jellyfin/Emby.Server.Implementations/Security/PluginSecurityManager.cs

355 lines
13 KiB
C#
Raw Normal View History

2016-10-29 05:40:15 +00:00
using System;
using System.Collections.Generic;
2016-10-29 05:40:15 +00:00
using System.IO;
using System.Linq;
2015-10-29 13:28:05 +00:00
using System.Net;
2013-02-21 01:33:05 +00:00
using System.Threading;
using System.Threading.Tasks;
2016-10-29 05:40:15 +00:00
using MediaBrowser.Common.Configuration;
using MediaBrowser.Common.Net;
using MediaBrowser.Common.Security;
using MediaBrowser.Controller;
2016-11-04 08:43:59 +00:00
using MediaBrowser.Model.Cryptography;
2016-10-29 05:40:15 +00:00
using MediaBrowser.Model.Entities;
using MediaBrowser.Model.IO;
using MediaBrowser.Model.Logging;
2015-10-29 13:28:05 +00:00
using MediaBrowser.Model.Net;
2016-10-29 05:40:15 +00:00
using MediaBrowser.Model.Serialization;
2013-02-21 01:33:05 +00:00
2016-11-04 08:43:59 +00:00
namespace Emby.Server.Implementations.Security
2013-02-21 01:33:05 +00:00
{
/// <summary>
/// Class PluginSecurityManager
/// </summary>
2013-02-26 22:13:58 +00:00
public class PluginSecurityManager : ISecurityManager
2013-02-21 01:33:05 +00:00
{
2016-10-29 05:40:15 +00:00
private const string MBValidateUrl = "https://mb3admin.com/admin/service/registration/validate";
2016-04-02 04:16:18 +00:00
private const string AppstoreRegUrl = /*MbAdmin.HttpsUrl*/ "https://mb3admin.com/admin/service/appstore/register";
2014-08-31 19:15:33 +00:00
/// <summary>
/// The _is MB supporter
/// </summary>
private bool? _isMbSupporter;
/// <summary>
/// The _is MB supporter initialized
/// </summary>
private bool _isMbSupporterInitialized;
/// <summary>
/// The _is MB supporter sync lock
/// </summary>
private object _isMbSupporterSyncLock = new object();
/// <summary>
/// Gets a value indicating whether this instance is MB supporter.
/// </summary>
/// <value><c>true</c> if this instance is MB supporter; otherwise, <c>false</c>.</value>
2013-02-21 01:33:05 +00:00
public bool IsMBSupporter
{
get
{
2014-08-31 02:08:59 +00:00
LazyInitializer.EnsureInitialized(ref _isMbSupporter, ref _isMbSupporterInitialized, ref _isMbSupporterSyncLock, () => GetSupporterRegistrationStatus().Result.IsRegistered);
return _isMbSupporter.Value;
2013-02-21 01:33:05 +00:00
}
}
2014-08-31 19:15:33 +00:00
private MBLicenseFile _licenseFile;
private MBLicenseFile LicenseFile
2014-08-31 02:08:59 +00:00
{
2016-11-04 08:43:59 +00:00
get { return _licenseFile ?? (_licenseFile = new MBLicenseFile(_appPaths, _fileSystem, _cryptographyProvider)); }
2014-08-31 02:08:59 +00:00
}
2014-08-31 19:15:33 +00:00
private readonly IHttpClient _httpClient;
private readonly IJsonSerializer _jsonSerializer;
2016-10-29 05:40:15 +00:00
private readonly IServerApplicationHost _appHost;
2014-08-31 02:08:59 +00:00
private readonly ILogger _logger;
private readonly IApplicationPaths _appPaths;
2016-10-29 05:40:15 +00:00
private readonly IFileSystem _fileSystem;
2016-11-08 18:44:23 +00:00
private readonly ICryptoProvider _cryptographyProvider;
private IEnumerable<IRequiresRegistration> _registeredEntities;
protected IEnumerable<IRequiresRegistration> RegisteredEntities
{
get
{
return _registeredEntities ?? (_registeredEntities = _appHost.GetExports<IRequiresRegistration>());
}
}
2013-02-23 22:44:42 +00:00
/// <summary>
/// Initializes a new instance of the <see cref="PluginSecurityManager" /> class.
/// </summary>
2016-10-29 05:40:15 +00:00
public PluginSecurityManager(IServerApplicationHost appHost, IHttpClient httpClient, IJsonSerializer jsonSerializer,
2016-11-08 18:44:23 +00:00
IApplicationPaths appPaths, ILogManager logManager, IFileSystem fileSystem, ICryptoProvider cryptographyProvider)
2013-02-21 01:33:05 +00:00
{
if (httpClient == null)
2013-02-23 22:44:42 +00:00
{
throw new ArgumentNullException("httpClient");
2013-02-23 22:44:42 +00:00
}
2013-03-07 05:34:00 +00:00
_appHost = appHost;
_httpClient = httpClient;
_jsonSerializer = jsonSerializer;
2014-08-31 02:08:59 +00:00
_appPaths = appPaths;
2016-10-29 05:40:15 +00:00
_fileSystem = fileSystem;
2016-11-04 08:43:59 +00:00
_cryptographyProvider = cryptographyProvider;
2014-08-31 02:08:59 +00:00
_logger = logManager.GetLogger("SecurityManager");
2013-02-21 01:33:05 +00:00
}
/// <summary>
/// Load all registration info for all entities that require registration
/// </summary>
/// <returns></returns>
public async Task LoadAllRegistrationInfo()
{
var tasks = new List<Task>();
ResetSupporterInfo();
tasks.AddRange(RegisteredEntities.Select(i => i.LoadRegistrationInfoAsync()));
await Task.WhenAll(tasks);
}
/// <summary>
/// Gets the registration status.
/// This overload supports existing plug-ins.
/// </summary>
/// <param name="feature">The feature.</param>
/// <param name="mb2Equivalent">The MB2 equivalent.</param>
/// <returns>Task{MBRegistrationRecord}.</returns>
2014-08-31 02:08:59 +00:00
public Task<MBRegistrationRecord> GetRegistrationStatus(string feature, string mb2Equivalent = null)
{
2014-08-31 02:08:59 +00:00
return GetRegistrationStatusInternal(feature, mb2Equivalent);
}
/// <summary>
/// Gets the registration status.
/// </summary>
/// <param name="feature">The feature.</param>
/// <param name="mb2Equivalent">The MB2 equivalent.</param>
/// <param name="version">The version of this feature</param>
/// <returns>Task{MBRegistrationRecord}.</returns>
2014-08-31 02:08:59 +00:00
public Task<MBRegistrationRecord> GetRegistrationStatus(string feature, string mb2Equivalent, string version)
{
return GetRegistrationStatusInternal(feature, mb2Equivalent, version);
}
2014-08-31 19:15:33 +00:00
private Task<MBRegistrationRecord> GetSupporterRegistrationStatus()
2013-02-21 01:33:05 +00:00
{
2014-08-31 02:08:59 +00:00
return GetRegistrationStatusInternal("MBSupporter", null, _appHost.ApplicationVersion.ToString());
2013-02-21 01:33:05 +00:00
}
/// <summary>
/// Gets or sets the supporter key.
/// </summary>
/// <value>The supporter key.</value>
2013-02-21 01:33:05 +00:00
public string SupporterKey
{
get
{
2014-08-31 02:08:59 +00:00
return LicenseFile.RegKey;
}
2013-02-23 22:44:42 +00:00
set
{
2016-08-30 04:33:24 +00:00
var newValue = value;
if (newValue != null)
2013-02-21 01:33:05 +00:00
{
2016-08-30 04:33:24 +00:00
newValue = newValue.Trim();
}
if (newValue != LicenseFile.RegKey)
{
LicenseFile.RegKey = newValue;
2014-08-31 19:15:33 +00:00
LicenseFile.Save();
// re-load registration info
Task.Run(() => LoadAllRegistrationInfo());
2013-02-21 01:33:05 +00:00
}
}
}
/// <summary>
/// Register an app store sale with our back-end. It will validate the transaction with the store
/// and then register the proper feature and then fill in the supporter key on success.
/// </summary>
/// <param name="parameters">Json parameters to send to admin server</param>
public async Task RegisterAppStoreSale(string parameters)
{
var options = new HttpRequestOptions()
{
Url = AppstoreRegUrl,
2016-10-06 18:55:01 +00:00
CancellationToken = CancellationToken.None,
BufferContent = false
};
2015-10-26 18:55:46 +00:00
options.RequestHeaders.Add("X-Emby-Token", _appHost.SystemId);
options.RequestContent = parameters;
options.RequestContentType = "application/json";
try
{
using (var response = await _httpClient.Post(options).ConfigureAwait(false))
{
var reg = _jsonSerializer.DeserializeFromStream<RegRecord>(response.Content);
2015-10-23 16:04:33 +00:00
if (reg == null)
{
2015-10-23 17:58:03 +00:00
var msg = "Result from appstore registration was null.";
_logger.Error(msg);
2016-11-04 08:43:59 +00:00
throw new ArgumentException(msg);
2015-10-23 16:04:33 +00:00
}
if (!String.IsNullOrEmpty(reg.key))
{
SupporterKey = reg.key;
}
}
}
2016-11-04 08:43:59 +00:00
catch (ArgumentException)
2015-10-23 17:58:03 +00:00
{
SaveAppStoreInfo(parameters);
throw;
}
2015-10-29 13:28:05 +00:00
catch (HttpException e)
2015-10-28 19:40:38 +00:00
{
2015-10-29 13:28:05 +00:00
_logger.ErrorException("Error registering appstore purchase {0}", e, parameters ?? "NO PARMS SENT");
if (e.StatusCode.HasValue && e.StatusCode.Value == HttpStatusCode.PaymentRequired)
{
throw new PaymentRequiredException();
}
2016-11-04 08:43:59 +00:00
throw new Exception("Error registering store sale");
2015-10-28 19:40:38 +00:00
}
catch (Exception e)
{
2015-10-16 22:36:34 +00:00
_logger.ErrorException("Error registering appstore purchase {0}", e, parameters ?? "NO PARMS SENT");
2015-10-23 17:58:03 +00:00
SaveAppStoreInfo(parameters);
2015-10-20 20:37:22 +00:00
//TODO - could create a re-try routine on start-up if this file is there. For now we can handle manually.
2016-11-04 08:43:59 +00:00
throw new Exception("Error registering store sale");
}
}
2015-10-23 17:58:03 +00:00
private void SaveAppStoreInfo(string info)
{
// Save all transaction information to a file
try
{
2016-10-29 05:40:15 +00:00
_fileSystem.WriteAllText(Path.Combine(_appPaths.ProgramDataPath, "apptrans-error.txt"), info);
2015-10-23 17:58:03 +00:00
}
catch (IOException)
{
2015-10-25 18:16:36 +00:00
2015-10-23 17:58:03 +00:00
}
}
2014-08-31 02:08:59 +00:00
private async Task<MBRegistrationRecord> GetRegistrationStatusInternal(string feature,
string mb2Equivalent = null,
string version = null)
2013-02-21 01:33:05 +00:00
{
2016-12-01 18:23:47 +00:00
var regInfo = LicenseFile.GetRegInfo(feature);
var lastChecked = regInfo == null ? DateTime.MinValue : regInfo.LastChecked;
var expDate = regInfo == null ? DateTime.MinValue : regInfo.ExpirationDate;
var maxCacheDays = 14;
var nextCheckDate = new [] { expDate, lastChecked.AddDays(maxCacheDays) }.Min();
if (nextCheckDate > DateTime.UtcNow.AddDays(maxCacheDays))
{
nextCheckDate = DateTime.MinValue;
}
2014-11-16 22:46:01 +00:00
2014-08-31 02:08:59 +00:00
//check the reg file first to alleviate strain on the MB admin server - must actually check in every 30 days tho
var reg = new RegRecord
{
2014-11-16 22:46:01 +00:00
// Cache the result for up to a week
2016-12-02 08:03:38 +00:00
registered = regInfo != null && nextCheckDate >= DateTime.UtcNow && expDate >= DateTime.UtcNow,
2016-12-01 18:23:47 +00:00
expDate = expDate
2014-08-31 02:08:59 +00:00
};
var success = reg.registered;
2016-12-02 08:03:38 +00:00
if (!(lastChecked > DateTime.UtcNow.AddDays(-1)) || !reg.registered)
2013-02-23 22:44:42 +00:00
{
2014-08-31 02:08:59 +00:00
var data = new Dictionary<string, string>
{
2014-08-31 02:08:59 +00:00
{ "feature", feature },
{ "key", SupporterKey },
2015-01-10 19:42:14 +00:00
{ "mac", _appHost.SystemId },
2014-09-06 17:46:09 +00:00
{ "systemid", _appHost.SystemId },
2014-08-31 02:08:59 +00:00
{ "mb2equiv", mb2Equivalent },
{ "ver", version },
2014-11-23 23:10:41 +00:00
{ "platform", _appHost.OperatingSystemDisplayName },
2014-08-31 02:08:59 +00:00
{ "isservice", _appHost.IsRunningAsService.ToString().ToLower() }
};
try
{
2016-01-21 20:40:20 +00:00
var options = new HttpRequestOptions
{
Url = MBValidateUrl,
// Seeing block length errors
2016-10-06 18:55:01 +00:00
EnableHttpCompression = false,
BufferContent = false
2016-01-21 20:40:20 +00:00
};
options.SetPostData(data);
using (var json = (await _httpClient.Post(options).ConfigureAwait(false)).Content)
2014-08-31 02:08:59 +00:00
{
reg = _jsonSerializer.DeserializeFromStream<RegRecord>(json);
success = true;
}
if (reg.registered)
{
2016-12-01 18:23:47 +00:00
LicenseFile.AddRegCheck(feature, reg.expDate);
2014-08-31 02:08:59 +00:00
}
else
{
LicenseFile.RemoveRegCheck(feature);
}
}
catch (Exception e)
{
_logger.ErrorException("Error checking registration status of {0}", e, feature);
}
2013-02-21 01:33:05 +00:00
}
2014-08-31 19:15:33 +00:00
var record = new MBRegistrationRecord
2014-08-31 02:08:59 +00:00
{
IsRegistered = reg.registered,
ExpirationDate = reg.expDate,
RegChecked = true,
RegError = !success
};
2014-08-31 19:15:33 +00:00
record.TrialVersion = IsInTrial(reg.expDate, record.RegChecked, record.IsRegistered);
2016-03-27 21:11:27 +00:00
record.IsValid = !record.RegChecked || record.IsRegistered || record.TrialVersion;
2014-08-31 19:15:33 +00:00
return record;
2014-08-31 02:08:59 +00:00
}
2014-08-31 19:15:33 +00:00
private bool IsInTrial(DateTime expirationDate, bool regChecked, bool isRegistered)
{
//don't set this until we've successfully obtained exp date
if (!regChecked)
{
return false;
}
var isInTrial = expirationDate > DateTime.UtcNow;
2016-03-27 21:11:27 +00:00
return isInTrial && !isRegistered;
2014-08-31 19:15:33 +00:00
}
/// <summary>
/// Resets the supporter info.
/// </summary>
2013-02-21 01:33:05 +00:00
private void ResetSupporterInfo()
{
_isMbSupporter = null;
_isMbSupporterInitialized = false;
2013-02-21 01:33:05 +00:00
}
}
2015-09-30 04:13:48 +00:00
}