jellyfin/Jellyfin.Api/Controllers/QuickConnectController.cs

using System.ComponentModel.DataAnnotations;
using Jellyfin.Api.Constants;
using Jellyfin.Api.Helpers;
using MediaBrowser.Common.Extensions;
using MediaBrowser.Controller.QuickConnect;
using MediaBrowser.Model.QuickConnect;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Mvc;

namespace Jellyfin.Api.Controllers
{
    /// <summary>
    /// Quick connect controller.
    /// </summary>
    public class QuickConnectController : BaseJellyfinApiController
    {
        private readonly IQuickConnect _quickConnect;

        /// <summary>
        /// Initializes a new instance of the <see cref="QuickConnectController"/> class.
        /// </summary>
        /// <param name="quickConnect">Instance of the <see cref="IQuickConnect"/> interface.</param>
        public QuickConnectController(IQuickConnect quickConnect)
        {
            _quickConnect = quickConnect;
        }

        /// <summary>
        /// Gets the current quick connect state.
        /// </summary>
        /// <response code="200">Quick connect state returned.</response>
        /// <returns>The current <see cref="QuickConnectState"/>.</returns>
        [HttpGet("Status")]
        [ProducesResponseType(StatusCodes.Status200OK)]
        public ActionResult<QuickConnectState> GetStatus()
        {
            _quickConnect.ExpireRequests();
            return _quickConnect.State;
        }

        /// <summary>
        /// Initiate a new quick connect request.
        /// </summary>
        /// <response code="200">Quick connect request successfully created.</response>
        /// <response code="401">Quick connect is not active on this server.</response>
        /// <returns>A <see cref="QuickConnectResult"/> with a secret and code for future use or an error message.</returns>
        [HttpGet("Initiate")]
        [ProducesResponseType(StatusCodes.Status200OK)]
        public ActionResult<QuickConnectResult> Initiate()
        {
            return _quickConnect.TryConnect();
        }

        /// <summary>
        /// Attempts to retrieve authentication information.
        /// </summary>
        /// <param name="secret">Secret previously returned from the Initiate endpoint.</param>
        /// <response code="200">Quick connect result returned.</response>
        /// <response code="404">Unknown quick connect secret.</response>
        /// <returns>An updated <see cref="QuickConnectResult"/>.</returns>
        [HttpGet("Connect")]
        [ProducesResponseType(StatusCodes.Status200OK)]
        [ProducesResponseType(StatusCodes.Status404NotFound)]
        public ActionResult<QuickConnectResult> Connect([FromQuery, Required] string secret)
        {
            try
            {
                return _quickConnect.CheckRequestStatus(secret);
            }
            catch (ResourceNotFoundException)
            {
                return NotFound("Unknown secret");
            }
        }

        /// <summary>
        /// Temporarily activates quick connect for five minutes.
        /// </summary>
        /// <response code="204">Quick connect has been temporarily activated.</response>
        /// <response code="403">Quick connect is unavailable on this server.</response>
        /// <returns>An <see cref="NoContentResult"/> on success.</returns>
        [HttpPost("Activate")]
        [Authorize(Policy = Policies.DefaultAuthorization)]
        [ProducesResponseType(StatusCodes.Status204NoContent)]
        [ProducesResponseType(StatusCodes.Status403Forbidden)]
        public ActionResult Activate()
        {
            if (_quickConnect.State == QuickConnectState.Unavailable)
            {
                return StatusCode(StatusCodes.Status403Forbidden, "Quick connect is unavailable");
            }

            _quickConnect.Activate();
            return NoContent();
        }

        /// <summary>
        /// Enables or disables quick connect.
        /// </summary>
        /// <param name="status">New <see cref="QuickConnectState"/>.</param>
        /// <response code="204">Quick connect state set successfully.</response>
        /// <returns>An <see cref="NoContentResult"/> on success.</returns>
        [HttpPost("Available")]
        [Authorize(Policy = Policies.RequiresElevation)]
        [ProducesResponseType(StatusCodes.Status204NoContent)]
        public ActionResult Available([FromQuery] QuickConnectState status = QuickConnectState.Available)
        {
            _quickConnect.SetState(status);
            return NoContent();
        }

        /// <summary>
        /// Authorizes a pending quick connect request.
        /// </summary>
        /// <param name="code">Quick connect code to authorize.</param>
        /// <response code="200">Quick connect result authorized successfully.</response>
        /// <response code="403">Unknown user id.</response>
        /// <returns>Boolean indicating if the authorization was successful.</returns>
        [HttpPost("Authorize")]
        [Authorize(Policy = Policies.DefaultAuthorization)]
        [ProducesResponseType(StatusCodes.Status200OK)]
        [ProducesResponseType(StatusCodes.Status403Forbidden)]
        public ActionResult<bool> Authorize([FromQuery, Required] string code)
        {
            var userId = ClaimHelpers.GetUserId(Request.HttpContext.User);
            if (!userId.HasValue)
            {
                return StatusCode(StatusCodes.Status403Forbidden, "Unknown user id");
            }

            return _quickConnect.AuthorizeRequest(userId.Value, code);
        }

        /// <summary>
        /// Deauthorize all quick connect devices for the current user.
        /// </summary>
        /// <response code="200">All quick connect devices were deleted.</response>
        /// <returns>The number of devices that were deleted.</returns>
        [HttpPost("Deauthorize")]
        [Authorize(Policy = Policies.DefaultAuthorization)]
        [ProducesResponseType(StatusCodes.Status200OK)]
        public ActionResult<int> Deauthorize()
        {
            var userId = ClaimHelpers.GetUserId(Request.HttpContext.User);
            if (!userId.HasValue)
            {
                return 0;
            }

            return _quickConnect.DeleteAllDevices(userId.Value);
        }
    }
}
Migrate to new API standard 4 years ago			`using System.ComponentModel.DataAnnotations;`
			`using Jellyfin.Api.Constants;`
Fix compile errors 4 years ago			`using Jellyfin.Api.Helpers;`
Migrate to new API standard 4 years ago			`using MediaBrowser.Common.Extensions;`
			`using MediaBrowser.Controller.QuickConnect;`
			`using MediaBrowser.Model.QuickConnect;`
			`using Microsoft.AspNetCore.Authorization;`
			`using Microsoft.AspNetCore.Http;`
			`using Microsoft.AspNetCore.Mvc;`

			`namespace Jellyfin.Api.Controllers`
			`{`
			`/// <summary>`
			`/// Quick connect controller.`
			`/// </summary>`
			`public class QuickConnectController : BaseJellyfinApiController`
			`{`
			`private readonly IQuickConnect _quickConnect;`

			`/// <summary>`
			`/// Initializes a new instance of the <see cref="QuickConnectController"/> class.`
			`/// </summary>`
			`/// <param name="quickConnect">Instance of the <see cref="IQuickConnect"/> interface.</param>`
Get userId from claim 4 years ago			`public QuickConnectController(IQuickConnect quickConnect)`
Migrate to new API standard 4 years ago			`{`
			`_quickConnect = quickConnect;`
			`}`

			`/// <summary>`
			`/// Gets the current quick connect state.`
			`/// </summary>`
			`/// <response code="200">Quick connect state returned.</response>`
			`/// <returns>The current <see cref="QuickConnectState"/>.</returns>`
			`[HttpGet("Status")]`
			`[ProducesResponseType(StatusCodes.Status200OK)]`
			`public ActionResult<QuickConnectState> GetStatus()`
			`{`
			`_quickConnect.ExpireRequests();`
Apply suggestions from code review Co-authored-by: Cody Robibero <cody@robibe.ro> 4 years ago			`return _quickConnect.State;`
Migrate to new API standard 4 years ago			`}`

			`/// <summary>`
			`/// Initiate a new quick connect request.`
			`/// </summary>`
			`/// <response code="200">Quick connect request successfully created.</response>`
			`/// <response code="401">Quick connect is not active on this server.</response>`
			`/// <returns>A <see cref="QuickConnectResult"/> with a secret and code for future use or an error message.</returns>`
			`[HttpGet("Initiate")]`
			`[ProducesResponseType(StatusCodes.Status200OK)]`
Apply suggestions from code review 4 years ago			`public ActionResult<QuickConnectResult> Initiate()`
Migrate to new API standard 4 years ago			`{`
Apply suggestions from code review 4 years ago			`return _quickConnect.TryConnect();`
Migrate to new API standard 4 years ago			`}`

			`/// <summary>`
			`/// Attempts to retrieve authentication information.`
			`/// </summary>`
			`/// <param name="secret">Secret previously returned from the Initiate endpoint.</param>`
			`/// <response code="200">Quick connect result returned.</response>`
			`/// <response code="404">Unknown quick connect secret.</response>`
			`/// <returns>An updated <see cref="QuickConnectResult"/>.</returns>`
			`[HttpGet("Connect")]`
			`[ProducesResponseType(StatusCodes.Status200OK)]`
			`[ProducesResponseType(StatusCodes.Status404NotFound)]`
Apply suggestions from code review 4 years ago			`public ActionResult<QuickConnectResult> Connect([FromQuery, Required] string secret)`
Migrate to new API standard 4 years ago			`{`
			`try`
			`{`
Apply suggestions from code review 4 years ago			`return _quickConnect.CheckRequestStatus(secret);`
Migrate to new API standard 4 years ago			`}`
			`catch (ResourceNotFoundException)`
			`{`
			`return NotFound("Unknown secret");`
			`}`
			`}`

			`/// <summary>`
			`/// Temporarily activates quick connect for five minutes.`
			`/// </summary>`
			`/// <response code="204">Quick connect has been temporarily activated.</response>`
			`/// <response code="403">Quick connect is unavailable on this server.</response>`
			`/// <returns>An <see cref="NoContentResult"/> on success.</returns>`
			`[HttpPost("Activate")]`
			`[Authorize(Policy = Policies.DefaultAuthorization)]`
			`[ProducesResponseType(StatusCodes.Status204NoContent)]`
			`[ProducesResponseType(StatusCodes.Status403Forbidden)]`
			`public ActionResult Activate()`
			`{`
			`if (_quickConnect.State == QuickConnectState.Unavailable)`
			`{`
Fix API forbidden response 4 years ago			`return StatusCode(StatusCodes.Status403Forbidden, "Quick connect is unavailable");`
Migrate to new API standard 4 years ago			`}`

			`_quickConnect.Activate();`
			`return NoContent();`
			`}`

			`/// <summary>`
			`/// Enables or disables quick connect.`
			`/// </summary>`
			`/// <param name="status">New <see cref="QuickConnectState"/>.</param>`
			`/// <response code="204">Quick connect state set successfully.</response>`
			`/// <returns>An <see cref="NoContentResult"/> on success.</returns>`
			`[HttpPost("Available")]`
			`[Authorize(Policy = Policies.RequiresElevation)]`
			`[ProducesResponseType(StatusCodes.Status204NoContent)]`
Apply suggestions from code review 4 years ago			`public ActionResult Available([FromQuery] QuickConnectState status = QuickConnectState.Available)`
Migrate to new API standard 4 years ago			`{`
Apply suggestions from code review 4 years ago			`_quickConnect.SetState(status);`
Migrate to new API standard 4 years ago			`return NoContent();`
			`}`

			`/// <summary>`
			`/// Authorizes a pending quick connect request.`
			`/// </summary>`
			`/// <param name="code">Quick connect code to authorize.</param>`
			`/// <response code="200">Quick connect result authorized successfully.</response>`
Get userId from claim 4 years ago			`/// <response code="403">Unknown user id.</response>`
Migrate to new API standard 4 years ago			`/// <returns>Boolean indicating if the authorization was successful.</returns>`
			`[HttpPost("Authorize")]`
			`[Authorize(Policy = Policies.DefaultAuthorization)]`
			`[ProducesResponseType(StatusCodes.Status200OK)]`
Apply suggestions from code review 4 years ago			`[ProducesResponseType(StatusCodes.Status403Forbidden)]`
Get userId from claim 4 years ago			`public ActionResult<bool> Authorize([FromQuery, Required] string code)`
Migrate to new API standard 4 years ago			`{`
Get userId from claim 4 years ago			`var userId = ClaimHelpers.GetUserId(Request.HttpContext.User);`
			`if (!userId.HasValue)`
Apply suggestions from code review 4 years ago			`{`
Fix API forbidden response 4 years ago			`return StatusCode(StatusCodes.Status403Forbidden, "Unknown user id");`
Apply suggestions from code review 4 years ago			`}`

Get userId from claim 4 years ago			`return _quickConnect.AuthorizeRequest(userId.Value, code);`
Migrate to new API standard 4 years ago			`}`

			`/// <summary>`
			`/// Deauthorize all quick connect devices for the current user.`
			`/// </summary>`
			`/// <response code="200">All quick connect devices were deleted.</response>`
			`/// <returns>The number of devices that were deleted.</returns>`
			`[HttpPost("Deauthorize")]`
			`[Authorize(Policy = Policies.DefaultAuthorization)]`
			`[ProducesResponseType(StatusCodes.Status200OK)]`
			`public ActionResult<int> Deauthorize()`
			`{`
Fix compile errors 4 years ago			`var userId = ClaimHelpers.GetUserId(Request.HttpContext.User);`
			`if (!userId.HasValue)`
			`{`
			`return 0;`
			`}`

			`return _quickConnect.DeleteAllDevices(userId.Value);`
Migrate to new API standard 4 years ago			`}`
			`}`
			`}`