vassili/seitime-frappe
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

refactor(query_report): filter check

Browse source
This commit is contained in:
jabir-elat 2024-09-16 21:43:53 +05:30
parent e4485bebb0
commit b754bdb03d
1 changed files with 14 additions and 15 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

29
frappe/desk/query_report.py
View file

@ -782,19 +782,18 @@ def get_user_match_filters(doctypes, user):
return match_filters
def validate_filters_permissions(report_name, filters=None, user=None):
if isinstance(filters, str):
filters = json.loads(filters)
if filters:
report = frappe.get_doc("Report", report_name)
for fieldname, value in filters.items():
for field in report.filters:
if field.fieldname == fieldname and field.fieldtype == "Link":
linked_doctype = field.options
if not has_permission(
doctype=linked_doctype, doc=value, user=user
):
frappe.throw(
_("You do not have permission to access {0}: {1}.").format(linked_doctype, value)
)
def validate_filters_permissions(report_name, filters=None, user=None):
if not filters:
return
if isinstance(filters, str):
filters = json.loads(filters)
report = frappe.get_doc("Report", report_name)
for fieldname, value in filters.items():
for field in report.filters:
if field.fieldname == fieldname and field.fieldtype == "Link":
linked_doctype = field.options
if not has_permission(doctype=linked_doctype, doc=value, user=user):
frappe.throw(
_("You do not have permission to access {0}: {1}.").format(linked_doctype, value)
)