stalwartlabs/mail-server
1
1
Fork 0
mirror of https://github.com/stalwartlabs/mail-server.git synced 2025-12-17 12:59:01 +08:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
mail-server/crates/jmap/src/identity/set.rs
mdecimus 4620a92fd8 Principal storage format improvements
2025-10-21 16:35:46 +02:00

302 lines
11 KiB
Rust
Raw Blame History

/*
* SPDX-FileCopyrightText: 2020 Stalwart Labs LLC <hello@stalw.art>
*
* SPDX-License-Identifier: AGPL-3.0-only OR LicenseRef-SEL
*/
use common::{Server, auth::AccessToken, storage::index::ObjectIndexBuilder};
use directory::QueryParams;
use email::identity::{EmailAddress, Identity};
use jmap_proto::{
error::set::{SetError, SetErrorType},
method::set::{SetRequest, SetResponse},
object::identity::{self, IdentityProperty, IdentityValue},
references::resolve::ResolveCreatedReference,
request::IntoValid,
types::state::State,
};
use jmap_tools::{Key, Value};
use std::future::Future;
use store::write::BatchBuilder;
use trc::AddContext;
use types::{
collection::{Collection, SyncCollection},
field::Field,
};
use utils::sanitize_email;
pub trait IdentitySet: Sync + Send {
fn identity_set(
&self,
request: SetRequest<'_, identity::Identity>,
access_token: &AccessToken,
) -> impl Future<Output = trc::Result<SetResponse<identity::Identity>>> + Send;
}
impl IdentitySet for Server {
async fn identity_set(
&self,
mut request: SetRequest<'_, identity::Identity>,
access_token: &AccessToken,
) -> trc::Result<SetResponse<identity::Identity>> {
let account_id = request.account_id.document_id();
let identity_ids = self
.get_document_ids(account_id, Collection::Identity)
.await?
.unwrap_or_default();
let mut response = SetResponse::from_request(&request, self.core.jmap.set_max_objects)?;
let will_destroy = request.unwrap_destroy().into_valid().collect::<Vec<_>>();
// Process creates
let mut batch = BatchBuilder::new();
'create: for (id, object) in request.unwrap_create() {
let mut identity = Identity::default();
for (property, mut value) in object.into_expanded_object() {
if let Err(err) = response
.resolve_self_references(&mut value)
.and_then(|_| validate_identity_value(&property, value, &mut identity, true))
{
response.not_created.append(id, err);
continue 'create;
}
}
// Validate email address
if !identity.email.is_empty() {
if self
.directory()
.query(QueryParams::id(account_id).with_return_member_of(false))
.await?
.is_none_or(|p| !p.email_addresses().any(|e| e == &identity.email))
{
response.not_created.append(
id,
SetError::invalid_properties()
.with_property(IdentityProperty::Email)
.with_description(
"E-mail address not configured for this account.".to_string(),
),
);
continue 'create;
}
} else {
response.not_created.append(
id,
SetError::invalid_properties()
.with_property(IdentityProperty::Email)
.with_description("Missing e-mail address."),
);
continue 'create;
}
// Validate quota
if identity_ids.len() >= access_token.object_quota(Collection::Identity) as u64 {
response.not_created.append(
id,
SetError::new(SetErrorType::OverQuota).with_description(concat!(
"There are too many identities, ",
"please delete some before adding a new one."
)),
);
continue 'create;
}
// Insert record
let document_id = self
.store()
.assign_document_ids(account_id, Collection::Identity, 1)
.await
.caused_by(trc::location!())?;
batch
.with_account_id(account_id)
.with_collection(Collection::Identity)
.create_document(document_id)
.custom(ObjectIndexBuilder::<(), _>::new().with_changes(identity))
.caused_by(trc::location!())?
.commit_point();
response.created(id, document_id);
}
// Process updates
'update: for (id, object) in request.unwrap_update().into_valid() {
// Make sure id won't be destroyed
if will_destroy.contains(&id) {
response.not_updated.append(id, SetError::will_destroy());
continue 'update;
}
// Obtain identity
let document_id = id.document_id();
let identity_ = if let Some(identity_) = self
.get_archive(account_id, Collection::Identity, document_id)
.await?
{
identity_
} else {
response.not_updated.append(id, SetError::not_found());
continue 'update;
};
let identity = identity_
.to_unarchived::<Identity>()
.caused_by(trc::location!())?;
let mut new_identity = identity
.deserialize::<Identity>()
.caused_by(trc::location!())?;
for (property, mut value) in object.into_expanded_object() {
if let Err(err) = response.resolve_self_references(&mut value).and_then(|_| {
validate_identity_value(&property, value, &mut new_identity, false)
}) {
response.not_updated.append(id, err);
continue 'update;
}
}
// Update record
batch
.with_account_id(account_id)
.with_collection(Collection::Identity)
.update_document(document_id)
.custom(
ObjectIndexBuilder::new()
.with_current(identity)
.with_changes(new_identity),
)
.caused_by(trc::location!())?
.commit_point();
response.updated.append(id, None);
}
// Process deletions
for id in will_destroy {
let document_id = id.document_id();
if identity_ids.contains(document_id) {
// Update record
batch
.with_account_id(account_id)
.with_collection(Collection::Identity)
.delete_document(document_id)
.clear(Field::ARCHIVE)
.log_item_delete(SyncCollection::Identity, None)
.commit_point();
response.destroyed.push(id);
} else {
response.not_destroyed.append(id, SetError::not_found());
}
}
// Write changes
if !batch.is_empty() {
let change_id = self
.commit_batch(batch)
.await
.and_then(|ids| ids.last_change_id(account_id))
.caused_by(trc::location!())?;
response.new_state = State::Exact(change_id).into();
}
Ok(response)
}
}
fn validate_identity_value(
property: &Key<'_, IdentityProperty>,
value: Value<'_, IdentityProperty, IdentityValue>,
identity: &mut Identity,
is_create: bool,
) -> Result<(), SetError<IdentityProperty>> {
let Key::Property(property) = property else {
return Err(SetError::invalid_properties()
.with_property(property.to_owned())
.with_description("Invalid property."));
};
match (property, value) {
(IdentityProperty::Name, Value::Str(value)) if value.len() < 255 => {
identity.name = value.into_owned();
}
(IdentityProperty::Email, Value::Str(value)) if is_create && value.len() < 255 => {
identity.email = sanitize_email(&value).ok_or_else(|| {
SetError::invalid_properties()
.with_property(IdentityProperty::Email)
.with_description("Invalid e-mail address.")
})?;
}
(IdentityProperty::TextSignature, Value::Str(value)) if value.len() < 2048 => {
identity.text_signature = value.into_owned();
}
(IdentityProperty::HtmlSignature, Value::Str(value)) if value.len() < 2048 => {
identity.html_signature = value.into_owned();
}
(IdentityProperty::ReplyTo | IdentityProperty::Bcc, Value::Array(value)) => {
let mut addresses = Vec::with_capacity(value.len());
for addr in value {
let mut address = EmailAddress {
name: None,
email: "".into(),
};
let mut is_valid = false;
if let Value::Object(obj) = addr {
for (key, value) in obj.into_vec() {
match (key, value) {
(Key::Property(IdentityProperty::Email), Value::Str(value))
if value.len() < 255 =>
{
is_valid = true;
address.email = value.into_owned();
}
(Key::Property(IdentityProperty::Name), Value::Str(value))
if value.len() < 255 =>
{
address.name = Some(value.into_owned());
}
(Key::Property(IdentityProperty::Name), Value::Null) => (),
_ => {
is_valid = false;
break;
}
}
}
}
if is_valid && !address.email.is_empty() {
addresses.push(address);
} else {
return Err(SetError::invalid_properties()
.with_property(property.clone())
.with_description("Invalid e-mail address object."));
}
}
match property {
IdentityProperty::ReplyTo => {
identity.reply_to = Some(addresses);
}
IdentityProperty::Bcc => {
identity.bcc = Some(addresses);
}
_ => unreachable!(),
}
}
(IdentityProperty::Name, Value::Null) => {
identity.name.clear();
}
(IdentityProperty::TextSignature, Value::Null) => {
identity.text_signature.clear();
}
(IdentityProperty::HtmlSignature, Value::Null) => {
identity.html_signature.clear();
}
(IdentityProperty::ReplyTo, Value::Null) => identity.reply_to = None,
(IdentityProperty::Bcc, Value::Null) => identity.bcc = None,
(property, _) => {
return Err(SetError::invalid_properties()
.with_property(property.clone())
.with_description("Field could not be set."));
}
}
Ok(())
}
Reference in a new issue View git blame Copy permalink