Remove "download images in advance" option

author: ferferga <ferferga.fer@gmail.com> 2020-10-19 17:28:07 +0200
committer: ferferga <ferferga.fer@gmail.com> 2020-10-19 17:28:07 +0200
commit: 9fd01fade6ac971ba72a2e7dd54e2295f23839bc (patch)
tree: 20a5ff4a1621e765fc93c0e53b149edb61ff3654 /Jellyfin.Api/Auth/RequiresElevationPolicy/RequiresElevationHandler.cs
parent: ba03ed65fe64b724b3e8b5b94b9cbe1075c61da2 (diff)
parent: 49ac4c4044b1777dc3a25544aead7b0b15b953e8 (diff)
1 files changed, 24 insertions, 2 deletions
diff --git a/Jellyfin.Api/Auth/RequiresElevationPolicy/RequiresElevationHandler.cs b/Jellyfin.Api/Auth/RequiresElevationPolicy/RequiresElevationHandler.cs
index 2d3bb1aa4..b235c4b63 100644
--- a/Jellyfin.Api/Auth/RequiresElevationPolicy/RequiresElevationHandler.cs
+++ b/Jellyfin.Api/Auth/RequiresElevationPolicy/RequiresElevationHandler.cs
@@ -1,21 +1,43 @@
 using System.Threading.Tasks;
 using Jellyfin.Api.Constants;
+using MediaBrowser.Common.Net;
+using MediaBrowser.Controller.Library;
 using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Http;
 
 namespace Jellyfin.Api.Auth.RequiresElevationPolicy
 {
     /// <summary>
     /// Authorization handler for requiring elevated privileges.
     /// </summary>
-    public class RequiresElevationHandler : AuthorizationHandler<RequiresElevationRequirement>
+    public class RequiresElevationHandler : BaseAuthorizationHandler<RequiresElevationRequirement>
     {
+        /// <summary>
+        /// Initializes a new instance of the <see cref="RequiresElevationHandler"/> class.
+        /// </summary>
+        /// <param name="userManager">Instance of the <see cref="IUserManager"/> interface.</param>
+        /// <param name="networkManager">Instance of the <see cref="INetworkManager"/> interface.</param>
+        /// <param name="httpContextAccessor">Instance of the <see cref="IHttpContextAccessor"/> interface.</param>
+        public RequiresElevationHandler(
+            IUserManager userManager,
+            INetworkManager networkManager,
+            IHttpContextAccessor httpContextAccessor)
+            : base(userManager, networkManager, httpContextAccessor)
+        {
+        }
+
         /// <inheritdoc />
         protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, RequiresElevationRequirement requirement)
         {
-            if (context.User.IsInRole(UserRoles.Administrator))
+            var validated = ValidateClaims(context.User);
+            if (validated && context.User.IsInRole(UserRoles.Administrator))
             {
                 context.Succeed(requirement);
             }
+            else
+            {
+                context.Fail();
+            }
 
             return Task.CompletedTask;
         }
author	ferferga <ferferga.fer@gmail.com>	2020-10-19 17:28:07 +0200
committer	ferferga <ferferga.fer@gmail.com>	2020-10-19 17:28:07 +0200
commit	9fd01fade6ac971ba72a2e7dd54e2295f23839bc (patch)
tree	20a5ff4a1621e765fc93c0e53b149edb61ff3654 /Jellyfin.Api/Auth/RequiresElevationPolicy/RequiresElevationHandler.cs
parent	ba03ed65fe64b724b3e8b5b94b9cbe1075c61da2 (diff)
parent	49ac4c4044b1777dc3a25544aead7b0b15b953e8 (diff)