Merge remote-tracking branch 'remotes/upstream/api-migration' into api-user

author: David <daullmer@gmail.com> 2020-06-18 18:52:01 +0200
committer: David <daullmer@gmail.com> 2020-06-18 18:52:01 +0200
commit: 762eeb51e66368e5f6fdede7b6fab84ea5859107 (patch)
tree: c9d18360013b149f204e0d6e4e60292ce45d54f4 /Jellyfin.Api/Auth/LocalAccessPolicy
parent: 713ae7ae363cafd95bd93bfd69b4ac7ab5b9b32b (diff)
parent: 522e44de59a8661a859f6a373e495a9e0e8d13ff (diff)
2 files changed, 55 insertions, 0 deletions
diff --git a/Jellyfin.Api/Auth/LocalAccessPolicy/LocalAccessHandler.cs b/Jellyfin.Api/Auth/LocalAccessPolicy/LocalAccessHandler.cs
new file mode 100644
index 000000000..af73352bc
--- /dev/null
+++ b/Jellyfin.Api/Auth/LocalAccessPolicy/LocalAccessHandler.cs
@@ -0,0 +1,44 @@
+using System.Threading.Tasks;
+using MediaBrowser.Common.Net;
+using MediaBrowser.Controller.Library;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Http;
+
+namespace Jellyfin.Api.Auth.LocalAccessPolicy
+{
+    /// <summary>
+    /// Local access handler.
+    /// </summary>
+    public class LocalAccessHandler : BaseAuthorizationHandler<LocalAccessRequirement>
+    {
+        /// <summary>
+        /// Initializes a new instance of the <see cref="LocalAccessHandler"/> class.
+        /// </summary>
+        /// <param name="userManager">Instance of the <see cref="IUserManager"/> interface.</param>
+        /// <param name="networkManager">Instance of the <see cref="INetworkManager"/> interface.</param>
+        /// <param name="httpContextAccessor">Instance of the <see cref="IHttpContextAccessor"/> interface.</param>
+        public LocalAccessHandler(
+            IUserManager userManager,
+            INetworkManager networkManager,
+            IHttpContextAccessor httpContextAccessor)
+            : base(userManager, networkManager, httpContextAccessor)
+        {
+        }
+
+        /// <inheritdoc />
+        protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, LocalAccessRequirement requirement)
+        {
+            var validated = ValidateClaims(context.User, localAccessOnly: true);
+            if (!validated)
+            {
+                context.Fail();
+            }
+            else
+            {
+                context.Succeed(requirement);
+            }
+
+            return Task.CompletedTask;
+        }
+    }
+}
diff --git a/Jellyfin.Api/Auth/LocalAccessPolicy/LocalAccessRequirement.cs b/Jellyfin.Api/Auth/LocalAccessPolicy/LocalAccessRequirement.cs
new file mode 100644
index 000000000..761127fa4
--- /dev/null
+++ b/Jellyfin.Api/Auth/LocalAccessPolicy/LocalAccessRequirement.cs
@@ -0,0 +1,11 @@
+using Microsoft.AspNetCore.Authorization;
+
+namespace Jellyfin.Api.Auth.LocalAccessPolicy
+{
+    /// <summary>
+    /// The local access authorization requirement.
+    /// </summary>
+    public class LocalAccessRequirement : IAuthorizationRequirement
+    {
+    }
+}
author	David <daullmer@gmail.com>	2020-06-18 18:52:01 +0200
committer	David <daullmer@gmail.com>	2020-06-18 18:52:01 +0200
commit	762eeb51e66368e5f6fdede7b6fab84ea5859107 (patch)
tree	c9d18360013b149f204e0d6e4e60292ce45d54f4 /Jellyfin.Api/Auth/LocalAccessPolicy
parent	713ae7ae363cafd95bd93bfd69b4ac7ab5b9b32b (diff)
parent	522e44de59a8661a859f6a373e495a9e0e8d13ff (diff)