You have been logged out.
""") @frappe.whitelist(allow_guest=True) def run_custom_method(doctype, name, custom_method): """cmd=run_custom_method&doctype={doctype}&name={name}&custom_method={custom_method}""" bean = frappe.bean(doctype, name) controller = bean.get_controller() if getattr(controller, custom_method, frappe._dict()).is_whitelisted: frappe.call(getattr(controller, custom_method), **frappe.local.form_dict) else: frappe.throw("Not Allowed") @frappe.whitelist() def uploadfile(): try: if frappe.form_dict.get('from_form'): try: ret = frappe.utils.file_manager.upload() except frappe.DuplicateEntryError, e: # ignore pass ret = None frappe.db.rollback() else: if frappe.form_dict.get('method'): ret = frappe.get_attr(frappe.form_dict.method)() except Exception, e: frappe.errprint(frappe.utils.get_traceback()) ret = None return ret def handle(): """handle request""" cmd = frappe.local.form_dict.cmd if cmd!='login': execute_cmd(cmd) return build_response("json") def execute_cmd(cmd): """execute a request as python module""" method = get_attr(cmd) # check if whitelisted if frappe.session['user'] == 'Guest': if (method not in frappe.guest_methods): raise frappe.PermissionError('Not Allowed, %s' % str(method)) else: if not method in frappe.whitelisted: frappe.msgprint('Not Allowed, %s' % str(method)) raise frappe.PermissionError('Not Allowed, %s' % str(method)) ret = frappe.call(method, **frappe.form_dict) # returns with a message if ret: frappe.response['message'] = ret # update session if "session_obj" in frappe.local: frappe.local.session_obj.update() def get_attr(cmd): """get method object from cmd""" if '.' in cmd: method = frappe.get_attr(cmd) else: method = globals()[cmd] frappe.log("method:" + cmd) return method