Jellyfin.Api/Auth/FirstTimeSetupPolicy/FirstTimeSetupHandler.cs

using System.Threading.Tasks;
using Jellyfin.Api.Constants;
using Jellyfin.Api.Extensions;
using MediaBrowser.Common.Configuration;
using Microsoft.AspNetCore.Authorization;

namespace Jellyfin.Api.Auth.FirstTimeSetupPolicy
{
    /// <summary>
    /// Authorization handler for requiring first time setup or default privileges.
    /// </summary>
    public class FirstTimeSetupHandler : AuthorizationHandler<FirstTimeSetupRequirement>
    {
        private readonly IConfigurationManager _configurationManager;

        /// <summary>
        /// Initializes a new instance of the <see cref="FirstTimeSetupHandler" /> class.
        /// </summary>
        /// <param name="configurationManager">Instance of the <see cref="IConfigurationManager"/> interface.</param>
        public FirstTimeSetupHandler(IConfigurationManager configurationManager)
        {
            _configurationManager = configurationManager;
        }

        /// <inheritdoc />
        protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, FirstTimeSetupRequirement requirement)
        {
            // Succeed if the startup wizard / first time setup is not complete
            if (!_configurationManager.CommonConfiguration.IsStartupWizardCompleted)
            {
                context.Succeed(requirement);
            }

            // Succeed if user is admin
            else if (context.User.IsInRole(UserRoles.Administrator))
            {
                context.Succeed(requirement);
            }

            // Fail if admin is required and user is not admin
            else if (requirement.RequireAdmin)
            {
                context.Fail();
            }

            // Succeed if admin is not required and user is not guest
            else if (context.User.IsInRole(UserRoles.User))
            {
                context.Succeed(requirement);
            }

            // Any user-specific checks are handled in the DefaultAuthorizationHandler.
            return Task.CompletedTask;
        }
    }
}
Apply fixes from review 2020-08-06 08:17:45 -06:00			`using System.Threading.Tasks;`
refactor: simplify authz 2023-02-08 23:55:26 +01:00			`using Jellyfin.Api.Constants;`
Fix FirstTimeSetupHandler api key test 2024-05-30 12:08:52 -04:00			`using Jellyfin.Api.Extensions;`
Apply fixes from review 2020-08-06 08:17:45 -06:00			`using MediaBrowser.Common.Configuration;`
			`using Microsoft.AspNetCore.Authorization;`

refactor: simplify authz 2023-02-08 23:55:26 +01:00			`namespace Jellyfin.Api.Auth.FirstTimeSetupPolicy`
Apply fixes from review 2020-08-06 08:17:45 -06:00			`{`
			`/// <summary>`
Apply fixes from review 2020-08-06 17:59:48 -06:00			`/// Authorization handler for requiring first time setup or default privileges.`
Apply fixes from review 2020-08-06 08:17:45 -06:00			`/// </summary>`
refactor: simplify authz 2023-02-08 23:55:26 +01:00			`public class FirstTimeSetupHandler : AuthorizationHandler<FirstTimeSetupRequirement>`
Apply fixes from review 2020-08-06 08:17:45 -06:00			`{`
			`private readonly IConfigurationManager _configurationManager;`

			`/// <summary>`
refactor: simplify authz 2023-02-08 23:55:26 +01:00			`/// Initializes a new instance of the <see cref="FirstTimeSetupHandler" /> class.`
Apply fixes from review 2020-08-06 08:17:45 -06:00			`/// </summary>`
			`/// <param name="configurationManager">Instance of the <see cref="IConfigurationManager"/> interface.</param>`
Always grant access for Administrator role 2024-04-10 22:32:37 -06:00			`public FirstTimeSetupHandler(IConfigurationManager configurationManager)`
Apply fixes from review 2020-08-06 08:17:45 -06:00			`{`
			`_configurationManager = configurationManager;`
			`}`

			`/// <inheritdoc />`
refactor: simplify authz 2023-02-08 23:55:26 +01:00			`protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, FirstTimeSetupRequirement requirement)`
Apply fixes from review 2020-08-06 08:17:45 -06:00			`{`
Fix FirstTimeSetupHandler failing for users and update tests 2024-05-31 14:09:04 -04:00			`// Succeed if the startup wizard / first time setup is not complete`
Apply fixes from review 2020-08-06 08:17:45 -06:00			`if (!_configurationManager.CommonConfiguration.IsStartupWizardCompleted)`
			`{`
Target net6.0 2021-02-14 15:11:46 +01:00			`context.Succeed(requirement);`
Apply fixes from review 2020-08-06 08:17:45 -06:00			`}`
Fix FirstTimeSetupHandler failing for users and update tests 2024-05-31 14:09:04 -04:00
Remove api key check and simplify conditions 2024-05-31 16:31:15 -04:00			`// Succeed if user is admin`
			`else if (context.User.IsInRole(UserRoles.Administrator))`
Fix FirstTimeSetupHandler api key test 2024-05-30 12:08:52 -04:00			`{`
			`context.Succeed(requirement);`
			`}`
Fix FirstTimeSetupHandler failing for users and update tests 2024-05-31 14:09:04 -04:00
			`// Fail if admin is required and user is not admin`
Remove api key check and simplify conditions 2024-05-31 16:31:15 -04:00			`else if (requirement.RequireAdmin)`
Fix FirstTimeSetupHandler not failing on invalid user if not in setup mode (#9747) 2023-05-10 22:05:27 +02:00			`{`
			`context.Fail();`
			`}`
Apply fixes from review 2020-08-06 08:17:45 -06:00
Fix FirstTimeSetupHandler failing for users and update tests 2024-05-31 14:09:04 -04:00			`// Succeed if admin is not required and user is not guest`
Remove api key check and simplify conditions 2024-05-31 16:31:15 -04:00			`else if (context.User.IsInRole(UserRoles.User))`
Fix FirstTimeSetupHandler failing for users and update tests 2024-05-31 14:09:04 -04:00			`{`
			`context.Succeed(requirement);`
			`}`

Defer standard authentication checks to DefaultAuthorizationHandler 2024-05-29 14:35:41 -04:00			`// Any user-specific checks are handled in the DefaultAuthorizationHandler.`
Apply fixes from review 2020-08-06 08:17:45 -06:00			`return Task.CompletedTask;`
			`}`
			`}`
			`}`