| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502 |
- using System;
- using System.Collections.Generic;
- using System.ComponentModel.DataAnnotations;
- using System.Linq;
- using System.Threading;
- using System.Threading.Tasks;
- using Jellyfin.Api.Constants;
- using Jellyfin.Api.Helpers;
- using Jellyfin.Api.ModelBinders;
- using Jellyfin.Api.Models.SessionDtos;
- using Jellyfin.Data.Enums;
- using MediaBrowser.Controller.Devices;
- using MediaBrowser.Controller.Library;
- using MediaBrowser.Controller.Net;
- using MediaBrowser.Controller.Session;
- using MediaBrowser.Model.Dto;
- using MediaBrowser.Model.Session;
- using Microsoft.AspNetCore.Authorization;
- using Microsoft.AspNetCore.Http;
- using Microsoft.AspNetCore.Mvc;
- namespace Jellyfin.Api.Controllers
- {
- /// <summary>
- /// The session controller.
- /// </summary>
- [Route("")]
- public class SessionController : BaseJellyfinApiController
- {
- private readonly ISessionManager _sessionManager;
- private readonly IUserManager _userManager;
- private readonly IAuthorizationContext _authContext;
- private readonly IDeviceManager _deviceManager;
- /// <summary>
- /// Initializes a new instance of the <see cref="SessionController"/> class.
- /// </summary>
- /// <param name="sessionManager">Instance of <see cref="ISessionManager"/> interface.</param>
- /// <param name="userManager">Instance of <see cref="IUserManager"/> interface.</param>
- /// <param name="authContext">Instance of <see cref="IAuthorizationContext"/> interface.</param>
- /// <param name="deviceManager">Instance of <see cref="IDeviceManager"/> interface.</param>
- public SessionController(
- ISessionManager sessionManager,
- IUserManager userManager,
- IAuthorizationContext authContext,
- IDeviceManager deviceManager)
- {
- _sessionManager = sessionManager;
- _userManager = userManager;
- _authContext = authContext;
- _deviceManager = deviceManager;
- }
- /// <summary>
- /// Gets a list of sessions.
- /// </summary>
- /// <param name="controllableByUserId">Filter by sessions that a given user is allowed to remote control.</param>
- /// <param name="deviceId">Filter by device Id.</param>
- /// <param name="activeWithinSeconds">Optional. Filter by sessions that were active in the last n seconds.</param>
- /// <response code="200">List of sessions returned.</response>
- /// <returns>An <see cref="IEnumerable{SessionInfo}"/> with the available sessions.</returns>
- [HttpGet("Sessions")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status200OK)]
- public ActionResult<IEnumerable<SessionInfo>> GetSessions(
- [FromQuery] Guid? controllableByUserId,
- [FromQuery] string? deviceId,
- [FromQuery] int? activeWithinSeconds)
- {
- var result = _sessionManager.Sessions;
- if (!string.IsNullOrEmpty(deviceId))
- {
- result = result.Where(i => string.Equals(i.DeviceId, deviceId, StringComparison.OrdinalIgnoreCase));
- }
- if (controllableByUserId.HasValue && !controllableByUserId.Equals(Guid.Empty))
- {
- result = result.Where(i => i.SupportsRemoteControl);
- var user = _userManager.GetUserById(controllableByUserId.Value);
- if (!user.HasPermission(PermissionKind.EnableRemoteControlOfOtherUsers))
- {
- result = result.Where(i => i.UserId.Equals(Guid.Empty) || i.ContainsUser(controllableByUserId.Value));
- }
- if (!user.HasPermission(PermissionKind.EnableSharedDeviceControl))
- {
- result = result.Where(i => !i.UserId.Equals(Guid.Empty));
- }
- if (activeWithinSeconds.HasValue && activeWithinSeconds.Value > 0)
- {
- var minActiveDate = DateTime.UtcNow.AddSeconds(0 - activeWithinSeconds.Value);
- result = result.Where(i => i.LastActivityDate >= minActiveDate);
- }
- result = result.Where(i =>
- {
- if (!string.IsNullOrWhiteSpace(i.DeviceId))
- {
- if (!_deviceManager.CanAccessDevice(user, i.DeviceId))
- {
- return false;
- }
- }
- return true;
- });
- }
- return Ok(result);
- }
- /// <summary>
- /// Instructs a session to browse to an item or view.
- /// </summary>
- /// <param name="sessionId">The session Id.</param>
- /// <param name="itemType">The type of item to browse to.</param>
- /// <param name="itemId">The Id of the item.</param>
- /// <param name="itemName">The name of the item.</param>
- /// <response code="204">Instruction sent to session.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpPost("Sessions/{sessionId}/Viewing")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public async Task<ActionResult> DisplayContent(
- [FromRoute, Required] string sessionId,
- [FromQuery, Required] string itemType,
- [FromQuery, Required] string itemId,
- [FromQuery, Required] string itemName)
- {
- var command = new BrowseRequest
- {
- ItemId = itemId,
- ItemName = itemName,
- ItemType = itemType
- };
- await _sessionManager.SendBrowseCommand(
- await RequestHelpers.GetSessionId(_sessionManager, _authContext, Request).ConfigureAwait(false),
- sessionId,
- command,
- CancellationToken.None)
- .ConfigureAwait(false);
- return NoContent();
- }
- /// <summary>
- /// Instructs a session to play an item.
- /// </summary>
- /// <param name="sessionId">The session id.</param>
- /// <param name="playCommand">The type of play command to issue (PlayNow, PlayNext, PlayLast). Clients who have not yet implemented play next and play last may play now.</param>
- /// <param name="itemIds">The ids of the items to play, comma delimited.</param>
- /// <param name="startPositionTicks">The starting position of the first item.</param>
- /// <response code="204">Instruction sent to session.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpPost("Sessions/{sessionId}/Playing")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public async Task<ActionResult> Play(
- [FromRoute, Required] string sessionId,
- [FromQuery, Required] PlayCommand playCommand,
- [FromQuery, Required, ModelBinder(typeof(CommaDelimitedArrayModelBinder))] Guid[] itemIds,
- [FromQuery] long? startPositionTicks)
- {
- var playRequest = new PlayRequest
- {
- ItemIds = itemIds,
- StartPositionTicks = startPositionTicks,
- PlayCommand = playCommand
- };
- await _sessionManager.SendPlayCommand(
- await RequestHelpers.GetSessionId(_sessionManager, _authContext, Request).ConfigureAwait(false),
- sessionId,
- playRequest,
- CancellationToken.None)
- .ConfigureAwait(false);
- return NoContent();
- }
- /// <summary>
- /// Issues a playstate command to a client.
- /// </summary>
- /// <param name="sessionId">The session id.</param>
- /// <param name="command">The <see cref="PlaystateCommand"/>.</param>
- /// <param name="seekPositionTicks">The optional position ticks.</param>
- /// <param name="controllingUserId">The optional controlling user id.</param>
- /// <response code="204">Playstate command sent to session.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpPost("Sessions/{sessionId}/Playing/{command}")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public async Task<ActionResult> SendPlaystateCommand(
- [FromRoute, Required] string sessionId,
- [FromRoute, Required] PlaystateCommand command,
- [FromQuery] long? seekPositionTicks,
- [FromQuery] string? controllingUserId)
- {
- await _sessionManager.SendPlaystateCommand(
- await RequestHelpers.GetSessionId(_sessionManager, _authContext, Request).ConfigureAwait(false),
- sessionId,
- new PlaystateRequest()
- {
- Command = command,
- ControllingUserId = controllingUserId,
- SeekPositionTicks = seekPositionTicks,
- },
- CancellationToken.None)
- .ConfigureAwait(false);
- return NoContent();
- }
- /// <summary>
- /// Issues a system command to a client.
- /// </summary>
- /// <param name="sessionId">The session id.</param>
- /// <param name="command">The command to send.</param>
- /// <response code="204">System command sent to session.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpPost("Sessions/{sessionId}/System/{command}")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public async Task<ActionResult> SendSystemCommand(
- [FromRoute, Required] string sessionId,
- [FromRoute, Required] GeneralCommandType command)
- {
- var currentSession = await RequestHelpers.GetSession(_sessionManager, _authContext, Request).ConfigureAwait(false);
- var generalCommand = new GeneralCommand
- {
- Name = command,
- ControllingUserId = currentSession.UserId
- };
- await _sessionManager.SendGeneralCommand(currentSession.Id, sessionId, generalCommand, CancellationToken.None);
- return NoContent();
- }
- /// <summary>
- /// Issues a general command to a client.
- /// </summary>
- /// <param name="sessionId">The session id.</param>
- /// <param name="command">The command to send.</param>
- /// <response code="204">General command sent to session.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpPost("Sessions/{sessionId}/Command/{command}")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public async Task<ActionResult> SendGeneralCommand(
- [FromRoute, Required] string sessionId,
- [FromRoute, Required] GeneralCommandType command)
- {
- var currentSession = await RequestHelpers.GetSession(_sessionManager, _authContext, Request).ConfigureAwait(false);
- var generalCommand = new GeneralCommand
- {
- Name = command,
- ControllingUserId = currentSession.UserId
- };
- await _sessionManager.SendGeneralCommand(currentSession.Id, sessionId, generalCommand, CancellationToken.None)
- .ConfigureAwait(false);
- return NoContent();
- }
- /// <summary>
- /// Issues a full general command to a client.
- /// </summary>
- /// <param name="sessionId">The session id.</param>
- /// <param name="command">The <see cref="GeneralCommand"/>.</param>
- /// <response code="204">Full general command sent to session.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpPost("Sessions/{sessionId}/Command")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public async Task<ActionResult> SendFullGeneralCommand(
- [FromRoute, Required] string sessionId,
- [FromBody, Required] GeneralCommand command)
- {
- var currentSession = await RequestHelpers.GetSession(_sessionManager, _authContext, Request)
- .ConfigureAwait(false);
- if (command == null)
- {
- throw new ArgumentException("Request body may not be null");
- }
- command.ControllingUserId = currentSession.UserId;
- await _sessionManager.SendGeneralCommand(
- currentSession.Id,
- sessionId,
- command,
- CancellationToken.None)
- .ConfigureAwait(false);
- return NoContent();
- }
- /// <summary>
- /// Issues a command to a client to display a message to the user.
- /// </summary>
- /// <param name="sessionId">The session id.</param>
- /// <param name="text">The message test.</param>
- /// <param name="header">The message header.</param>
- /// <param name="timeoutMs">The message timeout. If omitted the user will have to confirm viewing the message.</param>
- /// <response code="204">Message sent.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpPost("Sessions/{sessionId}/Message")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public async Task<ActionResult> SendMessageCommand(
- [FromRoute, Required] string sessionId,
- [FromQuery, Required] string text,
- [FromQuery] string? header,
- [FromQuery] long? timeoutMs)
- {
- var command = new MessageCommand
- {
- Header = string.IsNullOrEmpty(header) ? "Message from Server" : header,
- TimeoutMs = timeoutMs,
- Text = text
- };
- await _sessionManager.SendMessageCommand(
- await RequestHelpers.GetSessionId(_sessionManager, _authContext, Request).ConfigureAwait(false),
- sessionId,
- command,
- CancellationToken.None)
- .ConfigureAwait(false);
- return NoContent();
- }
- /// <summary>
- /// Adds an additional user to a session.
- /// </summary>
- /// <param name="sessionId">The session id.</param>
- /// <param name="userId">The user id.</param>
- /// <response code="204">User added to session.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpPost("Sessions/{sessionId}/User/{userId}")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public ActionResult AddUserToSession(
- [FromRoute, Required] string sessionId,
- [FromRoute, Required] Guid userId)
- {
- _sessionManager.AddAdditionalUser(sessionId, userId);
- return NoContent();
- }
- /// <summary>
- /// Removes an additional user from a session.
- /// </summary>
- /// <param name="sessionId">The session id.</param>
- /// <param name="userId">The user id.</param>
- /// <response code="204">User removed from session.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpDelete("Sessions/{sessionId}/User/{userId}")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public ActionResult RemoveUserFromSession(
- [FromRoute, Required] string sessionId,
- [FromRoute, Required] Guid userId)
- {
- _sessionManager.RemoveAdditionalUser(sessionId, userId);
- return NoContent();
- }
- /// <summary>
- /// Updates capabilities for a device.
- /// </summary>
- /// <param name="id">The session id.</param>
- /// <param name="playableMediaTypes">A list of playable media types, comma delimited. Audio, Video, Book, Photo.</param>
- /// <param name="supportedCommands">A list of supported remote control commands, comma delimited.</param>
- /// <param name="supportsMediaControl">Determines whether media can be played remotely..</param>
- /// <param name="supportsSync">Determines whether sync is supported.</param>
- /// <param name="supportsPersistentIdentifier">Determines whether the device supports a unique identifier.</param>
- /// <response code="204">Capabilities posted.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpPost("Sessions/Capabilities")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public async Task<ActionResult> PostCapabilities(
- [FromQuery] string? id,
- [FromQuery, ModelBinder(typeof(CommaDelimitedArrayModelBinder))] string[] playableMediaTypes,
- [FromQuery, ModelBinder(typeof(CommaDelimitedArrayModelBinder))] GeneralCommandType[] supportedCommands,
- [FromQuery] bool supportsMediaControl = false,
- [FromQuery] bool supportsSync = false,
- [FromQuery] bool supportsPersistentIdentifier = true)
- {
- if (string.IsNullOrWhiteSpace(id))
- {
- id = await RequestHelpers.GetSessionId(_sessionManager, _authContext, Request).ConfigureAwait(false);
- }
- _sessionManager.ReportCapabilities(id, new ClientCapabilities
- {
- PlayableMediaTypes = playableMediaTypes,
- SupportedCommands = supportedCommands,
- SupportsMediaControl = supportsMediaControl,
- SupportsSync = supportsSync,
- SupportsPersistentIdentifier = supportsPersistentIdentifier
- });
- return NoContent();
- }
- /// <summary>
- /// Updates capabilities for a device.
- /// </summary>
- /// <param name="id">The session id.</param>
- /// <param name="capabilities">The <see cref="ClientCapabilities"/>.</param>
- /// <response code="204">Capabilities updated.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpPost("Sessions/Capabilities/Full")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public async Task<ActionResult> PostFullCapabilities(
- [FromQuery] string? id,
- [FromBody, Required] ClientCapabilitiesDto capabilities)
- {
- if (string.IsNullOrWhiteSpace(id))
- {
- id = await RequestHelpers.GetSessionId(_sessionManager, _authContext, Request).ConfigureAwait(false);
- }
- _sessionManager.ReportCapabilities(id, capabilities.ToClientCapabilities());
- return NoContent();
- }
- /// <summary>
- /// Reports that a session is viewing an item.
- /// </summary>
- /// <param name="sessionId">The session id.</param>
- /// <param name="itemId">The item id.</param>
- /// <response code="204">Session reported to server.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpPost("Sessions/Viewing")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public async Task<ActionResult> ReportViewing(
- [FromQuery] string? sessionId,
- [FromQuery, Required] string? itemId)
- {
- string session = sessionId ?? await RequestHelpers.GetSessionId(_sessionManager, _authContext, Request).ConfigureAwait(false);
- _sessionManager.ReportNowViewingItem(session, itemId);
- return NoContent();
- }
- /// <summary>
- /// Reports that a session has ended.
- /// </summary>
- /// <response code="204">Session end reported to server.</response>
- /// <returns>A <see cref="NoContentResult"/>.</returns>
- [HttpPost("Sessions/Logout")]
- [Authorize(Policy = Policies.DefaultAuthorization)]
- [ProducesResponseType(StatusCodes.Status204NoContent)]
- public ActionResult ReportSessionEnded()
- {
- AuthorizationInfo auth = _authContext.GetAuthorizationInfo(Request);
- _sessionManager.Logout(auth.Token);
- return NoContent();
- }
- /// <summary>
- /// Get all auth providers.
- /// </summary>
- /// <response code="200">Auth providers retrieved.</response>
- /// <returns>An <see cref="IEnumerable{NameIdPair}"/> with the auth providers.</returns>
- [HttpGet("Auth/Providers")]
- [Authorize(Policy = Policies.RequiresElevation)]
- [ProducesResponseType(StatusCodes.Status200OK)]
- public ActionResult<IEnumerable<NameIdPair>> GetAuthProviders()
- {
- return _userManager.GetAuthenticationProviders();
- }
- /// <summary>
- /// Get all password reset providers.
- /// </summary>
- /// <response code="200">Password reset providers retrieved.</response>
- /// <returns>An <see cref="IEnumerable{NameIdPair}"/> with the password reset providers.</returns>
- [HttpGet("Auth/PasswordResetProviders")]
- [ProducesResponseType(StatusCodes.Status200OK)]
- [Authorize(Policy = Policies.RequiresElevation)]
- public ActionResult<IEnumerable<NameIdPair>> GetPasswordResetProviders()
- {
- return _userManager.GetPasswordResetProviders();
- }
- }
- }
|
