Commit Graph

73 Commits

Author SHA1 Message Date
Tommaso Stocchi
d86964eb6a Merge branch 'bug/authorization-header-issue' of https://github.com/tommasodotNET/jellyfin into bug/authorization-header-issue 2021-06-03 17:10:22 +02:00
Tommaso Stocchi
3c019d1324 Using for instead of while 2021-06-03 17:10:19 +02:00
Tommaso Stocchi
3951546b1f
Update Emby.Server.Implementations/HttpServer/Security/AuthorizationContext.cs
Co-authored-by: artiume <siderite@gmail.com>
2021-06-03 17:07:25 +02:00
BaronGreenback
414e918c01 Optimized and added test 2021-02-26 14:30:00 +00:00
Tommaso Stocchi
452af30511 Added UrlDecode for authorization parts 2021-01-03 19:32:58 +01:00
Tommaso Stocchi
a03880b687 Improve get auth header parts using substring 2021-01-02 18:18:47 +01:00
Tommaso Stocchi
7c7f2316fa Added comments 2020-12-15 21:06:47 +01:00
Tommaso Stocchi
c6eefaac09 Added function to split the authorization header parts 2020-12-15 21:01:42 +01:00
Tommaso Stocchi
6e2cfc6569 Url decode for auth value 2020-12-14 14:05:53 +01:00
Tommaso Stocchi
b611a108f8 -fix split on comma and double quotes 2020-12-14 13:15:21 +01:00
Tommaso Stocchi
305e5ebaf4 Allow commas in auth values when wappred in a double quote 2020-12-14 13:14:18 +01:00
Tommaso Stocchi
13bc57ecc3 No need to double check param length 2020-12-14 13:08:07 +01:00
Tommaso Stocchi
064a9cedbd No htlml encoding on server side 2020-12-14 13:07:39 +01:00
crobibero
2478c8fa64 Fix inverted condition when authenticating with an ApiKey 2020-12-09 23:15:33 -07:00
crobibero
cd459c51f3 Return NoResult only when request doesn't have a token. 2020-12-01 14:47:42 -07:00
Bond_009
9041389f65
Use string.Trim(char) instead of string.Trim(char[]) where possible 2020-11-14 20:27:59 +01:00
Bond_009
bc7359f87d
Use string.Split(char) where possible instead of string.Split(char[]) 2020-11-14 20:27:48 +01:00
cvium
e78c63c4dc Remove OriginalAuthenticationInfo and add IsAuthenticated property 2020-11-08 16:10:33 +01:00
Claus Vium
c17f84ae48
Merge pull request #4330 from crobibero/api-key-auth
Fix ApiKey authentication
2020-11-08 08:20:50 +01:00
crobibero
981f000437 Use proper IsApiKey flag 2020-10-28 08:40:11 -06:00
crobibero
eee95336b5 Fix setting duplicate keys from auth header 2020-10-26 17:18:54 -06:00
crobibero
d5c226b1c3 Move SecurityException 2020-10-15 08:02:59 -06:00
crobibero
39924f9992 Allow apikey to authenticate as admin 2020-10-14 17:58:33 -06:00
cvium
7576824cee Standardize use of IsLocal and RemoteIp 2020-09-10 14:16:41 +02:00
Claus Vium
12710cdf42 More fixes 2020-09-02 13:06:14 +02:00
Claus Vium
e337756428 Remove ServiceStack and related stuff 2020-09-02 12:22:14 +02:00
crobibero
f915c3e5d9 Merge remote-tracking branch 'upstream/master' into api-migration 2020-08-03 11:24:13 -06:00
Patrick Barron
0aa349fe40 Remove unused dependencies. 2020-07-23 21:42:36 -04:00
David
1c78482b48 Use authorization code from api-migration to fix startup wizard 2020-06-20 18:02:03 +02:00
crobibero
4962e230af revert adding Jellyfin to auth header 2020-06-17 06:52:15 -06:00
Cody Robibero
b451eb0bdc
Update Emby.Server.Implementations/HttpServer/Security/AuthorizationContext.cs
Co-authored-by: Patrick Barron <18354464+barronpm@users.noreply.github.com>
2020-06-16 16:45:17 -06:00
telans
247f9c61e6
fix SA1513/SA1516 2020-06-16 16:11:30 +12:00
crobibero
a8adbef74f Add GetAuthorizationInfo for netcore HttpRequest 2020-06-15 13:21:18 -06:00
crobibero
4aac936721 Add more authorization handlers, actually authorize requests 2020-06-15 12:49:54 -06:00
crobibero
589735f60c Merge remote-tracking branch 'upstream/master' into HEAD 2020-06-14 20:15:26 -06:00
telans
acd4389653
fix SA1005 2020-06-15 10:41:00 +12:00
telans
726e116d5b
fix SA1510 2020-06-15 10:40:57 +12:00
Patrick Barron
42b4f0aa2e Merge branch 'master' into userdb-efcore
# Conflicts:
#	Emby.Server.Implementations/Library/UserManager.cs
#	Jellyfin.Data/Jellyfin.Data.csproj
2020-06-13 19:41:05 -04:00
crobibero
829eb1a849 merge master into api-migration 2020-06-13 13:03:09 -06:00
dkanada
403cd3205f
Merge pull request #3254 from crobibero/ilogger
Use typed logger where possible
2020-06-13 00:29:43 +09:00
Claus Vium
5bb630ea7c Use the "legacy" AuthenticationException 2020-06-11 10:59:57 +02:00
crobibero
44957c5a9a Use typed logger where possible 2020-06-05 18:15:56 -06:00
crobibero
e30a85025f Remove log spam when using legacy api 2020-06-01 12:42:59 -06:00
Patrick Barron
eef7cfd912 Make SonarCloud less angry 2020-05-26 22:43:03 -04:00
Patrick Barron
c464f700db Remove redundant qualifiers 2020-05-20 13:07:53 -04:00
Patrick Barron
d35a7ba8bd Fix more issues 2020-05-20 10:04:00 -04:00
Patrick Barron
9ad839c776 Initial migration code 2020-05-12 22:10:35 -04:00
Mark Monteiro
53380689ad Return correct status codes for authentication and authorization errors
- Use AuthenticatonException to return 401
- Use SecurityException to return 403
- Update existing throws to throw the correct exception for the circumstance
2020-04-13 13:17:46 -04:00
Mark Monteiro
6d35dd6b32 Clean up SecurityException
- Remove unused SecurityExceptionType
- Add missing constructor for InnerException
- Add missing documentation
2020-04-13 13:13:48 -04:00
Bond_009
07cc4be6a7 Fix some warnings
* Add analyzers to MediaBrowser.XbmcMetadata
* Enable TreatWarningsAsErrors for MediaBrowser.XbmcMetadata
* Add analyzers to MediaBrowser.WebDashboard
* Enable TreatWarningsAsErrors for MediaBrowser.WebDashboard
* Disable SA1600 in favor of CS1591
2020-02-23 12:11:43 +01:00