Improve handling of unsafe user names

2017-07-30 12:00:42 +02:00 · 2017-07-30 12:00:42 +02:00 · aac472960f
commit aac472960f
parent 6d39a61a51
1 changed files with 7 additions and 1 deletions
--- a/radicale/init.py
+++ b/radicale/init.py
@ -458,7 +458,13 @@ class Application:
                        None)
                if not principal:
                    with self.Collection.acquire_lock("w", user):
                        try:
                            self.Collection.create_collection(principal_path)
                        except ValueError as e:
                            self.logger.warning(
                                "Failed to create principal collection %r: %s",
                                principal_path, e)
                            is_authenticated = False
            else:
                self.logger.warning("Access to principal path %r denied by "
                                    "rights backend", principal_path)