse_queue.xml
new file mode 100644
index 00000000000..fd468293989
--- /dev/null
+++ b/auditlog_clickhouse/data/auditlog_clickhouse_queue.xml
@@ -0,0 +1,27 @@
+<odoo noupdate="1">
+    <record id="ir_cron_auditlog_clickhouse_enqueue_flush" model="ir.cron">
+        <field name="name">Auditlog ClickHouse: enqueue buffer flush</field>
+        <field name="model_id" ref="model_auditlog_log_buffer" />
+        <field name="state">code</field>
+        <field name="code">model._cron_flush_to_clickhouse()</field>
+        <field name="interval_number">5</field>
+        <field name="interval_type">minutes</field>
+        <field name="active">True</field>
+        <field name="user_id" ref="base.user_root" />
+    </record>
+
+    <record
+        id="action_configure_auditlog_clickhouse_cron"
+        model="ir.actions.act_window"
+    >
+        <field name="name">Edit export action</field>
+        <field name="res_model">ir.cron</field>
+        <field
+            name="res_id"
+            ref="auditlog_clickhouse.ir_cron_auditlog_clickhouse_enqueue_flush"
+        />
+        <field name="type">ir.actions.act_window</field>
+        <field name="view_mode">form</field>
+        <field name="target">new</field>
+    </record>
+</odoo>
diff --git a/auditlog_clickhouse/data/ir_cron.xml b/auditlog_clickhouse/data/ir_cron.xml
deleted file mode 100644
index c8e82c353db..00000000000
--- a/auditlog_clickhouse/data/ir_cron.xml
+++ /dev/null
@@ -1,12 +0,0 @@
-<odoo noupdate="1">
-    <record id="ir_cron_auditlog_clickhouse_flush" model="ir.cron">
-        <field name="name">Auditlog ClickHouse: flush buffer</field>
-        <field name="model_id" ref="model_auditlog_log_buffer" />
-        <field name="state">code</field>
-        <field name="code">model._cron_flush_to_clickhouse()</field>
-        <field name="interval_number">5</field>
-        <field name="interval_type">minutes</field>
-        <field name="active">True</field>
-        <field name="user_id" ref="base.user_root" />
-    </record>
-</odoo>
diff --git a/auditlog_clickhouse/models/auditlog_clickhouse_config.py b/auditlog_clickhouse/models/auditlog_clickhouse_config.py
index 49587be4c96..a1b1f1b3320 100644
--- a/auditlog_clickhouse/models/auditlog_clickhouse_config.py
+++ b/auditlog_clickhouse/models/auditlog_clickhouse_config.py
@@ -17,21 +17,25 @@ class AuditlogClickhouseConfig(models.Model):
       - Only one configuration can be active at a time.
       - UI provides tools to test the connection and (optionally) create tables.
 
-    Security note:
-      - This model is intended for technical users (auditlog manager).
-      - Password is stored in DB (standard Odoo behavior for such wizards/settings).
+    Notes:
+      - As soon as a configuration becomes active, audit log entries will be stored
+        in the configured ClickHouse database from that moment.
     """
 
     _name = "auditlog.clickhouse.config"
     _description = "Auditlog ClickHouse Configuration"
-    _rec_name = "database"
+    _rec_name = "display_name"
 
     DEFAULT_PORT = 9000
     DEFAULT_DB = "odoo_audit"
     DEFAULT_USER = "odoo_audit_writer"
+    DEFAULT_QUEUE_BATCH_SIZE = 1000
 
     is_active = fields.Boolean(
-        help="If unchecked, no audit logs will be flushed to ClickHouse.",
+        help=(
+            "If checked audit logs will be buffered locally and exported to ClickHouse."
+            " Only one configuration can be active at a time."
+        ),
     )
     host = fields.Char(
         string="Hostname or IP",
@@ -70,6 +74,27 @@ class AuditlogClickhouseConfig(models.Model):
         help="Password for the ClickHouse user.",
     )
 
+    queue_batch_size = fields.Integer(
+        string="Batch size",
+        default=DEFAULT_QUEUE_BATCH_SIZE,
+        required=True,
+        help="Maximum number of buffer rows processed per queue job run.",
+    )
+
+    def _default_queue_channel(self):
+        Channel = self.env["queue.job.channel"].sudo()
+        channel = Channel.search([("complete_name", "=", "root")], limit=1)
+        return channel
+
+    queue_channel_id = fields.Many2one(
+        comodel_name="queue.job.channel",
+        string="Channel",
+        required=True,
+        default=_default_queue_channel,
+        ondelete="restrict",
+        help="queue_job channel used for export jobs.",
+    )
+
     @api.depends("host", "port", "database", "user", "is_active")
     def _compute_display_name(self):
         for rec in self:
@@ -110,31 +135,45 @@ def _deactivate_other_configs(self) -> None:
     @api.onchange("is_active")
     def _onchange_is_active(self):
         """
-        Warn user that only one config can be active;
-        others will be deactivated on save.
+        Show disclaimer immediately when user enables the checkbox.
+
+        If another active configuration exists, also warn that it will be
+        deactivated after saving.
         """
         for rec in self:
-            if not rec.is_active:
+            if not rec.is_active or (rec._origin and rec._origin.is_active):
                 continue
 
+            disclaimer = rec.env._(
+                "As soon as this connection to ClickHouse is activated, all log entries"
+                " from that moment will be stored in the configured ClickHouse"
+                " database.\n\n Only one connection can be active at a time."
+            )
+
             domain = [("is_active", "=", True)]
             if rec.id:
                 domain.append(("id", "!=", rec.id))
 
             other = rec.env["auditlog.clickhouse.config"].sudo().search(domain, limit=1)
             if other:
+                message = rec.env._(
+                    "%s\n\nIf you save this configuration as active, "
+                    "the currently active one will be deactivated:\n- %s"
+                ) % (disclaimer, other.display_name)
                 return {
                     "warning": {
-                        "title": rec.env._("Only one active connection"),
-                        "message": rec.env._(
-                            "Only one ClickHouse connection can be active at a time\n\n"
-                            "If you save this configuration as active, "
-                            "the currently active one will be deactivated:\n- %s"
-                        )
-                        % (other.display_name,),
+                        "title": rec.env._("ClickHouse activation"),
+                        "message": message,
                     }
                 }
 
+            return {
+                "warning": {
+                    "title": rec.env._("ClickHouse activation"),
+                    "message": disclaimer,
+                }
+            }
+
     @api.model_create_multi
     def create(self, vals_list: list[dict[str, Any]]):
         """
diff --git a/auditlog_clickhouse/models/auditlog_log_buffer.py b/auditlog_clickhouse/models/auditlog_log_buffer.py
index f4ff7d8ecb3..6ba9301c490 100644
--- a/auditlog_clickhouse/models/auditlog_log_buffer.py
+++ b/auditlog_clickhouse/models/auditlog_log_buffer.py
@@ -1,6 +1,5 @@
 import json
 import logging
-import time
 from datetime import datetime, timezone
 from typing import Any
 
@@ -9,6 +8,8 @@
 from odoo import api, fields, models
 from odoo.tools import SQL
 
+from odoo.addons.queue_job.exception import RetryableJobError
+
 _logger = logging.getLogger(__name__)
 
 JsonMapping = dict[str, Any]
@@ -19,16 +20,17 @@ class AuditlogLogBuffer(models.Model):
     """
     Buffered audit log payloads waiting to be flushed into ClickHouse.
 
-    Each record stores a pre-serialized JSON payload produced by the auditlog.rule
-    override. A periodic cron:
-      - reads pending buffer rows
-      - converts payload into ClickHouse rows (tuple order matches schema)
-      - inserts them in batches
-      - deletes successfully flushed buffer rows from PostgreSQL
+    Each record stores a pre-built payload produced by the auditlog.rule override.
+    Export is asynchronous:
+
+      - A cron enqueues a queue_job.
+      - The queue_job locks pending buffer rows (FOR UPDATE SKIP LOCKED),
+        converts payloads to ClickHouse tuples and inserts them in batches.
+      - Successfully flushed buffer rows are removed from PostgreSQL.
 
-    Notes:
-      - No user-facing ACLs should be provided for this model by design.
-      - The cron runs with sudo and is the only expected consumer.
+    Design notes:
+      - This model is an internal queue; no user-facing ACLs should be provided.
+      - queue_job provides retries/backoff when ClickHouse is slow/unavailable.
     """
 
     _name = "auditlog.log.buffer"
@@ -69,6 +71,10 @@ class AuditlogLogBuffer(models.Model):
         "create_uid",
     )
 
+    _INVALID_PAYLOAD_MESSAGE = (
+        "Invalid payload structure (expected object with 'log' and 'lines')."
+    )
+
     @api.model
     def _selection_state(self) -> list[tuple[str, str]]:
         """Centralized selection for `state`."""
@@ -77,7 +83,7 @@ def _selection_state(self) -> list[tuple[str, str]]:
             (self.STATE_ERROR, self.env._("Error")),
         ]
 
-    payload_json = fields.Text(required=True)
+    payload_json = fields.Json(required=True)
     state = fields.Selection(
         selection=lambda self: self._selection_state(),
         default=lambda self: self.STATE_PENDING,
@@ -150,7 +156,7 @@ def _lock_pending_buffers(self, batch_size: int) -> "AuditlogLogBuffer":
         """
         Fetch up to `batch_size` pending buffers and lock them (FOR UPDATE SKIP LOCKED).
 
-        This prevents concurrent cron executions from selecting the same rows and
+        This prevents concurrent workers/jobs from selecting the same rows and
         inserting duplicates into ClickHouse.
         """
         query = SQL(
@@ -171,130 +177,253 @@ def _lock_pending_buffers(self, batch_size: int) -> "AuditlogLogBuffer":
         return self.browse(ids)
 
     @api.model
-    def _cron_flush_to_clickhouse(
-        self,
-        batch_size: int = 1000,
-        max_batches: int = 50,
-        max_seconds: float = 25.0,
-    ) -> bool:
+    def _cron_flush_to_clickhouse(self, batch_size: int | None = None) -> bool:
         """
-        Flush pending buffer rows to ClickHouse.
-
-        Steps:
-          1) Fetch active ClickHouse configuration.
-          2) Atomically lock up to `batch_size` pending rows (SKIP LOCKED).
-          3) Deserialize JSON payloads; invalid payloads -> error.
-          4) Convert payloads to tuples in CH schema order.
-          5) INSERT into ClickHouse in batches.
-          6) Delete successfully flushed buffer rows.
-
-        :param batch_size: max number of buffer rows to process per run.
-        :return: True for cron compatibility.
-        """
-        started = time.monotonic()
+        Enqueue a queue_job to flush buffered rows into ClickHouse.
+
+        This cron does not perform ClickHouse INSERTs directly. It only schedules
+        a job, so that queue_job can handle retries and high load.
 
+        :param batch_size: optional override; if not provided,
+          uses config.queue_batch_size.
+        :return: True (cron compatibility).
+        """
         config = self.env["auditlog.clickhouse.config"].sudo().get_active_config()
         if not config:
-            _logger.warning("auditlog_clickhouse: flush skipped (no active config)")
+            _logger.debug("auditlog_clickhouse: cron flush skipped (no active config)")
             return True
 
-        client = config._get_client()
+        effective_batch = int(batch_size or config.queue_batch_size or 0) or 1000
 
-        total_flushed = 0
-        total_invalid = 0
-        total_inserted_logs = 0
-        total_inserted_lines = 0
-        batches = 0
-
-        while True:
-            if batches >= max_batches or (time.monotonic() - started) >= max_seconds:
-                break
-
-            pending_buffers = self.sudo()._lock_pending_buffers(batch_size)
-            if not pending_buffers:
-                break
-
-            batches += 1
-
-            log_rows: list[ChRow] = []
-            line_rows: list[ChRow] = []
-            invalid_buffers = self.browse()
-
-            for buffer_rec in pending_buffers:
-                try:
-                    payload: JsonMapping = json.loads(buffer_rec.payload_json)
-                except Exception as exc:
-                    buffer_rec._set_error(self.env._("Invalid JSON payload: %s") % exc)
-                    invalid_buffers |= buffer_rec
-                    continue
-
-                log_data = payload.get("log") or {}
-                lines_data = payload.get("lines") or []
-
-                if log_data:
-                    log_rows.append(self._build_ch_log_row(log_data))
-                for line_data in lines_data:
-                    line_rows.append(self._build_ch_line_row(line_data))
-
-            valid_buffers = pending_buffers - invalid_buffers
-            if invalid_buffers:
-                total_invalid += len(invalid_buffers)
-                _logger.warning(
-                    "auditlog_clickhouse: invalid JSON payloads=%s "
-                    "(marked error) (config=%s)",
-                    len(invalid_buffers),
-                    config.id,
-                )
+        if not self.sudo().search([("state", "=", self.STATE_PENDING)], limit=1):
+            _logger.debug(
+                "auditlog_clickhouse: cron flush skipped (no pending buffers)"
+            )
+            return True
+
+        channel_name = (
+            config.queue_channel_id.complete_name
+            if config.queue_channel_id
+            and getattr(config.queue_channel_id, "complete_name", None)
+            else "root"
+        )
+
+        _logger.info(
+            "auditlog_clickhouse: enqueue flush job "
+            "(config=%s channel=%s batch_size=%s)",
+            config.id,
+            channel_name,
+            effective_batch,
+        )
+
+        self.sudo().with_delay(
+            channel=channel_name,
+            description=f"auditlog_clickhouse: flush buffers (config={config.id})",
+        )._job_flush_to_clickhouse(config.id, effective_batch)
+
+        return True
+
+    @api.model
+    def _get_active_config_for_job(self, config_id: int):
+        config = self.env["auditlog.clickhouse.config"].sudo().browse(config_id)
+        if not config or not config.exists() or not config.is_active:
+            _logger.info(
+                "auditlog_clickhouse: job skipped "
+                "(config missing or not active) (config_id=%s)",
+                config_id,
+            )
+            return None
+        return config
 
-            if not valid_buffers:
+    @classmethod
+    def _payload_is_valid(cls, payload: Any) -> bool:
+        """Strict-enough validation to avoid endless RetryableJobError loops."""
+        if not isinstance(payload, dict):
+            return False
+
+        log_data = payload.get("log")
+        lines_data = payload.get("lines")
+
+        if not isinstance(log_data, dict) or not isinstance(lines_data, list):
+            return False
+
+        # Minimal required log fields (to avoid CH insert failures forever)
+        required = (
+            "id",
+            "model_id",
+            "model_model",
+            "user_id",
+            "method",
+            "create_date",
+            "create_uid",
+        )
+        for key in required:
+            if not log_data.get(key):
+                return False
+
+        # Lines must be a list of dicts (if any line is broken -> whole payload invalid)
+        return all(isinstance(line, dict) for line in lines_data)
+
+    def _collect_rows_from_buffers(self, buffers):
+        """Return (valid_buffers, invalid_buffers, log_rows, line_rows)."""
+        log_rows: list[ChRow] = []
+        line_rows: list[ChRow] = []
+        invalid_buffers = self.browse()
+
+        for rec in buffers:
+            payload = rec.payload_json
+
+            if not self._payload_is_valid(payload):
+                invalid_buffers |= rec
                 continue
 
-            try:
-                if log_rows:
-                    client.execute(
-                        f"INSERT INTO {config.database}.auditlog_log ("
-                        f"{', '.join(self._CH_LOG_COLUMNS)}) VALUES",
-                        log_rows,
-                    )
-                if line_rows:
-                    client.execute(
-                        f"INSERT INTO {config.database}.auditlog_log_line ("
-                        f"{', '.join(self._CH_LINE_COLUMNS)}) VALUES",
-                        line_rows,
-                    )
-            except Exception as exc:
-                error_msg = self.env._("ClickHouse insert failed: %s") % exc
-                _logger.exception(
-                    "auditlog_clickhouse: INSERT failed "
-                    "(config=%s valid_buffers=%s log_rows=%s line_rows=%s)",
-                    config.id,
-                    len(valid_buffers),
-                    len(log_rows),
-                    len(line_rows),
+            log_data = payload["log"]
+            lines_data = payload["lines"]
+
+            log_rows.append(self._build_ch_log_row(log_data))
+            for line_data in lines_data:
+                line_rows.append(self._build_ch_line_row(line_data))
+
+        valid_buffers = buffers - invalid_buffers
+        return valid_buffers, invalid_buffers, log_rows, line_rows
+
+    def _mark_invalid_buffers(self, invalid_buffers, config) -> None:
+        if not invalid_buffers:
+            return
+        invalid_buffers._set_error(self.env._(self._INVALID_PAYLOAD_MESSAGE))
+        _logger.warning(
+            "auditlog_clickhouse: invalid payloads=%s (marked error) (config=%s)",
+            len(invalid_buffers),
+            config.id,
+        )
+
+    def _insert_rows_to_clickhouse(
+        self, client, config, log_rows, line_rows, valid_buffers
+    ):
+        try:
+            if log_rows:
+                client.execute(
+                    f"INSERT INTO {config.database}.auditlog_log ("
+                    f"{', '.join(self._CH_LOG_COLUMNS)}) VALUES",
+                    log_rows,
+                )
+            if line_rows:
+                client.execute(
+                    f"INSERT INTO {config.database}.auditlog_log_line ("
+                    f"{', '.join(self._CH_LINE_COLUMNS)}) VALUES",
+                    line_rows,
                 )
-                valid_buffers._set_error(error_msg)
-                return True
+        except Exception as exc:
+            _logger.exception(
+                "auditlog_clickhouse: INSERT failed (will retry) "
+                "(config=%s buffers=%s logs=%s lines=%s)",
+                config.id,
+                len(valid_buffers),
+                len(log_rows),
+                len(line_rows),
+            )
+            raise RetryableJobError(
+                f"ClickHouse insert failed: {exc}",
+                seconds=60,
+            ) from exc
 
-            flushed_count = len(valid_buffers)
+    def _delete_flushed_buffers(self, valid_buffers, config) -> None:
+        try:
             valid_buffers.unlink()
+        except Exception as exc:
+            _logger.exception(
+                "auditlog_clickhouse: failed to delete flushed buffers "
+                "(config=%s buffers=%s)",
+                config.id,
+                len(valid_buffers),
+            )
+            valid_buffers._set_error(
+                self.env._("Flushed to ClickHouse but failed to delete buffer rows: %s")
+                % exc
+            )
+        else:
+            _logger.info(
+                "auditlog_clickhouse: job flushed batch "
+                "(config=%s flushed_buffers=%s)",
+                config.id,
+                len(valid_buffers),
+            )
 
-            total_flushed += flushed_count
-            total_inserted_logs += len(log_rows)
-            total_inserted_lines += len(line_rows)
+    def _enqueue_next_flush_job_if_needed(self, config, batch_size: int) -> None:
+        if not self.sudo().search([("state", "=", self.STATE_PENDING)], limit=1):
+            return
 
-        _logger.info(
-            "auditlog_clickhouse: flush finished "
-            "(config=%s batches=%s flushed_buffers=%s "
-            "inserted_logs=%s inserted_lines=%s invalid=%s) in %.3fs",
+        channel_name = (
+            config.queue_channel_id.complete_name
+            if config.queue_channel_id
+            and getattr(config.queue_channel_id, "complete_name", None)
+            else "root"
+        )
+        _logger.debug(
+            "auditlog_clickhouse: more pending buffers detected, enqueue next job "
+            "(config=%s channel=%s batch_size=%s)",
             config.id,
-            batches,
-            total_flushed,
-            total_inserted_logs,
-            total_inserted_lines,
-            total_invalid,
-            time.monotonic() - started,
+            channel_name,
+            batch_size,
         )
-        return True
+        self.sudo().with_delay(
+            channel=channel_name,
+            description=f"auditlog_clickhouse: flush buffers (config={config.id})",
+        )._job_flush_to_clickhouse(config.id, int(batch_size))
+
+    @api.model
+    def _job_flush_to_clickhouse(self, config_id: int, batch_size: int) -> None:
+        """
+        Queue job: flush one batch of pending buffers into ClickHouse.
+
+        - Locks pending buffers (SKIP LOCKED)
+        - Validates payload structure
+        - Builds CH rows
+        - INSERTs into CH (retryable)
+        - Deletes flushed buffers
+        - Marks invalid payloads as error (non-retryable)
+        - Enqueues next job if more pending exist
+        """
+        config = self._get_active_config_for_job(config_id)
+        if not config:
+            return
+
+        pending_buffers = self.sudo()._lock_pending_buffers(int(batch_size))
+        if not pending_buffers:
+            _logger.debug(
+                "auditlog_clickhouse: job no-op (no pending buffers) (config=%s)",
+                config.id,
+            )
+            return
+
+        valid_buffers, invalid_buffers, log_rows, line_rows = (
+            self._collect_rows_from_buffers(pending_buffers)
+        )
+
+        # Nothing valid: just mark invalids and exit successfully.
+        if not valid_buffers:
+            self._mark_invalid_buffers(invalid_buffers, config)
+            return
+
+        client = config._get_client()
+        self._insert_rows_to_clickhouse(
+            client=client,
+            config=config,
+            log_rows=log_rows,
+            line_rows=line_rows,
+            valid_buffers=valid_buffers,
+        )
+
+        # Delete flushed buffers; if deletion fails,
+        # mark them as error to avoid re-inserts.
+        self._delete_flushed_buffers(valid_buffers, config)
+
+        # Mark invalid ones only after successful CH insert
+        # (so RetryableJobError doesn't rollback the marking)
+        self._mark_invalid_buffers(invalid_buffers, config)
+
+        # Continue draining queue
+        self._enqueue_next_flush_job_if_needed(config, int(batch_size))
 
     @classmethod
     def _build_ch_log_row(cls, log_data: JsonMapping) -> ChRow:
diff --git a/auditlog_clickhouse/models/auditlog_rule.py b/auditlog_clickhouse/models/auditlog_rule.py
index f00aa99c122..c56d323bdd2 100644
--- a/auditlog_clickhouse/models/auditlog_rule.py
+++ b/auditlog_clickhouse/models/auditlog_rule.py
@@ -1,13 +1,9 @@
-import json
 import logging
 import time
 import uuid
 from collections.abc import Callable, Iterable, Mapping, Sequence
 from datetime import date, datetime, timezone
-from typing import (
-    Any,
-    TypedDict,
-)
+from typing import Any, TypedDict
 
 from odoo import models
 
@@ -62,6 +58,37 @@ def _json_default(obj: Any) -> str:
     return str(obj)
 
 
+def _json_sanitize(obj: Any) -> Any:
+    """
+    Convert values to JSON-serializable structures.
+
+    This is used when writing payloads into a `fields.Json` column:
+      - datetime/date -> ISO string
+      - recordsets -> list of ids
+      - mappings/sequences -> recursively sanitized
+      - other unknown types -> string representation
+    """
+    if obj is None or isinstance(obj, (str | int | float | bool)):
+        return obj
+
+    if isinstance(obj, (datetime | date)):
+        return obj.isoformat()
+
+    if isinstance(obj, bytes):
+        return obj.decode("utf-8", errors="replace")
+
+    if isinstance(obj, models.BaseModel):
+        return list(obj.ids)
+
+    if isinstance(obj, Mapping):
+        return {str(k): _json_sanitize(v) for k, v in obj.items()}
+
+    if isinstance(obj, (list | tuple | set)):
+        return [_json_sanitize(v) for v in obj]
+
+    return _json_default(obj)
+
+
 class AuditlogRule(models.Model):
     _inherit = "auditlog.rule"
 
@@ -170,7 +197,7 @@ def _build_export_payload(
         res_model: str,
         res_ids: Sequence[int],
         base_log: _PayloadLog,
-    ) -> dict[str, Any]:
+    ) -> _Payload:
         """
         Build a payload for the `export_data` audit method.
 
@@ -356,17 +383,14 @@ def _build_lines_for_record(
 
         return lines
 
-    def _dump_payload_json(self, payload: dict[str, Any]) -> str:
+    def _dump_payload_json(self, payload: dict[str, Any]) -> dict[str, Any]:
         """
-        Serialize a payload dict to JSON for storing in the PostgreSQL buffer.
+        Prepare payload for storing in the PostgreSQL buffer.
 
-        Args:
-            payload: Payload dict with structure {"log": ..., "lines": ...}.
-
-        Returns:
-            JSON string ready to be written into `auditlog.log.buffer.payload_json`.
+        Buffer field is `fields.Json`, so we store a dict, not a JSON string.
+        We sanitize values to ensure the structure is JSON-serializable.
         """
-        return json.dumps(payload, ensure_ascii=False, default=_json_default)
+        return _json_sanitize(payload)
 
     def _buffer_create_or_log(
         self,
diff --git a/auditlog_clickhouse/readme/CONFIGURE.md b/auditlog_clickhouse/readme/CONFIGURE.md
index b7547f82e09..56be2fc6feb 100644
--- a/auditlog_clickhouse/readme/CONFIGURE.md
+++ b/auditlog_clickhouse/readme/CONFIGURE.md
@@ -24,6 +24,8 @@ Steps:
 | ClickHouse database name |
 | ClickHouse user |
 | ClickHouse Password |
+| queue_job_batch_size (default = 1000) |
+| channel_id (default root) |
 
 - Click **Test connection**.
 - Optionally, click **Create Auditlog Tables** to create the tables and User in the target database.
diff --git a/auditlog_clickhouse/static/description/index.html b/auditlog_clickhouse/static/description/index.html
index 4eb20c418ae..380fbb72cf3 100644
--- a/auditlog_clickhouse/static/description/index.html
+++ b/auditlog_clickhouse/static/description/index.html
@@ -452,6 +452,10 @@ <h1><a class="toc-backref" href="#toc-entry-2">Configuration</a></h1>
 </tr>
 <tr><td>ClickHouse Password</td>
 </tr>
+<tr><td>queue_job_batch_size (default = 1000)</td>
+</tr>
+<tr><td>channel_id (default root)</td>
+</tr>
 </tbody>
 </table>
 <ul class="simple">
diff --git a/auditlog_clickhouse/tests/common.py b/auditlog_clickhouse/tests/common.py
index 916a57b3016..a9f38318696 100644
--- a/auditlog_clickhouse/tests/common.py
+++ b/auditlog_clickhouse/tests/common.py
@@ -27,6 +27,14 @@ def setUpClass(cls):
         super().setUpClass()
         cls._patched_models = set()
         cls._created_rules = cls.env["auditlog.rule"]
+
+        # Clean start (important when suites run in one process)
+        cls.env["auditlog.clickhouse.config"].sudo().search([]).write(
+            {"is_active": False}
+        )
+        cls.env["auditlog.log.buffer"].sudo().search([]).unlink()
+
+        # For OUR tests we need active config
         cls.base_cfg = cls.create_config(is_active=True)
 
     @classmethod
@@ -57,21 +65,31 @@ def create_config(cls, **vals):
 
     @classmethod
     def tearDownClass(cls):
-        # Unsubscribe rules created by this test module (avoid leaving patched methods).
-        for rule in cls._created_rules:
-            try:
-                rule.unsubscribe()
-            except KeyError:
-                continue
-
-        # Assert no patched methods remain.
-        for model in cls._patched_models:
-            for method in ["create", "read", "write", "unlink"]:
-                assert not hasattr(
-                    getattr(cls.env[model], method), "origin"
-                ), f"{model} {method} still patched"
-
-        super().tearDownClass()
+        try:
+            # Avoid leaking to other modules (auditlog)
+            cls.env["auditlog.clickhouse.config"].sudo().search([]).write(
+                {"is_active": False}
+            )
+            cls.env["auditlog.log.buffer"].sudo().search([]).unlink()
+
+            for rule in getattr(cls, "_created_rules", cls.env["auditlog.rule"]).sudo():
+                try:
+                    if rule.exists():
+                        rule.unsubscribe()
+                except KeyError:
+                    continue
+
+            for model in getattr(cls, "_patched_models", set()):
+                model_rs = cls.env[model]
+                for method in ("create", "read", "write", "unlink", "export_data"):
+                    func = getattr(model_rs, method, None)
+                    if func is None:
+                        continue
+                    assert not hasattr(
+                        func, "origin"
+                    ), f"{model} {method} still patched"
+        finally:
+            super().tearDownClass()
 
     @contextlib.contextmanager
     def _patched_clickhouse_client(self, *, raise_on_insert: bool = False):
@@ -87,4 +105,4 @@ def _patched_clickhouse_client(self, *, raise_on_insert: bool = False):
     def _parse_payloads(self):
         """Return list of decoded payload dicts from buffer (oldest first)."""
         buf = self.env["auditlog.log.buffer"].sudo().search([], order="id asc")
-        return [__import__("json").loads(r.payload_json) for r in buf]
+        return [r.payload_json for r in buf]
diff --git a/auditlog_clickhouse/tests/test_auditlog_clickhouse.py b/auditlog_clickhouse/tests/test_auditlog_clickhouse.py
index 21ab9038b3f..f48645e839b 100644
--- a/auditlog_clickhouse/tests/test_auditlog_clickhouse.py
+++ b/auditlog_clickhouse/tests/test_auditlog_clickhouse.py
@@ -1,5 +1,3 @@
-import json
-
 from odoo.tests import tagged
 from odoo.tools import mute_logger
 
@@ -12,7 +10,6 @@ class TestAuditlogClickhouseBuffer(AuditLogClickhouseCommon):
     def setUpClass(cls):
         super().setUpClass()
         cls.groups_model_id = cls.env.ref("base.model_res_groups").id
-        cls.partner_model_id = cls.env.ref("base.model_res_partner").id
 
         # Rule for groups: full logging
         cls.groups_rule = cls.create_rule(
@@ -29,9 +26,11 @@ def setUpClass(cls):
             }
         )
 
+        # Active config to enable buffering
+        cls.config = cls.create_config(is_active=True)
+
     def setUp(self):
         super().setUp()
-        # Ensure rule is subscribed per test.
         self.groups_rule.subscribe()
 
     def test_01_create_writes_to_buffer_not_auditlog_tables(self):
@@ -55,7 +54,7 @@ def test_01_create_writes_to_buffer_not_auditlog_tables(self):
         )
         self.assertEqual(buf.search_count([]) - start_buf, 1)
 
-        payload = json.loads(buf.search([], order="id desc", limit=1).payload_json)
+        payload = buf.search([], order="id desc", limit=1).payload_json
         self.assertEqual(payload["log"]["method"], "create")
         self.assertEqual(payload["log"]["model_id"], self.groups_model_id)
         self.assertEqual(payload["log"]["res_id"], group.id)
@@ -69,7 +68,7 @@ def test_02_write_creates_lines(self):
 
         self.assertGreater(buf.search_count([]), start_buf)
 
-        payload = json.loads(buf.search([], order="id desc", limit=1).payload_json)
+        payload = buf.search([], order="id desc", limit=1).payload_json
         self.assertEqual(payload["log"]["method"], "write")
         self.assertEqual(payload["log"]["model_model"], "res.groups")
 
@@ -83,7 +82,7 @@ def test_03_export_data_creates_single_payload_no_lines(self):
         self.env["res.groups"].search([]).export_data(["name"])
 
         self.assertEqual(buf.search_count([]) - start_buf, 1)
-        payload = json.loads(buf.search([], order="id desc", limit=1).payload_json)
+        payload = buf.search([], order="id desc", limit=1).payload_json
         self.assertEqual(payload["log"]["method"], "export_data")
         self.assertEqual(payload["lines"], [])
 
@@ -99,21 +98,20 @@ def test_04_unlink_is_always_logged_even_without_capture_record(self):
         g.unlink()
 
         self.assertGreater(buf.search_count([]), start_buf)
-        payload = json.loads(buf.search([], order="id desc", limit=1).payload_json)
+        payload = buf.search([], order="id desc", limit=1).payload_json
         self.assertEqual(payload["log"]["method"], "unlink")
-        # capture_record=False => lines may be empty, but payload must exist
         self.assertIsInstance(payload["lines"], list)
 
 
 @tagged("-at_install", "post_install")
-class TestAuditlogClickhouseCron(AuditLogClickhouseCommon):
+class TestAuditlogClickhouseQueueJobs(AuditLogClickhouseCommon):
     @classmethod
     def setUpClass(cls):
         super().setUpClass()
         cls.partner_model_id = cls.env.ref("base.model_res_partner").id
         cls.rule = cls.create_rule(
             {
-                "name": "testrule partner clickhouse cron",
+                "name": "testrule partner clickhouse queue",
                 "model_id": cls.partner_model_id,
                 "log_create": True,
                 "log_write": True,
@@ -127,85 +125,227 @@ def setUp(self):
         super().setUp()
         self.rule.subscribe()
 
-    def test_01_cron_flush_success_deletes_buffers_and_calls_insert(self):
+    def test_01_cron_enqueues_job_and_does_not_flush_inline(self):
+        """
+        Cron must only enqueue queue.job (no direct ClickHouse INSERTs here).
+        """
         buf = self.env["auditlog.log.buffer"].sudo()
+        job_model = self.env["queue.job"].sudo()
 
         partner = (
             self.env["res.partner"]
             .with_context(tracking_disable=True)
-            .create({"name": "Cron Test"})
+            .create({"name": "Cron Enqueue Test"})
+        )
+        partner.with_context(tracking_disable=True).write(
+            {"name": "Cron Enqueue Test v2"}
         )
-        partner.with_context(tracking_disable=True).write({"name": "Cron Test v2"})
 
         self.assertGreater(buf.search_count([]), 0)
 
-        with self._patched_clickhouse_client() as dummy:
-            buf._cron_flush_to_clickhouse(batch_size=1000)
+        start_jobs = job_model.search_count([])
+        res = buf._cron_flush_to_clickhouse()  # uses config.queue_batch_size
 
+        self.assertTrue(res)
         self.assertEqual(
-            buf.search_count([]), 0, "Buffers must be removed after successful flush"
+            job_model.search_count([]) - start_jobs,
+            1,
+            "Cron must enqueue exactly one job",
         )
 
-        # Assert we did at least one INSERT call.
-        insert_calls = [
-            q for (q, params) in dummy.calls if "INSERT INTO" in (q or "").upper()
-        ]
-        self.assertTrue(insert_calls, "Cron must insert into ClickHouse")
+        job = job_model.search([], order="id desc", limit=1)
+        self.assertEqual(job.model_name, "auditlog.log.buffer")
+        self.assertEqual(job.method_name, "_job_flush_to_clickhouse")
+        self.assertEqual(job.args[0], self.config.id)
+        self.assertEqual(job.args[1], self.config.queue_batch_size)
+
+        expected_channel = (
+            self.config.queue_channel_id.complete_name
+            if self.config.queue_channel_id
+            else "root"
+        )
+        self.assertEqual(job.channel, expected_channel)
 
-    def test_02_cron_invalid_json_marks_error_and_keeps_row(self):
+    def test_02_cron_skips_when_no_pending_buffers(self):
         buf = self.env["auditlog.log.buffer"].sudo()
+        job_model = self.env["queue.job"].sudo()
+
+        # Ensure no pending buffers
+        buf.search([]).unlink()
+
+        start_jobs = job_model.search_count([])
+        res = buf._cron_flush_to_clickhouse()
+
+        self.assertTrue(res)
+        self.assertEqual(
+            job_model.search_count([]) - start_jobs, 0, "No pending buffers -> no job"
+        )
+
+    def test_03_cron_skips_without_active_config(self):
+        self.env["auditlog.clickhouse.config"].search([]).write({"is_active": False})
+
+        buf = self.env["auditlog.log.buffer"].sudo()
+        job_model = self.env["queue.job"].sudo()
+
+        start_jobs = job_model.search_count([])
         rec = buf.create(
-            {
-                "payload_json": "NOT A JSON",
-                "state": buf.STATE_PENDING,
-            }
+            {"payload_json": {"log": {}, "lines": []}, "state": buf.STATE_PENDING}
         )
 
-        with self._patched_clickhouse_client() as dummy:
-            with mute_logger(
-                "odoo.addons.auditlog_clickhouse.models.auditlog_log_buffer"
-            ):
-                res = buf._cron_flush_to_clickhouse(batch_size=1000)
+        res = buf._cron_flush_to_clickhouse()
 
         self.assertTrue(res)
+        self.assertEqual(
+            job_model.search_count([]) - start_jobs, 0, "No active config -> no job"
+        )
 
         rec.invalidate_recordset()
-        self.assertEqual(rec.state, buf.STATE_ERROR)
-        self.assertTrue(rec.error_message)
-        self.assertGreaterEqual(rec.attempt_count, 1)
+        self.assertEqual(rec.state, buf.STATE_PENDING)
+        self.assertFalse(rec.error_message)
+
+    def test_04_job_flush_success_deletes_buffers_and_calls_insert(self):
+        buf = self.env["auditlog.log.buffer"].sudo()
+
+        partner = (
+            self.env["res.partner"]
+            .with_context(tracking_disable=True)
+            .create({"name": "Job Flush OK"})
+        )
+        partner.with_context(tracking_disable=True).write({"name": "Job Flush OK v2"})
+
+        self.assertGreater(buf.search_count([]), 0)
+
+        with self._patched_clickhouse_client() as dummy:
+            buf._job_flush_to_clickhouse(self.config.id, self.config.queue_batch_size)
+
+        self.assertEqual(
+            buf.search_count([]),
+            0,
+            "Buffers must be removed after successful job flush",
+        )
 
         insert_calls = [
             q for (q, _params) in dummy.calls if "INSERT INTO" in (q or "").upper()
         ]
-        self.assertFalse(insert_calls)
+        self.assertTrue(insert_calls, "Job must insert into ClickHouse")
 
-    @mute_logger("odoo.addons.auditlog_clickhouse.models.auditlog_log_buffer")
-    def test_03_cron_insert_failure_marks_pending_as_error(self):
+    def test_05_job_invalid_payload_marks_error_and_keeps_row(self):
         buf = self.env["auditlog.log.buffer"].sudo()
 
-        partner = (
-            self.env["res.partner"]
-            .with_context(tracking_disable=True)
-            .create({"name": "Fail Test"})
+        # Invalid structure for payload_json (Json field accepts string,
+        # but our code expects mapping with log/lines)
+        rec = buf.create(
+            {"payload_json": "NOT A JSON OBJECT", "state": buf.STATE_PENDING}
         )
-        partner.with_context(tracking_disable=True).write({"name": "Fail Test v2"})
 
-        pending = buf.search([("state", "=", "pending")])
-        self.assertTrue(pending, "Expected pending buffer rows to be created")
+        with mute_logger("odoo.addons.auditlog_clickhouse.models.auditlog_log_buffer"):
+            buf._job_flush_to_clickhouse(self.config.id, batch_size=10)
 
-        with self._patched_clickhouse_client(raise_on_insert=True):
-            res = buf._cron_flush_to_clickhouse(batch_size=1000)
+        rec.invalidate_recordset()
+        self.assertEqual(rec.state, buf.STATE_ERROR)
+        self.assertTrue(rec.error_message)
+        self.assertGreaterEqual(rec.attempt_count, 1)
 
-        self.assertTrue(res)
 
-        # Re-read from DB
-        errored = buf.search([("id", "in", pending.ids), ("state", "=", "error")])
+@tagged("-at_install", "post_install", "test1")
+class TestAuditlogClickhouseConfig(AuditLogClickhouseCommon):
+    def test_01_single_active_on_create(self):
+        cfg1 = self.create_config(is_active=True, host="h1")
+        cfg2 = self.create_config(is_active=True, host="h2")
+
+        cfg1.invalidate_recordset()
+        cfg2.invalidate_recordset()
+
+        active = self.env["auditlog.clickhouse.config"].search(
+            [("is_active", "=", True)]
+        )
+        self.assertEqual(len(active), 1)
+        self.assertTrue(cfg2.is_active)
+        self.assertFalse(cfg1.is_active)
+
+    def test_02_single_active_on_write(self):
+        cfg1 = self.create_config(is_active=False, host="h1")
+        cfg2 = self.create_config(is_active=True, host="h2")
+
+        cfg1.write({"is_active": True})
+        cfg1.invalidate_recordset()
+        cfg2.invalidate_recordset()
+
+        active = self.env["auditlog.clickhouse.config"].search(
+            [("is_active", "=", True)]
+        )
+        self.assertEqual(len(active), 1)
+        self.assertTrue(cfg1.is_active)
+        self.assertFalse(cfg2.is_active)
+
+    def test_03_test_connection_uses_client(self):
+        cfg = self.create_config(is_active=True)
+
+        with self._patched_clickhouse_client() as dummy:
+            action = cfg.action_test_connection()
+
+        self.assertTrue(action)
+        self.assertTrue(any("SELECT 1" in (q or "") for (q, _params) in dummy.calls))
+
+    def test_04_queue_channel_field_is_m2o_and_default_is_root(self):
+        cfg = self.create_config(is_active=False)
+
+        self.assertEqual(
+            cfg._fields["queue_channel_id"].comodel_name,
+            "queue.job.channel",
+            "queue_channel_id must be a Many2one to queue.job.channel",
+        )
+
+        root = self.env["queue.job.channel"].search(
+            [("complete_name", "=", "root")], limit=1
+        )
+        self.assertTrue(root, "queue_job must provide root channel")
         self.assertEqual(
-            len(errored),
-            len(pending),
-            "All pending buffer rows must be marked as error on insert failure",
+            cfg.queue_channel_id.id, root.id, "Default queue channel must be root"
+        )
+
+    def test_05_onchange_is_active_shows_disclaimer(self):
+        # Create an active config so onchange also mentions it
+        active = self.create_config(is_active=True, host="active-host")
+
+        new_cfg = self.env["auditlog.clickhouse.config"].new(
+            {
+                "is_active": True,
+                "host": "h-new",
+                "port": 9000,
+                "database": "db",
+                "user": "u",
+            }
         )
+        res = new_cfg._onchange_is_active()
 
-        # Ensure they were not deleted
-        remaining = buf.search([("id", "in", pending.ids)])
-        self.assertEqual(len(remaining), len(pending))
+        self.assertTrue(
+            res and res.get("warning"),
+            "Onchange must return warning when enabling is_active",
+        )
+        msg = res["warning"]["message"]
+        self.assertIn("As soon as this connection to ClickHouse is activated", msg)
+        self.assertIn("Only one connection can be active at a time", msg)
+        self.assertIn(active.display_name, msg)
+
+    def test_06_cron_uses_overridden_batch_size_argument(self):
+        cfg = self.create_config(is_active=True)
+        cfg.write({"queue_batch_size": 777})
+
+        buf = self.env["auditlog.log.buffer"].sudo()
+        job_model = self.env["queue.job"].sudo()
+
+        buf.create(
+            {"payload_json": {"log": {}, "lines": []}, "state": buf.STATE_PENDING}
+        )
+
+        start_jobs = job_model.search_count([])
+        buf._cron_flush_to_clickhouse(batch_size=10)
+
+        self.assertEqual(job_model.search_count([]) - start_jobs, 1)
+        job = job_model.search([], order="id desc", limit=1)
+        self.assertEqual(
+            job.args[1],
+            10,
+            "Explicit cron batch_size must override config.queue_batch_size",
+        )
diff --git a/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml b/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
index 1910af446fc..22729d70abb 100644
--- a/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
+++ b/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
@@ -1,4 +1,19 @@
 <odoo>
+    <record
+        id="action_configure_auditlog_clickhouse_flush_cron"
+        model="ir.actions.act_window"
+    >
+        <field name="name">Configure flush action</field>
+        <field name="res_model">ir.cron</field>
+        <field
+            name="res_id"
+            ref="auditlog_clickhouse.ir_cron_auditlog_clickhouse_enqueue_flush"
+        />
+        <field name="type">ir.actions.act_window</field>
+        <field name="view_mode">form</field>
+        <field name="target">new</field>
+    </record>
+
     <record id="view_auditlog_clickhouse_config_form" model="ir.ui.view">
         <field name="name">auditlog.clickhouse.config.form</field>
         <field name="model">auditlog.clickhouse.config</field>
@@ -24,6 +39,17 @@
                         <field name="is_active" />
                     </group>
 
+                    <div
+                        class="alert alert-warning mb-2"
+                        role="alert"
+                        invisible="not is_active"
+                    >
+                        As soon as this connection to ClickHouse is activated, all log
+                        entries from that moment will be stored in the configured
+                        ClickHouse database. Only one connection can be active at a
+                        time.
+                    </div>
+
                     <group string="Connection">
                         <field name="host" />
                         <field name="port" />
@@ -32,9 +58,24 @@
                         <field name="password" password="True" />
                     </group>
 
+                    <group string="Export Queue">
+                        <field name="queue_batch_size" />
+                        <field name="queue_channel_id" />
+                        <div class="mt8">
+                            <button
+                                name="%(action_configure_auditlog_clickhouse_flush_cron)d"
+                                type="action"
+                                string="Configure action"
+                                class="oe_link"
+                                icon="fa-arrow-right"
+                            />
+                        </div>
+                    </group>
+
                     <group string="Notes">
                         <div class="text-muted">
-                            Logs are buffered in PostgreSQL and periodically flushed to ClickHouse by cron.
+                            Logs are buffered in PostgreSQL and periodically flushed to
+                            ClickHouse by cron.
                         </div>
                     </group>
                 </sheet>
@@ -47,7 +88,7 @@
         <field name="model">auditlog.clickhouse.config</field>
         <field name="arch" type="xml">
             <list string="ClickHouse Configuration">
-                <field name="is_active" />
+                <field name="is_active" string="Is Active" />
                 <field name="display_name" />
                 <field name="host" />
                 <field name="port" optional="hide" />

From eed96ad68beb9eaea9fac27c325ba33e43e60ec3 Mon Sep 17 00:00:00 2001
From: tendil <mejta.diman@gmail.com>
Date: Thu, 19 Feb 2026 00:00:56 +0000
Subject: [PATCH 07/11] [FIX] auditlog_clickhouse: fix pipeline

Task: 5246
---
 auditlog_clickhouse/models/auditlog_rule.py   | 481 ++++--------------
 auditlog_clickhouse/tests/common.py           |  73 +--
 .../tests/test_auditlog_clickhouse.py         | 115 +----
 3 files changed, 133 insertions(+), 536 deletions(-)

diff --git a/auditlog_clickhouse/models/auditlog_rule.py b/auditlog_clickhouse/models/auditlog_rule.py
index c56d323bdd2..4b95e015c06 100644
--- a/auditlog_clickhouse/models/auditlog_rule.py
+++ b/auditlog_clickhouse/models/auditlog_rule.py
@@ -1,8 +1,9 @@
 import logging
 import time
 import uuid
-from collections.abc import Callable, Iterable, Mapping, Sequence
+from collections.abc import Mapping, Sequence
 from datetime import date, datetime, timezone
+from decimal import Decimal
 from typing import Any, TypedDict
 
 from odoo import models
@@ -48,16 +49,6 @@ class _Payload(TypedDict):
     lines: list[_PayloadLine]
 
 
-def _json_default(obj: Any) -> str:
-    """json.dumps(default=...) helper.
-
-    Keeps the payload JSON-friendly even if auditlog values contain datetime/date.
-    """
-    if isinstance(obj, datetime | date):
-        return obj.isoformat()
-    return str(obj)
-
-
 def _json_sanitize(obj: Any) -> Any:
     """
     Convert values to JSON-serializable structures.
@@ -74,6 +65,9 @@ def _json_sanitize(obj: Any) -> Any:
     if isinstance(obj, (datetime | date)):
         return obj.isoformat()
 
+    if isinstance(obj, Decimal):
+        return float(obj)
+
     if isinstance(obj, bytes):
         return obj.decode("utf-8", errors="replace")
 
@@ -86,7 +80,7 @@ def _json_sanitize(obj: Any) -> Any:
     if isinstance(obj, (list | tuple | set)):
         return [_json_sanitize(v) for v in obj]
 
-    return _json_default(obj)
+    return str(obj)
 
 
 class AuditlogRule(models.Model):
@@ -147,277 +141,15 @@ def _get_audit_model_id(self, res_model: str) -> int:
         Returns:
             The `ir.model` record id for the given model name.
         """
-        model_id = self.pool._auditlog_model_cache.get(res_model)
+        model_id = getattr(self.pool, "_auditlog_model_cache", {}).get(res_model)
         if model_id:
             return int(model_id)
         return int(self.env["ir.model"].sudo()._get(res_model).id)
 
-    def _build_base_log(
-        self,
-        *,
-        uid: int,
-        method: str,
-        model_id: int,
-        log_type: Any,
-        now_iso: str,
-    ) -> _PayloadLog:
-        """
-        Build base (common) payload for the `log` part of ClickHouse audit entries.
-
-        The returned dict is later merged into per-record log data, and contains
-        denormalized model metadata and common fields.
-
-        Args:
-            uid: Acting user id.
-            method: Audited operation (create, read, write, unlink, export_data).
-            model_id: `ir.model` id for the audited model.
-            log_type: Auditlog rule log type (e.g. "full" / "fast") or None.
-            now_iso: UTC ISO timestamp string used for `create_date`.
-
-        Returns:
-            A dict compatible with `_PayloadLog`.
-        """
-        model_rec = self.env["ir.model"].sudo().browse(model_id)
-        return {
-            "model_id": int(model_id),
-            "model_name": model_rec.name,
-            "model_model": model_rec.model,
-            "user_id": int(uid),
-            "method": method,
-            "http_request_id": None,
-            "http_session_id": None,
-            "log_type": log_type,
-            "create_date": now_iso,
-            "create_uid": int(uid),
-        }
-
-    def _build_export_payload(
-        self,
-        *,
-        res_model: str,
-        res_ids: Sequence[int],
-        base_log: _PayloadLog,
-    ) -> _Payload:
-        """
-        Build a payload for the `export_data` audit method.
-
-        Args:
-            res_model: Technical model name.
-            res_ids: Record ids being exported.
-            base_log: Common log payload built by `_build_base_log()`.
-
-        Returns:
-            Full payload dict to be JSON-serialized and written into buffer.
-        """
-        return {
-            "log": {
-                "id": str(uuid.uuid4()),
-                "name": res_model,
-                "res_id": None,
-                "res_ids": str(list(res_ids)),
-                **base_log,
-            },
-            "lines": [],
-        }
-
-    def _select_line_builder(
-        self,
-        *,
-        method: str,
-        capture_record: bool,
-        old_values: Mapping[int, Mapping[str, Any]],
-        new_values: Mapping[int, Mapping[str, Any]],
-    ) -> tuple[
-        Callable[..., dict[str, Any]] | None,
-        tuple[Mapping[int, Mapping[str, Any]], ...],
-        bool,
-    ]:
-        """
-        Select auditlog line builder and value sources for the given method.
-
-        Args:
-            method: Audited operation ("create", "read", "write", "unlink", ...).
-            capture_record: Rule flag that enables capturing record values on unlink
-            old_values: Mapping `{res_id: {field: value}}` captured before the operation
-            new_values: Mapping `{res_id: {field: value}}` captured after the operation
-
-        Returns:
-            A tuple of:
-              - line_builder: Callable used to build a single log line values dict,
-                or None if lines should not be produced for this method.
-              - values_src: Tuple containing old/new mappings passed to `line_builder`.
-              - include_lines_on_unlink: Whether unlink should produce lines.
-        """
-        include_lines_on_unlink = method == "unlink" and capture_record
-
-        if method == "create":
-            return (
-                self._prepare_log_line_vals_on_create,
-                (new_values,),
-                include_lines_on_unlink,
-            )
-        if method == "read":
-            return (
-                self._prepare_log_line_vals_on_read,
-                (old_values,),
-                include_lines_on_unlink,
-            )
-        if method == "write":
-            return (
-                self._prepare_log_line_vals_on_write,
-                (old_values, new_values),
-                include_lines_on_unlink,
-            )
-        if include_lines_on_unlink:
-            return (
-                self._prepare_log_line_vals_on_read,
-                (old_values,),
-                include_lines_on_unlink,
-            )
-
-        return None, (), include_lines_on_unlink
-
-    def _fields_list_for_record(
-        self,
-        *,
-        method: str,
-        include_lines_on_unlink: bool,
-        res_id: int,
-        old_values: Mapping[int, Mapping[str, Any]],
-        new_values: Mapping[int, Mapping[str, Any]],
-    ) -> Iterable[str]:
-        """
-        Determine which field names should be turned into audit lines for a record.
-
-        Args:
-            method: Audited operation.
-            include_lines_on_unlink: True when unlink lines are enabled by the rule.
-            res_id: Record id being processed.
-            old_values: Mapping `{res_id: {field: value}}` captured before operation.
-            new_values: Mapping `{res_id: {field: value}}` captured after operation.
-
-        Returns:
-            Iterable of field technical names to process into payload lines.
-        """
-        diff = DictDiffer(
-            dict(new_values.get(res_id, EMPTY_DICT)),
-            dict(old_values.get(res_id, EMPTY_DICT)),
-        )
-
-        if method == "create":
-            return diff.added()
-        if method == "read" or include_lines_on_unlink:
-            return old_values.get(res_id, EMPTY_DICT).keys()
-        if method == "write":
-            return diff.changed()
-        return ()
-
-    def _build_lines_for_record(
-        self,
-        *,
-        uid: int,
-        now_iso: str,
-        model_id: int,
-        log_id: str,
-        log_ctx: dict[str, Any],
-        method: str,
-        include_lines_on_unlink: bool,
-        line_builder: Callable[..., dict[str, Any]] | None,
-        values_src: tuple[Mapping[int, Mapping[str, Any]], ...],
-        fields_list: Iterable[str],
-        fields_to_exclude_set: set[str],
-    ) -> list[_PayloadLine]:
-        """
-        Build payload line entries for a single audited record.
-
-        Args:
-            uid: Acting user id.
-            now_iso: UTC ISO timestamp string used for line `create_date`.
-            model_id: `ir.model` id for the audited model.
-            log_id: UUID of the parent log entry.
-            log_ctx: Context dict passed to auditlog helper.
-            method: Audited operation.
-            include_lines_on_unlink: Whether unlink should be treated as read for lines.
-            line_builder: Selected builder callable, or None to return no lines.
-            values_src: Tuple of source mappings passed into `line_builder`.
-            fields_list: Field names selected by `_fields_list_for_record()`.
-            fields_to_exclude_set: Set of field names to ignore.
-
-        Returns:
-            List of `_PayloadLine` dicts.
-        """
-        if not line_builder:
-            return []
-
-        one_source = method in ("create", "read") or include_lines_on_unlink
-        lines: list[_PayloadLine] = []
-
-        for field_name in fields_list:
-            if field_name in fields_to_exclude_set:
-                continue
-
-            field = self._get_field(model_id, field_name)
-            if not field:
-                continue  # Dummy / non-loggable field
-
-            if one_source:
-                vals = line_builder(log_ctx, field, values_src[0])
-            else:
-                vals = line_builder(log_ctx, field, values_src[0], values_src[1])
-
-            lines.append(
-                {
-                    "id": str(uuid.uuid4()),
-                    "log_id": log_id,
-                    "field_id": int(field["id"]),
-                    "field_name": field.get("name"),
-                    "field_description": field.get("field_description"),
-                    "old_value": vals.get("old_value"),
-                    "new_value": vals.get("new_value"),
-                    "old_value_text": vals.get("old_value_text"),
-                    "new_value_text": vals.get("new_value_text"),
-                    "create_date": now_iso,
-                    "create_uid": int(uid),
-                }
-            )
-
-        return lines
-
     def _dump_payload_json(self, payload: dict[str, Any]) -> dict[str, Any]:
-        """
-        Prepare payload for storing in the PostgreSQL buffer.
-
-        Buffer field is `fields.Json`, so we store a dict, not a JSON string.
-        We sanitize values to ensure the structure is JSON-serializable.
-        """
         return _json_sanitize(payload)
 
-    def _buffer_create_or_log(
-        self,
-        *,
-        buffer_model,
-        buffer_vals_list: list[dict[str, Any]],
-        on_fail_msg: str,
-        on_fail_args: tuple[Any, ...],
-    ) -> None:
-        """
-        Create buffer rows and log a consistent exception message on failure.
-
-        Args:
-            buffer_model: Recordset of `auditlog.log.buffer` (typically sudo()).
-            buffer_vals_list: List of dicts passed to `create()`.
-            on_fail_msg: Logger message template used on exception.
-            on_fail_args: Arguments for the logger template.
-
-        Raises:
-            Any exception raised by `buffer_model.create()` is re-raised.
-        """
-        try:
-            buffer_model.create(buffer_vals_list)
-        except Exception:
-            _logger.exception(on_fail_msg, *on_fail_args)
-            raise
-
+    # flake8: noqa: C901
     def create_logs(
         self,
         uid: int,
@@ -428,7 +160,6 @@ def create_logs(
         new_values: Mapping[int, Mapping[str, Any]] | None = None,
         additional_log_values: Mapping[str, Any] | None = None,
     ) -> None:
-        """Write audit logs to ClickHouse buffer instead of PostgreSQL audit tables."""
         config = self.env["auditlog.clickhouse.config"].sudo().get_active_config()
         if not config:
             return super().create_logs(
@@ -440,72 +171,76 @@ def create_logs(
                 new_values=new_values,
                 additional_log_values=additional_log_values,
             )
-        started = time.monotonic()
 
+        started = time.monotonic()
         old_values = old_values or EMPTY_DICT
         new_values = new_values or EMPTY_DICT
         additional_log_values = dict(additional_log_values or {})
-        log_type = additional_log_values.get("log_type")  # 'full' / 'fast'
-
-        if _logger.isEnabledFor(logging.DEBUG):
-            _logger.debug(
-                "auditlog_clickhouse: create_logs start "
-                "(uid=%s model=%s method=%s res_ids=%s log_type=%s)",
-                uid,
-                res_model,
-                method,
-                len(res_ids),
-                log_type,
-            )
+        log_type = additional_log_values.get("log_type")
 
         model_id = self._get_audit_model_id(res_model)
         model_rs = self.env[res_model]
         fields_to_exclude_set, capture_record = self._get_rule_settings(model_id)
 
         now_iso = datetime.now(timezone.utc).isoformat(timespec="milliseconds")
-        base_log = self._build_base_log(
-            uid=uid,
-            method=method,
-            model_id=model_id,
-            log_type=log_type,
-            now_iso=now_iso,
+        model_rec = self.env["ir.model"].sudo().browse(model_id)
+
+        base_log: dict[str, Any] = {
+            "model_id": int(model_id),
+            "model_name": model_rec.name,
+            "model_model": model_rec.model,
+            "user_id": int(uid),
+            "method": method,
+            "http_request_id": None,
+            "http_session_id": None,
+            "log_type": log_type,
+            "create_date": now_iso,
+            "create_uid": int(uid),
+        }
+
+        buffer_model = (
+            self.env["auditlog.log.buffer"].sudo().with_context(tracking_disable=True)
         )
 
-        buffer_model = self.env["auditlog.log.buffer"].sudo()
         buffer_vals_list: list[dict[str, Any]] = []
 
+        # export_data is special (no lines)
         if method == "export_data":
-            payload = self._build_export_payload(
-                res_model=res_model, res_ids=res_ids, base_log=base_log
-            )
+            payload: _Payload = {
+                "log": {
+                    "id": str(uuid.uuid4()),
+                    "name": res_model,
+                    "res_id": None,
+                    "res_ids": str(list(res_ids)),
+                    **base_log,
+                },
+                "lines": [],
+            }
             buffer_vals_list.append({"payload_json": self._dump_payload_json(payload)})
-
-            self._buffer_create_or_log(
-                buffer_model=buffer_model,
-                buffer_vals_list=buffer_vals_list,
-                on_fail_msg=(
-                    "auditlog_clickhouse: buffer create failed "
-                    "(export_data) (model=%s uid=%s)"
-                ),
-                on_fail_args=(res_model, uid),
-            )
-
+            buffer_model.create(buffer_vals_list)
             _logger.debug(
-                "auditlog_clickhouse: create_logs end "
-                "(export_data) (buffer_rows=1 elapsed=%.3fs)",
+                "auditlog_clickhouse: create_logs end export_data (elapsed=%.3fs)",
                 time.monotonic() - started,
             )
             return
 
-        line_builder, values_src, include_lines_on_unlink = self._select_line_builder(
-            method=method,
-            capture_record=capture_record,
-            old_values=old_values,
-            new_values=new_values,
-        )
+        include_lines_on_unlink = method == "unlink" and capture_record
 
-        total_lines = 0
-        produced_payloads = 0
+        if method == "create":
+            line_builder = self._prepare_log_line_vals_on_create
+            values_src = (new_values,)
+        elif method == "read":
+            line_builder = self._prepare_log_line_vals_on_read
+            values_src = (old_values,)
+        elif method == "write":
+            line_builder = self._prepare_log_line_vals_on_write
+            values_src = (old_values, new_values)
+        elif include_lines_on_unlink:
+            line_builder = self._prepare_log_line_vals_on_read
+            values_src = (old_values,)
+        else:
+            line_builder = None
+            values_src = ()
 
         for res_id in res_ids:
             log_id = str(uuid.uuid4())
@@ -519,28 +254,54 @@ def create_logs(
                 **base_log,
             }
 
-            fields_list = self._fields_list_for_record(
-                method=method,
-                include_lines_on_unlink=include_lines_on_unlink,
-                res_id=res_id,
-                old_values=old_values,
-                new_values=new_values,
+            diff = DictDiffer(
+                dict(new_values.get(res_id, EMPTY_DICT)),
+                dict(old_values.get(res_id, EMPTY_DICT)),
             )
 
-            log_ctx = {"res_id": res_id, "model_id": model_id, "log_type": log_type}
-            lines = self._build_lines_for_record(
-                uid=uid,
-                now_iso=now_iso,
-                model_id=model_id,
-                log_id=log_id,
-                log_ctx=log_ctx,
-                method=method,
-                include_lines_on_unlink=include_lines_on_unlink,
-                line_builder=line_builder,
-                values_src=values_src,
-                fields_list=fields_list,
-                fields_to_exclude_set=fields_to_exclude_set,
-            )
+            if method == "create":
+                fields_list = diff.added()
+            elif method == "read" or include_lines_on_unlink:
+                fields_list = old_values.get(res_id, EMPTY_DICT).keys()
+            elif method == "write":
+                fields_list = diff.changed()
+            else:
+                fields_list = ()
+
+            lines: list[_PayloadLine] = []
+            if line_builder:
+                one_source = method in ("create", "read") or include_lines_on_unlink
+                log_ctx = {"res_id": res_id, "model_id": model_id, "log_type": log_type}
+
+                for field_name in fields_list:
+                    if field_name in fields_to_exclude_set:
+                        continue
+                    field = self._get_field(model_id, field_name)
+                    if not field:
+                        continue
+
+                    if one_source:
+                        vals = line_builder(log_ctx, field, values_src[0])
+                    else:
+                        vals = line_builder(
+                            log_ctx, field, values_src[0], values_src[1]
+                        )
+
+                    lines.append(
+                        {
+                            "id": str(uuid.uuid4()),
+                            "log_id": log_id,
+                            "field_id": int(field["id"]),
+                            "field_name": field.get("name"),
+                            "field_description": field.get("field_description"),
+                            "old_value": vals.get("old_value"),
+                            "new_value": vals.get("new_value"),
+                            "old_value_text": vals.get("old_value_text"),
+                            "new_value_text": vals.get("new_value_text"),
+                            "create_date": now_iso,
+                            "create_uid": int(uid),
+                        }
+                    )
 
             if method == "unlink" or lines:
                 buffer_vals_list.append(
@@ -550,40 +311,6 @@ def create_logs(
                         )
                     }
                 )
-                produced_payloads += 1
-                total_lines += len(lines)
-
-        if not buffer_vals_list:
-            # This can legitimately happen when method != unlink and there are no
-            # changed fields after exclusions; still useful to know during debugging.
-            _logger.debug(
-                "auditlog_clickhouse: no payloads produced "
-                "(model=%s method=%s res_ids=%s excluded=%s capture_record=%s)",
-                res_model,
-                method,
-                len(res_ids),
-                len(fields_to_exclude_set),
-                capture_record,
-            )
-            return
 
-        self._buffer_create_or_log(
-            buffer_model=buffer_model,
-            buffer_vals_list=buffer_vals_list,
-            on_fail_msg=(
-                "auditlog_clickhouse: buffer create failed "
-                "(model=%s method=%s uid=%s payloads=%s lines=%s)"
-            ),
-            on_fail_args=(res_model, method, uid, produced_payloads, total_lines),
-        )
-
-        _logger.debug(
-            "auditlog_clickhouse: create_logs end (model=%s method=%s "
-            "payloads=%s lines=%s res_ids=%s elapsed=%.3fs)",
-            res_model,
-            method,
-            produced_payloads,
-            total_lines,
-            len(res_ids),
-            time.monotonic() - started,
-        )
+        if buffer_vals_list:
+            buffer_model.create(buffer_vals_list)
diff --git a/auditlog_clickhouse/tests/common.py b/auditlog_clickhouse/tests/common.py
index a9f38318696..defb67cdd21 100644
--- a/auditlog_clickhouse/tests/common.py
+++ b/auditlog_clickhouse/tests/common.py
@@ -1,7 +1,7 @@
 import contextlib
 from unittest.mock import patch
 
-from odoo.tests.common import TransactionCase
+from odoo.addons.auditlog.tests.common import AuditLogRuleCommon
 
 
 class DummyClickHouseClient:
@@ -21,40 +21,37 @@ def execute(self, query, params=None):
         return []
 
 
-class AuditLogClickhouseCommon(TransactionCase):
+class AuditLogClickhouseCommon(AuditLogRuleCommon):
     @classmethod
     def setUpClass(cls):
         super().setUpClass()
-        cls._patched_models = set()
-        cls._created_rules = cls.env["auditlog.rule"]
+        cls._cleanup_clickhouse_test_data()
 
-        # Clean start (important when suites run in one process)
+    @classmethod
+    def tearDownClass(cls):
+        try:
+            cls._cleanup_clickhouse_test_data()
+        finally:
+            super().tearDownClass()
+
+    @classmethod
+    def _cleanup_clickhouse_test_data(cls):
+        """Ensure clean state for configs and buffer across suites."""
         cls.env["auditlog.clickhouse.config"].sudo().search([]).write(
             {"is_active": False}
         )
         cls.env["auditlog.log.buffer"].sudo().search([]).unlink()
 
-        # For OUR tests we need active config
-        cls.base_cfg = cls.create_config(is_active=True)
-
-    @classmethod
-    def create_rule(cls, vals):
-        """Create an auditlog.rule and track patched models for cleanup."""
-        rule = cls.env["auditlog.rule"].with_context(tracking_disable=True).create(vals)
-        cls._created_rules |= rule
-        cls._patched_models |= set(rule.model_id.mapped("model"))
-        return rule
-
     @classmethod
     def create_config(cls, **vals):
-        """Create ClickHouse config. Keep defaults minimal and test-friendly."""
+        """Create ClickHouse config with minimal defaults for tests."""
         defaults = {
             "host": "localhost",
             "port": 9000,
             "database": "db",
             "user": "user",
             "password": "pass",
-            "is_active": True,
+            "is_active": False,
         }
         defaults.update(vals)
         return (
@@ -63,46 +60,18 @@ def create_config(cls, **vals):
             .create(defaults)
         )
 
-    @classmethod
-    def tearDownClass(cls):
-        try:
-            # Avoid leaking to other modules (auditlog)
-            cls.env["auditlog.clickhouse.config"].sudo().search([]).write(
-                {"is_active": False}
-            )
-            cls.env["auditlog.log.buffer"].sudo().search([]).unlink()
-
-            for rule in getattr(cls, "_created_rules", cls.env["auditlog.rule"]).sudo():
-                try:
-                    if rule.exists():
-                        rule.unsubscribe()
-                except KeyError:
-                    continue
-
-            for model in getattr(cls, "_patched_models", set()):
-                model_rs = cls.env[model]
-                for method in ("create", "read", "write", "unlink", "export_data"):
-                    func = getattr(model_rs, method, None)
-                    if func is None:
-                        continue
-                    assert not hasattr(
-                        func, "origin"
-                    ), f"{model} {method} still patched"
-        finally:
-            super().tearDownClass()
-
     @contextlib.contextmanager
     def _patched_clickhouse_client(self, *, raise_on_insert: bool = False):
-        """
-        Patch get_clickhouse_client used inside auditlog.clickhouse.config._get_client()
-        so tests don't require clickhouse-driver nor real ClickHouse.
-        """
+        """Patch ClickHouse client getter so tests don't require real ClickHouse."""
         dummy = DummyClickHouseClient(raise_on_insert=raise_on_insert)
-        target = "odoo.addons.auditlog_clickhouse.models.auditlog_clickhouse_config.get_clickhouse_client"  # noqa: E501
+        target = (
+            "odoo.addons.auditlog_clickhouse.models."
+            "auditlog_clickhouse_config.get_clickhouse_client"
+        )
         with patch(target, autospec=True, return_value=dummy):
             yield dummy
 
     def _parse_payloads(self):
         """Return list of decoded payload dicts from buffer (oldest first)."""
         buf = self.env["auditlog.log.buffer"].sudo().search([], order="id asc")
-        return [r.payload_json for r in buf]
+        return [rec.payload_json for rec in buf]
diff --git a/auditlog_clickhouse/tests/test_auditlog_clickhouse.py b/auditlog_clickhouse/tests/test_auditlog_clickhouse.py
index f48645e839b..b3b568d43cf 100644
--- a/auditlog_clickhouse/tests/test_auditlog_clickhouse.py
+++ b/auditlog_clickhouse/tests/test_auditlog_clickhouse.py
@@ -63,8 +63,12 @@ def test_02_write_creates_lines(self):
         buf = self.env["auditlog.log.buffer"].sudo()
         start_buf = buf.search_count([])
 
-        group = self.env["res.groups"].create({"name": "CH Group"})
-        group.write({"name": "CH Group v2"})
+        group = (
+            self.env["res.groups"]
+            .with_context(tracking_disable=True)
+            .create({"name": "CH Group"})
+        )
+        group.with_context(tracking_disable=True).write({"name": "CH Group v2"})
 
         self.assertGreater(buf.search_count([]), start_buf)
 
@@ -86,7 +90,7 @@ def test_03_export_data_creates_single_payload_no_lines(self):
         self.assertEqual(payload["log"]["method"], "export_data")
         self.assertEqual(payload["lines"], [])
 
-    def test_04_unlink_is_always_logged_even_without_capture_record(self):
+    def test_04_unlink_is_logged(self):
         buf = self.env["auditlog.log.buffer"].sudo()
         start_buf = buf.search_count([])
 
@@ -113,6 +117,7 @@ def setUpClass(cls):
             {
                 "name": "testrule partner clickhouse queue",
                 "model_id": cls.partner_model_id,
+                "log_read": True,
                 "log_create": True,
                 "log_write": True,
                 "log_unlink": True,
@@ -245,107 +250,3 @@ def test_05_job_invalid_payload_marks_error_and_keeps_row(self):
         self.assertEqual(rec.state, buf.STATE_ERROR)
         self.assertTrue(rec.error_message)
         self.assertGreaterEqual(rec.attempt_count, 1)
-
-
-@tagged("-at_install", "post_install", "test1")
-class TestAuditlogClickhouseConfig(AuditLogClickhouseCommon):
-    def test_01_single_active_on_create(self):
-        cfg1 = self.create_config(is_active=True, host="h1")
-        cfg2 = self.create_config(is_active=True, host="h2")
-
-        cfg1.invalidate_recordset()
-        cfg2.invalidate_recordset()
-
-        active = self.env["auditlog.clickhouse.config"].search(
-            [("is_active", "=", True)]
-        )
-        self.assertEqual(len(active), 1)
-        self.assertTrue(cfg2.is_active)
-        self.assertFalse(cfg1.is_active)
-
-    def test_02_single_active_on_write(self):
-        cfg1 = self.create_config(is_active=False, host="h1")
-        cfg2 = self.create_config(is_active=True, host="h2")
-
-        cfg1.write({"is_active": True})
-        cfg1.invalidate_recordset()
-        cfg2.invalidate_recordset()
-
-        active = self.env["auditlog.clickhouse.config"].search(
-            [("is_active", "=", True)]
-        )
-        self.assertEqual(len(active), 1)
-        self.assertTrue(cfg1.is_active)
-        self.assertFalse(cfg2.is_active)
-
-    def test_03_test_connection_uses_client(self):
-        cfg = self.create_config(is_active=True)
-
-        with self._patched_clickhouse_client() as dummy:
-            action = cfg.action_test_connection()
-
-        self.assertTrue(action)
-        self.assertTrue(any("SELECT 1" in (q or "") for (q, _params) in dummy.calls))
-
-    def test_04_queue_channel_field_is_m2o_and_default_is_root(self):
-        cfg = self.create_config(is_active=False)
-
-        self.assertEqual(
-            cfg._fields["queue_channel_id"].comodel_name,
-            "queue.job.channel",
-            "queue_channel_id must be a Many2one to queue.job.channel",
-        )
-
-        root = self.env["queue.job.channel"].search(
-            [("complete_name", "=", "root")], limit=1
-        )
-        self.assertTrue(root, "queue_job must provide root channel")
-        self.assertEqual(
-            cfg.queue_channel_id.id, root.id, "Default queue channel must be root"
-        )
-
-    def test_05_onchange_is_active_shows_disclaimer(self):
-        # Create an active config so onchange also mentions it
-        active = self.create_config(is_active=True, host="active-host")
-
-        new_cfg = self.env["auditlog.clickhouse.config"].new(
-            {
-                "is_active": True,
-                "host": "h-new",
-                "port": 9000,
-                "database": "db",
-                "user": "u",
-            }
-        )
-        res = new_cfg._onchange_is_active()
-
-        self.assertTrue(
-            res and res.get("warning"),
-            "Onchange must return warning when enabling is_active",
-        )
-        msg = res["warning"]["message"]
-        self.assertIn("As soon as this connection to ClickHouse is activated", msg)
-        self.assertIn("Only one connection can be active at a time", msg)
-        self.assertIn(active.display_name, msg)
-
-    def test_06_cron_uses_overridden_batch_size_argument(self):
-        cfg = self.create_config(is_active=True)
-        cfg.write({"queue_batch_size": 777})
-
-        buf = self.env["auditlog.log.buffer"].sudo()
-        job_model = self.env["queue.job"].sudo()
-
-        buf.create(
-            {"payload_json": {"log": {}, "lines": []}, "state": buf.STATE_PENDING}
-        )
-
-        start_jobs = job_model.search_count([])
-        buf._cron_flush_to_clickhouse(batch_size=10)
-
-        self.assertEqual(job_model.search_count([]) - start_jobs, 1)
-        job = job_model.search([], order="id desc", limit=1)
-        self.assertEqual(
-            job.args[1],
-            10,
-            "Explicit cron batch_size must override config.queue_batch_size",
-        )

From dfdcd09a159de6b422466d5b769cb9f11c8b2e1c Mon Sep 17 00:00:00 2001
From: tendil <mejta.diman@gmail.com>
Date: Tue, 24 Feb 2026 09:49:59 +0000
Subject: [PATCH 08/11] [FIX] auditlog_clickhouse: resolve comments

Task: 5246
---
 auditlog_clickhouse/README.rst                   | 16 ++++++++--------
 auditlog_clickhouse/__manifest__.py              |  2 +-
 .../data/auditlog_clickhouse_queue.xml           |  2 +-
 auditlog_clickhouse/models/auditlog_rule.py      |  4 ++--
 auditlog_clickhouse/models/clickhouse_client.py  |  2 +-
 auditlog_clickhouse/readme/CONFIGURE.md          |  2 +-
 auditlog_clickhouse/readme/DESCRIPTION.md        |  2 +-
 .../static/description/index.html                | 16 ++++++++--------
 requirements.txt                                 |  2 +-
 9 files changed, 24 insertions(+), 24 deletions(-)

diff --git a/auditlog_clickhouse/README.rst b/auditlog_clickhouse/README.rst
index ea0f3ae5434..f5ad00cd605 100644
--- a/auditlog_clickhouse/README.rst
+++ b/auditlog_clickhouse/README.rst
@@ -28,12 +28,12 @@ Audit Log ClickHouse store and read
 
 |badge1| |badge2| |badge3| |badge4| |badge5|
 
-This module implements buffered asynchronous transfers audit logs from
-PostgreSQL to ClickHouse. Storing audit data in a columnar database that
-is write-only prevents database bloat, makes audit records effectively
-immutable, and allows for scaling to very large volumes of logs without
-slowing down normal transactions. Audit logs are written asynchronously
-to reduce the load on business operations.
+This module implements buffered asynchronous transfers audit of logs
+from PostgreSQL to ClickHouse. Storing audit data in a columnar database
+that is write-only prevents database bloat, makes audit records
+effectively immutable, and allows for scaling to very large volumes of
+logs without slowing down normal transactions. Audit logs are written
+asynchronously to reduce the load on business operations.
 
 **Table of contents**
 
@@ -102,8 +102,8 @@ Steps:
 +---------------------------------------+
 
 - Click **Test connection**.
-- Optionally, click **Create Auditlog Tables** to create the tables and
-  User in the target database.
+- Optionally, click **Create Auditlog Tables** to create the tables in
+  the target database.
 
 Usage
 =====
diff --git a/auditlog_clickhouse/__manifest__.py b/auditlog_clickhouse/__manifest__.py
index 818c34c0e70..6994b739ccb 100644
--- a/auditlog_clickhouse/__manifest__.py
+++ b/auditlog_clickhouse/__manifest__.py
@@ -11,7 +11,7 @@
         "queue_job",
     ],
     "external_dependencies": {
-        "python": ["clickhouse_driver"],
+        "python": ["clickhouse-driver"],
     },
     "data": [
         "security/ir.model.access.csv",
diff --git a/auditlog_clickhouse/data/auditlog_clickhouse_queue.xml b/auditlog_clickhouse/data/auditlog_clickhouse_queue.xml
index fd468293989..c5968f58514 100644
--- a/auditlog_clickhouse/data/auditlog_clickhouse_queue.xml
+++ b/auditlog_clickhouse/data/auditlog_clickhouse_queue.xml
@@ -14,7 +14,7 @@
         id="action_configure_auditlog_clickhouse_cron"
         model="ir.actions.act_window"
     >
-        <field name="name">Edit export action</field>
+        <field name="name">Edit buffer flush schedule</field>
         <field name="res_model">ir.cron</field>
         <field
             name="res_id"
diff --git a/auditlog_clickhouse/models/auditlog_rule.py b/auditlog_clickhouse/models/auditlog_rule.py
index 4b95e015c06..50567fb7ae8 100644
--- a/auditlog_clickhouse/models/auditlog_rule.py
+++ b/auditlog_clickhouse/models/auditlog_rule.py
@@ -191,8 +191,8 @@ def create_logs(
             "model_model": model_rec.model,
             "user_id": int(uid),
             "method": method,
-            "http_request_id": None,
-            "http_session_id": None,
+            "http_request_id": additional_log_values.get("http_request_id"),
+            "http_session_id": additional_log_values.get("http_session_id"),
             "log_type": log_type,
             "create_date": now_iso,
             "create_uid": int(uid),
diff --git a/auditlog_clickhouse/models/clickhouse_client.py b/auditlog_clickhouse/models/clickhouse_client.py
index 9e7f403eb6b..a481807c17e 100644
--- a/auditlog_clickhouse/models/clickhouse_client.py
+++ b/auditlog_clickhouse/models/clickhouse_client.py
@@ -6,7 +6,7 @@
 
 try:
     from clickhouse_driver import Client as ClickHouseClient
-except Exception:
+except ImportError:
     ClickHouseClient = None
 
 
diff --git a/auditlog_clickhouse/readme/CONFIGURE.md b/auditlog_clickhouse/readme/CONFIGURE.md
index 56be2fc6feb..42f9462aef7 100644
--- a/auditlog_clickhouse/readme/CONFIGURE.md
+++ b/auditlog_clickhouse/readme/CONFIGURE.md
@@ -28,4 +28,4 @@ Steps:
 | channel_id (default root) |
 
 - Click **Test connection**.
-- Optionally, click **Create Auditlog Tables** to create the tables and User in the target database.
+- Optionally, click **Create Auditlog Tables** to create the tables in the target database.
diff --git a/auditlog_clickhouse/readme/DESCRIPTION.md b/auditlog_clickhouse/readme/DESCRIPTION.md
index 9fe3ba7b4f5..74bf7db4fd2 100644
--- a/auditlog_clickhouse/readme/DESCRIPTION.md
+++ b/auditlog_clickhouse/readme/DESCRIPTION.md
@@ -1,4 +1,4 @@
-This module implements buffered asynchronous transfers audit logs from PostgreSQL to ClickHouse.
+This module implements buffered asynchronous transfers audit of logs from PostgreSQL to ClickHouse.
 Storing audit data in a columnar database that is write-only prevents database bloat, makes audit records effectively
 immutable, and allows for scaling to very large volumes of logs without slowing down normal transactions.
 Audit logs are written asynchronously to reduce the load on business operations.
diff --git a/auditlog_clickhouse/static/description/index.html b/auditlog_clickhouse/static/description/index.html
index 380fbb72cf3..f184e8b5889 100644
--- a/auditlog_clickhouse/static/description/index.html
+++ b/auditlog_clickhouse/static/description/index.html
@@ -370,12 +370,12 @@ <h1 class="title">Audit Log ClickHouse store and read</h1>
 !! source digest: sha256:11aaa38bad24a890554c0d34d74d31e13b933facbba3fea31f4cbf22ae8fd842
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
 <p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/licence-AGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-tools/tree/18.0/auditlog_clickhouse"><img alt="OCA/server-tools" src="https://img.shields.io/badge/github-OCA%2Fserver--tools-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-tools-18-0/server-tools-18-0-auditlog_clickhouse"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-tools&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
-<p>This module implements buffered asynchronous transfers audit logs from
-PostgreSQL to ClickHouse. Storing audit data in a columnar database that
-is write-only prevents database bloat, makes audit records effectively
-immutable, and allows for scaling to very large volumes of logs without
-slowing down normal transactions. Audit logs are written asynchronously
-to reduce the load on business operations.</p>
+<p>This module implements buffered asynchronous transfers audit of logs
+from PostgreSQL to ClickHouse. Storing audit data in a columnar database
+that is write-only prevents database bloat, makes audit records
+effectively immutable, and allows for scaling to very large volumes of
+logs without slowing down normal transactions. Audit logs are written
+asynchronously to reduce the load on business operations.</p>
 <p><strong>Table of contents</strong></p>
 <div class="contents local topic" id="contents">
 <ul class="simple">
@@ -460,8 +460,8 @@ <h1><a class="toc-backref" href="#toc-entry-2">Configuration</a></h1>
 </table>
 <ul class="simple">
 <li>Click <strong>Test connection</strong>.</li>
-<li>Optionally, click <strong>Create Auditlog Tables</strong> to create the tables and
-User in the target database.</li>
+<li>Optionally, click <strong>Create Auditlog Tables</strong> to create the tables in
+the target database.</li>
 </ul>
 </div>
 <div class="section" id="usage">
diff --git a/requirements.txt b/requirements.txt
index 4a4228825ba..d3e18b80a6d 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,5 +1,5 @@
 # generated from manifests external_dependencies
-clickhouse_driver
+clickhouse-driver
 cryptography
 dataclasses
 odoo_test_helper

From bf5c07fe9d666fe8fb2e677492c53bac19a4aceb Mon Sep 17 00:00:00 2001
From: tendil <mejta.diman@gmail.com>
Date: Wed, 25 Feb 2026 21:47:03 +0000
Subject: [PATCH 09/11] [IMP] auditlog_clickhouse: read via pg_clickhouse

Allow auditors to browse, search and filter audit logs in the standard
Odoo Audit Log UI while keeping the data stored externally in ClickHouse.

Configure Postgres FDW (pg_clickhouse) so auditlog models read from
ClickHouse without changing existing auditlog views, and ensure queries
(search/filters/group by) are forwarded through FDW.

Keep the audit trail immutable by blocking UI create/write/unlink for
auditlog records when ClickHouse/FDW mode is enabled.

Task: 5248
---
 auditlog_clickhouse/README.rst                |  15 +-
 .../i18n/auditlog_clickhouse.pot              | 182 +++++++--
 auditlog_clickhouse/models/__init__.py        |   1 +
 .../models/auditlog_clickhouse_config.py      | 351 +++++++++++++++++-
 .../models/auditlog_log_buffer.py             |  30 +-
 .../models/auditlog_readonly.py               |  53 +++
 auditlog_clickhouse/models/auditlog_rule.py   |  68 +++-
 auditlog_clickhouse/readme/CONFIGURE.md       |   1 +
 auditlog_clickhouse/readme/DESCRIPTION.md     |   2 +
 auditlog_clickhouse/readme/USAGE.md           |   5 +
 .../static/description/index.html             |  13 +-
 .../auditlog_clickhouse_config_views.xml      |   6 +
 12 files changed, 669 insertions(+), 58 deletions(-)
 create mode 100644 auditlog_clickhouse/models/auditlog_readonly.py

diff --git a/auditlog_clickhouse/README.rst b/auditlog_clickhouse/README.rst
index f5ad00cd605..4b16fbb9027 100644
--- a/auditlog_clickhouse/README.rst
+++ b/auditlog_clickhouse/README.rst
@@ -33,7 +33,10 @@ from PostgreSQL to ClickHouse. Storing audit data in a columnar database
 that is write-only prevents database bloat, makes audit records
 effectively immutable, and allows for scaling to very large volumes of
 logs without slowing down normal transactions. Audit logs are written
-asynchronously to reduce the load on business operations.
+asynchronously to reduce the load on business operations. Audit logs
+stored in ClickHouse are displayed in standard Odoo audit log views
+(logs, log lines, forms with detailed log information) without any
+changes to existing view definitions.
 
 **Table of contents**
 
@@ -69,6 +72,8 @@ This module requires:
 
   - ``INSERT`` and ``CREATE TABLE`` privileges on the target database.
 
+- The ``pg_clickhouse`` extension installed on the PostgreSQL server.
+
 ..
 
    ClickHouse installation (Docker guide):
@@ -120,6 +125,14 @@ Once auditlog_clickhouse is installed and configured:
 - Data is permanently stored in ClickHouse and cannot be modified or
   deleted via Odoo.
 
+All standard Odoo audit log views work as expected - logs, log lines,
+and forms with detailed log data display data from ClickHouse. Search,
+filtering, and grouping (by user, model, date, session, query) work
+through FDW with the query being forwarded to ClickHouse. The “View
+logs” quick access button in audited model forms works as expected.
+Audit logs are read-only. Attempting to modify or delete a log entry
+from the user interface raises an error.
+
 Bug Tracker
 ===========
 
diff --git a/auditlog_clickhouse/i18n/auditlog_clickhouse.pot b/auditlog_clickhouse/i18n/auditlog_clickhouse.pot
index 84f3b0a30f8..a302b7b5e05 100644
--- a/auditlog_clickhouse/i18n/auditlog_clickhouse.pot
+++ b/auditlog_clickhouse/i18n/auditlog_clickhouse.pot
@@ -6,6 +6,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Odoo Server 18.0\n"
 "Report-Msgid-Bugs-To: \n"
+"POT-Creation-Date: 2026-02-25 21:35+0000\n"
+"PO-Revision-Date: 2026-02-25 21:35+0000\n"
 "Last-Translator: \n"
 "Language-Team: \n"
 "MIME-Version: 1.0\n"
@@ -13,11 +15,55 @@ msgstr ""
 "Content-Transfer-Encoding: \n"
 "Plural-Forms: \n"
 
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid ""
+"%s\n"
+"\n"
+"If you save this configuration as active, the currently active one will be deactivated:\n"
+"- %s"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
+msgid ""
+"As soon as this connection to ClickHouse is activated, all log\n"
+"                        entries from that moment will be stored in the configured\n"
+"                        ClickHouse database. Only one connection can be active at a\n"
+"                        time."
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid ""
+"As soon as this connection to ClickHouse is activated, all log entries from that moment will be stored in the configured ClickHouse database.\n"
+"\n"
+" Only one connection can be active at a time."
+msgstr ""
+
 #. module: auditlog_clickhouse
 #: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_log_buffer__attempt_count
 msgid "Attempt Count"
 msgstr ""
 
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_readonly.py:0
+msgid "Audit logs are read-only (stored in ClickHouse)."
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model,name:auditlog_clickhouse.model_auditlog_log
+msgid "Auditlog - Log"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model,name:auditlog_clickhouse.model_auditlog_log_line
+msgid "Auditlog - Log details (fields updated)"
+msgstr ""
+
 #. module: auditlog_clickhouse
 #: model:ir.model,name:auditlog_clickhouse.model_auditlog_rule
 msgid "Auditlog - Rule"
@@ -35,8 +81,8 @@ msgid "Auditlog ClickHouse Configuration"
 msgstr ""
 
 #. module: auditlog_clickhouse
-#: model:ir.actions.server,name:auditlog_clickhouse.ir_cron_auditlog_clickhouse_flush_ir_actions_server
-msgid "Auditlog ClickHouse: flush buffer"
+#: model:ir.actions.server,name:auditlog_clickhouse.ir_cron_auditlog_clickhouse_enqueue_flush_ir_actions_server
+msgid "Auditlog ClickHouse: enqueue buffer flush"
 msgstr ""
 
 #. module: auditlog_clickhouse
@@ -45,12 +91,28 @@ msgstr ""
 msgid "Auditlog tables were created (if they did not exist)."
 msgstr ""
 
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__queue_batch_size
+msgid "Batch size"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__queue_channel_id
+msgid "Channel"
+msgstr ""
+
 #. module: auditlog_clickhouse
 #: model:ir.actions.act_window,name:auditlog_clickhouse.action_auditlog_clickhouse_config
 #: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_list
 msgid "ClickHouse Configuration"
 msgstr ""
 
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid "ClickHouse activation"
+msgstr ""
+
 #. module: auditlog_clickhouse
 #: model:ir.ui.menu,name:auditlog_clickhouse.menu_auditlog_clickhouse_config
 msgid "ClickHouse configuration"
@@ -62,12 +124,6 @@ msgstr ""
 msgid "ClickHouse connection failed: %s"
 msgstr ""
 
-#. module: auditlog_clickhouse
-#. odoo-python
-#: code:addons/auditlog_clickhouse/models/auditlog_log_buffer.py:0
-msgid "ClickHouse insert failed: %s"
-msgstr ""
-
 #. module: auditlog_clickhouse
 #: model:ir.model.fields,help:auditlog_clickhouse.field_auditlog_clickhouse_config__port
 msgid ""
@@ -88,6 +144,16 @@ msgid ""
 "Recommended: a dedicated user with INSERT-only privileges."
 msgstr ""
 
+#. module: auditlog_clickhouse
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
+msgid "Configure action"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.actions.act_window,name:auditlog_clickhouse.action_configure_auditlog_clickhouse_flush_cron
+msgid "Configure flush action"
+msgstr ""
+
 #. module: auditlog_clickhouse
 #: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
 msgid "Connection"
@@ -127,6 +193,11 @@ msgstr ""
 msgid "Display Name"
 msgstr ""
 
+#. module: auditlog_clickhouse
+#: model:ir.actions.act_window,name:auditlog_clickhouse.action_configure_auditlog_clickhouse_cron
+msgid "Edit buffer flush schedule"
+msgstr ""
+
 #. module: auditlog_clickhouse
 #. odoo-python
 #: code:addons/auditlog_clickhouse/models/auditlog_log_buffer.py:0
@@ -138,12 +209,52 @@ msgstr ""
 msgid "Error Message"
 msgstr ""
 
+#. module: auditlog_clickhouse
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
+msgid "Export Queue"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__fdw_enabled
+msgid "FDW enabled"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid "FDW server and user mapping were configured."
+msgstr ""
+
 #. module: auditlog_clickhouse
 #. odoo-python
 #: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
 msgid "Failed to create ClickHouse tables: %s"
 msgstr ""
 
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid "Failed to create/alter FDW server: %s"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid "Failed to create/alter user mapping: %s"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_log_buffer.py:0
+msgid "Flushed to ClickHouse but failed to delete buffer rows: %s"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid "Host is required."
+msgstr ""
+
 #. module: auditlog_clickhouse
 #: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__host
 msgid "Hostname or IP"
@@ -157,17 +268,14 @@ msgstr ""
 
 #. module: auditlog_clickhouse
 #: model:ir.model.fields,help:auditlog_clickhouse.field_auditlog_clickhouse_config__is_active
-msgid "If unchecked, no audit logs will be flushed to ClickHouse."
-msgstr ""
-
-#. module: auditlog_clickhouse
-#. odoo-python
-#: code:addons/auditlog_clickhouse/models/auditlog_log_buffer.py:0
-msgid "Invalid JSON payload: %s"
+msgid ""
+"If checked audit logs will be buffered locally and exported to ClickHouse. "
+"Only one configuration can be active at a time."
 msgstr ""
 
 #. module: auditlog_clickhouse
 #: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__is_active
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_list
 msgid "Is Active"
 msgstr ""
 
@@ -186,29 +294,18 @@ msgstr ""
 #. module: auditlog_clickhouse
 #: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
 msgid ""
-"Logs are buffered in PostgreSQL and periodically flushed to ClickHouse by "
-"cron."
-msgstr ""
-
-#. module: auditlog_clickhouse
-#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
-msgid "Notes"
+"Logs are buffered in PostgreSQL and periodically flushed to\n"
+"                            ClickHouse by cron."
 msgstr ""
 
 #. module: auditlog_clickhouse
-#. odoo-python
-#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
-msgid ""
-"Only one ClickHouse connection can be active at a time\n"
-"\n"
-"If you save this configuration as active, the currently active one will be deactivated:\n"
-"- %s"
+#: model:ir.model.fields,help:auditlog_clickhouse.field_auditlog_clickhouse_config__queue_batch_size
+msgid "Maximum number of buffer rows processed per queue job run."
 msgstr ""
 
 #. module: auditlog_clickhouse
-#. odoo-python
-#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
-msgid "Only one active connection"
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
+msgid "Notes"
 msgstr ""
 
 #. module: auditlog_clickhouse
@@ -240,6 +337,11 @@ msgid ""
 "environment to use ClickHouse storage."
 msgstr ""
 
+#. module: auditlog_clickhouse
+#: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
+msgid "Setup FDW read"
+msgstr ""
+
 #. module: auditlog_clickhouse
 #: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_log_buffer__state
 msgid "State"
@@ -263,6 +365,11 @@ msgid ""
 "by the setup button)."
 msgstr ""
 
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,help:auditlog_clickhouse.field_auditlog_clickhouse_config__fdw_enabled
+msgid "Technical flag set after configuring pg_clickhouse FDW objects."
+msgstr ""
+
 #. module: auditlog_clickhouse
 #: model_terms:ir.ui.view,arch_db:auditlog_clickhouse.view_auditlog_clickhouse_config_form
 msgid "Test connection"
@@ -272,3 +379,14 @@ msgstr ""
 #: model:ir.model.fields,field_description:auditlog_clickhouse.field_auditlog_clickhouse_config__user
 msgid "User"
 msgstr ""
+
+#. module: auditlog_clickhouse
+#. odoo-python
+#: code:addons/auditlog_clickhouse/models/auditlog_clickhouse_config.py:0
+msgid "pg_clickhouse extension is not available: %s"
+msgstr ""
+
+#. module: auditlog_clickhouse
+#: model:ir.model.fields,help:auditlog_clickhouse.field_auditlog_clickhouse_config__queue_channel_id
+msgid "queue_job channel used for export jobs."
+msgstr ""
diff --git a/auditlog_clickhouse/models/__init__.py b/auditlog_clickhouse/models/__init__.py
index 9791cf29bce..d29210bc110 100644
--- a/auditlog_clickhouse/models/__init__.py
+++ b/auditlog_clickhouse/models/__init__.py
@@ -2,3 +2,4 @@
 from . import clickhouse_client
 from . import auditlog_log_buffer
 from . import auditlog_rule
+from . import auditlog_readonly
diff --git a/auditlog_clickhouse/models/auditlog_clickhouse_config.py b/auditlog_clickhouse/models/auditlog_clickhouse_config.py
index a1b1f1b3320..e3f265548bb 100644
--- a/auditlog_clickhouse/models/auditlog_clickhouse_config.py
+++ b/auditlog_clickhouse/models/auditlog_clickhouse_config.py
@@ -3,6 +3,7 @@
 
 from odoo import api, fields, models
 from odoo.exceptions import UserError
+from odoo.tools import SQL
 
 from .clickhouse_client import get_clickhouse_client
 
@@ -26,6 +27,7 @@ class AuditlogClickhouseConfig(models.Model):
     _description = "Auditlog ClickHouse Configuration"
     _rec_name = "display_name"
 
+    FDW_SERVER = "auditlog_clickhouse_srv"
     DEFAULT_PORT = 9000
     DEFAULT_DB = "odoo_audit"
     DEFAULT_USER = "odoo_audit_writer"
@@ -83,8 +85,7 @@ class AuditlogClickhouseConfig(models.Model):
 
     def _default_queue_channel(self):
         Channel = self.env["queue.job.channel"].sudo()
-        channel = Channel.search([("complete_name", "=", "root")], limit=1)
-        return channel
+        return Channel.search([("complete_name", "=", "root")], limit=1)
 
     queue_channel_id = fields.Many2one(
         comodel_name="queue.job.channel",
@@ -95,6 +96,12 @@ def _default_queue_channel(self):
         help="queue_job channel used for export jobs.",
     )
 
+    fdw_enabled = fields.Boolean(
+        string="FDW enabled",
+        readonly=True,
+        help="Technical flag set after configuring pg_clickhouse FDW objects.",
+    )
+
     @api.depends("host", "port", "database", "user", "is_active")
     def _compute_display_name(self):
         for rec in self:
@@ -353,7 +360,7 @@ def _get_clickhouse_ddl(self) -> list[str]:
             f"""
             CREATE TABLE IF NOT EXISTS {db_name}.auditlog_log
             (
-                id String,
+                id Int64,
                 name Nullable(String),
                 model_id Int32,
                 model_name Nullable(String),
@@ -366,7 +373,9 @@ def _get_clickhouse_ddl(self) -> list[str]:
                 http_session_id Nullable(Int64),
                 log_type Nullable(String),
                 create_date DateTime64(3, 'UTC'),
-                create_uid Int32
+                create_uid Int32,
+                write_date Nullable(DateTime64(3, 'UTC')),
+                write_uid Nullable(Int32)
             )
             ENGINE = MergeTree
             ORDER BY (create_date, id)
@@ -374,8 +383,8 @@ def _get_clickhouse_ddl(self) -> list[str]:
             f"""
             CREATE TABLE IF NOT EXISTS {db_name}.auditlog_log_line
             (
-                id String,
-                log_id String,
+                id Int64,
+                log_id Int64,
                 field_id Int32,
                 field_name Nullable(String),
                 field_description Nullable(String),
@@ -384,13 +393,341 @@ def _get_clickhouse_ddl(self) -> list[str]:
                 old_value_text Nullable(String),
                 new_value_text Nullable(String),
                 create_date DateTime64(3, 'UTC'),
-                create_uid Int32
+                create_uid Int32,
+                write_date Nullable(DateTime64(3, 'UTC')),
+                write_uid Nullable(Int32)
             )
             ENGINE = MergeTree
             ORDER BY (create_date, id)
             """,
         ]
 
+    def _fdw_server_exists(self) -> bool:
+        self.env.cr.execute(
+            "SELECT 1 FROM pg_foreign_server WHERE srvname = %s",
+            (self.FDW_SERVER,),
+        )
+        return bool(self.env.cr.fetchone())
+
+    def _fdw_user_mapping_exists(self) -> bool:
+        # pg_user_mappings: srvname, usename (view)
+        self.env.cr.execute(
+            "SELECT 1 FROM pg_user_mappings "
+            "WHERE srvname = %s AND usename = current_user",
+            (self.FDW_SERVER,),
+        )
+        return bool(self.env.cr.fetchone())
+
+    def action_setup_fdw_read(self):
+        """UI button: configure pg_clickhouse FDW server + user mapping."""
+        self.ensure_one()
+
+        try:
+            self.env.cr.execute("CREATE EXTENSION IF NOT EXISTS pg_clickhouse")
+        except Exception as exc:
+            raise UserError(
+                self.env._("pg_clickhouse extension is not available: %s") % exc
+            ) from exc
+
+        driver = "binary"
+        host = (self.host or "").strip()
+        if not host:
+            raise UserError(self.env._("Host is required."))
+        port = int(self.port or 0) or self.DEFAULT_PORT
+        port_opt = str(port)
+        dbname = (self.database or "").strip() or self.DEFAULT_DB
+
+        try:
+            if self._fdw_server_exists():
+                self.env.cr.execute(
+                    SQL(
+                        """
+                        ALTER SERVER %s OPTIONS (
+                            SET driver %s,
+                            SET host %s,
+                            SET port %s,
+                            SET dbname %s
+                        )
+                        """,
+                        SQL.identifier(self.FDW_SERVER),
+                        driver,
+                        host,
+                        port_opt,
+                        dbname,
+                    )
+                )
+            else:
+                self.env.cr.execute(
+                    SQL(
+                        """
+                        CREATE SERVER %s
+                        FOREIGN DATA WRAPPER clickhouse_fdw
+                        OPTIONS (
+                            driver %s,
+                            host %s,
+                            port %s,
+                            dbname %s
+                        )
+                        """,
+                        SQL.identifier(self.FDW_SERVER),
+                        driver,
+                        host,
+                        port_opt,
+                        dbname,
+                    )
+                )
+        except Exception as exc:
+            raise UserError(
+                self.env._("Failed to create/alter FDW server: %s") % exc
+            ) from exc
+
+        ch_user = (self.user or "default").strip() or "default"
+        ch_pass = self.password or ""
+
+        try:
+            if self._fdw_user_mapping_exists():
+                self.env.cr.execute(
+                    SQL(
+                        """
+                        ALTER USER MAPPING FOR CURRENT_USER
+                        SERVER %s
+                        OPTIONS (
+                            SET user %s,
+                            SET password %s
+                        )
+                        """,
+                        SQL.identifier(self.FDW_SERVER),
+                        ch_user,
+                        ch_pass,
+                    )
+                )
+            else:
+                self.env.cr.execute(
+                    SQL(
+                        """
+                        CREATE USER MAPPING FOR CURRENT_USER
+                        SERVER %s
+                        OPTIONS (
+                            user %s,
+                            password %s
+                        )
+                        """,
+                        SQL.identifier(self.FDW_SERVER),
+                        ch_user,
+                        ch_pass,
+                    )
+                )
+        except Exception as exc:
+            raise UserError(
+                self.env._("Failed to create/alter user mapping: %s") % exc
+            ) from exc
+
+        self._swap_auditlog_tables_to_fdw()
+
+        self.write({"fdw_enabled": True})
+        return self._notify(
+            title=self.env._("Success"),
+            message=self.env._("FDW server and user mapping were configured."),
+            notif_type="success",
+        )
+
+    def _relation_kind(self, schema: str, name: str) -> str | None:
+        """Return pg_class.relkind for schema.name, or None if missing."""
+        self.env.cr.execute("SELECT to_regclass(%s)", (f"{schema}.{name}",))
+        reg = self.env.cr.fetchone()[0]
+        if not reg:
+            return None
+        self.env.cr.execute(
+            """
+            SELECT c.relkind
+            FROM pg_class c
+                     JOIN pg_namespace n ON n.oid = c.relnamespace
+            WHERE n.nspname = %s
+              AND c.relname = %s
+            """,
+            (schema, name),
+        )
+        row = self.env.cr.fetchone()
+        return row[0] if row else None
+
+    def _drop_foreign_table_if_exists(self, schema: str, name: str):
+        kind = self._relation_kind(schema, name)
+        if kind == "f":
+            self.env.cr.execute(
+                SQL(
+                    "DROP FOREIGN TABLE %s.%s",
+                    SQL.identifier(schema),
+                    SQL.identifier(name),
+                )
+            )
+
+    def _rename_table_if_exists(self, schema: str, name: str, new_name: str):
+        kind = self._relation_kind(schema, name)
+        if kind == "r":  # ordinary table
+            self.env.cr.execute(
+                SQL(
+                    "ALTER TABLE %s.%s RENAME TO %s",
+                    SQL.identifier(schema),
+                    SQL.identifier(name),
+                    SQL.identifier(new_name),
+                )
+            )
+
+    def _ensure_sequences(self):
+        # needed for integer ids if PG tables are swapped away
+        self.env.cr.execute("CREATE SEQUENCE IF NOT EXISTS auditlog_log_id_seq")
+        self.env.cr.execute("CREATE SEQUENCE IF NOT EXISTS auditlog_log_line_id_seq")
+
+    def _create_foreign_tables(self, schema: str):
+        # pg_clickhouse foreign table options: table_name,
+        # (optional) database :contentReference[oaicite:1]{index=1}
+        db_opt = (self.database or "").strip()
+
+        # auditlog_log
+        self.env.cr.execute(
+            SQL(
+                """
+                CREATE FOREIGN TABLE %s.%s (
+                    id bigint,
+                    create_date timestamp,
+                    create_uid integer,
+                    write_date timestamp,
+                    write_uid integer,
+                    name text,
+                    model_id integer,
+                    model_name text,
+                    model_model text,
+                    res_id bigint,
+                    res_ids text,
+                    user_id integer,
+                    method text,
+                    http_session_id integer,
+                    http_request_id integer,
+                    log_type text
+                )
+                SERVER %s
+                OPTIONS (table_name %s, database %s)
+                """,
+                SQL.identifier(schema),
+                SQL.identifier("auditlog_log"),
+                SQL.identifier(self.FDW_SERVER),
+                "auditlog_log",
+                db_opt,
+            )
+        )
+
+        # auditlog_log_line
+        self.env.cr.execute(
+            SQL(
+                """
+                CREATE FOREIGN TABLE %s.%s (
+                    id bigint,
+                    create_date timestamp,
+                    create_uid integer,
+                    write_date timestamp,
+                    write_uid integer,
+                    field_id integer,
+                    log_id bigint,
+                    old_value text,
+                    new_value text,
+                    old_value_text text,
+                    new_value_text text,
+                    field_name text,
+                    field_description text
+                )
+                SERVER %s
+                OPTIONS (table_name %s, database %s)
+                """,
+                SQL.identifier(schema),
+                SQL.identifier("auditlog_log_line"),
+                SQL.identifier(self.FDW_SERVER),
+                "auditlog_log_line",
+                db_opt,
+            )
+        )
+
+    def _recreate_auditlog_log_line_view(self, schema: str):
+        # Odoo model auditlog.log.line.view expects this view name.
+        # Drop first to avoid old OID dependencies when swapping tables.
+        self.env.cr.execute(
+            SQL(
+                "DROP VIEW IF EXISTS %s.%s",
+                SQL.identifier(schema),
+                SQL.identifier("auditlog_log_line_view"),
+            )
+        )
+        self.env.cr.execute(
+            SQL(
+                """
+                CREATE VIEW %s.%s AS
+                SELECT alogl.id,
+                       alogl.create_date,
+                       alogl.create_uid,
+                       alogl.write_uid,
+                       alogl.write_date,
+                       alogl.field_id,
+                       alogl.log_id,
+                       alogl.old_value,
+                       alogl.new_value,
+                       alogl.old_value_text,
+                       alogl.new_value_text,
+                       alogl.field_name,
+                       alogl.field_description,
+                       alog.name,
+                       alog.model_id,
+                       alog.model_name,
+                       alog.model_model,
+                       alog.res_id,
+                       alog.user_id,
+                       alog.method,
+                       alog.http_session_id,
+                       alog.http_request_id,
+                       alog.log_type
+                FROM %s.%s alogl
+                         JOIN %s.%s alog ON alog.id = alogl.log_id
+                """,
+                SQL.identifier(schema),
+                SQL.identifier("auditlog_log_line_view"),
+                SQL.identifier(schema),
+                SQL.identifier("auditlog_log_line"),
+                SQL.identifier(schema),
+                SQL.identifier("auditlog_log"),
+            )
+        )
+
+    def _swap_auditlog_tables_to_fdw(self):
+        """Make auditlog read from ClickHouse through pg_clickhouse foreign tables."""
+        self.ensure_one()
+        schema = "public"
+
+        # 1) Drop SQL view first (it binds to old table OIDs)
+        self.env.cr.execute(
+            SQL(
+                "DROP VIEW IF EXISTS %s.%s",
+                SQL.identifier(schema),
+                SQL.identifier("auditlog_log_line_view"),
+            )
+        )
+
+        # 2) If foreign tables already exist, drop them (safe; data is in ClickHouse)
+        self._drop_foreign_table_if_exists(schema, "auditlog_log_line")
+        self._drop_foreign_table_if_exists(schema, "auditlog_log")
+
+        # 3) If ordinary tables exist, rename to backup (keep local history)
+        self._rename_table_if_exists(
+            schema, "auditlog_log_line", "auditlog_log_line_pg_backup"
+        )
+        self._rename_table_if_exists(schema, "auditlog_log", "auditlog_log_pg_backup")
+
+        # 4) Ensure sequences (needed by our ClickHouse write path)
+        self._ensure_sequences()
+
+        # 5) Create foreign tables
+        self._create_foreign_tables(schema)
+
+        # 6) Recreate view that auditlog uses for details
+        self._recreate_auditlog_log_line_view(schema)
+
     @staticmethod
     def _notify(
         *, title: str, message: str, notif_type: str = "info"
diff --git a/auditlog_clickhouse/models/auditlog_log_buffer.py b/auditlog_clickhouse/models/auditlog_log_buffer.py
index 6ba9301c490..240b82bddf9 100644
--- a/auditlog_clickhouse/models/auditlog_log_buffer.py
+++ b/auditlog_clickhouse/models/auditlog_log_buffer.py
@@ -56,6 +56,8 @@ class AuditlogLogBuffer(models.Model):
         "log_type",
         "create_date",
         "create_uid",
+        "write_date",
+        "write_uid",
     )
     _CH_LINE_COLUMNS: tuple[str, ...] = (
         "id",
@@ -69,6 +71,8 @@ class AuditlogLogBuffer(models.Model):
         "new_value_text",
         "create_date",
         "create_uid",
+        "write_date",
+        "write_uid",
     )
 
     _INVALID_PAYLOAD_MESSAGE = (
@@ -429,20 +433,30 @@ def _job_flush_to_clickhouse(self, config_id: int, batch_size: int) -> None:
     def _build_ch_log_row(cls, log_data: JsonMapping) -> ChRow:
         """Convert payload['log'] dict into CH tuple (order matches _CH_LOG_COLUMNS)."""
         return (
-            log_data.get("id"),
+            int(log_data.get("id") or 0),
             cls._to_ch_nullable_string(log_data.get("name")),
             int(log_data.get("model_id") or 0),
             cls._to_ch_nullable_string(log_data.get("model_name")),
             (log_data.get("model_model") or "unknown"),
-            log_data.get("res_id"),
+            int(log_data.get("res_id") or 0)
+            if log_data.get("res_id") is not None
+            else None,
             cls._to_ch_nullable_string(log_data.get("res_ids")),
             int(log_data.get("user_id") or 0),
             (log_data.get("method") or "unknown"),
-            log_data.get("http_request_id"),
-            log_data.get("http_session_id"),
+            int(log_data.get("http_request_id") or 0)
+            if log_data.get("http_request_id") is not None
+            else None,
+            int(log_data.get("http_session_id") or 0)
+            if log_data.get("http_session_id") is not None
+            else None,
             cls._to_ch_nullable_string(log_data.get("log_type")),
             cls._to_ch_datetime_utc(log_data.get("create_date")),
             int(log_data.get("create_uid") or 0),
+            cls._to_ch_datetime_utc(log_data.get("write_date")),
+            int(log_data.get("write_uid") or 0)
+            if log_data.get("write_uid") is not None
+            else None,
         )
 
     @classmethod
@@ -452,8 +466,8 @@ def _build_ch_line_row(cls, line_data: JsonMapping) -> ChRow:
         tuple (order matches _CH_LINE_COLUMNS).
         """
         return (
-            line_data.get("id"),
-            line_data.get("log_id"),
+            int(line_data.get("id") or 0),
+            int(line_data.get("log_id") or 0),
             int(line_data.get("field_id") or 0),
             cls._to_ch_nullable_string(line_data.get("field_name")),
             cls._to_ch_nullable_string(line_data.get("field_description")),
@@ -463,4 +477,8 @@ def _build_ch_line_row(cls, line_data: JsonMapping) -> ChRow:
             cls._to_ch_nullable_string(line_data.get("new_value_text")),
             cls._to_ch_datetime_utc(line_data.get("create_date")),
             int(line_data.get("create_uid") or 0),
+            cls._to_ch_datetime_utc(line_data.get("write_date")),
+            int(line_data.get("write_uid") or 0)
+            if line_data.get("write_uid") is not None
+            else None,
         )
diff --git a/auditlog_clickhouse/models/auditlog_readonly.py b/auditlog_clickhouse/models/auditlog_readonly.py
new file mode 100644
index 00000000000..370395b78ca
--- /dev/null
+++ b/auditlog_clickhouse/models/auditlog_readonly.py
@@ -0,0 +1,53 @@
+from odoo import api, models
+from odoo.exceptions import UserError
+
+
+def _is_clickhouse_readonly_mode(env) -> bool:
+    """Return True when ClickHouse mode is active and FDW read is enabled."""
+    config = env["auditlog.clickhouse.config"].sudo().get_active_config()
+    return bool(config and config.is_active and getattr(config, "fdw_enabled", False))
+
+
+def _raise_clickhouse_readonly(env) -> None:
+    """Raise a localized UserError for read-only audit log mode."""
+    raise UserError(env._("Audit logs are read-only (stored in ClickHouse)."))
+
+
+class AuditlogLogReadonly(models.Model):
+    _inherit = "auditlog.log"
+
+    @api.model_create_multi
+    def create(self, vals_list):
+        if _is_clickhouse_readonly_mode(self.env):
+            _raise_clickhouse_readonly(self.env)
+        return super().create(vals_list)
+
+    def write(self, vals):
+        if _is_clickhouse_readonly_mode(self.env):
+            _raise_clickhouse_readonly(self.env)
+        return super().write(vals)
+
+    def unlink(self):
+        if _is_clickhouse_readonly_mode(self.env):
+            _raise_clickhouse_readonly(self.env)
+        return super().unlink()
+
+
+class AuditlogLogLineReadonly(models.Model):
+    _inherit = "auditlog.log.line"
+
+    @api.model_create_multi
+    def create(self, vals_list):
+        if _is_clickhouse_readonly_mode(self.env):
+            _raise_clickhouse_readonly(self.env)
+        return super().create(vals_list)
+
+    def write(self, vals):
+        if _is_clickhouse_readonly_mode(self.env):
+            _raise_clickhouse_readonly(self.env)
+        return super().write(vals)
+
+    def unlink(self):
+        if _is_clickhouse_readonly_mode(self.env):
+            _raise_clickhouse_readonly(self.env)
+        return super().unlink()
diff --git a/auditlog_clickhouse/models/auditlog_rule.py b/auditlog_clickhouse/models/auditlog_rule.py
index 50567fb7ae8..d3e11bdd9c9 100644
--- a/auditlog_clickhouse/models/auditlog_rule.py
+++ b/auditlog_clickhouse/models/auditlog_rule.py
@@ -1,6 +1,5 @@
 import logging
 import time
-import uuid
 from collections.abc import Mapping, Sequence
 from datetime import date, datetime, timezone
 from decimal import Decimal
@@ -86,6 +85,15 @@ def _json_sanitize(obj: Any) -> Any:
 class AuditlogRule(models.Model):
     _inherit = "auditlog.rule"
 
+    def _next_ids(self, seq_name: str, count: int) -> list[int]:
+        if count <= 0:
+            return []
+        self.env.cr.execute(
+            "SELECT nextval(%s::regclass) FROM generate_series(1, %s)",
+            (seq_name, count),
+        )
+        return [row[0] for row in self.env.cr.fetchall()]
+
     def _get_rule_settings(self, model_id: int) -> tuple[set[str], bool]:
         """Return (fields_to_exclude_set, capture_record) for the given model_id.
 
@@ -185,30 +193,39 @@ def create_logs(
         now_iso = datetime.now(timezone.utc).isoformat(timespec="milliseconds")
         model_rec = self.env["ir.model"].sudo().browse(model_id)
 
+        # IMPORTANT: do it like auditlog does (not from additional_log_values)
+        http_request_id = (
+            self.env["auditlog.http.request"].current_http_request() or None
+        )
+        http_session_id = (
+            self.env["auditlog.http.session"].current_http_session() or None
+        )
+
         base_log: dict[str, Any] = {
             "model_id": int(model_id),
             "model_name": model_rec.name,
             "model_model": model_rec.model,
             "user_id": int(uid),
             "method": method,
-            "http_request_id": additional_log_values.get("http_request_id"),
-            "http_session_id": additional_log_values.get("http_session_id"),
+            "http_request_id": http_request_id,
+            "http_session_id": http_session_id,
             "log_type": log_type,
             "create_date": now_iso,
             "create_uid": int(uid),
+            "write_date": None,
+            "write_uid": None,
         }
 
         buffer_model = (
             self.env["auditlog.log.buffer"].sudo().with_context(tracking_disable=True)
         )
 
-        buffer_vals_list: list[dict[str, Any]] = []
-
         # export_data is special (no lines)
         if method == "export_data":
+            log_id = int(self._next_ids("auditlog_log_id_seq", 1)[0])
             payload: _Payload = {
                 "log": {
-                    "id": str(uuid.uuid4()),
+                    "id": log_id,
                     "name": res_model,
                     "res_id": None,
                     "res_ids": str(list(res_ids)),
@@ -216,8 +233,7 @@ def create_logs(
                 },
                 "lines": [],
             }
-            buffer_vals_list.append({"payload_json": self._dump_payload_json(payload)})
-            buffer_model.create(buffer_vals_list)
+            buffer_model.create([{"payload_json": self._dump_payload_json(payload)}])
             _logger.debug(
                 "auditlog_clickhouse: create_logs end export_data (elapsed=%.3fs)",
                 time.monotonic() - started,
@@ -242,8 +258,12 @@ def create_logs(
             line_builder = None
             values_src = ()
 
-        for res_id in res_ids:
-            log_id = str(uuid.uuid4())
+        log_ids = self._next_ids("auditlog_log_id_seq", len(res_ids))
+        payloads: list[tuple[_PayloadLog, list[_PayloadLine]]] = []
+        total_lines = 0
+
+        for idx, res_id in enumerate(res_ids):
+            log_id = int(log_ids[idx])
             record = model_rs.browse(res_id)
 
             log: _PayloadLog = {
@@ -289,7 +309,7 @@ def create_logs(
 
                     lines.append(
                         {
-                            "id": str(uuid.uuid4()),
+                            "id": 0,
                             "log_id": log_id,
                             "field_id": int(field["id"]),
                             "field_name": field.get("name"),
@@ -300,9 +320,24 @@ def create_logs(
                             "new_value_text": vals.get("new_value_text"),
                             "create_date": now_iso,
                             "create_uid": int(uid),
+                            "write_date": None,
+                            "write_uid": None,
                         }
                     )
 
+            payloads.append((log, lines))
+            total_lines += len(lines)
+
+        # Assign line ids in one batch (Int64)
+        line_ids: list[int] = self._next_ids("auditlog_log_line_id_seq", total_lines)
+        pos = 0
+
+        buffer_vals_list: list[dict[str, Any]] = []
+        for log, lines in payloads:
+            for line in lines:
+                line["id"] = int(line_ids[pos])
+                pos += 1
+
             if method == "unlink" or lines:
                 buffer_vals_list.append(
                     {
@@ -314,3 +349,14 @@ def create_logs(
 
         if buffer_vals_list:
             buffer_model.create(buffer_vals_list)
+
+        _logger.debug(
+            "auditlog_clickhouse: create_logs end (model=%s method=%s res_ids=%s "
+            "payloads=%s lines=%s elapsed=%.3fs)",
+            res_model,
+            method,
+            len(res_ids),
+            len(buffer_vals_list),
+            total_lines,
+            time.monotonic() - started,
+        )
diff --git a/auditlog_clickhouse/readme/CONFIGURE.md b/auditlog_clickhouse/readme/CONFIGURE.md
index 42f9462aef7..b8c559e75e4 100644
--- a/auditlog_clickhouse/readme/CONFIGURE.md
+++ b/auditlog_clickhouse/readme/CONFIGURE.md
@@ -5,6 +5,7 @@ This module requires:
 - A ClickHouse database created in advance (the module does **not** create databases/users/grants).
 - A ClickHouse user with at least:
   - `INSERT` and `CREATE TABLE` privileges on the target database.
+- The `pg_clickhouse` extension installed on the PostgreSQL server.
 
 > ClickHouse installation (Docker guide):
 > `https://clickhouse.com/docs/install/docker`
diff --git a/auditlog_clickhouse/readme/DESCRIPTION.md b/auditlog_clickhouse/readme/DESCRIPTION.md
index 74bf7db4fd2..e8af0eee543 100644
--- a/auditlog_clickhouse/readme/DESCRIPTION.md
+++ b/auditlog_clickhouse/readme/DESCRIPTION.md
@@ -2,3 +2,5 @@ This module implements buffered asynchronous transfers audit of logs from Postgr
 Storing audit data in a columnar database that is write-only prevents database bloat, makes audit records effectively
 immutable, and allows for scaling to very large volumes of logs without slowing down normal transactions.
 Audit logs are written asynchronously to reduce the load on business operations.
+Audit logs stored in ClickHouse are displayed in standard Odoo audit log views (logs, log lines,
+forms with detailed log information) without any changes to existing view definitions.
diff --git a/auditlog_clickhouse/readme/USAGE.md b/auditlog_clickhouse/readme/USAGE.md
index 87f468233b7..459df10b451 100644
--- a/auditlog_clickhouse/readme/USAGE.md
+++ b/auditlog_clickhouse/readme/USAGE.md
@@ -5,3 +5,8 @@ Once auditlog_clickhouse is installed and configured:
 - Log data is serialized and stored in the local auditlog.log.buffer table instantly. The standard auditlog tables are not populated.
 - Every 5 minutes (default), the Cron job runs, pushes data to ClickHouse, and cleans the local buffer.
 - Data is permanently stored in ClickHouse and cannot be modified or deleted via Odoo.
+
+All standard Odoo audit log views work as expected - logs, log lines, and forms with detailed log data display data from ClickHouse.
+Search, filtering, and grouping (by user, model, date, session, query) work through FDW with the query being forwarded to ClickHouse.
+The “View logs” quick access button in audited model forms works as expected.
+Audit logs are read-only. Attempting to modify or delete a log entry from the user interface raises an error.
diff --git a/auditlog_clickhouse/static/description/index.html b/auditlog_clickhouse/static/description/index.html
index f184e8b5889..e172ed97f75 100644
--- a/auditlog_clickhouse/static/description/index.html
+++ b/auditlog_clickhouse/static/description/index.html
@@ -375,7 +375,10 @@ <h1 class="title">Audit Log ClickHouse store and read</h1>
 that is write-only prevents database bloat, makes audit records
 effectively immutable, and allows for scaling to very large volumes of
 logs without slowing down normal transactions. Audit logs are written
-asynchronously to reduce the load on business operations.</p>
+asynchronously to reduce the load on business operations. Audit logs
+stored in ClickHouse are displayed in standard Odoo audit log views
+(logs, log lines, forms with detailed log information) without any
+changes to existing view definitions.</p>
 <p><strong>Table of contents</strong></p>
 <div class="contents local topic" id="contents">
 <ul class="simple">
@@ -418,6 +421,7 @@ <h1><a class="toc-backref" href="#toc-entry-2">Configuration</a></h1>
 <li><tt class="docutils literal">INSERT</tt> and <tt class="docutils literal">CREATE TABLE</tt> privileges on the target database.</li>
 </ul>
 </li>
+<li>The <tt class="docutils literal">pg_clickhouse</tt> extension installed on the PostgreSQL server.</li>
 </ul>
 <!--  -->
 <blockquote>
@@ -478,6 +482,13 @@ <h1><a class="toc-backref" href="#toc-entry-3">Usage</a></h1>
 <li>Data is permanently stored in ClickHouse and cannot be modified or
 deleted via Odoo.</li>
 </ul>
+<p>All standard Odoo audit log views work as expected - logs, log lines,
+and forms with detailed log data display data from ClickHouse. Search,
+filtering, and grouping (by user, model, date, session, query) work
+through FDW with the query being forwarded to ClickHouse. The “View
+logs” quick access button in audited model forms works as expected.
+Audit logs are read-only. Attempting to modify or delete a log entry
+from the user interface raises an error.</p>
 </div>
 <div class="section" id="bug-tracker">
 <h1><a class="toc-backref" href="#toc-entry-4">Bug Tracker</a></h1>
diff --git a/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml b/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
index 22729d70abb..d77653f66f5 100644
--- a/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
+++ b/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
@@ -32,6 +32,12 @@
                         string="Create Auditlog Tables"
                         class="btn-secondary"
                     />
+                    <button
+                        name="action_setup_fdw_read"
+                        type="object"
+                        string="Setup FDW read"
+                        class="btn-secondary"
+                    />
                 </header>
 
                 <sheet>

From a8b0ead84a760dec6ed49ceeaf1fb1ae283b84e4 Mon Sep 17 00:00:00 2001
From: tendil <mejta.diman@gmail.com>
Date: Thu, 26 Feb 2026 11:39:39 +0000
Subject: [PATCH 10/11] [FIX] auditlog_clickhouse: resolve comments

Task: 5248
---
 auditlog_clickhouse/README.rst                         |  4 +++-
 auditlog_clickhouse/__manifest__.py                    |  1 -
 .../models/auditlog_clickhouse_config.py               | 10 ++++++++--
 auditlog_clickhouse/models/auditlog_readonly.py        |  2 +-
 auditlog_clickhouse/readme/CONFIGURE.md                |  1 +
 auditlog_clickhouse/readme/DESCRIPTION.md              |  2 +-
 auditlog_clickhouse/static/description/index.html      |  4 +++-
 .../views/auditlog_clickhouse_config_views.xml         |  2 +-
 8 files changed, 18 insertions(+), 8 deletions(-)

diff --git a/auditlog_clickhouse/README.rst b/auditlog_clickhouse/README.rst
index 4b16fbb9027..8259f0b6000 100644
--- a/auditlog_clickhouse/README.rst
+++ b/auditlog_clickhouse/README.rst
@@ -28,7 +28,7 @@ Audit Log ClickHouse store and read
 
 |badge1| |badge2| |badge3| |badge4| |badge5|
 
-This module implements buffered asynchronous transfers audit of logs
+This module implements buffered asynchronous transfers of audit logs
 from PostgreSQL to ClickHouse. Storing audit data in a columnar database
 that is write-only prevents database bloat, makes audit records
 effectively immutable, and allows for scaling to very large volumes of
@@ -109,6 +109,8 @@ Steps:
 - Click **Test connection**.
 - Optionally, click **Create Auditlog Tables** to create the tables in
   the target database.
+- Click **Setup FDW read** to configure the Foreign Data Wrapper so that
+  standard Odoo audit log views read data directly from ClickHouse.
 
 Usage
 =====
diff --git a/auditlog_clickhouse/__manifest__.py b/auditlog_clickhouse/__manifest__.py
index 6994b739ccb..e9a41e8b228 100644
--- a/auditlog_clickhouse/__manifest__.py
+++ b/auditlog_clickhouse/__manifest__.py
@@ -18,5 +18,4 @@
         "data/auditlog_clickhouse_queue.xml",
         "views/auditlog_clickhouse_config_views.xml",
     ],
-    "installable": True,
 }
diff --git a/auditlog_clickhouse/models/auditlog_clickhouse_config.py b/auditlog_clickhouse/models/auditlog_clickhouse_config.py
index e3f265548bb..0485c6ac8d9 100644
--- a/auditlog_clickhouse/models/auditlog_clickhouse_config.py
+++ b/auditlog_clickhouse/models/auditlog_clickhouse_config.py
@@ -102,6 +102,14 @@ def _default_queue_channel(self):
         help="Technical flag set after configuring pg_clickhouse FDW objects.",
     )
 
+    _sql_constraints = [
+        (
+            "auditlog_clickhouse_queue_batch_size_positive",
+            "CHECK(queue_batch_size > 0)",
+            "Batch size must be greater than 0.",
+        ),
+    ]
+
     @api.depends("host", "port", "database", "user", "is_active")
     def _compute_display_name(self):
         for rec in self:
@@ -579,8 +587,6 @@ def _ensure_sequences(self):
         self.env.cr.execute("CREATE SEQUENCE IF NOT EXISTS auditlog_log_line_id_seq")
 
     def _create_foreign_tables(self, schema: str):
-        # pg_clickhouse foreign table options: table_name,
-        # (optional) database :contentReference[oaicite:1]{index=1}
         db_opt = (self.database or "").strip()
 
         # auditlog_log
diff --git a/auditlog_clickhouse/models/auditlog_readonly.py b/auditlog_clickhouse/models/auditlog_readonly.py
index 370395b78ca..1ea8ff3320e 100644
--- a/auditlog_clickhouse/models/auditlog_readonly.py
+++ b/auditlog_clickhouse/models/auditlog_readonly.py
@@ -5,7 +5,7 @@
 def _is_clickhouse_readonly_mode(env) -> bool:
     """Return True when ClickHouse mode is active and FDW read is enabled."""
     config = env["auditlog.clickhouse.config"].sudo().get_active_config()
-    return bool(config and config.is_active and getattr(config, "fdw_enabled", False))
+    return bool(config and config.fdw_enabled)
 
 
 def _raise_clickhouse_readonly(env) -> None:
diff --git a/auditlog_clickhouse/readme/CONFIGURE.md b/auditlog_clickhouse/readme/CONFIGURE.md
index b8c559e75e4..65469696cb6 100644
--- a/auditlog_clickhouse/readme/CONFIGURE.md
+++ b/auditlog_clickhouse/readme/CONFIGURE.md
@@ -30,3 +30,4 @@ Steps:
 
 - Click **Test connection**.
 - Optionally, click **Create Auditlog Tables** to create the tables in the target database.
+- Click **Setup FDW read** to configure the Foreign Data Wrapper so that standard Odoo audit log views read data directly from ClickHouse.
diff --git a/auditlog_clickhouse/readme/DESCRIPTION.md b/auditlog_clickhouse/readme/DESCRIPTION.md
index e8af0eee543..39ff8261df2 100644
--- a/auditlog_clickhouse/readme/DESCRIPTION.md
+++ b/auditlog_clickhouse/readme/DESCRIPTION.md
@@ -1,4 +1,4 @@
-This module implements buffered asynchronous transfers audit of logs from PostgreSQL to ClickHouse.
+This module implements buffered asynchronous transfers of audit logs from PostgreSQL to ClickHouse.
 Storing audit data in a columnar database that is write-only prevents database bloat, makes audit records effectively
 immutable, and allows for scaling to very large volumes of logs without slowing down normal transactions.
 Audit logs are written asynchronously to reduce the load on business operations.
diff --git a/auditlog_clickhouse/static/description/index.html b/auditlog_clickhouse/static/description/index.html
index e172ed97f75..05356225b9c 100644
--- a/auditlog_clickhouse/static/description/index.html
+++ b/auditlog_clickhouse/static/description/index.html
@@ -370,7 +370,7 @@ <h1 class="title">Audit Log ClickHouse store and read</h1>
 !! source digest: sha256:11aaa38bad24a890554c0d34d74d31e13b933facbba3fea31f4cbf22ae8fd842
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
 <p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/licence-AGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/server-tools/tree/18.0/auditlog_clickhouse"><img alt="OCA/server-tools" src="https://img.shields.io/badge/github-OCA%2Fserver--tools-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/server-tools-18-0/server-tools-18-0-auditlog_clickhouse"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/server-tools&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
-<p>This module implements buffered asynchronous transfers audit of logs
+<p>This module implements buffered asynchronous transfers of audit logs
 from PostgreSQL to ClickHouse. Storing audit data in a columnar database
 that is write-only prevents database bloat, makes audit records
 effectively immutable, and allows for scaling to very large volumes of
@@ -466,6 +466,8 @@ <h1><a class="toc-backref" href="#toc-entry-2">Configuration</a></h1>
 <li>Click <strong>Test connection</strong>.</li>
 <li>Optionally, click <strong>Create Auditlog Tables</strong> to create the tables in
 the target database.</li>
+<li>Click <strong>Setup FDW read</strong> to configure the Foreign Data Wrapper so that
+standard Odoo audit log views read data directly from ClickHouse.</li>
 </ul>
 </div>
 <div class="section" id="usage">
diff --git a/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml b/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
index d77653f66f5..c724ccd7762 100644
--- a/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
+++ b/auditlog_clickhouse/views/auditlog_clickhouse_config_views.xml
@@ -71,7 +71,7 @@
                             <button
                                 name="%(action_configure_auditlog_clickhouse_flush_cron)d"
                                 type="action"
-                                string="Configure action"
+                                string="Configure flush cron"
                                 class="oe_link"
                                 icon="fa-arrow-right"
                             />

From cfa00de55b3a5b7aefdda579e46cd616a6364546 Mon Sep 17 00:00:00 2001
From: tendil <mejta.diman@gmail.com>
Date: Thu, 26 Feb 2026 12:56:32 +0000
Subject: [PATCH 11/11] [FIX] auditlog_clickhouse: fix documentation

Task: 5248
---
 auditlog_clickhouse/README.rst                    | 5 -----
 auditlog_clickhouse/readme/CONFIGURE.md           | 3 ---
 auditlog_clickhouse/static/description/index.html | 4 ----
 3 files changed, 12 deletions(-)

diff --git a/auditlog_clickhouse/README.rst b/auditlog_clickhouse/README.rst
index 8259f0b6000..25e07217fc6 100644
--- a/auditlog_clickhouse/README.rst
+++ b/auditlog_clickhouse/README.rst
@@ -74,11 +74,6 @@ This module requires:
 
 - The ``pg_clickhouse`` extension installed on the PostgreSQL server.
 
-..
-
-   ClickHouse installation (Docker guide):
-   ``https://clickhouse.com/docs/install/docker``
-
 Steps:
 
 - Make sure ``clickhouse-driver`` is available in your system.
diff --git a/auditlog_clickhouse/readme/CONFIGURE.md b/auditlog_clickhouse/readme/CONFIGURE.md
index 65469696cb6..520579c4464 100644
--- a/auditlog_clickhouse/readme/CONFIGURE.md
+++ b/auditlog_clickhouse/readme/CONFIGURE.md
@@ -7,9 +7,6 @@ This module requires:
   - `INSERT` and `CREATE TABLE` privileges on the target database.
 - The `pg_clickhouse` extension installed on the PostgreSQL server.
 
-> ClickHouse installation (Docker guide):
-> `https://clickhouse.com/docs/install/docker`
-
 Steps:
 
 - Make sure `clickhouse-driver` is available in your system.
diff --git a/auditlog_clickhouse/static/description/index.html b/auditlog_clickhouse/static/description/index.html
index 05356225b9c..09c5da766a7 100644
--- a/auditlog_clickhouse/static/description/index.html
+++ b/auditlog_clickhouse/static/description/index.html
@@ -423,10 +423,6 @@ <h1><a class="toc-backref" href="#toc-entry-2">Configuration</a></h1>
 </li>
 <li>The <tt class="docutils literal">pg_clickhouse</tt> extension installed on the PostgreSQL server.</li>
 </ul>
-<!--  -->
-<blockquote>
-ClickHouse installation (Docker guide):
-<tt class="docutils literal"><span class="pre">https://clickhouse.com/docs/install/docker</span></tt></blockquote>
 <p>Steps:</p>
 <ul class="simple">
 <li>Make sure <tt class="docutils literal"><span class="pre">clickhouse-driver</span></tt> is available in your system.</li>