Right now "doc doesn't exist is thrown, instead we can assume that user
doesn't have permission to this file. User might have access to other
file still.
This is dumb validation to have and it barely improves security, but
eNterPriSe users keep demanding this nonsense hence we are forced to add
this.
Alternate to https://github.com/frappe/frappe/pull/22528
* feat(UX): Add autocomplete for User timezone
* Revert "feat(UX): Add autocomplete for User timezone"
This reverts commit a721b4a1ef8e0e6b656b6795b832324a955b2f7a.
* fix: convert tz to autocomplete
---------
Co-authored-by: Ankush Menat <ankush@frappe.io>
Right now if you have if-owner rule on doctype then whatever you change
will only apply to last inserted rule because we don't check if-owner
value
Long term better fix: Identify with perm rule name instead of arbitrary
"primary keys" defined in code.
* Revert "chore: move function to correct file"
This reverts commit ebfdfa283b.
* Revert "refactor!: merge get_site_url into get_url (#22308)"
This reverts commit 2001bc278f.
* fix: Defer module deletion IO post DB commit
Previously, the IO operations for module deletion were executed before the DB commit. If the latter failed, this caused significant inconsistencies. This change ensures that IO operations are deferred until after the DB transaction is successfully committed.
* refactor: module deletion
---------
Co-authored-by: Ankush Menat <ankush@frappe.io>
* build!: Remove pycryptodome dependencies
This is added for payments app, shouldn't be added here.
ref: https://github.com/frappe/frappe/pull/9955/
* build(deps): update many python dependencies
* feat: communication: override `on_update`
If reference doc has a property, `on_communication_update`, execute it.
Otherwise, continue with default/magic actions
* fix: make sure method is callable
---------
Co-authored-by: Ankush Menat <ankush@frappe.io>
* fix: limit job count in RQ failed registry
* chore: remove unnecessary test
This just checks if func is called with right values, which keep
changing as things evolve.
Everything is individually tested now so need for this test.
- Move the config to bench level and not site level because, server
script "threat model" requires consent from a bench owner and not
individual site.
- While this is a breaking change which people may not like, we believe
it's essential to improve security model of Frappe.
