Avoid requests to impersonate a resource calendar (#1122)

* Avoid requests to impersonate a resource calendar Fixes jay0lee/GAM#1120 * Also avoid impersonating Group calendars
2026-06-28 09:51:36 +00:00 · 2020-03-20 10:19:48 -07:00
parent d78d68b4da
commit 0feee6e007
1 changed files with 8 additions and 4 deletions
--- a/src/gapi/calendar.py
+++ b/src/gapi/calendar.py
@@ -30,14 +30,18 @@ def buildCalendarGAPIObject(calname):

 def buildCalendarDataGAPIObject(calname):
    calendarId = normalizeCalendarId(calname)
-    # Force service account token request. If we fail fall back to using
-    # admin for authentication
-    cal = __main__.buildGAPIServiceObject('calendar', calendarId, False)
+
+    # Try to impersonate the calendar owner. If we fail, fall back to using
+    # admin for authentication. Resource calendars cannot be impersonated,
+    # so we need to access them as the admin.
+    cal = None
+    if (not calname.endswith('@resource.calendar.google.com') and
+        not calname.endswith('@group.calendar.google.com')):
+        cal = __main__.buildGAPIServiceObject('calendar', calendarId, False)
    if cal is None:
        _, cal = buildCalendarGAPIObject(__main__._getValueFromOAuth('email'))
    return (calendarId, cal)

-
 def printShowACLs(csvFormat):
    calendarId, cal = buildCalendarDataGAPIObject(sys.argv[2])
    if not cal: