Change arguments AssertCanUpdateUser to take a user

author: Bond_009 <bond.009@outlook.com> 2024-05-15 17:51:40 +0200
committer: Bond_009 <bond.009@outlook.com> 2024-08-05 17:17:57 +0200
commit: 454933733574dae8fa9b255d62a89cf953f1fe44 (patch)
tree: b6fdf84dd829fcb63433816f52a92c4b798701d3 /Jellyfin.Api/Controllers/ItemsController.cs
parent: c831af2fe23b6400ea6ee9a57b938a594b654ad5 (diff)
1 files changed, 14 insertions, 4 deletions
diff --git a/Jellyfin.Api/Controllers/ItemsController.cs b/Jellyfin.Api/Controllers/ItemsController.cs
index d33634412..828bd5174 100644
--- a/Jellyfin.Api/Controllers/ItemsController.cs
+++ b/Jellyfin.Api/Controllers/ItemsController.cs
@@ -972,12 +972,17 @@ public class ItemsController : BaseJellyfinApiController
         [FromRoute, Required] Guid itemId)
     {
         var requestUserId = RequestHelpers.GetUserId(User, userId);
-        if (!RequestHelpers.AssertCanUpdateUser(_userManager, User, requestUserId, true))
+        var user = _userManager.GetUserById(requestUserId);
+        if (user is null)
+        {
+            return NotFound();
+        }
+
+        if (!RequestHelpers.AssertCanUpdateUser(User, user, true))
         {
             return StatusCode(StatusCodes.Status403Forbidden, "User is not allowed to view this item user data.");
         }
 
-        var user = _userManager.GetUserById(requestUserId) ?? throw new ResourceNotFoundException();
         var item = _libraryManager.GetItemById<BaseItem>(itemId, user);
         if (item is null)
         {
@@ -1023,12 +1028,17 @@ public class ItemsController : BaseJellyfinApiController
         [FromBody, Required] UpdateUserItemDataDto userDataDto)
     {
         var requestUserId = RequestHelpers.GetUserId(User, userId);
-        if (!RequestHelpers.AssertCanUpdateUser(_userManager, User, requestUserId, true))
+        var user = _userManager.GetUserById(requestUserId);
+        if (user is null)
+        {
+            return NotFound();
+        }
+
+        if (!RequestHelpers.AssertCanUpdateUser(User, user, true))
         {
             return StatusCode(StatusCodes.Status403Forbidden, "User is not allowed to update this item user data.");
         }
 
-        var user = _userManager.GetUserById(requestUserId) ?? throw new ResourceNotFoundException();
         var item = _libraryManager.GetItemById<BaseItem>(itemId, user);
         if (item is null)
         {
author	Bond_009 <bond.009@outlook.com>	2024-05-15 17:51:40 +0200
committer	Bond_009 <bond.009@outlook.com>	2024-08-05 17:17:57 +0200
commit	454933733574dae8fa9b255d62a89cf953f1fe44 (patch)
tree	b6fdf84dd829fcb63433816f52a92c4b798701d3 /Jellyfin.Api/Controllers/ItemsController.cs
parent	c831af2fe23b6400ea6ee9a57b938a594b654ad5 (diff)