Merge branch 'master' into defer_image_fetching

author: Joshua M. Boniface <joshua@boniface.me> 2020-11-21 17:20:31 -0500
committer: GitHub <noreply@github.com> 2020-11-21 17:20:31 -0500
commit: bf54b5579c15bdf8bb6e3dd6934ea23c45a62573 (patch)
tree: 1b2df4bdf89a70f578b72240969416034afc33db /Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
parent: 4a81ee43dc7aed94012c312a8262a1426be9b6d9 (diff)
parent: b707d8e09d776a1dd1f0cdd6cf13cd1f3e638028 (diff)
1 files changed, 7 insertions, 8 deletions
diff --git a/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs b/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
index 733c6959e..27a1f61be 100644
--- a/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
+++ b/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
@@ -1,10 +1,10 @@
 using System.Globalization;
-using System.Security.Authentication;
 using System.Security.Claims;
 using System.Text.Encodings.Web;
 using System.Threading.Tasks;
 using Jellyfin.Api.Constants;
 using Jellyfin.Data.Enums;
+using MediaBrowser.Controller.Authentication;
 using MediaBrowser.Controller.Net;
 using Microsoft.AspNetCore.Authentication;
 using Microsoft.Extensions.Logging;
@@ -43,24 +43,23 @@ namespace Jellyfin.Api.Auth
             try
             {
                 var authorizationInfo = _authService.Authenticate(Request);
-                if (authorizationInfo == null)
+                var role = UserRoles.User;
+                if (authorizationInfo.IsApiKey || authorizationInfo.User.HasPermission(PermissionKind.IsAdministrator))
                 {
-                    return Task.FromResult(AuthenticateResult.NoResult());
-                    // TODO return when legacy API is removed.
-                    // Don't spam the log with "Invalid User"
-                    // return Task.FromResult(AuthenticateResult.Fail("Invalid user"));
+                    role = UserRoles.Administrator;
                 }
 
                 var claims = new[]
                 {
-                    new Claim(ClaimTypes.Name, authorizationInfo.User.Username),
-                    new Claim(ClaimTypes.Role, authorizationInfo.User.HasPermission(PermissionKind.IsAdministrator) ? UserRoles.Administrator : UserRoles.User),
+                    new Claim(ClaimTypes.Name, authorizationInfo.User?.Username ?? string.Empty),
+                    new Claim(ClaimTypes.Role, role),
                     new Claim(InternalClaimTypes.UserId, authorizationInfo.UserId.ToString("N", CultureInfo.InvariantCulture)),
                     new Claim(InternalClaimTypes.DeviceId, authorizationInfo.DeviceId),
                     new Claim(InternalClaimTypes.Device, authorizationInfo.Device),
                     new Claim(InternalClaimTypes.Client, authorizationInfo.Client),
                     new Claim(InternalClaimTypes.Version, authorizationInfo.Version),
                     new Claim(InternalClaimTypes.Token, authorizationInfo.Token),
+                    new Claim(InternalClaimTypes.IsApiKey, authorizationInfo.IsApiKey.ToString(CultureInfo.InvariantCulture))
                 };
 
                 var identity = new ClaimsIdentity(claims, Scheme.Name);
author	Joshua M. Boniface <joshua@boniface.me>	2020-11-21 17:20:31 -0500
committer	GitHub <noreply@github.com>	2020-11-21 17:20:31 -0500
commit	bf54b5579c15bdf8bb6e3dd6934ea23c45a62573 (patch)
tree	1b2df4bdf89a70f578b72240969416034afc33db /Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
parent	4a81ee43dc7aed94012c312a8262a1426be9b6d9 (diff)
parent	b707d8e09d776a1dd1f0cdd6cf13cd1f3e638028 (diff)