Merge branch 'master' into more-track-titles

author: Pika <15848969+ThatNerdyPikachu@users.noreply.github.com> 2020-07-23 18:59:25 -0400
committer: GitHub <noreply@github.com> 2020-07-23 18:59:25 -0400
commit: 3b21abd879c278bdc7d2f02a62eba3a57cb55987 (patch)
tree: f045e94b60f1f8d6eb63bfda957209e110b1d82c /Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
parent: 7aba10eff67151a9f6593e9d3d702f17029b994f (diff)
parent: 845ee21ddce8ed91d8c3c1463d0d7a06bb769635 (diff)
1 files changed, 10 insertions, 7 deletions
diff --git a/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs b/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
index 26f7d9d2d..f86f75b1c 100644
--- a/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
+++ b/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
@@ -1,7 +1,9 @@
+using System.Security.Authentication;
 using System.Security.Claims;
 using System.Text.Encodings.Web;
 using System.Threading.Tasks;
 using Jellyfin.Api.Constants;
+using Jellyfin.Data.Enums;
 using MediaBrowser.Controller.Net;
 using Microsoft.AspNetCore.Authentication;
 using Microsoft.Extensions.Logging;
@@ -37,21 +39,18 @@ namespace Jellyfin.Api.Auth
         /// <inheritdoc />
         protected override Task<AuthenticateResult> HandleAuthenticateAsync()
         {
-            var authenticatedAttribute = new AuthenticatedAttribute();
             try
             {
-                var user = _authService.Authenticate(Request, authenticatedAttribute);
-                if (user == null)
+                var authorizationInfo = _authService.Authenticate(Request);
+                if (authorizationInfo == null)
                 {
                     return Task.FromResult(AuthenticateResult.Fail("Invalid user"));
                 }
 
                 var claims = new[]
                 {
-                    new Claim(ClaimTypes.Name, user.Name),
-                    new Claim(
-                        ClaimTypes.Role,
-                        value: user.Policy.IsAdministrator ? UserRoles.Administrator : UserRoles.User)
+                    new Claim(ClaimTypes.Name, authorizationInfo.User.Username),
+                    new Claim(ClaimTypes.Role, authorizationInfo.User.HasPermission(PermissionKind.IsAdministrator) ? UserRoles.Administrator : UserRoles.User)
                 };
                 var identity = new ClaimsIdentity(claims, Scheme.Name);
                 var principal = new ClaimsPrincipal(identity);
@@ -59,6 +58,10 @@ namespace Jellyfin.Api.Auth
 
                 return Task.FromResult(AuthenticateResult.Success(ticket));
             }
+            catch (AuthenticationException ex)
+            {
+                return Task.FromResult(AuthenticateResult.Fail(ex));
+            }
             catch (SecurityException ex)
             {
                 return Task.FromResult(AuthenticateResult.Fail(ex));
author	Pika <15848969+ThatNerdyPikachu@users.noreply.github.com>	2020-07-23 18:59:25 -0400
committer	GitHub <noreply@github.com>	2020-07-23 18:59:25 -0400
commit	3b21abd879c278bdc7d2f02a62eba3a57cb55987 (patch)
tree	f045e94b60f1f8d6eb63bfda957209e110b1d82c /Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
parent	7aba10eff67151a9f6593e9d3d702f17029b994f (diff)
parent	845ee21ddce8ed91d8c3c1463d0d7a06bb769635 (diff)