Merge branch 'master' into segment-deletion

author: Dominik <git@secnd.me> 2023-06-15 19:38:42 +0200
committer: GitHub <noreply@github.com> 2023-06-15 19:38:42 +0200
commit: 17f1e8d19b1fd693893d66d2275ed8ae2476344e (patch)
tree: 7f48be975faa92042769870957587b3c7864f631 /Jellyfin.Api/Auth/FirstTimeSetupPolicy/FirstTimeSetupHandler.cs
parent: e8ae7e5c38e28f13fa8de295e26c930cb46d9b79 (diff)
parent: 6771b5cabe96b4b3cbd1cd0c998d564f3dd17ed4 (diff)
1 files changed, 75 insertions, 0 deletions
diff --git a/Jellyfin.Api/Auth/FirstTimeSetupPolicy/FirstTimeSetupHandler.cs b/Jellyfin.Api/Auth/FirstTimeSetupPolicy/FirstTimeSetupHandler.cs
new file mode 100644
index 000000000..688a13bc0
--- /dev/null
+++ b/Jellyfin.Api/Auth/FirstTimeSetupPolicy/FirstTimeSetupHandler.cs
@@ -0,0 +1,75 @@
+using System.Threading.Tasks;
+using Jellyfin.Api.Constants;
+using Jellyfin.Api.Extensions;
+using MediaBrowser.Common.Configuration;
+using MediaBrowser.Common.Extensions;
+using MediaBrowser.Controller.Library;
+using Microsoft.AspNetCore.Authorization;
+
+namespace Jellyfin.Api.Auth.FirstTimeSetupPolicy
+{
+    /// <summary>
+    /// Authorization handler for requiring first time setup or default privileges.
+    /// </summary>
+    public class FirstTimeSetupHandler : AuthorizationHandler<FirstTimeSetupRequirement>
+    {
+        private readonly IConfigurationManager _configurationManager;
+        private readonly IUserManager _userManager;
+
+        /// <summary>
+        /// Initializes a new instance of the <see cref="FirstTimeSetupHandler" /> class.
+        /// </summary>
+        /// <param name="configurationManager">Instance of the <see cref="IConfigurationManager"/> interface.</param>
+        /// <param name="userManager">Instance of the <see cref="IUserManager"/> interface.</param>
+        public FirstTimeSetupHandler(
+            IConfigurationManager configurationManager,
+            IUserManager userManager)
+        {
+            _configurationManager = configurationManager;
+            _userManager = userManager;
+        }
+
+        /// <inheritdoc />
+        protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, FirstTimeSetupRequirement requirement)
+        {
+            if (!_configurationManager.CommonConfiguration.IsStartupWizardCompleted)
+            {
+                context.Succeed(requirement);
+                return Task.CompletedTask;
+            }
+
+            var contextUser = context.User;
+            if (requirement.RequireAdmin && !contextUser.IsInRole(UserRoles.Administrator))
+            {
+                context.Fail();
+                return Task.CompletedTask;
+            }
+
+            var userId = contextUser.GetUserId();
+            if (userId.Equals(default))
+            {
+                context.Fail();
+                return Task.CompletedTask;
+            }
+
+            if (!requirement.ValidateParentalSchedule)
+            {
+                context.Succeed(requirement);
+                return Task.CompletedTask;
+            }
+
+            var user = _userManager.GetUserById(userId);
+            if (user is null)
+            {
+                throw new ResourceNotFoundException();
+            }
+
+            if (user.IsParentalScheduleAllowed())
+            {
+                context.Succeed(requirement);
+            }
+
+            return Task.CompletedTask;
+        }
+    }
+}
author	Dominik <git@secnd.me>	2023-06-15 19:38:42 +0200
committer	GitHub <noreply@github.com>	2023-06-15 19:38:42 +0200
commit	17f1e8d19b1fd693893d66d2275ed8ae2476344e (patch)
tree	7f48be975faa92042769870957587b3c7864f631 /Jellyfin.Api/Auth/FirstTimeSetupPolicy/FirstTimeSetupHandler.cs
parent	e8ae7e5c38e28f13fa8de295e26c930cb46d9b79 (diff)
parent	6771b5cabe96b4b3cbd1cd0c998d564f3dd17ed4 (diff)