Merge remote-tracking branch 'upstream/api-migration' into api-channel

author: crobibero <cody@robibe.ro> 2020-06-24 10:52:39 -0600
committer: crobibero <cody@robibe.ro> 2020-06-24 10:52:39 -0600
commit: cbcf3bfaffadf9d467b2bd0bb7f3e834d13d56d3 (patch)
tree: 60c33f03ed003794eb61058ff870dc4f2dbee64d /Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
parent: 8f1505cdf5bc964c294cf0575807233f0e7af7d7 (diff)
parent: 6ad50f2e023cdf8fedce8c828c507576d590858e (diff)
1 files changed, 13 insertions, 11 deletions
diff --git a/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs b/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
index 100054096..ea02e6a0b 100644
--- a/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
+++ b/Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
@@ -1,8 +1,10 @@
+using System.Globalization;
 using System.Security.Authentication;
 using System.Security.Claims;
 using System.Text.Encodings.Web;
 using System.Threading.Tasks;
 using Jellyfin.Api.Constants;
+using Jellyfin.Data.Enums;
 using MediaBrowser.Controller.Net;
 using Microsoft.AspNetCore.Authentication;
 using Microsoft.Extensions.Logging;
@@ -38,15 +40,10 @@ namespace Jellyfin.Api.Auth
         /// <inheritdoc />
         protected override Task<AuthenticateResult> HandleAuthenticateAsync()
         {
-            var authenticatedAttribute = new AuthenticatedAttribute
-            {
-                IgnoreLegacyAuth = true
-            };
-
             try
             {
-                var user = _authService.Authenticate(Request, authenticatedAttribute);
-                if (user == null)
+                var authorizationInfo = _authService.Authenticate(Request);
+                if (authorizationInfo == null)
                 {
                     return Task.FromResult(AuthenticateResult.NoResult());
                     // TODO return when legacy API is removed.
@@ -56,11 +53,16 @@ namespace Jellyfin.Api.Auth
 
                 var claims = new[]
                 {
-                    new Claim(ClaimTypes.Name, user.Name),
-                    new Claim(
-                        ClaimTypes.Role,
-                        value: user.Policy.IsAdministrator ? UserRoles.Administrator : UserRoles.User)
+                    new Claim(ClaimTypes.Name, authorizationInfo.User.Username),
+                    new Claim(ClaimTypes.Role, value: authorizationInfo.User.HasPermission(PermissionKind.IsAdministrator) ? UserRoles.Administrator : UserRoles.User),
+                    new Claim(InternalClaimTypes.UserId, authorizationInfo.UserId.ToString("N", CultureInfo.InvariantCulture)),
+                    new Claim(InternalClaimTypes.DeviceId, authorizationInfo.DeviceId),
+                    new Claim(InternalClaimTypes.Device, authorizationInfo.Device),
+                    new Claim(InternalClaimTypes.Client, authorizationInfo.Client),
+                    new Claim(InternalClaimTypes.Version, authorizationInfo.Version),
+                    new Claim(InternalClaimTypes.Token, authorizationInfo.Token),
                 };
+
                 var identity = new ClaimsIdentity(claims, Scheme.Name);
                 var principal = new ClaimsPrincipal(identity);
                 var ticket = new AuthenticationTicket(principal, Scheme.Name);
author	crobibero <cody@robibe.ro>	2020-06-24 10:52:39 -0600
committer	crobibero <cody@robibe.ro>	2020-06-24 10:52:39 -0600
commit	cbcf3bfaffadf9d467b2bd0bb7f3e834d13d56d3 (patch)
tree	60c33f03ed003794eb61058ff870dc4f2dbee64d /Jellyfin.Api/Auth/CustomAuthenticationHandler.cs
parent	8f1505cdf5bc964c294cf0575807233f0e7af7d7 (diff)
parent	6ad50f2e023cdf8fedce8c828c507576d590858e (diff)