< Summary - Jellyfin

Information

Class:	Jellyfin.Server.Extensions.ApiServiceCollectionExtensions
Assembly:	jellyfin
File(s):	/srv/git/jellyfin/Jellyfin.Server/Extensions/ApiServiceCollectionExtensions.cs

Line coverage

97%

Covered lines:	226
Uncovered lines:	6
Coverable lines:	232
Total lines:	395
Line coverage:	97.4%

Branch coverage

83%

Covered branches:	30
Total branches:	36
Branch coverage:	83.3%

Method coverage

Feature is only available for sponsors

Upgrade to PRO version

Coverage history

Metrics

Method	Branch coverage	Crap Score	Cyclomatic complexity	Line coverage
AddJellyfinApiAuthorization(...)	100%	1	1	100%
AddCustomAuthentication(...)	100%	1	1	100%
AddJellyfinApi(...)	100%	2	2	100%
ConfigureForwardHeaders(...)	50%	7	6	66.66%
AddJellyfinApiSwagger(...)	100%	1	1	100%
AddPolicy(...)	100%	1	1	100%
AddProxyAddresses(...)	87.5%	18	16	80%
AddIPAddress(...)	91.66%	12	12	87.5%
AddSwaggerTypeMappings(...)	100%	1	1	100%

File(s)

/srv/git/jellyfin/Jellyfin.Server/Extensions/ApiServiceCollectionExtensions.cs

#	Line	Line coverage
	`1`	`using System;`
	`2`	`using System.Collections.Generic;`
	`3`	`using System.IO;`
	`4`	`using System.Linq;`
	`5`	`using System.Net;`
	`6`	`using System.Net.Sockets;`
	`7`	`using System.Reflection;`
	`8`	`using System.Security.Claims;`
	`9`	`using Emby.Server.Implementations;`
	`10`	`using Jellyfin.Api.Auth;`
	`11`	`using Jellyfin.Api.Auth.AnonymousLanAccessPolicy;`
	`12`	`using Jellyfin.Api.Auth.DefaultAuthorizationPolicy;`
	`13`	`using Jellyfin.Api.Auth.FirstTimeSetupPolicy;`
	`14`	`using Jellyfin.Api.Auth.LocalAccessOrRequiresElevationPolicy;`
	`15`	`using Jellyfin.Api.Auth.SyncPlayAccessPolicy;`
	`16`	`using Jellyfin.Api.Auth.UserPermissionPolicy;`
	`17`	`using Jellyfin.Api.Constants;`
	`18`	`using Jellyfin.Api.Controllers;`
	`19`	`using Jellyfin.Api.Formatters;`
	`20`	`using Jellyfin.Api.ModelBinders;`
	`21`	`using Jellyfin.Data.Enums;`
	`22`	`using Jellyfin.Database.Implementations.Enums;`
	`23`	`using Jellyfin.Extensions.Json;`
	`24`	`using Jellyfin.Server.Configuration;`
	`25`	`using Jellyfin.Server.Filters;`
	`26`	`using MediaBrowser.Common.Api;`
	`27`	`using MediaBrowser.Common.Net;`
	`28`	`using MediaBrowser.Model.Entities;`
	`29`	`using MediaBrowser.Model.Session;`
	`30`	`using Microsoft.AspNetCore.Authentication;`
	`31`	`using Microsoft.AspNetCore.Authorization;`
	`32`	`using Microsoft.AspNetCore.Builder;`
	`33`	`using Microsoft.AspNetCore.Cors.Infrastructure;`
	`34`	`using Microsoft.AspNetCore.HttpOverrides;`
	`35`	`using Microsoft.Extensions.DependencyInjection;`
	`36`	`using Microsoft.OpenApi.Any;`
	`37`	`using Microsoft.OpenApi.Interfaces;`
	`38`	`using Microsoft.OpenApi.Models;`
	`39`	`using Swashbuckle.AspNetCore.SwaggerGen;`
	`40`	`using AuthenticationSchemes = Jellyfin.Api.Constants.AuthenticationSchemes;`
	`41`
	`42`	`namespace Jellyfin.Server.Extensions`
	`43`	`{`
	`44`	`/// <summary>`
	`45`	`/// API specific extensions for the service collection.`
	`46`	`/// </summary>`
	`47`	`public static class ApiServiceCollectionExtensions`
	`48`	`{`
	`49`	`/// <summary>`
	`50`	`/// Adds jellyfin API authorization policies to the DI container.`
	`51`	`/// </summary>`
	`52`	`/// <param name="serviceCollection">The service collection.</param>`
	`53`	`/// <returns>The updated service collection.</returns>`
	`54`	`public static IServiceCollection AddJellyfinApiAuthorization(this IServiceCollection serviceCollection)`
	`55`	`{`
	`56`	`// The default handler must be first so that it is evaluated first`
21	`57`	`serviceCollection.AddSingleton<IAuthorizationHandler, DefaultAuthorizationHandler>();`
21	`58`	`serviceCollection.AddSingleton<IAuthorizationHandler, UserPermissionHandler>();`
21	`59`	`serviceCollection.AddSingleton<IAuthorizationHandler, FirstTimeSetupHandler>();`
21	`60`	`serviceCollection.AddSingleton<IAuthorizationHandler, AnonymousLanAccessHandler>();`
21	`61`	`serviceCollection.AddSingleton<IAuthorizationHandler, SyncPlayAccessHandler>();`
21	`62`	`serviceCollection.AddSingleton<IAuthorizationHandler, LocalAccessOrRequiresElevationHandler>();`
	`63`
21	`64`	`return serviceCollection.AddAuthorizationCore(options =>`
21	`65`	`{`
21	`66`	`options.DefaultPolicy = new AuthorizationPolicyBuilder()`
21	`67`	`.AddAuthenticationSchemes(AuthenticationSchemes.CustomAuthentication)`
21	`68`	`.AddRequirements(new DefaultAuthorizationRequirement())`
21	`69`	`.Build();`
21	`70`
21	`71`	`options.AddPolicy(Policies.AnonymousLanAccessPolicy, new AnonymousLanAccessRequirement());`
21	`72`	`options.AddPolicy(Policies.CollectionManagement, new UserPermissionRequirement(PermissionKind.EnableColl`
21	`73`	`options.AddPolicy(Policies.Download, new UserPermissionRequirement(PermissionKind.EnableContentDownloadi`
21	`74`	`options.AddPolicy(Policies.FirstTimeSetupOrDefault, new FirstTimeSetupRequirement(requireAdmin: false));`
21	`75`	`options.AddPolicy(Policies.FirstTimeSetupOrElevated, new FirstTimeSetupRequirement());`
21	`76`	`options.AddPolicy(Policies.FirstTimeSetupOrIgnoreParentalControl, new FirstTimeSetupRequirement(false, f`
21	`77`	`options.AddPolicy(Policies.IgnoreParentalControl, new DefaultAuthorizationRequirement(validateParentalSc`
21	`78`	`options.AddPolicy(Policies.LiveTvAccess, new UserPermissionRequirement(PermissionKind.EnableLiveTvAccess`
21	`79`	`options.AddPolicy(Policies.LiveTvManagement, new UserPermissionRequirement(PermissionKind.EnableLiveTvMa`
21	`80`	`options.AddPolicy(Policies.LocalAccessOrRequiresElevation, new LocalAccessOrRequiresElevationRequirement`
21	`81`	`options.AddPolicy(Policies.SyncPlayHasAccess, new SyncPlayAccessRequirement(SyncPlayAccessRequirementTyp`
21	`82`	`options.AddPolicy(Policies.SyncPlayCreateGroup, new SyncPlayAccessRequirement(SyncPlayAccessRequirementT`
21	`83`	`options.AddPolicy(Policies.SyncPlayJoinGroup, new SyncPlayAccessRequirement(SyncPlayAccessRequirementTyp`
21	`84`	`options.AddPolicy(Policies.SyncPlayIsInGroup, new SyncPlayAccessRequirement(SyncPlayAccessRequirementTyp`
21	`85`	`options.AddPolicy(Policies.SubtitleManagement, new UserPermissionRequirement(PermissionKind.EnableSubtit`
21	`86`	`options.AddPolicy(Policies.LyricManagement, new UserPermissionRequirement(PermissionKind.EnableLyricMana`
21	`87`	`options.AddPolicy(`
21	`88`	`Policies.RequiresElevation,`
21	`89`	`policy => policy.AddAuthenticationSchemes(AuthenticationSchemes.CustomAuthentication)`
21	`90`	`.RequireClaim(ClaimTypes.Role, UserRoles.Administrator));`
21	`91`	`});`
	`92`	`}`
	`93`
	`94`	`/// <summary>`
	`95`	`/// Adds custom legacy authentication to the service collection.`
	`96`	`/// </summary>`
	`97`	`/// <param name="serviceCollection">The service collection.</param>`
	`98`	`/// <returns>The updated service collection.</returns>`
	`99`	`public static AuthenticationBuilder AddCustomAuthentication(this IServiceCollection serviceCollection)`
	`100`	`{`
21	`101`	`return serviceCollection.AddAuthentication(AuthenticationSchemes.CustomAuthentication)`
21	`102`	`.AddScheme<AuthenticationSchemeOptions, CustomAuthenticationHandler>(AuthenticationSchemes.CustomAuthent`
	`103`	`}`
	`104`
	`105`	`/// <summary>`
	`106`	`/// Extension method for adding the Jellyfin API to the service collection.`
	`107`	`/// </summary>`
	`108`	`/// <param name="serviceCollection">The service collection.</param>`
	`109`	`/// <param name="pluginAssemblies">An IEnumerable containing all plugin assemblies with API controllers.</param>`
	`110`	`/// <param name="config">The <see cref="NetworkConfiguration"/>.</param>`
	`111`	`/// <returns>The MVC builder.</returns>`
	`112`	`public static IMvcBuilder AddJellyfinApi(this IServiceCollection serviceCollection, IEnumerable<Assembly> plugin`
	`113`	`{`
21	`114`	`IMvcBuilder mvcBuilder = serviceCollection`
21	`115`	`.AddCors()`
21	`116`	`.AddTransient<ICorsPolicyProvider, CorsPolicyProvider>()`
21	`117`	`.Configure<ForwardedHeadersOptions>(options =>`
21	`118`	`{`
21	`119`	`ConfigureForwardHeaders(config, options);`
21	`120`	`})`
21	`121`	`.AddMvc(opts =>`
21	`122`	`{`
21	`123`	`// Allow requester to change between camelCase and PascalCase`
21	`124`	`opts.RespectBrowserAcceptHeader = true;`
21	`125`
21	`126`	`opts.OutputFormatters.Insert(0, new CamelCaseJsonProfileFormatter());`
21	`127`	`opts.OutputFormatters.Insert(0, new PascalCaseJsonProfileFormatter());`
21	`128`
21	`129`	`opts.OutputFormatters.Add(new CssOutputFormatter());`
21	`130`	`opts.OutputFormatters.Add(new XmlOutputFormatter());`
21	`131`
21	`132`	`opts.ModelBinderProviders.Insert(0, new NullableEnumModelBinderProvider());`
21	`133`	`})`
21	`134`
21	`135`	`// Clear app parts to avoid other assemblies being picked up`
21	`136`	`.ConfigureApplicationPartManager(a => a.ApplicationParts.Clear())`
21	`137`	`.AddApplicationPart(typeof(StartupController).Assembly)`
21	`138`	`.AddJsonOptions(options =>`
21	`139`	`{`
21	`140`	`// Update all properties that are set in JsonDefaults`
21	`141`	`var jsonOptions = JsonDefaults.PascalCaseOptions;`
21	`142`
21	`143`	`// From JsonDefaults`
21	`144`	`options.JsonSerializerOptions.ReadCommentHandling = jsonOptions.ReadCommentHandling;`
21	`145`	`options.JsonSerializerOptions.WriteIndented = jsonOptions.WriteIndented;`
21	`146`	`options.JsonSerializerOptions.DefaultIgnoreCondition = jsonOptions.DefaultIgnoreCondition;`
21	`147`	`options.JsonSerializerOptions.NumberHandling = jsonOptions.NumberHandling;`
21	`148`
21	`149`	`options.JsonSerializerOptions.Converters.Clear();`
21	`150`	`foreach (var converter in jsonOptions.Converters)`
21	`151`	`{`
21	`152`	`options.JsonSerializerOptions.Converters.Add(converter);`
21	`153`	`}`
21	`154`
21	`155`	`// From JsonDefaults.PascalCase`
21	`156`	`options.JsonSerializerOptions.PropertyNamingPolicy = jsonOptions.PropertyNamingPolicy;`
21	`157`	`});`
	`158`
126	`159`	`foreach (Assembly pluginAssembly in pluginAssemblies)`
	`160`	`{`
42	`161`	`mvcBuilder.AddApplicationPart(pluginAssembly);`
	`162`	`}`
	`163`
21	`164`	`return mvcBuilder.AddControllersAsServices();`
	`165`	`}`
	`166`
	`167`	`internal static void ConfigureForwardHeaders(NetworkConfiguration config, ForwardedHeadersOptions options)`
	`168`	`{`
	`169`	`// https://github.com/dotnet/aspnetcore/blob/master/src/Middleware/HttpOverrides/src/ForwardedHeadersMiddlew`
	`170`	`// Enable debug logging on Microsoft.AspNetCore.HttpOverrides.ForwardedHeadersMiddleware to help investigate`
	`171`
21	`172`	`if (config.KnownProxies.Length == 0)`
	`173`	`{`
21	`174`	`options.ForwardedHeaders = ForwardedHeaders.None;`
21	`175`	`options.KnownNetworks.Clear();`
21	`176`	`options.KnownProxies.Clear();`
	`177`	`}`
	`178`	`else`
	`179`	`{`
0	`180`	`options.ForwardedHeaders = ForwardedHeaders.XForwardedFor \| ForwardedHeaders.XForwardedProto \| Forwarded`
0	`181`	`AddProxyAddresses(config, config.KnownProxies, options);`
	`182`	`}`
	`183`
	`184`	`// Only set forward limit if we have some known proxies or some known networks.`
21	`185`	`if (options.KnownProxies.Count != 0 \|\| options.KnownNetworks.Count != 0)`
	`186`	`{`
0	`187`	`options.ForwardLimit = null;`
	`188`	`}`
21	`189`	`}`
	`190`
	`191`	`/// <summary>`
	`192`	`/// Adds Swagger to the service collection.`
	`193`	`/// </summary>`
	`194`	`/// <param name="serviceCollection">The service collection.</param>`
	`195`	`/// <returns>The updated service collection.</returns>`
	`196`	`public static IServiceCollection AddJellyfinApiSwagger(this IServiceCollection serviceCollection)`
	`197`	`{`
21	`198`	`return serviceCollection.AddSwaggerGen(c =>`
21	`199`	`{`
21	`200`	`var version = typeof(ApplicationHost).Assembly.GetName().Version?.ToString(3) ?? "0.0.1";`
21	`201`	`c.SwaggerDoc("api-docs", new OpenApiInfo`
21	`202`	`{`
21	`203`	`Title = "Jellyfin API",`
21	`204`	`Version = version,`
21	`205`	`Extensions = new Dictionary<string, IOpenApiExtension>`
21	`206`	`{`
21	`207`	`{`
21	`208`	`"x-jellyfin-version",`
21	`209`	`new OpenApiString(version)`
21	`210`	`}`
21	`211`	`}`
21	`212`	`});`
21	`213`
21	`214`	`c.AddSecurityDefinition(AuthenticationSchemes.CustomAuthentication, new OpenApiSecurityScheme`
21	`215`	`{`
21	`216`	`Type = SecuritySchemeType.ApiKey,`
21	`217`	`In = ParameterLocation.Header,`
21	`218`	`Name = "Authorization",`
21	`219`	`Description = "API key header parameter"`
21	`220`	`});`
21	`221`
21	`222`	`// Add all xml doc files to swagger generator.`
21	`223`	`var xmlFiles = Directory.EnumerateFiles(`
21	`224`	`AppContext.BaseDirectory,`
21	`225`	`"*.xml",`
21	`226`	`SearchOption.TopDirectoryOnly);`
21	`227`
21	`228`	`foreach (var xmlFile in xmlFiles)`
21	`229`	`{`
21	`230`	`c.IncludeXmlComments(xmlFile);`
21	`231`	`}`
21	`232`
21	`233`	`// Order actions by route path, then by http method.`
21	`234`	`c.OrderActionsBy(description =>`
21	`235`	`$"{description.ActionDescriptor.RouteValues["controller"]}_{description.RelativePath}");`
21	`236`
21	`237`	`// Use method name as operationId`
21	`238`	`c.CustomOperationIds(`
21	`239`	`description =>`
21	`240`	`{`
21	`241`	`description.TryGetMethodInfo(out MethodInfo methodInfo);`
21	`242`	`// Attribute name, method name, none.`
21	`243`	`return description?.ActionDescriptor.AttributeRouteInfo?.Name`
21	`244`	`?? methodInfo?.Name`
21	`245`	`?? null;`
21	`246`	`});`
21	`247`
21	`248`	`// Allow parameters to properly be nullable.`
21	`249`	`c.UseAllOfToExtendReferenceSchemas();`
21	`250`	`c.SupportNonNullableReferenceTypes();`
21	`251`
21	`252`	`// TODO - remove when all types are supported in System.Text.Json`
21	`253`	`c.AddSwaggerTypeMappings();`
21	`254`
21	`255`	`c.SchemaFilter<IgnoreEnumSchemaFilter>();`
21	`256`	`c.OperationFilter<RetryOnTemporarilyUnavailableFilter>();`
21	`257`	`c.OperationFilter<SecurityRequirementsOperationFilter>();`
21	`258`	`c.OperationFilter<FileResponseFilter>();`
21	`259`	`c.OperationFilter<FileRequestFilter>();`
21	`260`	`c.OperationFilter<ParameterObsoleteFilter>();`
21	`261`	`c.DocumentFilter<AdditionalModelFilter>();`
21	`262`	`});`
	`263`	`}`
	`264`
	`265`	`private static void AddPolicy(this AuthorizationOptions authorizationOptions, string policyName, IAuthorizationR`
	`266`	`{`
336	`267`	`authorizationOptions.AddPolicy(policyName, policy =>`
336	`268`	`{`
336	`269`	`policy.AddAuthenticationSchemes(AuthenticationSchemes.CustomAuthentication).AddRequirements(authorizatio`
336	`270`	`});`
336	`271`	`}`
	`272`
	`273`	`/// <summary>`
	`274`	`/// Sets up the proxy configuration based on the addresses/subnets in <paramref name="allowedProxies"/>.`
	`275`	`/// </summary>`
	`276`	`/// <param name="config">The <see cref="NetworkConfiguration"/> containing the config settings.</param>`
	`277`	`/// <param name="allowedProxies">The string array to parse.</param>`
	`278`	`/// <param name="options">The <see cref="ForwardedHeadersOptions"/> instance.</param>`
	`279`	`internal static void AddProxyAddresses(NetworkConfiguration config, string[] allowedProxies, ForwardedHeadersOpt`
	`280`	`{`
38	`281`	`for (var i = 0; i < allowedProxies.Length; i++)`
	`282`	`{`
12	`283`	`if (IPAddress.TryParse(allowedProxies[i], out var addr))`
	`284`	`{`
4	`285`	`AddIPAddress(config, options, addr, addr.AddressFamily == AddressFamily.InterNetwork ? NetworkConsta`
	`286`	`}`
8	`287`	`else if (NetworkUtils.TryParseToSubnet(allowedProxies[i], out var subnet))`
	`288`	`{`
0	`289`	`if (subnet is not null)`
	`290`	`{`
0	`291`	`AddIPAddress(config, options, subnet.Prefix, subnet.PrefixLength);`
	`292`	`}`
	`293`	`}`
8	`294`	`else if (NetworkUtils.TryParseHost(allowedProxies[i], out var addresses, config.EnableIPv4, config.Enabl`
	`295`	`{`
24	`296`	`foreach (var address in addresses)`
	`297`	`{`
8	`298`	`AddIPAddress(config, options, address, address.AddressFamily == AddressFamily.InterNetwork ? Net`
	`299`	`}`
	`300`	`}`
	`301`	`}`
7	`302`	`}`
	`303`
	`304`	`private static void AddIPAddress(NetworkConfiguration config, ForwardedHeadersOptions options, IPAddress addr, i`
	`305`	`{`
12	`306`	`if (addr.IsIPv4MappedToIPv6)`
	`307`	`{`
0	`308`	`addr = addr.MapToIPv4();`
	`309`	`}`
	`310`
12	`311`	`if ((!config.EnableIPv4 && addr.AddressFamily == AddressFamily.InterNetwork) \|\| (!config.EnableIPv6 && addr.`
	`312`	`{`
4	`313`	`return;`
	`314`	`}`
	`315`
8	`316`	`if (prefixLength == NetworkConstants.MinimumIPv4PrefixSize)`
	`317`	`{`
4	`318`	`options.KnownProxies.Add(addr);`
	`319`	`}`
	`320`	`else`
	`321`	`{`
4	`322`	`options.KnownNetworks.Add(new Microsoft.AspNetCore.HttpOverrides.IPNetwork(addr, prefixLength));`
	`323`	`}`
4	`324`	`}`
	`325`
	`326`	`private static void AddSwaggerTypeMappings(this SwaggerGenOptions options)`
	`327`	`{`
	`328`	`/*`
	`329`	`* TODO remove when System.Text.Json properly supports non-string keys.`
	`330`	`* Used in BaseItemDto.ImageBlurHashes`
	`331`	`*/`
21	`332`	`options.MapType<Dictionary<ImageType, string>>(() =>`
21	`333`	`new OpenApiSchema`
21	`334`	`{`
21	`335`	`Type = "object",`
21	`336`	`AdditionalProperties = new OpenApiSchema`
21	`337`	`{`
21	`338`	`Type = "string"`
21	`339`	`}`
21	`340`	`});`
	`341`
	`342`	`/*`
	`343`	`* Support BlurHash dictionary`
	`344`	`*/`
21	`345`	`options.MapType<Dictionary<ImageType, Dictionary<string, string>>>(() =>`
21	`346`	`new OpenApiSchema`
21	`347`	`{`
21	`348`	`Type = "object",`
21	`349`	`Properties = typeof(ImageType).GetEnumNames().ToDictionary(`
21	`350`	`name => name,`
21	`351`	`_ => new OpenApiSchema`
21	`352`	`{`
21	`353`	`Type = "object",`
21	`354`	`AdditionalProperties = new OpenApiSchema`
21	`355`	`{`
21	`356`	`Type = "string"`
21	`357`	`}`
21	`358`	`})`
21	`359`	`});`
	`360`
	`361`	`// Support dictionary with nullable string value.`
21	`362`	`options.MapType<Dictionary<string, string?>>(() =>`
21	`363`	`new OpenApiSchema`
21	`364`	`{`
21	`365`	`Type = "object",`
21	`366`	`AdditionalProperties = new OpenApiSchema`
21	`367`	`{`
21	`368`	`Type = "string",`
21	`369`	`Nullable = true`
21	`370`	`}`
21	`371`	`});`
	`372`
	`373`	`// Manually describe Flags enum.`
21	`374`	`options.MapType<TranscodeReason>(() =>`
21	`375`	`new OpenApiSchema`
21	`376`	`{`
21	`377`	`Type = "array",`
21	`378`	`Items = new OpenApiSchema`
21	`379`	`{`
21	`380`	`Reference = new OpenApiReference`
21	`381`	`{`
21	`382`	`Id = nameof(TranscodeReason),`
21	`383`	`Type = ReferenceType.Schema,`
21	`384`	`}`
21	`385`	`}`
21	`386`	`});`
	`387`
	`388`	`// Swashbuckle doesn't use JsonOptions to describe responses, so we need to manually describe it.`
21	`389`	`options.MapType<Version>(() => new OpenApiSchema`
21	`390`	`{`
21	`391`	`Type = "string"`
21	`392`	`});`
21	`393`	`}`
	`394`	`}`
	`395`	`}`

< Summary - Jellyfin

Coverage history

Metrics

File(s)

/srv/git/jellyfin/Jellyfin.Server/Extensions/ApiServiceCollectionExtensions.cs

Methods/Properties