|
|
@ -1,4 +1,5 @@
|
|
|
|
using System;
|
|
|
|
using System;
|
|
|
|
|
|
|
|
using System.Collections.Concurrent;
|
|
|
|
using System.Collections.Generic;
|
|
|
|
using System.Collections.Generic;
|
|
|
|
using System.Globalization;
|
|
|
|
using System.Globalization;
|
|
|
|
using System.IO;
|
|
|
|
using System.IO;
|
|
|
@ -11,13 +12,11 @@ using MediaBrowser.Common.Events;
|
|
|
|
using MediaBrowser.Common.Net;
|
|
|
|
using MediaBrowser.Common.Net;
|
|
|
|
using MediaBrowser.Controller;
|
|
|
|
using MediaBrowser.Controller;
|
|
|
|
using MediaBrowser.Controller.Authentication;
|
|
|
|
using MediaBrowser.Controller.Authentication;
|
|
|
|
using MediaBrowser.Controller.Configuration;
|
|
|
|
|
|
|
|
using MediaBrowser.Controller.Devices;
|
|
|
|
using MediaBrowser.Controller.Devices;
|
|
|
|
using MediaBrowser.Controller.Drawing;
|
|
|
|
using MediaBrowser.Controller.Drawing;
|
|
|
|
using MediaBrowser.Controller.Dto;
|
|
|
|
using MediaBrowser.Controller.Dto;
|
|
|
|
using MediaBrowser.Controller.Entities;
|
|
|
|
using MediaBrowser.Controller.Entities;
|
|
|
|
using MediaBrowser.Controller.Library;
|
|
|
|
using MediaBrowser.Controller.Library;
|
|
|
|
using MediaBrowser.Controller.Net;
|
|
|
|
|
|
|
|
using MediaBrowser.Controller.Persistence;
|
|
|
|
using MediaBrowser.Controller.Persistence;
|
|
|
|
using MediaBrowser.Controller.Plugins;
|
|
|
|
using MediaBrowser.Controller.Plugins;
|
|
|
|
using MediaBrowser.Controller.Providers;
|
|
|
|
using MediaBrowser.Controller.Providers;
|
|
|
@ -40,35 +39,20 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
/// </summary>
|
|
|
|
/// </summary>
|
|
|
|
public class UserManager : IUserManager
|
|
|
|
public class UserManager : IUserManager
|
|
|
|
{
|
|
|
|
{
|
|
|
|
/// <summary>
|
|
|
|
|
|
|
|
/// Gets the users.
|
|
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
|
|
/// <value>The users.</value>
|
|
|
|
|
|
|
|
public IEnumerable<User> Users => _users;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
private User[] _users;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
/// <summary>
|
|
|
|
/// The _logger
|
|
|
|
/// The _logger
|
|
|
|
/// </summary>
|
|
|
|
/// </summary>
|
|
|
|
private readonly ILogger _logger;
|
|
|
|
private readonly ILogger _logger;
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
private readonly object _policySyncLock = new object();
|
|
|
|
/// Gets or sets the configuration manager.
|
|
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
|
|
/// <value>The configuration manager.</value>
|
|
|
|
|
|
|
|
private IServerConfigurationManager ConfigurationManager { get; set; }
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
/// <summary>
|
|
|
|
/// Gets the active user repository
|
|
|
|
/// Gets the active user repository
|
|
|
|
/// </summary>
|
|
|
|
/// </summary>
|
|
|
|
/// <value>The user repository.</value>
|
|
|
|
/// <value>The user repository.</value>
|
|
|
|
private IUserRepository UserRepository { get; set; }
|
|
|
|
private readonly IUserRepository _userRepository;
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserPasswordChanged;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
private readonly IXmlSerializer _xmlSerializer;
|
|
|
|
private readonly IXmlSerializer _xmlSerializer;
|
|
|
|
private readonly IJsonSerializer _jsonSerializer;
|
|
|
|
private readonly IJsonSerializer _jsonSerializer;
|
|
|
|
|
|
|
|
|
|
|
|
private readonly INetworkManager _networkManager;
|
|
|
|
private readonly INetworkManager _networkManager;
|
|
|
|
|
|
|
|
|
|
|
|
private readonly Func<IImageProcessor> _imageProcessorFactory;
|
|
|
|
private readonly Func<IImageProcessor> _imageProcessorFactory;
|
|
|
@ -76,6 +60,8 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
private readonly IServerApplicationHost _appHost;
|
|
|
|
private readonly IServerApplicationHost _appHost;
|
|
|
|
private readonly IFileSystem _fileSystem;
|
|
|
|
private readonly IFileSystem _fileSystem;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
private ConcurrentDictionary<Guid, User> _users;
|
|
|
|
|
|
|
|
|
|
|
|
private IAuthenticationProvider[] _authenticationProviders;
|
|
|
|
private IAuthenticationProvider[] _authenticationProviders;
|
|
|
|
private DefaultAuthenticationProvider _defaultAuthenticationProvider;
|
|
|
|
private DefaultAuthenticationProvider _defaultAuthenticationProvider;
|
|
|
|
|
|
|
|
|
|
|
@ -85,8 +71,7 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
private DefaultPasswordResetProvider _defaultPasswordResetProvider;
|
|
|
|
private DefaultPasswordResetProvider _defaultPasswordResetProvider;
|
|
|
|
|
|
|
|
|
|
|
|
public UserManager(
|
|
|
|
public UserManager(
|
|
|
|
ILoggerFactory loggerFactory,
|
|
|
|
ILogger<UserManager> logger,
|
|
|
|
IServerConfigurationManager configurationManager,
|
|
|
|
|
|
|
|
IUserRepository userRepository,
|
|
|
|
IUserRepository userRepository,
|
|
|
|
IXmlSerializer xmlSerializer,
|
|
|
|
IXmlSerializer xmlSerializer,
|
|
|
|
INetworkManager networkManager,
|
|
|
|
INetworkManager networkManager,
|
|
|
@ -96,8 +81,8 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
IJsonSerializer jsonSerializer,
|
|
|
|
IJsonSerializer jsonSerializer,
|
|
|
|
IFileSystem fileSystem)
|
|
|
|
IFileSystem fileSystem)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
_logger = loggerFactory.CreateLogger(nameof(UserManager));
|
|
|
|
_logger = logger;
|
|
|
|
UserRepository = userRepository;
|
|
|
|
_userRepository = userRepository;
|
|
|
|
_xmlSerializer = xmlSerializer;
|
|
|
|
_xmlSerializer = xmlSerializer;
|
|
|
|
_networkManager = networkManager;
|
|
|
|
_networkManager = networkManager;
|
|
|
|
_imageProcessorFactory = imageProcessorFactory;
|
|
|
|
_imageProcessorFactory = imageProcessorFactory;
|
|
|
@ -105,8 +90,51 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
_appHost = appHost;
|
|
|
|
_appHost = appHost;
|
|
|
|
_jsonSerializer = jsonSerializer;
|
|
|
|
_jsonSerializer = jsonSerializer;
|
|
|
|
_fileSystem = fileSystem;
|
|
|
|
_fileSystem = fileSystem;
|
|
|
|
ConfigurationManager = configurationManager;
|
|
|
|
_users = null;
|
|
|
|
_users = Array.Empty<User>();
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserPasswordChanged;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
|
|
|
/// Occurs when [user updated].
|
|
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserUpdated;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserPolicyUpdated;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserConfigurationUpdated;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserLockedOut;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserCreated;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
|
|
|
/// Occurs when [user deleted].
|
|
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserDeleted;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <inheritdoc />
|
|
|
|
|
|
|
|
public IEnumerable<User> Users => _users.Values;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <inheritdoc />
|
|
|
|
|
|
|
|
public IEnumerable<Guid> UsersIds => _users.Keys;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
|
|
|
/// Called when [user updated].
|
|
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
|
|
/// <param name="user">The user.</param>
|
|
|
|
|
|
|
|
private void OnUserUpdated(User user)
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
UserUpdated?.Invoke(this, new GenericEventArgs<User> { Argument = user });
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
|
|
|
/// Called when [user deleted].
|
|
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
|
|
/// <param name="user">The user.</param>
|
|
|
|
|
|
|
|
private void OnUserDeleted(User user)
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
UserDeleted?.Invoke(this, new GenericEventArgs<User> { Argument = user });
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public NameIdPair[] GetAuthenticationProviders()
|
|
|
|
public NameIdPair[] GetAuthenticationProviders()
|
|
|
@ -137,7 +165,7 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
.ToArray();
|
|
|
|
.ToArray();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public void AddParts(IEnumerable<IAuthenticationProvider> authenticationProviders,IEnumerable<IPasswordResetProvider> passwordResetProviders)
|
|
|
|
public void AddParts(IEnumerable<IAuthenticationProvider> authenticationProviders, IEnumerable<IPasswordResetProvider> passwordResetProviders)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
_authenticationProviders = authenticationProviders.ToArray();
|
|
|
|
_authenticationProviders = authenticationProviders.ToArray();
|
|
|
|
|
|
|
|
|
|
|
@ -150,54 +178,21 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
_defaultPasswordResetProvider = passwordResetProviders.OfType<DefaultPasswordResetProvider>().First();
|
|
|
|
_defaultPasswordResetProvider = passwordResetProviders.OfType<DefaultPasswordResetProvider>().First();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
#region UserUpdated Event
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
/// <summary>
|
|
|
|
/// Occurs when [user updated].
|
|
|
|
/// Gets a User by Id.
|
|
|
|
/// </summary>
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserUpdated;
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserPolicyUpdated;
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserConfigurationUpdated;
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserLockedOut;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
|
|
|
/// Called when [user updated].
|
|
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
|
|
/// <param name="user">The user.</param>
|
|
|
|
|
|
|
|
private void OnUserUpdated(User user)
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
UserUpdated?.Invoke(this, new GenericEventArgs<User> { Argument = user });
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
#endregion
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
#region UserDeleted Event
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
|
|
|
/// Occurs when [user deleted].
|
|
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserDeleted;
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
|
|
|
/// Called when [user deleted].
|
|
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
|
|
/// <param name="user">The user.</param>
|
|
|
|
|
|
|
|
private void OnUserDeleted(User user)
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
UserDeleted?.Invoke(this, new GenericEventArgs<User> { Argument = user });
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
#endregion
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
|
|
|
/// Gets a User by Id
|
|
|
|
|
|
|
|
/// </summary>
|
|
|
|
/// </summary>
|
|
|
|
/// <param name="id">The id.</param>
|
|
|
|
/// <param name="id">The id.</param>
|
|
|
|
/// <returns>User.</returns>
|
|
|
|
/// <returns>User.</returns>
|
|
|
|
/// <exception cref="ArgumentNullException"></exception>
|
|
|
|
/// <exception cref="ArgumentException"></exception>
|
|
|
|
public User GetUserById(Guid id)
|
|
|
|
public User GetUserById(Guid id)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
if (id == Guid.Empty)
|
|
|
|
if (id == Guid.Empty)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
throw new ArgumentException(nameof(id), "Guid can't be empty");
|
|
|
|
throw new ArgumentException("Guid can't be empty", nameof(id));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
return Users.FirstOrDefault(u => u.Id == id);
|
|
|
|
_users.TryGetValue(id, out User user);
|
|
|
|
|
|
|
|
return user;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
/// <summary>
|
|
|
@ -206,15 +201,13 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
/// <param name="id">The identifier.</param>
|
|
|
|
/// <param name="id">The identifier.</param>
|
|
|
|
/// <returns>User.</returns>
|
|
|
|
/// <returns>User.</returns>
|
|
|
|
public User GetUserById(string id)
|
|
|
|
public User GetUserById(string id)
|
|
|
|
{
|
|
|
|
=> GetUserById(new Guid(id));
|
|
|
|
return GetUserById(new Guid(id));
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
public User GetUserByName(string name)
|
|
|
|
public User GetUserByName(string name)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
if (string.IsNullOrWhiteSpace(name))
|
|
|
|
if (string.IsNullOrWhiteSpace(name))
|
|
|
|
{
|
|
|
|
{
|
|
|
|
throw new ArgumentNullException(nameof(name));
|
|
|
|
throw new ArgumentException("Invalid username", nameof(name));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
return Users.FirstOrDefault(u => string.Equals(u.Name, name, StringComparison.OrdinalIgnoreCase));
|
|
|
|
return Users.FirstOrDefault(u => string.Equals(u.Name, name, StringComparison.OrdinalIgnoreCase));
|
|
|
@ -222,8 +215,9 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
|
|
|
|
|
|
|
|
public void Initialize()
|
|
|
|
public void Initialize()
|
|
|
|
{
|
|
|
|
{
|
|
|
|
var users = LoadUsers();
|
|
|
|
LoadUsers();
|
|
|
|
_users = users.ToArray();
|
|
|
|
|
|
|
|
|
|
|
|
var users = Users;
|
|
|
|
|
|
|
|
|
|
|
|
// If there are no local users with admin rights, make them all admins
|
|
|
|
// If there are no local users with admin rights, make them all admins
|
|
|
|
if (!users.Any(i => i.Policy.IsAdministrator))
|
|
|
|
if (!users.Any(i => i.Policy.IsAdministrator))
|
|
|
@ -245,9 +239,7 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
private static bool IsValidUsernameCharacter(char i)
|
|
|
|
private static bool IsValidUsernameCharacter(char i)
|
|
|
|
{
|
|
|
|
=> IsValidUsername(i.ToString(CultureInfo.InvariantCulture));
|
|
|
|
return IsValidUsername(i.ToString());
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
public string MakeValidUsername(string username)
|
|
|
|
public string MakeValidUsername(string username)
|
|
|
|
{
|
|
|
|
{
|
|
|
@ -277,8 +269,7 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
throw new ArgumentNullException(nameof(username));
|
|
|
|
throw new ArgumentNullException(nameof(username));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
var user = Users
|
|
|
|
var user = Users.FirstOrDefault(i => string.Equals(username, i.Name, StringComparison.OrdinalIgnoreCase));
|
|
|
|
.FirstOrDefault(i => string.Equals(username, i.Name, StringComparison.OrdinalIgnoreCase));
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
var success = false;
|
|
|
|
var success = false;
|
|
|
|
string updatedUsername = null;
|
|
|
|
string updatedUsername = null;
|
|
|
@ -299,13 +290,12 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
updatedUsername = authResult.username;
|
|
|
|
updatedUsername = authResult.username;
|
|
|
|
success = authResult.success;
|
|
|
|
success = authResult.success;
|
|
|
|
|
|
|
|
|
|
|
|
if (success && authenticationProvider != null && !(authenticationProvider is DefaultAuthenticationProvider))
|
|
|
|
if (success
|
|
|
|
|
|
|
|
&& authenticationProvider != null
|
|
|
|
|
|
|
|
&& !(authenticationProvider is DefaultAuthenticationProvider))
|
|
|
|
{
|
|
|
|
{
|
|
|
|
// We should trust the user that the authprovider says, not what was typed
|
|
|
|
// We should trust the user that the authprovider says, not what was typed
|
|
|
|
if (updatedUsername != username)
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
username = updatedUsername;
|
|
|
|
username = updatedUsername;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Search the database for the user again; the authprovider might have created it
|
|
|
|
// Search the database for the user again; the authprovider might have created it
|
|
|
|
user = Users
|
|
|
|
user = Users
|
|
|
@ -337,7 +327,8 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
|
|
|
|
|
|
|
|
if (user.Policy.IsDisabled)
|
|
|
|
if (user.Policy.IsDisabled)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
throw new AuthenticationException(string.Format(
|
|
|
|
throw new AuthenticationException(
|
|
|
|
|
|
|
|
string.Format(
|
|
|
|
CultureInfo.InvariantCulture,
|
|
|
|
CultureInfo.InvariantCulture,
|
|
|
|
"The {0} account is currently disabled. Please consult with your administrator.",
|
|
|
|
"The {0} account is currently disabled. Please consult with your administrator.",
|
|
|
|
user.Name));
|
|
|
|
user.Name));
|
|
|
@ -386,7 +377,7 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
|
|
|
|
|
|
|
|
private IAuthenticationProvider GetAuthenticationProvider(User user)
|
|
|
|
private IAuthenticationProvider GetAuthenticationProvider(User user)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
return GetAuthenticationProviders(user).First();
|
|
|
|
return GetAuthenticationProviders(user)[0];
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
private IPasswordResetProvider GetPasswordResetProvider(User user)
|
|
|
|
private IPasswordResetProvider GetPasswordResetProvider(User user)
|
|
|
@ -396,7 +387,7 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
|
|
|
|
|
|
|
|
private IAuthenticationProvider[] GetAuthenticationProviders(User user)
|
|
|
|
private IAuthenticationProvider[] GetAuthenticationProviders(User user)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
var authenticationProviderId = user == null ? null : user.Policy.AuthenticationProviderId;
|
|
|
|
var authenticationProviderId = user?.Policy.AuthenticationProviderId;
|
|
|
|
|
|
|
|
|
|
|
|
var providers = _authenticationProviders.Where(i => i.IsEnabled).ToArray();
|
|
|
|
var providers = _authenticationProviders.Where(i => i.IsEnabled).ToArray();
|
|
|
|
|
|
|
|
|
|
|
@ -438,16 +429,10 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
{
|
|
|
|
{
|
|
|
|
try
|
|
|
|
try
|
|
|
|
{
|
|
|
|
{
|
|
|
|
var requiresResolvedUser = provider as IRequiresResolvedUser;
|
|
|
|
|
|
|
|
ProviderAuthenticationResult authenticationResult = null;
|
|
|
|
var authenticationResult = provider is IRequiresResolvedUser requiresResolvedUser
|
|
|
|
if (requiresResolvedUser != null)
|
|
|
|
? await requiresResolvedUser.Authenticate(username, password, resolvedUser).ConfigureAwait(false)
|
|
|
|
{
|
|
|
|
: await provider.Authenticate(username, password).ConfigureAwait(false);
|
|
|
|
authenticationResult = await requiresResolvedUser.Authenticate(username, password, resolvedUser).ConfigureAwait(false);
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
else
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
authenticationResult = await provider.Authenticate(username, password).ConfigureAwait(false);
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
if (authenticationResult.Username != username)
|
|
|
|
if (authenticationResult.Username != username)
|
|
|
|
{
|
|
|
|
{
|
|
|
@ -467,7 +452,6 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
|
|
|
|
|
|
|
|
private async Task<(IAuthenticationProvider authenticationProvider, string username, bool success)> AuthenticateLocalUser(string username, string password, string hashedPassword, User user, string remoteEndPoint)
|
|
|
|
private async Task<(IAuthenticationProvider authenticationProvider, string username, bool success)> AuthenticateLocalUser(string username, string password, string hashedPassword, User user, string remoteEndPoint)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
string updatedUsername = null;
|
|
|
|
|
|
|
|
bool success = false;
|
|
|
|
bool success = false;
|
|
|
|
IAuthenticationProvider authenticationProvider = null;
|
|
|
|
IAuthenticationProvider authenticationProvider = null;
|
|
|
|
|
|
|
|
|
|
|
@ -487,7 +471,7 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
foreach (var provider in GetAuthenticationProviders(user))
|
|
|
|
foreach (var provider in GetAuthenticationProviders(user))
|
|
|
|
{
|
|
|
|
{
|
|
|
|
var providerAuthResult = await AuthenticateWithProvider(provider, username, password, user).ConfigureAwait(false);
|
|
|
|
var providerAuthResult = await AuthenticateWithProvider(provider, username, password, user).ConfigureAwait(false);
|
|
|
|
updatedUsername = providerAuthResult.username;
|
|
|
|
var updatedUsername = providerAuthResult.username;
|
|
|
|
success = providerAuthResult.success;
|
|
|
|
success = providerAuthResult.success;
|
|
|
|
|
|
|
|
|
|
|
|
if (success)
|
|
|
|
if (success)
|
|
|
@ -499,25 +483,32 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (user != null)
|
|
|
|
if (user != null
|
|
|
|
{
|
|
|
|
&& !success
|
|
|
|
if (!success && _networkManager.IsInLocalNetwork(remoteEndPoint) && user.Configuration.EnableLocalPassword)
|
|
|
|
&& _networkManager.IsInLocalNetwork(remoteEndPoint)
|
|
|
|
|
|
|
|
&& user.Configuration.EnableLocalPassword)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
if (password == null)
|
|
|
|
if (password == null)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
// legacy
|
|
|
|
// legacy
|
|
|
|
success = string.Equals(GetAuthenticationProvider(user).GetEasyPasswordHash(user), hashedPassword.Replace("-", string.Empty), StringComparison.OrdinalIgnoreCase);
|
|
|
|
success = string.Equals(GetLocalPasswordHash(user), hashedPassword.Replace("-", string.Empty), StringComparison.OrdinalIgnoreCase);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
else
|
|
|
|
else
|
|
|
|
{
|
|
|
|
{
|
|
|
|
success = string.Equals(GetAuthenticationProvider(user).GetEasyPasswordHash(user), _defaultAuthenticationProvider.GetHashedString(user, password), StringComparison.OrdinalIgnoreCase);
|
|
|
|
success = string.Equals(GetLocalPasswordHash(user), _defaultAuthenticationProvider.GetHashedString(user, password), StringComparison.OrdinalIgnoreCase);
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
return (authenticationProvider, username, success);
|
|
|
|
return (authenticationProvider, username, success);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
private string GetLocalPasswordHash(User user)
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
return string.IsNullOrEmpty(user.EasyPassword)
|
|
|
|
|
|
|
|
? null
|
|
|
|
|
|
|
|
: PasswordHash.ConvertToByteString(new PasswordHash(user.EasyPassword).Hash);
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
private void UpdateInvalidLoginAttemptCount(User user, int newValue)
|
|
|
|
private void UpdateInvalidLoginAttemptCount(User user, int newValue)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
if (user.Policy.InvalidLoginAttemptCount == newValue || newValue <= 0)
|
|
|
|
if (user.Policy.InvalidLoginAttemptCount == newValue || newValue <= 0)
|
|
|
@ -556,17 +547,17 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
/// <summary>
|
|
|
|
/// Loads the users from the repository
|
|
|
|
/// Loads the users from the repository.
|
|
|
|
/// </summary>
|
|
|
|
/// </summary>
|
|
|
|
/// <returns>IEnumerable{User}.</returns>
|
|
|
|
private void LoadUsers()
|
|
|
|
private List<User> LoadUsers()
|
|
|
|
|
|
|
|
{
|
|
|
|
{
|
|
|
|
var users = UserRepository.RetrieveAllUsers();
|
|
|
|
var users = _userRepository.RetrieveAllUsers();
|
|
|
|
|
|
|
|
|
|
|
|
// There always has to be at least one user.
|
|
|
|
// There always has to be at least one user.
|
|
|
|
if (users.Count != 0)
|
|
|
|
if (users.Count != 0)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
return users;
|
|
|
|
_users = new ConcurrentDictionary<Guid, User>(
|
|
|
|
|
|
|
|
users.Select(x => new KeyValuePair<Guid, User>(x.Id, x)));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
var defaultName = Environment.UserName;
|
|
|
|
var defaultName = Environment.UserName;
|
|
|
@ -581,14 +572,15 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
|
|
|
|
|
|
|
|
user.DateLastSaved = DateTime.UtcNow;
|
|
|
|
user.DateLastSaved = DateTime.UtcNow;
|
|
|
|
|
|
|
|
|
|
|
|
UserRepository.CreateUser(user);
|
|
|
|
_userRepository.CreateUser(user);
|
|
|
|
|
|
|
|
|
|
|
|
user.Policy.IsAdministrator = true;
|
|
|
|
user.Policy.IsAdministrator = true;
|
|
|
|
user.Policy.EnableContentDeletion = true;
|
|
|
|
user.Policy.EnableContentDeletion = true;
|
|
|
|
user.Policy.EnableRemoteControlOfOtherUsers = true;
|
|
|
|
user.Policy.EnableRemoteControlOfOtherUsers = true;
|
|
|
|
UpdateUserPolicy(user, user.Policy, false);
|
|
|
|
UpdateUserPolicy(user, user.Policy, false);
|
|
|
|
|
|
|
|
|
|
|
|
return new List<User> { user };
|
|
|
|
_users = new ConcurrentDictionary<Guid, User>();
|
|
|
|
|
|
|
|
_users[user.Id] = user;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public UserDto GetUserDto(User user, string remoteEndPoint = null)
|
|
|
|
public UserDto GetUserDto(User user, string remoteEndPoint = null)
|
|
|
@ -619,7 +611,7 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
Policy = user.Policy
|
|
|
|
Policy = user.Policy
|
|
|
|
};
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
if (!hasPassword && Users.Count() == 1)
|
|
|
|
if (!hasPassword && _users.Count == 1)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
dto.EnableAutoLogin = true;
|
|
|
|
dto.EnableAutoLogin = true;
|
|
|
|
}
|
|
|
|
}
|
|
|
@ -694,22 +686,26 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
throw new ArgumentNullException(nameof(user));
|
|
|
|
throw new ArgumentNullException(nameof(user));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (string.IsNullOrEmpty(newName))
|
|
|
|
if (string.IsNullOrWhiteSpace(newName))
|
|
|
|
{
|
|
|
|
{
|
|
|
|
throw new ArgumentNullException(nameof(newName));
|
|
|
|
throw new ArgumentException("Invalid username", nameof(newName));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (Users.Any(u => u.Id != user.Id && u.Name.Equals(newName, StringComparison.OrdinalIgnoreCase)))
|
|
|
|
if (user.Name.Equals(newName, StringComparison.OrdinalIgnoreCase))
|
|
|
|
{
|
|
|
|
{
|
|
|
|
throw new ArgumentException(string.Format("A user with the name '{0}' already exists.", newName));
|
|
|
|
throw new ArgumentException("The new and old names must be different.");
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (user.Name.Equals(newName, StringComparison.Ordinal))
|
|
|
|
if (Users.Any(
|
|
|
|
|
|
|
|
u => u.Id != user.Id && u.Name.Equals(newName, StringComparison.OrdinalIgnoreCase)))
|
|
|
|
{
|
|
|
|
{
|
|
|
|
throw new ArgumentException("The new and old names must be different.");
|
|
|
|
throw new ArgumentException(string.Format(
|
|
|
|
|
|
|
|
CultureInfo.InvariantCulture,
|
|
|
|
|
|
|
|
"A user with the name '{0}' already exists.",
|
|
|
|
|
|
|
|
newName));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
await user.Rename(newName);
|
|
|
|
await user.Rename(newName).ConfigureAwait(false);
|
|
|
|
|
|
|
|
|
|
|
|
OnUserUpdated(user);
|
|
|
|
OnUserUpdated(user);
|
|
|
|
}
|
|
|
|
}
|
|
|
@ -727,23 +723,30 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
throw new ArgumentNullException(nameof(user));
|
|
|
|
throw new ArgumentNullException(nameof(user));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (user.Id.Equals(Guid.Empty) || !Users.Any(u => u.Id.Equals(user.Id)))
|
|
|
|
if (user.Id == Guid.Empty)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
throw new ArgumentException(string.Format("User with name '{0}' and Id {1} does not exist.", user.Name, user.Id));
|
|
|
|
throw new ArgumentException("Id can't be empty.", nameof(user));
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
if (!_users.ContainsKey(user.Id))
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
throw new ArgumentException(
|
|
|
|
|
|
|
|
string.Format(
|
|
|
|
|
|
|
|
CultureInfo.InvariantCulture,
|
|
|
|
|
|
|
|
"A user '{0}' with Id {1} does not exist.",
|
|
|
|
|
|
|
|
user.Name,
|
|
|
|
|
|
|
|
user.Id),
|
|
|
|
|
|
|
|
nameof(user));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
user.DateModified = DateTime.UtcNow;
|
|
|
|
user.DateModified = DateTime.UtcNow;
|
|
|
|
user.DateLastSaved = DateTime.UtcNow;
|
|
|
|
user.DateLastSaved = DateTime.UtcNow;
|
|
|
|
|
|
|
|
|
|
|
|
UserRepository.UpdateUser(user);
|
|
|
|
_userRepository.UpdateUser(user);
|
|
|
|
|
|
|
|
|
|
|
|
OnUserUpdated(user);
|
|
|
|
OnUserUpdated(user);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public event EventHandler<GenericEventArgs<User>> UserCreated;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
private readonly SemaphoreSlim _userListLock = new SemaphoreSlim(1, 1);
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
/// <summary>
|
|
|
|
/// Creates the user.
|
|
|
|
/// Creates the user.
|
|
|
|
/// </summary>
|
|
|
|
/// </summary>
|
|
|
@ -751,7 +754,7 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
/// <returns>User.</returns>
|
|
|
|
/// <returns>User.</returns>
|
|
|
|
/// <exception cref="ArgumentNullException">name</exception>
|
|
|
|
/// <exception cref="ArgumentNullException">name</exception>
|
|
|
|
/// <exception cref="ArgumentException"></exception>
|
|
|
|
/// <exception cref="ArgumentException"></exception>
|
|
|
|
public async Task<User> CreateUser(string name)
|
|
|
|
public User CreateUser(string name)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
if (string.IsNullOrWhiteSpace(name))
|
|
|
|
if (string.IsNullOrWhiteSpace(name))
|
|
|
|
{
|
|
|
|
{
|
|
|
@ -768,29 +771,18 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
throw new ArgumentException(string.Format("A user with the name '{0}' already exists.", name));
|
|
|
|
throw new ArgumentException(string.Format("A user with the name '{0}' already exists.", name));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
await _userListLock.WaitAsync(CancellationToken.None).ConfigureAwait(false);
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
try
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
var user = InstantiateNewUser(name);
|
|
|
|
var user = InstantiateNewUser(name);
|
|
|
|
|
|
|
|
|
|
|
|
var list = Users.ToList();
|
|
|
|
_users[user.Id] = user;
|
|
|
|
list.Add(user);
|
|
|
|
|
|
|
|
_users = list.ToArray();
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
user.DateLastSaved = DateTime.UtcNow;
|
|
|
|
user.DateLastSaved = DateTime.UtcNow;
|
|
|
|
|
|
|
|
|
|
|
|
UserRepository.CreateUser(user);
|
|
|
|
_userRepository.CreateUser(user);
|
|
|
|
|
|
|
|
|
|
|
|
EventHelper.QueueEventIfNotNull(UserCreated, this, new GenericEventArgs<User> { Argument = user }, _logger);
|
|
|
|
EventHelper.QueueEventIfNotNull(UserCreated, this, new GenericEventArgs<User> { Argument = user }, _logger);
|
|
|
|
|
|
|
|
|
|
|
|
return user;
|
|
|
|
return user;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
finally
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
_userListLock.Release();
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
/// <summary>
|
|
|
|
/// Deletes the user.
|
|
|
|
/// Deletes the user.
|
|
|
@ -799,37 +791,44 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
/// <returns>Task.</returns>
|
|
|
|
/// <returns>Task.</returns>
|
|
|
|
/// <exception cref="ArgumentNullException">user</exception>
|
|
|
|
/// <exception cref="ArgumentNullException">user</exception>
|
|
|
|
/// <exception cref="ArgumentException"></exception>
|
|
|
|
/// <exception cref="ArgumentException"></exception>
|
|
|
|
public async Task DeleteUser(User user)
|
|
|
|
public void DeleteUser(User user)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
if (user == null)
|
|
|
|
if (user == null)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
throw new ArgumentNullException(nameof(user));
|
|
|
|
throw new ArgumentNullException(nameof(user));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
var allUsers = Users.ToList();
|
|
|
|
if (!_users.ContainsKey(user.Id))
|
|
|
|
|
|
|
|
|
|
|
|
if (allUsers.FirstOrDefault(u => u.Id == user.Id) == null)
|
|
|
|
|
|
|
|
{
|
|
|
|
{
|
|
|
|
throw new ArgumentException(string.Format("The user cannot be deleted because there is no user with the Name {0} and Id {1}.", user.Name, user.Id));
|
|
|
|
throw new ArgumentException(string.Format(
|
|
|
|
|
|
|
|
CultureInfo.InvariantCulture,
|
|
|
|
|
|
|
|
"The user cannot be deleted because there is no user with the Name {0} and Id {1}.",
|
|
|
|
|
|
|
|
user.Name,
|
|
|
|
|
|
|
|
user.Id));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (allUsers.Count == 1)
|
|
|
|
if (_users.Count == 1)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
throw new ArgumentException(string.Format("The user '{0}' cannot be deleted because there must be at least one user in the system.", user.Name));
|
|
|
|
throw new ArgumentException(string.Format(
|
|
|
|
|
|
|
|
CultureInfo.InvariantCulture,
|
|
|
|
|
|
|
|
"The user '{0}' cannot be deleted because there must be at least one user in the system.",
|
|
|
|
|
|
|
|
user.Name));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (user.Policy.IsAdministrator && allUsers.Count(i => i.Policy.IsAdministrator) == 1)
|
|
|
|
if (user.Policy.IsAdministrator
|
|
|
|
|
|
|
|
&& Users.Count(i => i.Policy.IsAdministrator) == 1)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
throw new ArgumentException(string.Format("The user '{0}' cannot be deleted because there must be at least one admin user in the system.", user.Name));
|
|
|
|
throw new ArgumentException(
|
|
|
|
|
|
|
|
string.Format(
|
|
|
|
|
|
|
|
CultureInfo.InvariantCulture,
|
|
|
|
|
|
|
|
"The user '{0}' cannot be deleted because there must be at least one admin user in the system.",
|
|
|
|
|
|
|
|
user.Name),
|
|
|
|
|
|
|
|
nameof(user));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
await _userListLock.WaitAsync(CancellationToken.None).ConfigureAwait(false);
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
try
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
var configPath = GetConfigurationFilePath(user);
|
|
|
|
var configPath = GetConfigurationFilePath(user);
|
|
|
|
|
|
|
|
|
|
|
|
UserRepository.DeleteUser(user);
|
|
|
|
_userRepository.DeleteUser(user);
|
|
|
|
|
|
|
|
|
|
|
|
try
|
|
|
|
try
|
|
|
|
{
|
|
|
|
{
|
|
|
@ -842,15 +841,10 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
|
|
|
|
|
|
|
|
DeleteUserPolicy(user);
|
|
|
|
DeleteUserPolicy(user);
|
|
|
|
|
|
|
|
|
|
|
|
_users = allUsers.Where(i => i.Id != user.Id).ToArray();
|
|
|
|
_users.TryRemove(user.Id, out _);
|
|
|
|
|
|
|
|
|
|
|
|
OnUserDeleted(user);
|
|
|
|
OnUserDeleted(user);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
finally
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
_userListLock.Release();
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
/// <summary>
|
|
|
|
/// Resets the password by clearing it.
|
|
|
|
/// Resets the password by clearing it.
|
|
|
@ -906,8 +900,7 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
Name = name,
|
|
|
|
Name = name,
|
|
|
|
Id = Guid.NewGuid(),
|
|
|
|
Id = Guid.NewGuid(),
|
|
|
|
DateCreated = DateTime.UtcNow,
|
|
|
|
DateCreated = DateTime.UtcNow,
|
|
|
|
DateModified = DateTime.UtcNow,
|
|
|
|
DateModified = DateTime.UtcNow
|
|
|
|
UsesIdForConfigurationPath = true
|
|
|
|
|
|
|
|
};
|
|
|
|
};
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
@ -989,7 +982,6 @@ namespace Emby.Server.Implementations.Library
|
|
|
|
};
|
|
|
|
};
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
private readonly object _policySyncLock = new object();
|
|
|
|
|
|
|
|
public void UpdateUserPolicy(Guid userId, UserPolicy userPolicy)
|
|
|
|
public void UpdateUserPolicy(Guid userId, UserPolicy userPolicy)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
var user = GetUserById(userId);
|
|
|
|
var user = GetUserById(userId);
|
|
|
|