Merge remote-tracking branch 'jellyfin/master' into emby-namig-nullable

author: Stepan <ste.martinek+git@gmail.com> 2020-11-10 12:42:49 +0100
committer: Stepan <ste.martinek+git@gmail.com> 2020-11-10 12:42:49 +0100
commit: c0747512d6d3973ac102ea4990d2e1fa44e5a5d1 (patch)
tree: 2cf9ad33386422dfb00757237b68523e60284034 /Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
parent: 3d1076ae42433314835f4277ff42cd5ef1e6c016 (diff)
parent: cdf979efef94dc29f4ef0b4ad3f918b4983560e5 (diff)
1 files changed, 7 insertions, 8 deletions
diff --git a/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs b/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
index 733c6959e..27a1f61be 100644
--- a/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
+++ b/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
@@ -1,10 +1,10 @@
 using System.Globalization;
-using System.Security.Authentication;
 using System.Security.Claims;
 using System.Text.Encodings.Web;
 using System.Threading.Tasks;
 using Jellyfin.Api.Constants;
 using Jellyfin.Data.Enums;
+using MediaBrowser.Controller.Authentication;
 using MediaBrowser.Controller.Net;
 using Microsoft.AspNetCore.Authentication;
 using Microsoft.Extensions.Logging;
@@ -43,24 +43,23 @@ namespace Jellyfin.Api.Auth
             try
             {
                 var authorizationInfo = _authService.Authenticate(Request);
-                if (authorizationInfo == null)
+                var role = UserRoles.User;
+                if (authorizationInfo.IsApiKey || authorizationInfo.User.HasPermission(PermissionKind.IsAdministrator))
                 {
-                    return Task.FromResult(AuthenticateResult.NoResult());
-                    // TODO return when legacy API is removed.
-                    // Don't spam the log with "Invalid User"
-                    // return Task.FromResult(AuthenticateResult.Fail("Invalid user"));
+                    role = UserRoles.Administrator;
                 }
 
                 var claims = new[]
                 {
-                    new Claim(ClaimTypes.Name, authorizationInfo.User.Username),
-                    new Claim(ClaimTypes.Role, authorizationInfo.User.HasPermission(PermissionKind.IsAdministrator) ? UserRoles.Administrator : UserRoles.User),
+                    new Claim(ClaimTypes.Name, authorizationInfo.User?.Username ?? string.Empty),
+                    new Claim(ClaimTypes.Role, role),
                     new Claim(InternalClaimTypes.UserId, authorizationInfo.UserId.ToString("N", CultureInfo.InvariantCulture)),
                     new Claim(InternalClaimTypes.DeviceId, authorizationInfo.DeviceId),
                     new Claim(InternalClaimTypes.Device, authorizationInfo.Device),
                     new Claim(InternalClaimTypes.Client, authorizationInfo.Client),
                     new Claim(InternalClaimTypes.Version, authorizationInfo.Version),
                     new Claim(InternalClaimTypes.Token, authorizationInfo.Token),
+                    new Claim(InternalClaimTypes.IsApiKey, authorizationInfo.IsApiKey.ToString(CultureInfo.InvariantCulture))
                 };
 
                 var identity = new ClaimsIdentity(claims, Scheme.Name);
author	Stepan <ste.martinek+git@gmail.com>	2020-11-10 12:42:49 +0100
committer	Stepan <ste.martinek+git@gmail.com>	2020-11-10 12:42:49 +0100
commit	c0747512d6d3973ac102ea4990d2e1fa44e5a5d1 (patch)
tree	2cf9ad33386422dfb00757237b68523e60284034 /Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
parent	3d1076ae42433314835f4277ff42cd5ef1e6c016 (diff)
parent	cdf979efef94dc29f4ef0b4ad3f918b4983560e5 (diff)