| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647 |
- using System.Threading.Tasks;
- using MediaBrowser.Common.Net;
- using Microsoft.AspNetCore.Authorization;
- using Microsoft.AspNetCore.Http;
- namespace Jellyfin.Api.Auth.AnonymousLanAccessPolicy
- {
- /// <summary>
- /// LAN access handler. Allows anonymous users.
- /// </summary>
- public class AnonymousLanAccessHandler : AuthorizationHandler<AnonymousLanAccessRequirement>
- {
- private readonly INetworkManager _networkManager;
- private readonly IHttpContextAccessor _httpContextAccessor;
- /// <summary>
- /// Initializes a new instance of the <see cref="AnonymousLanAccessHandler"/> class.
- /// </summary>
- /// <param name="networkManager">Instance of the <see cref="INetworkManager"/> interface.</param>
- /// <param name="httpContextAccessor">Instance of the <see cref="IHttpContextAccessor"/> interface.</param>
- public AnonymousLanAccessHandler(
- INetworkManager networkManager,
- IHttpContextAccessor httpContextAccessor)
- {
- _networkManager = networkManager;
- _httpContextAccessor = httpContextAccessor;
- }
- /// <inheritdoc />
- protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, AnonymousLanAccessRequirement requirement)
- {
- var ip = _httpContextAccessor.HttpContext?.Connection.RemoteIpAddress;
- // Loopback will be on LAN, so we can accept null.
- if (ip == null || _networkManager.IsInLocalNetwork(ip))
- {
- context.Succeed(requirement);
- }
- else
- {
- context.Fail();
- }
- return Task.CompletedTask;
- }
- }
- }
|
