| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287 |
- # This file is part of Radicale - CalDAV and CardDAV server
- # Copyright © 2008 Nicolas Kandel
- # Copyright © 2008 Pascal Halter
- # Copyright © 2008-2017 Guillaume Ayoub
- # Copyright © 2017-2020 Unrud <unrud@outlook.com>
- # Copyright © 2020-2023 Tuna Celik <tuna@jakpark.com>
- # Copyright © 2024-2025 Peter Bieringer <pb@bieringer.de>
- #
- # This library is free software: you can redistribute it and/or modify
- # it under the terms of the GNU General Public License as published by
- # the Free Software Foundation, either version 3 of the License, or
- # (at your option) any later version.
- #
- # This library is distributed in the hope that it will be useful,
- # but WITHOUT ANY WARRANTY; without even the implied warranty of
- # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- # GNU General Public License for more details.
- #
- # You should have received a copy of the GNU General Public License
- # along with Radicale. If not, see <http://www.gnu.org/licenses/>.
- import errno
- import itertools
- import posixpath
- import re
- import socket
- import sys
- from http import client
- from types import TracebackType
- from typing import Iterator, List, Mapping, MutableMapping, Optional, Tuple
- import vobject
- import radicale.item as radicale_item
- from radicale import (httputils, pathutils, rights, storage, types, utils,
- xmlutils)
- from radicale.app.base import Access, ApplicationBase
- from radicale.hook import HookNotificationItem, HookNotificationItemTypes
- from radicale.log import logger
- MIMETYPE_TAGS: Mapping[str, str] = {value: key for key, value in
- xmlutils.MIMETYPES.items()}
- PRODID = u"-//Radicale//NONSGML Version " + utils.package_version("radicale") + "//EN"
- def prepare(vobject_items: List[vobject.base.Component], path: str,
- content_type: str, permission: bool, parent_permission: bool,
- tag: Optional[str] = None,
- write_whole_collection: Optional[bool] = None) -> Tuple[
- Iterator[radicale_item.Item], # items
- Optional[str], # tag
- Optional[bool], # write_whole_collection
- Optional[MutableMapping[str, str]], # props
- Optional[Tuple[type, BaseException, Optional[TracebackType]]]]:
- if (write_whole_collection or permission and not parent_permission):
- write_whole_collection = True
- tag = radicale_item.predict_tag_of_whole_collection(
- vobject_items, MIMETYPE_TAGS.get(content_type))
- if not tag:
- raise ValueError("Can't determine collection tag")
- collection_path = pathutils.strip_path(path)
- elif (write_whole_collection is not None and not write_whole_collection or
- not permission and parent_permission):
- write_whole_collection = False
- if tag is None:
- tag = radicale_item.predict_tag_of_parent_collection(vobject_items)
- collection_path = posixpath.dirname(pathutils.strip_path(path))
- props: Optional[MutableMapping[str, str]] = None
- stored_exc_info = None
- items = []
- try:
- if tag and write_whole_collection is not None:
- radicale_item.check_and_sanitize_items(
- vobject_items, is_collection=write_whole_collection, tag=tag)
- if write_whole_collection and tag == "VCALENDAR":
- vobject_components: List[vobject.base.Component] = []
- vobject_item, = vobject_items
- for content in ("vevent", "vtodo", "vjournal"):
- vobject_components.extend(
- getattr(vobject_item, "%s_list" % content, []))
- vobject_components_by_uid = itertools.groupby(
- sorted(vobject_components, key=radicale_item.get_uid),
- radicale_item.get_uid)
- for _, components in vobject_components_by_uid:
- vobject_collection = vobject.iCalendar()
- for component in components:
- vobject_collection.add(component)
- vobject_collection.add(vobject.base.ContentLine("PRODID", [], PRODID))
- item = radicale_item.Item(collection_path=collection_path,
- vobject_item=vobject_collection)
- item.prepare()
- items.append(item)
- elif write_whole_collection and tag == "VADDRESSBOOK":
- for vobject_item in vobject_items:
- item = radicale_item.Item(collection_path=collection_path,
- vobject_item=vobject_item)
- item.prepare()
- items.append(item)
- elif not write_whole_collection:
- vobject_item, = vobject_items
- item = radicale_item.Item(collection_path=collection_path,
- vobject_item=vobject_item)
- item.prepare()
- items.append(item)
- if write_whole_collection:
- props = {}
- if tag:
- props["tag"] = tag
- if tag == "VCALENDAR" and vobject_items:
- if hasattr(vobject_items[0], "x_wr_calname"):
- calname = vobject_items[0].x_wr_calname.value
- if calname:
- props["D:displayname"] = calname
- if hasattr(vobject_items[0], "x_wr_caldesc"):
- caldesc = vobject_items[0].x_wr_caldesc.value
- if caldesc:
- props["C:calendar-description"] = caldesc
- props = radicale_item.check_and_sanitize_props(props)
- except Exception:
- exc_info_or_none_tuple = sys.exc_info()
- assert exc_info_or_none_tuple[0] is not None
- stored_exc_info = exc_info_or_none_tuple
- # Use iterator for items and delete references to free memory early
- def items_iter() -> Iterator[radicale_item.Item]:
- while items:
- yield items.pop(0)
- return items_iter(), tag, write_whole_collection, props, stored_exc_info
- class ApplicationPartPut(ApplicationBase):
- def do_PUT(self, environ: types.WSGIEnviron, base_prefix: str,
- path: str, user: str) -> types.WSGIResponse:
- """Manage PUT request."""
- access = Access(self._rights, user, path)
- if not access.check("w"):
- return httputils.NOT_ALLOWED
- try:
- content = httputils.read_request_body(self.configuration, environ)
- except RuntimeError as e:
- logger.warning("Bad PUT request on %r (read_request_body): %s", path, e, exc_info=True)
- return httputils.BAD_REQUEST
- except socket.timeout:
- logger.debug("Client timed out", exc_info=True)
- return httputils.REQUEST_TIMEOUT
- # Prepare before locking
- content_type = environ.get("CONTENT_TYPE", "").split(";",
- maxsplit=1)[0]
- try:
- vobject_items = radicale_item.read_components(content or "")
- except Exception as e:
- logger.warning(
- "Bad PUT request on %r (read_components): %s", path, e, exc_info=True)
- if self._log_bad_put_request_content:
- logger.warning("Bad PUT request content of %r:\n%s", path, content)
- else:
- logger.debug("Bad PUT request content: suppressed by config/option [logging] bad_put_request_content")
- return httputils.BAD_REQUEST
- (prepared_items, prepared_tag, prepared_write_whole_collection,
- prepared_props, prepared_exc_info) = prepare(
- vobject_items, path, content_type,
- bool(rights.intersect(access.permissions, "Ww")),
- bool(rights.intersect(access.parent_permissions, "w")))
- with self._storage.acquire_lock("w", user):
- item = next(iter(self._storage.discover(path)), None)
- parent_item = next(iter(
- self._storage.discover(access.parent_path)), None)
- if not isinstance(parent_item, storage.BaseCollection):
- return httputils.CONFLICT
- write_whole_collection = (
- isinstance(item, storage.BaseCollection) or
- not parent_item.tag)
- if write_whole_collection:
- tag = prepared_tag
- else:
- tag = parent_item.tag
- if write_whole_collection:
- if ("w" if tag else "W") not in access.permissions:
- if not parent_item.tag:
- logger.warning("Not a collection (check .Radicale.props): %r", parent_item.path)
- return httputils.NOT_ALLOWED
- if not self._permit_overwrite_collection:
- if ("O") not in access.permissions:
- logger.info("overwrite of collection is prevented by config/option [rights] permit_overwrite_collection and not explicit allowed by permssion 'O': %r", path)
- return httputils.NOT_ALLOWED
- else:
- if ("o") in access.permissions:
- logger.info("overwrite of collection is allowed by config/option [rights] permit_overwrite_collection but explicit forbidden by permission 'o': %r", path)
- return httputils.NOT_ALLOWED
- elif "w" not in access.parent_permissions:
- return httputils.NOT_ALLOWED
- etag = environ.get("HTTP_IF_MATCH", "")
- if not item and etag:
- # Etag asked but no item found: item has been removed
- logger.warning("Precondition failed on PUT request for %r (HTTP_IF_MATCH: %s, item not existing)", path, etag)
- return httputils.PRECONDITION_FAILED
- if item and etag and item.etag != etag:
- # Etag asked but item not matching: item has changed
- logger.warning("Precondition failed on PUT request for %r (HTTP_IF_MATCH: %s, item has different etag: %s)", path, etag, item.etag)
- return httputils.PRECONDITION_FAILED
- if item and etag:
- logger.debug("Precondition passed on PUT request for %r (HTTP_IF_MATCH: %s, item has etag: %s)", path, etag, item.etag)
- match = environ.get("HTTP_IF_NONE_MATCH", "") == "*"
- if item and match:
- # Creation asked but item found: item can't be replaced
- logger.warning("Precondition failed on PUT request for %r (HTTP_IF_NONE_MATCH: *, creation requested but item found with etag: %s)", path, item.etag)
- return httputils.PRECONDITION_FAILED
- if match:
- logger.debug("Precondition passed on PUT request for %r (HTTP_IF_NONE_MATCH: *)", path)
- if (tag != prepared_tag or
- prepared_write_whole_collection != write_whole_collection):
- (prepared_items, prepared_tag, prepared_write_whole_collection,
- prepared_props, prepared_exc_info) = prepare(
- vobject_items, path, content_type,
- bool(rights.intersect(access.permissions, "Ww")),
- bool(rights.intersect(access.parent_permissions, "w")),
- tag, write_whole_collection)
- props = prepared_props
- if prepared_exc_info:
- logger.warning(
- "Bad PUT request on %r (prepare): %s", path, prepared_exc_info[1],
- exc_info=prepared_exc_info)
- return httputils.BAD_REQUEST
- if write_whole_collection:
- try:
- etag = self._storage.create_collection(
- path, prepared_items, props).etag
- for item in prepared_items:
- hook_notification_item = HookNotificationItem(
- HookNotificationItemTypes.UPSERT,
- access.path,
- item.serialize()
- )
- self._hook.notify(hook_notification_item)
- except ValueError as e:
- logger.warning(
- "Bad PUT request on %r (create_collection): %s", path, e, exc_info=True)
- return httputils.BAD_REQUEST
- else:
- assert not isinstance(item, storage.BaseCollection)
- prepared_item, = prepared_items
- if (item and item.uid != prepared_item.uid or
- not item and parent_item.has_uid(prepared_item.uid)):
- return self._webdav_error_response(
- client.CONFLICT, "%s:no-uid-conflict" % (
- "C" if tag == "VCALENDAR" else "CR"))
- href = posixpath.basename(pathutils.strip_path(path))
- try:
- etag = parent_item.upload(href, prepared_item).etag
- hook_notification_item = HookNotificationItem(
- HookNotificationItemTypes.UPSERT,
- access.path,
- prepared_item.serialize()
- )
- self._hook.notify(hook_notification_item)
- except ValueError as e:
- # return better matching HTTP result in case errno is provided and catched
- errno_match = re.search("\\[Errno ([0-9]+)\\]", str(e))
- if errno_match:
- logger.error(
- "Failed PUT request on %r (upload): %s", path, e, exc_info=True)
- errno_e = int(errno_match.group(1))
- if errno_e == errno.ENOSPC:
- return httputils.INSUFFICIENT_STORAGE
- elif errno_e in [errno.EPERM, errno.EACCES]:
- return httputils.FORBIDDEN
- else:
- return httputils.INTERNAL_SERVER_ERROR
- else:
- logger.warning(
- "Bad PUT request on %r (upload): %s", path, e, exc_info=True)
- return httputils.BAD_REQUEST
- headers = {"ETag": etag}
- return client.CREATED, headers, None
|
