< Summary - Jellyfin

Information

Class:	Jellyfin.Server.Extensions.ApiServiceCollectionExtensions
Assembly:	jellyfin
File(s):	/srv/git/jellyfin/Jellyfin.Server/Extensions/ApiServiceCollectionExtensions.cs

Line coverage

98%

Covered lines:	238
Uncovered lines:	3
Coverable lines:	241
Total lines:	388
Line coverage:	98.7%

Branch coverage

90%

Covered branches:	27
Total branches:	30
Branch coverage:	90%

Method coverage

Feature is only available for sponsors

Upgrade to PRO version

Coverage history

Metrics

Method	Branch coverage	Crap Score	Cyclomatic complexity	Line coverage
AddJellyfinApiAuthorization(...)	100%	1	1	100%
AddCustomAuthentication(...)	100%	1	1	100%
AddJellyfinApi(...)	100%	2	2	100%
AddJellyfinApiSwagger(...)	100%	1	1	100%
AddPolicy(...)	100%	1	1	100%
AddProxyAddresses(...)	87.5%	18.05	16	80%
AddIPAddress(...)	91.66%	12.28	12	87.5%
AddSwaggerTypeMappings(...)	100%	1	1	100%

File(s)

/srv/git/jellyfin/Jellyfin.Server/Extensions/ApiServiceCollectionExtensions.cs

#	Line	Line coverage
	`1`	`using System;`
	`2`	`using System.Collections.Generic;`
	`3`	`using System.IO;`
	`4`	`using System.Linq;`
	`5`	`using System.Net;`
	`6`	`using System.Net.Sockets;`
	`7`	`using System.Reflection;`
	`8`	`using System.Security.Claims;`
	`9`	`using Emby.Server.Implementations;`
	`10`	`using Jellyfin.Api.Auth;`
	`11`	`using Jellyfin.Api.Auth.AnonymousLanAccessPolicy;`
	`12`	`using Jellyfin.Api.Auth.DefaultAuthorizationPolicy;`
	`13`	`using Jellyfin.Api.Auth.FirstTimeSetupPolicy;`
	`14`	`using Jellyfin.Api.Auth.LocalAccessOrRequiresElevationPolicy;`
	`15`	`using Jellyfin.Api.Auth.SyncPlayAccessPolicy;`
	`16`	`using Jellyfin.Api.Auth.UserPermissionPolicy;`
	`17`	`using Jellyfin.Api.Constants;`
	`18`	`using Jellyfin.Api.Controllers;`
	`19`	`using Jellyfin.Api.Formatters;`
	`20`	`using Jellyfin.Api.ModelBinders;`
	`21`	`using Jellyfin.Data.Enums;`
	`22`	`using Jellyfin.Extensions.Json;`
	`23`	`using Jellyfin.Server.Configuration;`
	`24`	`using Jellyfin.Server.Filters;`
	`25`	`using MediaBrowser.Common.Api;`
	`26`	`using MediaBrowser.Common.Net;`
	`27`	`using MediaBrowser.Model.Entities;`
	`28`	`using MediaBrowser.Model.Session;`
	`29`	`using Microsoft.AspNetCore.Authentication;`
	`30`	`using Microsoft.AspNetCore.Authorization;`
	`31`	`using Microsoft.AspNetCore.Builder;`
	`32`	`using Microsoft.AspNetCore.Cors.Infrastructure;`
	`33`	`using Microsoft.AspNetCore.HttpOverrides;`
	`34`	`using Microsoft.Extensions.DependencyInjection;`
	`35`	`using Microsoft.OpenApi.Any;`
	`36`	`using Microsoft.OpenApi.Interfaces;`
	`37`	`using Microsoft.OpenApi.Models;`
	`38`	`using Swashbuckle.AspNetCore.SwaggerGen;`
	`39`	`using AuthenticationSchemes = Jellyfin.Api.Constants.AuthenticationSchemes;`
	`40`
	`41`	`namespace Jellyfin.Server.Extensions`
	`42`	`{`
	`43`	`/// <summary>`
	`44`	`/// API specific extensions for the service collection.`
	`45`	`/// </summary>`
	`46`	`public static class ApiServiceCollectionExtensions`
	`47`	`{`
	`48`	`/// <summary>`
	`49`	`/// Adds jellyfin API authorization policies to the DI container.`
	`50`	`/// </summary>`
	`51`	`/// <param name="serviceCollection">The service collection.</param>`
	`52`	`/// <returns>The updated service collection.</returns>`
	`53`	`public static IServiceCollection AddJellyfinApiAuthorization(this IServiceCollection serviceCollection)`
	`54`	`{`
	`55`	`// The default handler must be first so that it is evaluated first`
22	`56`	`serviceCollection.AddSingleton<IAuthorizationHandler, DefaultAuthorizationHandler>();`
22	`57`	`serviceCollection.AddSingleton<IAuthorizationHandler, UserPermissionHandler>();`
22	`58`	`serviceCollection.AddSingleton<IAuthorizationHandler, FirstTimeSetupHandler>();`
22	`59`	`serviceCollection.AddSingleton<IAuthorizationHandler, AnonymousLanAccessHandler>();`
22	`60`	`serviceCollection.AddSingleton<IAuthorizationHandler, SyncPlayAccessHandler>();`
22	`61`	`serviceCollection.AddSingleton<IAuthorizationHandler, LocalAccessOrRequiresElevationHandler>();`
	`62`
22	`63`	`return serviceCollection.AddAuthorizationCore(options =>`
22	`64`	`{`
22	`65`	`options.DefaultPolicy = new AuthorizationPolicyBuilder()`
22	`66`	`.AddAuthenticationSchemes(AuthenticationSchemes.CustomAuthentication)`
22	`67`	`.AddRequirements(new DefaultAuthorizationRequirement())`
22	`68`	`.Build();`
22	`69`
22	`70`	`options.AddPolicy(Policies.AnonymousLanAccessPolicy, new AnonymousLanAccessRequirement());`
22	`71`	`options.AddPolicy(Policies.CollectionManagement, new UserPermissionRequirement(PermissionKind.EnableColl`
22	`72`	`options.AddPolicy(Policies.Download, new UserPermissionRequirement(PermissionKind.EnableContentDownloadi`
22	`73`	`options.AddPolicy(Policies.FirstTimeSetupOrDefault, new FirstTimeSetupRequirement(requireAdmin: false));`
22	`74`	`options.AddPolicy(Policies.FirstTimeSetupOrElevated, new FirstTimeSetupRequirement());`
22	`75`	`options.AddPolicy(Policies.FirstTimeSetupOrIgnoreParentalControl, new FirstTimeSetupRequirement(false, f`
22	`76`	`options.AddPolicy(Policies.IgnoreParentalControl, new DefaultAuthorizationRequirement(validateParentalSc`
22	`77`	`options.AddPolicy(Policies.LiveTvAccess, new UserPermissionRequirement(PermissionKind.EnableLiveTvAccess`
22	`78`	`options.AddPolicy(Policies.LiveTvManagement, new UserPermissionRequirement(PermissionKind.EnableLiveTvMa`
22	`79`	`options.AddPolicy(Policies.LocalAccessOrRequiresElevation, new LocalAccessOrRequiresElevationRequirement`
22	`80`	`options.AddPolicy(Policies.SyncPlayHasAccess, new SyncPlayAccessRequirement(SyncPlayAccessRequirementTyp`
22	`81`	`options.AddPolicy(Policies.SyncPlayCreateGroup, new SyncPlayAccessRequirement(SyncPlayAccessRequirementT`
22	`82`	`options.AddPolicy(Policies.SyncPlayJoinGroup, new SyncPlayAccessRequirement(SyncPlayAccessRequirementTyp`
22	`83`	`options.AddPolicy(Policies.SyncPlayIsInGroup, new SyncPlayAccessRequirement(SyncPlayAccessRequirementTyp`
22	`84`	`options.AddPolicy(Policies.SubtitleManagement, new UserPermissionRequirement(PermissionKind.EnableSubtit`
22	`85`	`options.AddPolicy(Policies.LyricManagement, new UserPermissionRequirement(PermissionKind.EnableLyricMana`
22	`86`	`options.AddPolicy(`
22	`87`	`Policies.RequiresElevation,`
22	`88`	`policy => policy.AddAuthenticationSchemes(AuthenticationSchemes.CustomAuthentication)`
22	`89`	`.RequireClaim(ClaimTypes.Role, UserRoles.Administrator));`
22	`90`	`});`
	`91`	`}`
	`92`
	`93`	`/// <summary>`
	`94`	`/// Adds custom legacy authentication to the service collection.`
	`95`	`/// </summary>`
	`96`	`/// <param name="serviceCollection">The service collection.</param>`
	`97`	`/// <returns>The updated service collection.</returns>`
	`98`	`public static AuthenticationBuilder AddCustomAuthentication(this IServiceCollection serviceCollection)`
	`99`	`{`
22	`100`	`return serviceCollection.AddAuthentication(AuthenticationSchemes.CustomAuthentication)`
22	`101`	`.AddScheme<AuthenticationSchemeOptions, CustomAuthenticationHandler>(AuthenticationSchemes.CustomAuthent`
	`102`	`}`
	`103`
	`104`	`/// <summary>`
	`105`	`/// Extension method for adding the Jellyfin API to the service collection.`
	`106`	`/// </summary>`
	`107`	`/// <param name="serviceCollection">The service collection.</param>`
	`108`	`/// <param name="pluginAssemblies">An IEnumerable containing all plugin assemblies with API controllers.</param>`
	`109`	`/// <param name="config">The <see cref="NetworkConfiguration"/>.</param>`
	`110`	`/// <returns>The MVC builder.</returns>`
	`111`	`public static IMvcBuilder AddJellyfinApi(this IServiceCollection serviceCollection, IEnumerable<Assembly> plugin`
	`112`	`{`
22	`113`	`IMvcBuilder mvcBuilder = serviceCollection`
22	`114`	`.AddCors()`
22	`115`	`.AddTransient<ICorsPolicyProvider, CorsPolicyProvider>()`
22	`116`	`.Configure<ForwardedHeadersOptions>(options =>`
22	`117`	`{`
22	`118`	`// https://github.com/dotnet/aspnetcore/blob/master/src/Middleware/HttpOverrides/src/ForwardedHeader`
22	`119`	`// Enable debug logging on Microsoft.AspNetCore.HttpOverrides.ForwardedHeadersMiddleware to help inv`
22	`120`
22	`121`	`options.ForwardedHeaders = ForwardedHeaders.XForwardedFor \| ForwardedHeaders.XForwardedProto \| Forwa`
22	`122`
22	`123`	`if (config.KnownProxies.Length == 0)`
22	`124`	`{`
22	`125`	`options.KnownNetworks.Clear();`
22	`126`	`options.KnownProxies.Clear();`
22	`127`	`}`
22	`128`	`else`
22	`129`	`{`
22	`130`	`AddProxyAddresses(config, config.KnownProxies, options);`
22	`131`	`}`
22	`132`
22	`133`	`// Only set forward limit if we have some known proxies or some known networks.`
22	`134`	`if (options.KnownProxies.Count != 0 \|\| options.KnownNetworks.Count != 0)`
22	`135`	`{`
22	`136`	`options.ForwardLimit = null;`
22	`137`	`}`
22	`138`	`})`
22	`139`	`.AddMvc(opts =>`
22	`140`	`{`
22	`141`	`// Allow requester to change between camelCase and PascalCase`
22	`142`	`opts.RespectBrowserAcceptHeader = true;`
22	`143`
22	`144`	`opts.OutputFormatters.Insert(0, new CamelCaseJsonProfileFormatter());`
22	`145`	`opts.OutputFormatters.Insert(0, new PascalCaseJsonProfileFormatter());`
22	`146`
22	`147`	`opts.OutputFormatters.Add(new CssOutputFormatter());`
22	`148`	`opts.OutputFormatters.Add(new XmlOutputFormatter());`
22	`149`
22	`150`	`opts.ModelBinderProviders.Insert(0, new NullableEnumModelBinderProvider());`
22	`151`	`})`
22	`152`
22	`153`	`// Clear app parts to avoid other assemblies being picked up`
22	`154`	`.ConfigureApplicationPartManager(a => a.ApplicationParts.Clear())`
22	`155`	`.AddApplicationPart(typeof(StartupController).Assembly)`
22	`156`	`.AddJsonOptions(options =>`
22	`157`	`{`
22	`158`	`// Update all properties that are set in JsonDefaults`
22	`159`	`var jsonOptions = JsonDefaults.PascalCaseOptions;`
22	`160`
22	`161`	`// From JsonDefaults`
22	`162`	`options.JsonSerializerOptions.ReadCommentHandling = jsonOptions.ReadCommentHandling;`
22	`163`	`options.JsonSerializerOptions.WriteIndented = jsonOptions.WriteIndented;`
22	`164`	`options.JsonSerializerOptions.DefaultIgnoreCondition = jsonOptions.DefaultIgnoreCondition;`
22	`165`	`options.JsonSerializerOptions.NumberHandling = jsonOptions.NumberHandling;`
22	`166`
22	`167`	`options.JsonSerializerOptions.Converters.Clear();`
22	`168`	`foreach (var converter in jsonOptions.Converters)`
22	`169`	`{`
22	`170`	`options.JsonSerializerOptions.Converters.Add(converter);`
22	`171`	`}`
22	`172`
22	`173`	`// From JsonDefaults.PascalCase`
22	`174`	`options.JsonSerializerOptions.PropertyNamingPolicy = jsonOptions.PropertyNamingPolicy;`
22	`175`	`});`
	`176`
132	`177`	`foreach (Assembly pluginAssembly in pluginAssemblies)`
	`178`	`{`
44	`179`	`mvcBuilder.AddApplicationPart(pluginAssembly);`
	`180`	`}`
	`181`
22	`182`	`return mvcBuilder.AddControllersAsServices();`
	`183`	`}`
	`184`
	`185`	`/// <summary>`
	`186`	`/// Adds Swagger to the service collection.`
	`187`	`/// </summary>`
	`188`	`/// <param name="serviceCollection">The service collection.</param>`
	`189`	`/// <returns>The updated service collection.</returns>`
	`190`	`public static IServiceCollection AddJellyfinApiSwagger(this IServiceCollection serviceCollection)`
	`191`	`{`
22	`192`	`return serviceCollection.AddSwaggerGen(c =>`
22	`193`	`{`
22	`194`	`var version = typeof(ApplicationHost).Assembly.GetName().Version?.ToString(3) ?? "0.0.1";`
22	`195`	`c.SwaggerDoc("api-docs", new OpenApiInfo`
22	`196`	`{`
22	`197`	`Title = "Jellyfin API",`
22	`198`	`Version = version,`
22	`199`	`Extensions = new Dictionary<string, IOpenApiExtension>`
22	`200`	`{`
22	`201`	`{`
22	`202`	`"x-jellyfin-version",`
22	`203`	`new OpenApiString(version)`
22	`204`	`}`
22	`205`	`}`
22	`206`	`});`
22	`207`
22	`208`	`c.AddSecurityDefinition(AuthenticationSchemes.CustomAuthentication, new OpenApiSecurityScheme`
22	`209`	`{`
22	`210`	`Type = SecuritySchemeType.ApiKey,`
22	`211`	`In = ParameterLocation.Header,`
22	`212`	`Name = "Authorization",`
22	`213`	`Description = "API key header parameter"`
22	`214`	`});`
22	`215`
22	`216`	`// Add all xml doc files to swagger generator.`
22	`217`	`var xmlFiles = Directory.GetFiles(`
22	`218`	`AppContext.BaseDirectory,`
22	`219`	`"*.xml",`
22	`220`	`SearchOption.TopDirectoryOnly);`
22	`221`
22	`222`	`foreach (var xmlFile in xmlFiles)`
22	`223`	`{`
22	`224`	`c.IncludeXmlComments(xmlFile);`
22	`225`	`}`
22	`226`
22	`227`	`// Order actions by route path, then by http method.`
22	`228`	`c.OrderActionsBy(description =>`
22	`229`	`$"{description.ActionDescriptor.RouteValues["controller"]}_{description.RelativePath}");`
22	`230`
22	`231`	`// Use method name as operationId`
22	`232`	`c.CustomOperationIds(`
22	`233`	`description =>`
22	`234`	`{`
22	`235`	`description.TryGetMethodInfo(out MethodInfo methodInfo);`
22	`236`	`// Attribute name, method name, none.`
22	`237`	`return description?.ActionDescriptor.AttributeRouteInfo?.Name`
22	`238`	`?? methodInfo?.Name`
22	`239`	`?? null;`
22	`240`	`});`
22	`241`
22	`242`	`// Allow parameters to properly be nullable.`
22	`243`	`c.UseAllOfToExtendReferenceSchemas();`
22	`244`	`c.SupportNonNullableReferenceTypes();`
22	`245`
22	`246`	`// TODO - remove when all types are supported in System.Text.Json`
22	`247`	`c.AddSwaggerTypeMappings();`
22	`248`
22	`249`	`c.SchemaFilter<IgnoreEnumSchemaFilter>();`
22	`250`	`c.OperationFilter<SecurityRequirementsOperationFilter>();`
22	`251`	`c.OperationFilter<FileResponseFilter>();`
22	`252`	`c.OperationFilter<FileRequestFilter>();`
22	`253`	`c.OperationFilter<ParameterObsoleteFilter>();`
22	`254`	`c.DocumentFilter<AdditionalModelFilter>();`
22	`255`	`});`
	`256`	`}`
	`257`
	`258`	`private static void AddPolicy(this AuthorizationOptions authorizationOptions, string policyName, IAuthorizationR`
	`259`	`{`
352	`260`	`authorizationOptions.AddPolicy(policyName, policy =>`
352	`261`	`{`
352	`262`	`policy.AddAuthenticationSchemes(AuthenticationSchemes.CustomAuthentication).AddRequirements(authorizatio`
352	`263`	`});`
352	`264`	`}`
	`265`
	`266`	`/// <summary>`
	`267`	`/// Sets up the proxy configuration based on the addresses/subnets in <paramref name="allowedProxies"/>.`
	`268`	`/// </summary>`
	`269`	`/// <param name="config">The <see cref="NetworkConfiguration"/> containing the config settings.</param>`
	`270`	`/// <param name="allowedProxies">The string array to parse.</param>`
	`271`	`/// <param name="options">The <see cref="ForwardedHeadersOptions"/> instance.</param>`
	`272`	`internal static void AddProxyAddresses(NetworkConfiguration config, string[] allowedProxies, ForwardedHeadersOpt`
	`273`	`{`
38	`274`	`for (var i = 0; i < allowedProxies.Length; i++)`
	`275`	`{`
12	`276`	`if (IPAddress.TryParse(allowedProxies[i], out var addr))`
	`277`	`{`
4	`278`	`AddIPAddress(config, options, addr, addr.AddressFamily == AddressFamily.InterNetwork ? NetworkConsta`
	`279`	`}`
8	`280`	`else if (NetworkUtils.TryParseToSubnet(allowedProxies[i], out var subnet))`
	`281`	`{`
0	`282`	`if (subnet is not null)`
	`283`	`{`
0	`284`	`AddIPAddress(config, options, subnet.Prefix, subnet.PrefixLength);`
	`285`	`}`
	`286`	`}`
8	`287`	`else if (NetworkUtils.TryParseHost(allowedProxies[i], out var addresses, config.EnableIPv4, config.Enabl`
	`288`	`{`
24	`289`	`foreach (var address in addresses)`
	`290`	`{`
8	`291`	`AddIPAddress(config, options, address, address.AddressFamily == AddressFamily.InterNetwork ? Net`
	`292`	`}`
	`293`	`}`
	`294`	`}`
7	`295`	`}`
	`296`
	`297`	`private static void AddIPAddress(NetworkConfiguration config, ForwardedHeadersOptions options, IPAddress addr, i`
	`298`	`{`
12	`299`	`if (addr.IsIPv4MappedToIPv6)`
	`300`	`{`
0	`301`	`addr = addr.MapToIPv4();`
	`302`	`}`
	`303`
12	`304`	`if ((!config.EnableIPv4 && addr.AddressFamily == AddressFamily.InterNetwork) \|\| (!config.EnableIPv6 && addr.`
	`305`	`{`
4	`306`	`return;`
	`307`	`}`
	`308`
8	`309`	`if (prefixLength == NetworkConstants.MinimumIPv4PrefixSize)`
	`310`	`{`
4	`311`	`options.KnownProxies.Add(addr);`
	`312`	`}`
	`313`	`else`
	`314`	`{`
4	`315`	`options.KnownNetworks.Add(new Microsoft.AspNetCore.HttpOverrides.IPNetwork(addr, prefixLength));`
	`316`	`}`
4	`317`	`}`
	`318`
	`319`	`private static void AddSwaggerTypeMappings(this SwaggerGenOptions options)`
	`320`	`{`
	`321`	`/*`
	`322`	`* TODO remove when System.Text.Json properly supports non-string keys.`
	`323`	`* Used in BaseItemDto.ImageBlurHashes`
	`324`	`*/`
21	`325`	`options.MapType<Dictionary<ImageType, string>>(() =>`
21	`326`	`new OpenApiSchema`
21	`327`	`{`
21	`328`	`Type = "object",`
21	`329`	`AdditionalProperties = new OpenApiSchema`
21	`330`	`{`
21	`331`	`Type = "string"`
21	`332`	`}`
21	`333`	`});`
	`334`
	`335`	`/*`
	`336`	`* Support BlurHash dictionary`
	`337`	`*/`
21	`338`	`options.MapType<Dictionary<ImageType, Dictionary<string, string>>>(() =>`
21	`339`	`new OpenApiSchema`
21	`340`	`{`
21	`341`	`Type = "object",`
21	`342`	`Properties = typeof(ImageType).GetEnumNames().ToDictionary(`
21	`343`	`name => name,`
21	`344`	`_ => new OpenApiSchema`
21	`345`	`{`
21	`346`	`Type = "object",`
21	`347`	`AdditionalProperties = new OpenApiSchema`
21	`348`	`{`
21	`349`	`Type = "string"`
21	`350`	`}`
21	`351`	`})`
21	`352`	`});`
	`353`
	`354`	`// Support dictionary with nullable string value.`
21	`355`	`options.MapType<Dictionary<string, string?>>(() =>`
21	`356`	`new OpenApiSchema`
21	`357`	`{`
21	`358`	`Type = "object",`
21	`359`	`AdditionalProperties = new OpenApiSchema`
21	`360`	`{`
21	`361`	`Type = "string",`
21	`362`	`Nullable = true`
21	`363`	`}`
21	`364`	`});`
	`365`
	`366`	`// Manually describe Flags enum.`
21	`367`	`options.MapType<TranscodeReason>(() =>`
21	`368`	`new OpenApiSchema`
21	`369`	`{`
21	`370`	`Type = "array",`
21	`371`	`Items = new OpenApiSchema`
21	`372`	`{`
21	`373`	`Reference = new OpenApiReference`
21	`374`	`{`
21	`375`	`Id = nameof(TranscodeReason),`
21	`376`	`Type = ReferenceType.Schema,`
21	`377`	`}`
21	`378`	`}`
21	`379`	`});`
	`380`
	`381`	`// Swashbuckle doesn't use JsonOptions to describe responses, so we need to manually describe it.`
21	`382`	`options.MapType<Version>(() => new OpenApiSchema`
21	`383`	`{`
21	`384`	`Type = "string"`
21	`385`	`});`
21	`386`	`}`
	`387`	`}`
	`388`	`}`

< Summary - Jellyfin

Coverage history

Metrics

File(s)

/srv/git/jellyfin/Jellyfin.Server/Extensions/ApiServiceCollectionExtensions.cs

Methods/Properties