ec1f5dc317
Add Argument*Exceptions now use proper nameof operators. Added exception messages to quite a few Argument*Exceptions. Fixed rethorwing to be proper syntax. Added a ton of null checkes. (This is only a start, there are about 500 places that need proper null handling) Added some TODOs to log certain exceptions. Fix sln again. Fixed all AssemblyInfo's and added proper copyright (where I could find them) We live in *current year*. Fixed the use of braces. Fixed a ton of properties, and made a fair amount of functions static that should be and can be static. Made more Methods that should be static static. You can now use static to find bad functions! Removed unused variable. And added one more proper XML comment.
106 lines
3.2 KiB
C#
106 lines
3.2 KiB
C#
using System;
|
|
using System.Collections.Generic;
|
|
using System.Text;
|
|
using System.Threading.Tasks;
|
|
using MediaBrowser.Controller.Authentication;
|
|
using MediaBrowser.Controller.Entities;
|
|
using MediaBrowser.Model.Cryptography;
|
|
|
|
namespace Emby.Server.Implementations.Library
|
|
{
|
|
public class DefaultAuthenticationProvider : IAuthenticationProvider, IRequiresResolvedUser
|
|
{
|
|
private readonly ICryptoProvider _cryptographyProvider;
|
|
public DefaultAuthenticationProvider(ICryptoProvider crypto)
|
|
{
|
|
_cryptographyProvider = crypto;
|
|
}
|
|
|
|
public string Name => "Default";
|
|
|
|
public bool IsEnabled => true;
|
|
|
|
public Task<ProviderAuthenticationResult> Authenticate(string username, string password)
|
|
{
|
|
throw new NotImplementedException();
|
|
}
|
|
|
|
public Task<ProviderAuthenticationResult> Authenticate(string username, string password, User resolvedUser)
|
|
{
|
|
if (resolvedUser == null)
|
|
{
|
|
throw new Exception("Invalid username or password");
|
|
}
|
|
|
|
var success = string.Equals(GetPasswordHash(resolvedUser), GetHashedString(resolvedUser, password), StringComparison.OrdinalIgnoreCase);
|
|
|
|
if (!success)
|
|
{
|
|
throw new Exception("Invalid username or password");
|
|
}
|
|
|
|
return Task.FromResult(new ProviderAuthenticationResult
|
|
{
|
|
Username = username
|
|
});
|
|
}
|
|
|
|
public Task<bool> HasPassword(User user)
|
|
{
|
|
var hasConfiguredPassword = !IsPasswordEmpty(user, GetPasswordHash(user));
|
|
return Task.FromResult(hasConfiguredPassword);
|
|
}
|
|
|
|
private bool IsPasswordEmpty(User user, string passwordHash)
|
|
{
|
|
return string.Equals(passwordHash, GetEmptyHashedString(user), StringComparison.OrdinalIgnoreCase);
|
|
}
|
|
|
|
public Task ChangePassword(User user, string newPassword)
|
|
{
|
|
string newPasswordHash = null;
|
|
|
|
if (newPassword != null)
|
|
{
|
|
newPasswordHash = GetHashedString(user, newPassword);
|
|
}
|
|
|
|
if (string.IsNullOrWhiteSpace(newPasswordHash))
|
|
{
|
|
throw new ArgumentNullException(nameof(newPasswordHash));
|
|
}
|
|
|
|
user.Password = newPasswordHash;
|
|
|
|
return Task.CompletedTask;
|
|
}
|
|
|
|
public string GetPasswordHash(User user)
|
|
{
|
|
return string.IsNullOrEmpty(user.Password)
|
|
? GetEmptyHashedString(user)
|
|
: user.Password;
|
|
}
|
|
|
|
public string GetEmptyHashedString(User user)
|
|
{
|
|
return GetHashedString(user, string.Empty);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Gets the hashed string.
|
|
/// </summary>
|
|
public string GetHashedString(User user, string str)
|
|
{
|
|
var salt = user.Salt;
|
|
if (salt != null)
|
|
{
|
|
// return BCrypt.HashPassword(str, salt);
|
|
}
|
|
|
|
// legacy
|
|
return BitConverter.ToString(_cryptographyProvider.ComputeSHA1(Encoding.UTF8.GetBytes(str))).Replace("-", string.Empty);
|
|
}
|
|
}
|
|
}
|