Merge pull request from jellyfin/master

author: Nyanmisaka <nst799610810@gmail.com> 2020-06-25 16:37:40 +0800
committer: GitHub <noreply@github.com> 2020-06-25 16:37:40 +0800
commit: 912946a42793305ecdc6a8c176f1775ffe7ac0de (patch)
tree: 6a4d85c4869ed8cb5d15f3fa8c82512de6405b6e /Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
parent: bfd87829e3bca42a245287b99e652d091b21c990 (diff)
parent: 91c51ae6752720d6272e6a0c651edd3780e150ac (diff)
1 files changed, 10 insertions, 7 deletions
diff --git a/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs b/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
index 26f7d9d2d..f86f75b1c 100644
--- a/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
+++ b/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
@@ -1,7 +1,9 @@
+using System.Security.Authentication;
 using System.Security.Claims;
 using System.Text.Encodings.Web;
 using System.Threading.Tasks;
 using Jellyfin.Api.Constants;
+using Jellyfin.Data.Enums;
 using MediaBrowser.Controller.Net;
 using Microsoft.AspNetCore.Authentication;
 using Microsoft.Extensions.Logging;
@@ -37,21 +39,18 @@ namespace Jellyfin.Api.Auth
         /// <inheritdoc />
         protected override Task<AuthenticateResult> HandleAuthenticateAsync()
         {
-            var authenticatedAttribute = new AuthenticatedAttribute();
             try
             {
-                var user = _authService.Authenticate(Request, authenticatedAttribute);
-                if (user == null)
+                var authorizationInfo = _authService.Authenticate(Request);
+                if (authorizationInfo == null)
                 {
                     return Task.FromResult(AuthenticateResult.Fail("Invalid user"));
                 }
 
                 var claims = new[]
                 {
-                    new Claim(ClaimTypes.Name, user.Name),
-                    new Claim(
-                        ClaimTypes.Role,
-                        value: user.Policy.IsAdministrator ? UserRoles.Administrator : UserRoles.User)
+                    new Claim(ClaimTypes.Name, authorizationInfo.User.Username),
+                    new Claim(ClaimTypes.Role, authorizationInfo.User.HasPermission(PermissionKind.IsAdministrator) ? UserRoles.Administrator : UserRoles.User)
                 };
                 var identity = new ClaimsIdentity(claims, Scheme.Name);
                 var principal = new ClaimsPrincipal(identity);
@@ -59,6 +58,10 @@ namespace Jellyfin.Api.Auth
 
                 return Task.FromResult(AuthenticateResult.Success(ticket));
             }
+            catch (AuthenticationException ex)
+            {
+                return Task.FromResult(AuthenticateResult.Fail(ex));
+            }
             catch (SecurityException ex)
             {
                 return Task.FromResult(AuthenticateResult.Fail(ex));
author	Nyanmisaka <nst799610810@gmail.com>	2020-06-25 16:37:40 +0800
committer	GitHub <noreply@github.com>	2020-06-25 16:37:40 +0800
commit	912946a42793305ecdc6a8c176f1775ffe7ac0de (patch)
tree	6a4d85c4869ed8cb5d15f3fa8c82512de6405b6e /Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
parent	bfd87829e3bca42a245287b99e652d091b21c990 (diff)
parent	91c51ae6752720d6272e6a0c651edd3780e150ac (diff)