using System.IO; using MediaBrowser.Common.Configuration; using MediaBrowser.Common.Net; using MediaBrowser.Common.Security; using MediaBrowser.Model.Entities; using MediaBrowser.Model.Logging; using MediaBrowser.Model.Serialization; using System; using System.Collections.Generic; using System.Linq; using System.Threading; using System.Threading.Tasks; namespace MediaBrowser.Common.Implementations.Security { /// /// Class PluginSecurityManager /// public class PluginSecurityManager : ISecurityManager { private const string MBValidateUrl = MbAdmin.HttpsUrl + "service/registration/validate"; private const string AppstoreRegUrl = /*MbAdmin.HttpsUrl*/ "http://mb3admin.com/admin/" + "service/appstore/register"; /// /// The _is MB supporter /// private bool? _isMbSupporter; /// /// The _is MB supporter initialized /// private bool _isMbSupporterInitialized; /// /// The _is MB supporter sync lock /// private object _isMbSupporterSyncLock = new object(); /// /// Gets a value indicating whether this instance is MB supporter. /// /// true if this instance is MB supporter; otherwise, false. public bool IsMBSupporter { get { LazyInitializer.EnsureInitialized(ref _isMbSupporter, ref _isMbSupporterInitialized, ref _isMbSupporterSyncLock, () => GetSupporterRegistrationStatus().Result.IsRegistered); return _isMbSupporter.Value; } } private MBLicenseFile _licenseFile; private MBLicenseFile LicenseFile { get { return _licenseFile ?? (_licenseFile = new MBLicenseFile(_appPaths)); } } private readonly IHttpClient _httpClient; private readonly IJsonSerializer _jsonSerializer; private readonly IApplicationHost _appHost; private readonly ILogger _logger; private readonly IApplicationPaths _appPaths; private IEnumerable _registeredEntities; protected IEnumerable RegisteredEntities { get { return _registeredEntities ?? (_registeredEntities = _appHost.GetExports()); } } /// /// Initializes a new instance of the class. /// public PluginSecurityManager(IApplicationHost appHost, IHttpClient httpClient, IJsonSerializer jsonSerializer, IApplicationPaths appPaths, ILogManager logManager) { if (httpClient == null) { throw new ArgumentNullException("httpClient"); } _appHost = appHost; _httpClient = httpClient; _jsonSerializer = jsonSerializer; _appPaths = appPaths; _logger = logManager.GetLogger("SecurityManager"); } /// /// Load all registration info for all entities that require registration /// /// public async Task LoadAllRegistrationInfo() { var tasks = new List(); ResetSupporterInfo(); tasks.AddRange(RegisteredEntities.Select(i => i.LoadRegistrationInfoAsync())); await Task.WhenAll(tasks); } /// /// Gets the registration status. /// This overload supports existing plug-ins. /// /// The feature. /// The MB2 equivalent. /// Task{MBRegistrationRecord}. public Task GetRegistrationStatus(string feature, string mb2Equivalent = null) { return GetRegistrationStatusInternal(feature, mb2Equivalent); } /// /// Gets the registration status. /// /// The feature. /// The MB2 equivalent. /// The version of this feature /// Task{MBRegistrationRecord}. public Task GetRegistrationStatus(string feature, string mb2Equivalent, string version) { return GetRegistrationStatusInternal(feature, mb2Equivalent, version); } private Task GetSupporterRegistrationStatus() { return GetRegistrationStatusInternal("MBSupporter", null, _appHost.ApplicationVersion.ToString()); } /// /// Gets or sets the supporter key. /// /// The supporter key. public string SupporterKey { get { return LicenseFile.RegKey; } set { if (value != LicenseFile.RegKey) { LicenseFile.RegKey = value; LicenseFile.Save(); // re-load registration info Task.Run(() => LoadAllRegistrationInfo()); } } } public async Task GetSupporterInfo() { var key = SupporterKey; if (string.IsNullOrWhiteSpace(key)) { return new SupporterInfo(); } var data = new Dictionary { { "key", key }, }; var url = MbAdmin.HttpsUrl + "/service/supporter/retrieve"; using (var stream = await _httpClient.Post(url, data, CancellationToken.None).ConfigureAwait(false)) { var response = _jsonSerializer.DeserializeFromStream(stream); var info = new SupporterInfo { Email = response.email, PlanType = response.planType, SupporterKey = response.supporterKey, ExpirationDate = string.IsNullOrWhiteSpace(response.expDate) ? (DateTime?)null : DateTime.Parse(response.expDate), RegistrationDate = DateTime.Parse(response.regDate), IsActiveSupporter = IsMBSupporter }; info.IsExpiredSupporter = info.ExpirationDate.HasValue && info.ExpirationDate < DateTime.UtcNow && !string.IsNullOrWhiteSpace(info.SupporterKey); return info; } } /// /// Register an app store sale with our back-end. It will validate the transaction with the store /// and then register the proper feature and then fill in the supporter key on success. /// /// Json parameters to send to admin server public async Task RegisterAppStoreSale(string parameters) { var options = new HttpRequestOptions() { Url = AppstoreRegUrl, CancellationToken = CancellationToken.None }; options.RequestHeaders.Add("X-Emby-Token", _appHost.SystemId); options.RequestContent = parameters; options.RequestContentType = "application/json"; try { using (var response = await _httpClient.Post(options).ConfigureAwait(false)) { var reg = _jsonSerializer.DeserializeFromStream(response.Content); if (reg == null) { var msg = "Result from appstore registration was null."; _logger.Error(msg); throw new ApplicationException(msg); } if (!String.IsNullOrEmpty(reg.key)) { SupporterKey = reg.key; } } } catch (ApplicationException) { SaveAppStoreInfo(parameters); throw; } catch (Exception e) { _logger.ErrorException("Error registering appstore purchase {0}", e, parameters ?? "NO PARMS SENT"); SaveAppStoreInfo(parameters); //TODO - could create a re-try routine on start-up if this file is there. For now we can handle manually. throw new ApplicationException("Error registering store sale"); } } private void SaveAppStoreInfo(string info) { // Save all transaction information to a file try { File.WriteAllText(Path.Combine(_appPaths.ProgramDataPath, "apptrans-error.txt"), info); } catch (IOException) { } } private async Task GetRegistrationStatusInternal(string feature, string mb2Equivalent = null, string version = null) { var lastChecked = LicenseFile.LastChecked(feature); //check the reg file first to alleviate strain on the MB admin server - must actually check in every 30 days tho var reg = new RegRecord { // Cache the result for up to a week registered = lastChecked > DateTime.UtcNow.AddDays(-7) }; var success = reg.registered; if (!(lastChecked > DateTime.UtcNow.AddDays(-1))) { var data = new Dictionary { { "feature", feature }, { "key", SupporterKey }, { "mac", _appHost.SystemId }, { "systemid", _appHost.SystemId }, { "mb2equiv", mb2Equivalent }, { "ver", version }, { "platform", _appHost.OperatingSystemDisplayName }, { "isservice", _appHost.IsRunningAsService.ToString().ToLower() } }; try { using (var json = await _httpClient.Post(MBValidateUrl, data, CancellationToken.None).ConfigureAwait(false)) { reg = _jsonSerializer.DeserializeFromStream(json); success = true; } if (reg.registered) { LicenseFile.AddRegCheck(feature); } else { LicenseFile.RemoveRegCheck(feature); } } catch (Exception e) { _logger.ErrorException("Error checking registration status of {0}", e, feature); } } var record = new MBRegistrationRecord { IsRegistered = reg.registered, ExpirationDate = reg.expDate, RegChecked = true, RegError = !success }; record.TrialVersion = IsInTrial(reg.expDate, record.RegChecked, record.IsRegistered); record.IsValid = !record.RegChecked || (record.IsRegistered || record.TrialVersion); return record; } private bool IsInTrial(DateTime expirationDate, bool regChecked, bool isRegistered) { //don't set this until we've successfully obtained exp date if (!regChecked) { return false; } var isInTrial = expirationDate > DateTime.UtcNow; return (isInTrial && !isRegistered); } /// /// Resets the supporter info. /// private void ResetSupporterInfo() { _isMbSupporter = null; _isMbSupporterInitialized = false; } } }