Domovská stránka Prehľadávať Pomoc
Prihlásiť sa
mirrors
/
jellyfin
zrkadlo https://github.com/jellyfin/jellyfin
2
0
Fork 0
Súbory Issues 0 Wiki
Strom: b27ad9af0b
Branche Tagy
jellyfin
/
Emby.Server.Implementations
/
Library
/
DefaultAuthenticationProvider.cs

DefaultAuthenticationProvider.cs 3.2 KB
História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105 
  1. using System;
    2. 

  2. using System.Collections.Generic;
    3. 

  3. using System.Text;
    4. 

  4. using System.Threading.Tasks;
    5. 

  5. using MediaBrowser.Controller.Authentication;
    6. 

  6. using MediaBrowser.Controller.Entities;
    7. 

  7. using MediaBrowser.Model.Cryptography;
    8. 

  8. 

  9. namespace Emby.Server.Implementations.Library
    10. 

  10. {
    11. 

  11.     public class DefaultAuthenticationProvider : IAuthenticationProvider, IRequiresResolvedUser
    12. 

  12.     {
    13. 

  13.         private readonly ICryptoProvider _cryptographyProvider;
    14. 

  14.         public DefaultAuthenticationProvider(ICryptoProvider crypto)
    15. 

  15.         {
    16. 

  16.             _cryptographyProvider = crypto;
    17. 

  17.         }
    18. 

  18. 

  19.         public string Name => "Default";
    20. 

  20. 

  21.         public bool IsEnabled => true;
    22. 

  22. 

  23.         public Task<ProviderAuthenticationResult> Authenticate(string username, string password)
    24. 

  24.         {
    25. 

  25.             throw new NotImplementedException();
    26. 

  26.         }
    27. 

  27. 

  28.         public Task<ProviderAuthenticationResult> Authenticate(string username, string password, User resolvedUser)
    29. 

  29.         {
    30. 

  30.             if (resolvedUser == null)
    31. 

  31.             {
    32. 

  32.                 throw new Exception("Invalid username or password");
    33. 

  33.             }
    34. 

  34. 

  35.             var success = string.Equals(GetPasswordHash(resolvedUser), GetHashedString(resolvedUser, password), StringComparison.OrdinalIgnoreCase);
    36. 

  36. 

  37.             if (!success)
    38. 

  38.             {
    39. 

  39.                 throw new Exception("Invalid username or password");
    40. 

  40.             }
    41. 

  41. 

  42.             return Task.FromResult(new ProviderAuthenticationResult
    43. 

  43.             {
    44. 

  44.                 Username = username
    45. 

  45.             });
    46. 

  46.         }
    47. 

  47. 

  48.         public Task<bool> HasPassword(User user)
    49. 

  49.         {
    50. 

  50.             var hasConfiguredPassword = !IsPasswordEmpty(user, GetPasswordHash(user));
    51. 

  51.             return Task.FromResult(hasConfiguredPassword);
    52. 

  52.         }
    53. 

  53. 

  54.         private bool IsPasswordEmpty(User user, string passwordHash)
    55. 

  55.         {
    56. 

  56.             return string.Equals(passwordHash, GetEmptyHashedString(user), StringComparison.OrdinalIgnoreCase);
    57. 

  57.         }
    58. 

  58. 

  59.         public Task ChangePassword(User user, string newPassword)
    60. 

  60.         {
    61. 

  61.             string newPasswordHash = null;
    62. 

  62. 

  63.             if (newPassword != null)
    64. 

  64.             {
    65. 

  65.                 newPasswordHash = GetHashedString(user, newPassword);
    66. 

  66.             }
    67. 

  67. 

  68.             if (string.IsNullOrWhiteSpace(newPasswordHash))
    69. 

  69.             {
    70. 

  70.                 throw new ArgumentNullException("newPasswordHash");
    71. 

  71.             }
    72. 

  72. 

  73.             user.Password = newPasswordHash;
    74. 

  74. 

  75.             return Task.CompletedTask;
    76. 

  76.         }
    77. 

  77. 

  78.         public string GetPasswordHash(User user)
    79. 

  79.         {
    80. 

  80.             return string.IsNullOrEmpty(user.Password)
    81. 

  81.                 ? GetEmptyHashedString(user)
    82. 

  82.                 : user.Password;
    83. 

  83.         }
    84. 

  84. 

  85.         public string GetEmptyHashedString(User user)
    86. 

  86.         {
    87. 

  87.             return GetHashedString(user, string.Empty);
    88. 

  88.         }
    89. 

  89. 

  90.         /// <summary>
    91. 

  91.         /// Gets the hashed string.
    92. 

  92.         /// </summary>
    93. 

  93.         public string GetHashedString(User user, string str)
    94. 

  94.         {
    95. 

  95.             var salt = user.Salt;
    96. 

  96.             if (salt != null)
    97. 

  97.             {
    98. 

  98.                 // return BCrypt.HashPassword(str, salt);
    99. 

  99.             }
    100. 

  100. 

  101.             // legacy
    102. 

  102.             return BitConverter.ToString(_cryptographyProvider.ComputeSHA1(Encoding.UTF8.GetBytes(str))).Replace("-", string.Empty);
    103. 

  103.         }
    104. 

  104.     }
    105. 

  105. }
    106.