Home Explore Help
Sign In
mirrors
/
jellyfin
mirror of https://github.com/jellyfin/jellyfin
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Merge pull request #9821 from cvium/admin_must_have_pw

Cody Robibero 2 years ago
parent
cfca6fc56e 29ef02af9a
commit
d8f0933f33
2 changed files with 8 additions and 0 deletions
Split View Show Diff Stats
  1. 4 0
      Jellyfin.Api/Controllers/StartupController.cs
  2. 4 0
      Jellyfin.Server.Implementations/Users/UserManager.cs

+ 4 - 0
Jellyfin.Api/Controllers/StartupController.cs
View File 

@@ -131,6 +131,10 @@ public class StartupController : BaseJellyfinApiController
 
     public async Task<ActionResult> UpdateStartupUser([FromBody] StartupUserDto startupUserDto)
 
     {
 
         var user = _userManager.Users.First();
 
+        if (string.IsNullOrWhiteSpace(startupUserDto.Password))
 
+        {
 
+            return BadRequest("Password must not be empty");
 
+        }
 
 
         if (startupUserDto.Name is not null)
 
         {

+ 4 - 0
Jellyfin.Server.Implementations/Users/UserManager.cs
View File 

@@ -272,6 +272,10 @@ namespace Jellyfin.Server.Implementations.Users
 
         public async Task ChangePassword(User user, string newPassword)
 
         {
 
             ArgumentNullException.ThrowIfNull(user);
 
+            if (user.HasPermission(PermissionKind.IsAdministrator) && string.IsNullOrWhiteSpace(newPassword))
 
+            {
 
+                throw new ArgumentException("Admin user passwords must not be empty", nameof(newPassword));
 
+            }
 
 
             await GetAuthenticationProvider(user).ChangePassword(user, newPassword).ConfigureAwait(false);
 
             await UpdateUserAsync(user).ConfigureAwait(false);