Escaped item group value in pricing rule condition

commit: 16aba71da0a77407221b315de7b5757fdac2fe94 [log] [tgz]
author: Nabin Hait <nabinhait@gmail.com> Thu Aug 21 19:02:02 2014 +0530
committer: Nabin Hait <nabinhait@gmail.com> Thu Aug 21 19:02:02 2014 +0530
tree: 3c310a40a2710248a3359a6b70d5694c161c3bd1
parent: 8058832a488325a5784280cc5f2916823640057a [diff]
diff --git a/erpnext/accounts/doctype/pricing_rule/pricing_rule.py b/erpnext/accounts/doctype/pricing_rule/pricing_rule.py
index 076cccc..94ad6f1 100644
--- a/erpnext/accounts/doctype/pricing_rule/pricing_rule.py
+++ b/erpnext/accounts/doctype/pricing_rule/pricing_rule.py

@@ -169,8 +169,8 @@
 
 			if parent_groups:
 				if allow_blank: parent_groups.append('')
-				condition = " ifnull("+field+", '') in ('" + "', '".join(parent_groups)+"')"
-
+				condition = " ifnull("+field+", '') in ('" + \
+					"', '".join([d.replace("'", "\\'").replace('"', '\\"') for d in parent_groups])+"')"
 		return condition
 
 
@@ -201,7 +201,7 @@
 			and ifnull({transaction_type}, 0) = 1 {conditions}
 		order by priority desc, name desc""".format(
 			item_group_condition=item_group_condition,
-			transaction_type=args.transaction_type, conditions=conditions), args, as_dict=1)
+			transaction_type=args.transaction_type, conditions=conditions), args, as_dict=1, debug=1)
 
 def filter_pricing_rules(args, pricing_rules):
 	# filter for qty
commit	16aba71da0a77407221b315de7b5757fdac2fe94	[log] [tgz]
author	Nabin Hait <nabinhait@gmail.com>	Thu Aug 21 19:02:02 2014 +0530
committer	Nabin Hait <nabinhait@gmail.com>	Thu Aug 21 19:02:02 2014 +0530
tree	3c310a40a2710248a3359a6b70d5694c161c3bd1
parent	8058832a488325a5784280cc5f2916823640057a [diff]