Radicale/radicale/app/mkcol.py

# This file is part of Radicale - CalDAV and CardDAV server
# Copyright © 2008 Nicolas Kandel
# Copyright © 2008 Pascal Halter
# Copyright © 2008-2017 Guillaume Ayoub
# Copyright © 2017-2018 Unrud <unrud@outlook.com>
#
# This library is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This library is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with Radicale.  If not, see <http://www.gnu.org/licenses/>.

import posixpath
import socket
from http import client

import radicale.item as radicale_item
from radicale import httputils, pathutils, rights, storage, types, xmlutils
from radicale.app.base import ApplicationBase
from radicale.log import logger


class ApplicationPartMkcol(ApplicationBase):

    def do_MKCOL(self, environ: types.WSGIEnviron, base_prefix: str,
                 path: str, user: str) -> types.WSGIResponse:
        """Manage MKCOL request."""
        permissions = self._rights.authorization(user, path)
        if not rights.intersect(permissions, "Ww"):
            return httputils.NOT_ALLOWED
        try:
            xml_content = self._read_xml_request_body(environ)
        except RuntimeError as e:
            logger.warning(
                "Bad MKCOL request on %r: %s", path, e, exc_info=True)
            return httputils.BAD_REQUEST
        except socket.timeout:
            logger.debug("Client timed out", exc_info=True)
            return httputils.REQUEST_TIMEOUT
        # Prepare before locking
        props_with_remove = xmlutils.props_from_request(xml_content)
        try:
            props = radicale_item.check_and_sanitize_props(props_with_remove)
        except ValueError as e:
            logger.warning(
                "Bad MKCOL request on %r: %s", path, e, exc_info=True)
            return httputils.BAD_REQUEST
        if (props.get("tag") and "w" not in permissions or
                not props.get("tag") and "W" not in permissions):
            return httputils.NOT_ALLOWED
        with self._storage.acquire_lock("w", user):
            item = next(iter(self._storage.discover(path)), None)
            if item:
                return httputils.METHOD_NOT_ALLOWED
            parent_path = pathutils.unstrip_path(
                posixpath.dirname(pathutils.strip_path(path)), True)
            parent_item = next(iter(self._storage.discover(parent_path)), None)
            if not parent_item:
                return httputils.CONFLICT
            if (not isinstance(parent_item, storage.BaseCollection) or
                    parent_item.tag):
                return httputils.FORBIDDEN
            try:
                self._storage.create_collection(path, props=props)
            except ValueError as e:
                logger.warning(
                    "Bad MKCOL request on %r: %s", path, e, exc_info=True)
                return httputils.BAD_REQUEST
            return client.CREATED, {}, None
Change name in file header 2021-12-08 21:45:42 +01:00			`# This file is part of Radicale - CalDAV and CardDAV server`
refactor 2018-08-28 16:19:36 +02:00			`# Copyright © 2008 Nicolas Kandel`
			`# Copyright © 2008 Pascal Halter`
			`# Copyright © 2008-2017 Guillaume Ayoub`
Update copyright 2019-06-17 04:13:24 +02:00			`# Copyright © 2017-2018 Unrud <unrud@outlook.com>`
refactor 2018-08-28 16:19:36 +02:00			`#`
			`# This library is free software: you can redistribute it and/or modify`
			`# it under the terms of the GNU General Public License as published by`
			`# the Free Software Foundation, either version 3 of the License, or`
			`# (at your option) any later version.`
			`#`
			`# This library is distributed in the hope that it will be useful,`
			`# but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`# GNU General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU General Public License`
			`# along with Radicale. If not, see <http://www.gnu.org/licenses/>.`

Create configuration for isort 2019-06-15 09:01:55 +02:00			`import posixpath`
refactor 2018-08-28 16:19:36 +02:00			`import socket`
			`from http import client`

More type hints 2021-07-26 20:56:46 +02:00			`import radicale.item as radicale_item`
			`from radicale import httputils, pathutils, rights, storage, types, xmlutils`
			`from radicale.app.base import ApplicationBase`
refactor 2018-08-28 16:19:36 +02:00			`from radicale.log import logger`


More type hints 2021-07-26 20:56:46 +02:00			`class ApplicationPartMkcol(ApplicationBase):`

			`def do_MKCOL(self, environ: types.WSGIEnviron, base_prefix: str,`
			`path: str, user: str) -> types.WSGIResponse:`
refactor 2018-08-28 16:19:36 +02:00			`"""Manage MKCOL request."""`
Minimize accesses to rights backend 2020-04-22 19:20:07 +02:00			`permissions = self._rights.authorization(user, path)`
			`if not rights.intersect(permissions, "Ww"):`
refactor 2018-08-28 16:19:36 +02:00			`return httputils.NOT_ALLOWED`
			`try:`
Extract read*_request_body methods 2020-09-14 21:19:48 +02:00			`xml_content = self._read_xml_request_body(environ)`
refactor 2018-08-28 16:19:36 +02:00			`except RuntimeError as e:`
			`logger.warning(`
			`"Bad MKCOL request on %r: %s", path, e, exc_info=True)`
			`return httputils.BAD_REQUEST`
remove unused variables 2018-11-04 18:54:11 +00:00			`except socket.timeout:`
Improve log messages Log failed login attempts with remote host as warning (closes #1104) Add component UID to log message about invalid recurrence rules (reference #602) Use "forwarded for" instead of "forwarded by" for remote host 2020-09-26 22:08:23 +02:00			`logger.debug("Client timed out", exc_info=True)`
refactor 2018-08-28 16:19:36 +02:00			`return httputils.REQUEST_TIMEOUT`
			`# Prepare before locking`
More type hints 2021-07-26 20:56:46 +02:00			`props_with_remove = xmlutils.props_from_request(xml_content)`
refactor 2018-08-28 16:19:36 +02:00			`try:`
More type hints 2021-07-26 20:56:46 +02:00			`props = radicale_item.check_and_sanitize_props(props_with_remove)`
refactor 2018-08-28 16:19:36 +02:00			`except ValueError as e:`
			`logger.warning(`
			`"Bad MKCOL request on %r: %s", path, e, exc_info=True)`
			`return httputils.BAD_REQUEST`
			`if (props.get("tag") and "w" not in permissions or`
			`not props.get("tag") and "W" not in permissions):`
			`return httputils.NOT_ALLOWED`
Mark attributes for internal use with underscore 2020-01-14 06:19:11 +01:00			`with self._storage.acquire_lock("w", user):`
More type hints 2021-07-26 20:56:46 +02:00			`item = next(iter(self._storage.discover(path)), None)`
refactor 2018-08-28 16:19:36 +02:00			`if item:`
			`return httputils.METHOD_NOT_ALLOWED`
assert sanitized and stripped paths 2018-08-28 16:19:50 +02:00			`parent_path = pathutils.unstrip_path(`
			`posixpath.dirname(pathutils.strip_path(path)), True)`
More type hints 2021-07-26 20:56:46 +02:00			`parent_item = next(iter(self._storage.discover(parent_path)), None)`
refactor 2018-08-28 16:19:36 +02:00			`if not parent_item:`
			`return httputils.CONFLICT`
			`if (not isinstance(parent_item, storage.BaseCollection) or`
More type hints 2021-07-26 20:56:46 +02:00			`parent_item.tag):`
refactor 2018-08-28 16:19:36 +02:00			`return httputils.FORBIDDEN`
			`try:`
Mark attributes for internal use with underscore 2020-01-14 06:19:11 +01:00			`self._storage.create_collection(path, props=props)`
refactor 2018-08-28 16:19:36 +02:00			`except ValueError as e:`
			`logger.warning(`
			`"Bad MKCOL request on %r: %s", path, e, exc_info=True)`
			`return httputils.BAD_REQUEST`
			`return client.CREATED, {}, None`