Getting permission error with REST API

vineet_saraogi · February 19, 2016, 12:39pm

I am trying to use your REST API to create leads in erp.
I am logged in successfully… but facing problem in creating any document ie lead

Is there any API key or some process to get permission to create document in erpnext?

CODE:

<?php //******************** LOGIN REQUEST ********************************// $url= 'http://128.199.200.206/api/method/login'; // Open connection $ch = curl_init(); // Set the url, number of POST vars, POST data curl_setopt( $ch, CURLOPT_URL, $url ); curl_setopt( $ch, CURLOPT_POST, true ); curl_setopt( $ch, CURLOPT_RETURNTRANSFER, true ); curl_setopt( $ch, CURLOPT_POSTFIELDS,array( 'usr'=>'vineet@mittalagro.com', 'pwd'=>'vineet1234' // it is not real passwd but while sending request i am using real paswd )); // Execute post $result = curl_exec($ch); // Close connection curl_close($ch); //******************** DOCUMENT CREATE REQUEST ******************************// $response= json_decode($result,true); if($response['message']=='Logged In'){ // Create lead.................................// $url = 'http://128.199.200.206/api/resource/Lead'; // Open connection $ch = curl_init(); // Set the url, number of POST vars, POST data curl_setopt( $ch, CURLOPT_URL, $url ); curl_setopt( $ch, CURLOPT_POST, true ); curl_setopt( $ch, CURLOPT_RETURNTRANSFER, true ); curl_setopt( $ch, CURLOPT_POSTFIELDS,array( 'data' => '{"lead_name":"Lead00011"}' )); // Execute post $result = curl_exec($ch); // Close connection curl_close($ch); echo $result; } ?>

Ben_Cornwell_Mott · February 19, 2016, 3:53pm

It doesn’t look like you are passing a cookie from the log in sequence when you are trying to create the document. I think the system is not recognizing that the person that logged in is trying to create the document.

vineet_saraogi · February 20, 2016, 5:05am

Yes its not recognizing. but how to pass cookie from the log in sequence?
Nothing mentioned in documentation of Rest API that how to tell ERP System that who is trying to create document.

rmehta · February 21, 2016, 9:59am

The user with which you login is the user that creates the document.

vineet_saraogi · February 22, 2016, 5:51am

Yes that I know but to tell erpnext that this usr is creating document I need to passing a cookie from the log in sequence while trying to create the document.

So my question is how to pass a cookie from the log in sequence while creating document?

vineet_saraogi · February 22, 2016, 6:12am

Every API like linkedin, facebook, google etc have api key and secret ki… just by passing those key along with the request help their system to validate our request.

But i think here things are different.
Please provide proper information that how to create documents? what steps are involve into it?
I know it’s simple but don’t have proper information about it.

vineet_saraogi · February 22, 2016, 6:13am

As you can see, I am trying to do it from last 4 days. need immediate help.

rmehta · February 22, 2016, 8:33am

this is a pretty standard thing. You pass cookies in your request headers.

See: GitHub - frappe/frappe-client: Python library to use Frappe API

In PHP: GitHub - tmimori/How-to-connect-to-ERPNext-v5-API-with-PHP5: How to connect to ERPNext v5 API with PHP 5

vineet_saraogi · February 22, 2016, 10:45am

Did configuration file settings with correct email & password

‘auth_url’ => ‘Frappe Cloud’,
‘api_url’ => ‘Frappe Cloud’,
‘auth’ => array(‘usr’ => ‘vineet@mittalagro.com’, ‘pwd’ => ‘#######’),
‘cookie_file’ => ‘cookie.txt’,
‘curl_timeout’ => 30,

Put all related files in same directory. View attachment
Set const CONF_FILE = ‘config.php’;

Still getting Auth fail;
check Url: WholesaleRaja.com is for sale | HugeDomains

rmehta · February 26, 2016, 6:03am

@vineet_saraogi no experience with PHP, I recommend you should engage a freelancer for this.

vineet_saraogi · February 26, 2016, 6:13am

Hi rmehta,

You provided me php file link, I did whatever required. PHP is a very simple language, any developer can easily understand the code. I did whatever mentioned there. I am having good development experience in PHP. So even after doing everything as instructed, still it’s not validating. You give it a try, its just 5 min work. Because you know your system better.

rmehta · February 26, 2016, 6:27am

@vineet_saraogi share the full trace.

vineet_saraogi · February 26, 2016, 6:43am

changes need to make only in these two files…

SAMPLE.PHP

<?php /** * FrappeClient-PHP Sample Script * */ require(dirname(__FILE__).'/FrappeClient.php'); try{ $client = new FrappeClient(); var_dump($client); // get ---------------------------- $result = $client->get( "User" ,"puneetverma@mittalclothing.com" ); var_dump($result); }catch(Exception $e){ var_dump($e); } set_error_handler(function ($errno, $errstr, $errfile, $errline ) { throw new ErrorException($errstr, 0, $errno, $errfile, $errline); }); CONFIG.PHP <?php if(!defined("ROOTPATH")){die("Access forbidden.".PHP_EOL);} return array( 'auth_url' => 'http://mittalclothing.erpnext.com/api/method/login', 'api_url' => 'http://mittalclothing.erpnext.com/api/resource/', 'auth' => array('usr' => 'vineet@mittalagro.com', 'pwd' => 'password of this user'), 'cookie_file' => 'cookie.txt', 'curl_timeout' => 30, 'basic_auth' => array(), // 'basic_auth' => array('usr' => '', 'pwd' => ''), ); This much only need to change.. there is no other setting...

So now we can test with link http://erp.wholesaleraja.com/erpnext/sample.php

vineet_saraogi · February 26, 2016, 6:50am

ok one more thing… in FrappeClient.php

I did necessary change,
const CONF_FILE = ‘/var/www/erpnext/config.php’; to const CONF_FILE = ‘config.php’;

I think this may solve…
Set specified User for using API on ERPNext

How to do this in ERPNext ???

Amol_RN · December 28, 2016, 6:25am

i done same but i got error “Auth fail”
‘auth_url’ => ‘Frappe Cloud’,
‘api_url’ => ‘Frappe Cloud’,
‘auth’ => array(‘usr’ => ‘amolvision@outlook.com’, ‘pwd’ => ‘#######’),
‘cookie_file’ => ‘cookie.txt’,
‘curl_timeout’ => 30,

‘basic_auth’ => array(),