Return 405 Method Not Allowed when receive POST and PATCH requests

Author: c-bata

wsgi_static_middleware.py

@@ -63,18 +63,21 @@ def _get_body(filename, method, block_size, charset):
 
 # View functions
 def static_file_view(env, start_response, filename, block_size, charset):
-    headers = Headers([])
+    method = env['REQUEST_METHOD'].upper()
+    if method not in ('HEAD', 'GET'):
+        start_response('405 METHOD NOT ALLOWED', [('Content-Type', 'text/plain; UTF-8')])
+        return [b'']
 
     mimetype, encoding = mimetypes.guess_type(filename)
+    headers = Headers([])
     headers.add_header('Content-Encodings', encoding)
     headers.add_header('Content-Type', get_content_type(mimetype, charset))
     headers.add_header('Content-Length', get_content_length(filename))
     headers.add_header('Last-Modified', generate_last_modified())
     headers.add_header("Accept-Ranges", "bytes")
 
     start_response('200 OK', headers.items())
-    return _get_body(filename, env['REQUEST_METHOD'].upper(),
-                     block_size, charset)
+    return _get_body(filename, method, block_size, charset)
 
 
 def http404(env, start_response):