pt
/
jellyfin
mirror of https://github.com/jellyfin/jellyfin.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
jellyfin/Jellyfin.Server/Filters/SecurityRequirementsOperati...

92 lines
2.9 KiB
C#
Raw Normal View History

Move OpenApiSecurityScheme to OperationFilter
2020-12-02 16:59:57 -05:00
using System;
using System.Collections.Generic;
using System.Linq;
using Jellyfin.Api.Constants;
using Microsoft.AspNetCore.Authorization;
using Microsoft.OpenApi.Models;
using Swashbuckle.AspNetCore.SwaggerGen;
namespace Jellyfin.Server.Filters
{
/// <summary>
/// Security requirement operation filter.
/// </summary>
public class SecurityRequirementsOperationFilter : IOperationFilter
{
/// <inheritdoc />
public void Apply(OpenApiOperation operation, OperationFilterContext context)
{
var requiredScopes = new List<string>();
fix openapi auth
2023-02-09 08:56:53 -05:00
var requiresAuth = false;
Move OpenApiSecurityScheme to OperationFilter
2020-12-02 16:59:57 -05:00
// Add all method scopes.
foreach (var attribute in context.MethodInfo.GetCustomAttributes(true))
{
fix openapi auth
2023-02-09 08:56:53 -05:00
if (attribute is not AuthorizeAttribute authorizeAttribute)
{
continue;
}
requiresAuth = true;
if (authorizeAttribute.Policy is not null
Move OpenApiSecurityScheme to OperationFilter
2020-12-02 16:59:57 -05:00
&& !requiredScopes.Contains(authorizeAttribute.Policy, StringComparer.Ordinal))
{
requiredScopes.Add(authorizeAttribute.Policy);
}
}
// Add controller scopes if any.
var controllerAttributes = context.MethodInfo.DeclaringType?.GetCustomAttributes(true);
Replace != null with is not null
2022-12-05 09:01:13 -05:00
if (controllerAttributes is not null)
Move OpenApiSecurityScheme to OperationFilter
2020-12-02 16:59:57 -05:00
{
foreach (var attribute in controllerAttributes)
{
fix openapi auth
2023-02-09 08:56:53 -05:00
if (attribute is not AuthorizeAttribute authorizeAttribute)
{
continue;
}
requiresAuth = true;
if (authorizeAttribute.Policy is not null
Move OpenApiSecurityScheme to OperationFilter
2020-12-02 16:59:57 -05:00
&& !requiredScopes.Contains(authorizeAttribute.Policy, StringComparer.Ordinal))
{
requiredScopes.Add(authorizeAttribute.Policy);
}
}
}
fix openapi auth
2023-02-09 08:56:53 -05:00
if (!requiresAuth)
Move OpenApiSecurityScheme to OperationFilter
2020-12-02 16:59:57 -05:00
{
fix openapi auth
2023-02-09 08:56:53 -05:00
return;
}
Move OpenApiSecurityScheme to OperationFilter
2020-12-02 16:59:57 -05:00
fix openapi auth
2023-02-09 08:56:53 -05:00
if (!operation.Responses.ContainsKey("401"))
{
operation.Responses.Add("401", new OpenApiResponse { Description = "Unauthorized" });
}
Move OpenApiSecurityScheme to OperationFilter
2020-12-02 16:59:57 -05:00
fix openapi auth
2023-02-09 08:56:53 -05:00
if (!operation.Responses.ContainsKey("403"))
{
operation.Responses.Add("403", new OpenApiResponse { Description = "Forbidden" });
}
var scheme = new OpenApiSecurityScheme
{
Reference = new OpenApiReference
Move OpenApiSecurityScheme to OperationFilter
2020-12-02 16:59:57 -05:00
{
fix openapi auth
2023-02-09 08:56:53 -05:00
Type = ReferenceType.SecurityScheme,
Id = AuthenticationSchemes.CustomAuthentication
}
};
Move OpenApiSecurityScheme to OperationFilter
2020-12-02 16:59:57 -05:00
fix openapi auth
2023-02-09 08:56:53 -05:00
operation.Security = new List<OpenApiSecurityRequirement>
{
new OpenApiSecurityRequirement
Move OpenApiSecurityScheme to OperationFilter
2020-12-02 16:59:57 -05:00
{
fix openapi auth
2023-02-09 08:56:53 -05:00
[scheme] = requiredScopes
}
};
Move OpenApiSecurityScheme to OperationFilter
2020-12-02 16:59:57 -05:00
}
}
Update StyleCop
2021-12-24 12:28:27 -05:00
}