< Summary - Jellyfin

Information

Class:	Jellyfin.Server.Extensions.ApiServiceCollectionExtensions
Assembly:	jellyfin
File(s):	/srv/git/jellyfin/Jellyfin.Server/Extensions/ApiServiceCollectionExtensions.cs

Line coverage

98%

Covered lines:	239
Uncovered lines:	3
Coverable lines:	242
Total lines:	390
Line coverage:	98.7%

Branch coverage

90%

Covered branches:	27
Total branches:	30
Branch coverage:	90%

Method coverage

Feature is only available for sponsors

Upgrade to PRO version

Coverage history

Metrics

Method	Branch coverage	Crap Score	Cyclomatic complexity	Line coverage
AddJellyfinApiAuthorization(...)	100%	1	1	100%
AddCustomAuthentication(...)	100%	1	1	100%
AddJellyfinApi(...)	100%	2	2	100%
AddJellyfinApiSwagger(...)	100%	1	1	100%
AddPolicy(...)	100%	1	1	100%
AddProxyAddresses(...)	87.5%	18	16	80%
AddIPAddress(...)	91.66%	12	12	87.5%
AddSwaggerTypeMappings(...)	100%	1	1	100%

File(s)

/srv/git/jellyfin/Jellyfin.Server/Extensions/ApiServiceCollectionExtensions.cs

#	Line	Line coverage
	`1`	`using System;`
	`2`	`using System.Collections.Generic;`
	`3`	`using System.IO;`
	`4`	`using System.Linq;`
	`5`	`using System.Net;`
	`6`	`using System.Net.Sockets;`
	`7`	`using System.Reflection;`
	`8`	`using System.Security.Claims;`
	`9`	`using Emby.Server.Implementations;`
	`10`	`using Jellyfin.Api.Auth;`
	`11`	`using Jellyfin.Api.Auth.AnonymousLanAccessPolicy;`
	`12`	`using Jellyfin.Api.Auth.DefaultAuthorizationPolicy;`
	`13`	`using Jellyfin.Api.Auth.FirstTimeSetupPolicy;`
	`14`	`using Jellyfin.Api.Auth.LocalAccessOrRequiresElevationPolicy;`
	`15`	`using Jellyfin.Api.Auth.SyncPlayAccessPolicy;`
	`16`	`using Jellyfin.Api.Auth.UserPermissionPolicy;`
	`17`	`using Jellyfin.Api.Constants;`
	`18`	`using Jellyfin.Api.Controllers;`
	`19`	`using Jellyfin.Api.Formatters;`
	`20`	`using Jellyfin.Api.ModelBinders;`
	`21`	`using Jellyfin.Data.Enums;`
	`22`	`using Jellyfin.Database.Implementations.Enums;`
	`23`	`using Jellyfin.Extensions.Json;`
	`24`	`using Jellyfin.Server.Configuration;`
	`25`	`using Jellyfin.Server.Filters;`
	`26`	`using MediaBrowser.Common.Api;`
	`27`	`using MediaBrowser.Common.Net;`
	`28`	`using MediaBrowser.Model.Entities;`
	`29`	`using MediaBrowser.Model.Session;`
	`30`	`using Microsoft.AspNetCore.Authentication;`
	`31`	`using Microsoft.AspNetCore.Authorization;`
	`32`	`using Microsoft.AspNetCore.Builder;`
	`33`	`using Microsoft.AspNetCore.Cors.Infrastructure;`
	`34`	`using Microsoft.AspNetCore.HttpOverrides;`
	`35`	`using Microsoft.Extensions.DependencyInjection;`
	`36`	`using Microsoft.OpenApi.Any;`
	`37`	`using Microsoft.OpenApi.Interfaces;`
	`38`	`using Microsoft.OpenApi.Models;`
	`39`	`using Swashbuckle.AspNetCore.SwaggerGen;`
	`40`	`using AuthenticationSchemes = Jellyfin.Api.Constants.AuthenticationSchemes;`
	`41`
	`42`	`namespace Jellyfin.Server.Extensions`
	`43`	`{`
	`44`	`/// <summary>`
	`45`	`/// API specific extensions for the service collection.`
	`46`	`/// </summary>`
	`47`	`public static class ApiServiceCollectionExtensions`
	`48`	`{`
	`49`	`/// <summary>`
	`50`	`/// Adds jellyfin API authorization policies to the DI container.`
	`51`	`/// </summary>`
	`52`	`/// <param name="serviceCollection">The service collection.</param>`
	`53`	`/// <returns>The updated service collection.</returns>`
	`54`	`public static IServiceCollection AddJellyfinApiAuthorization(this IServiceCollection serviceCollection)`
	`55`	`{`
	`56`	`// The default handler must be first so that it is evaluated first`
21	`57`	`serviceCollection.AddSingleton<IAuthorizationHandler, DefaultAuthorizationHandler>();`
21	`58`	`serviceCollection.AddSingleton<IAuthorizationHandler, UserPermissionHandler>();`
21	`59`	`serviceCollection.AddSingleton<IAuthorizationHandler, FirstTimeSetupHandler>();`
21	`60`	`serviceCollection.AddSingleton<IAuthorizationHandler, AnonymousLanAccessHandler>();`
21	`61`	`serviceCollection.AddSingleton<IAuthorizationHandler, SyncPlayAccessHandler>();`
21	`62`	`serviceCollection.AddSingleton<IAuthorizationHandler, LocalAccessOrRequiresElevationHandler>();`
	`63`
21	`64`	`return serviceCollection.AddAuthorizationCore(options =>`
21	`65`	`{`
21	`66`	`options.DefaultPolicy = new AuthorizationPolicyBuilder()`
21	`67`	`.AddAuthenticationSchemes(AuthenticationSchemes.CustomAuthentication)`
21	`68`	`.AddRequirements(new DefaultAuthorizationRequirement())`
21	`69`	`.Build();`
21	`70`
21	`71`	`options.AddPolicy(Policies.AnonymousLanAccessPolicy, new AnonymousLanAccessRequirement());`
21	`72`	`options.AddPolicy(Policies.CollectionManagement, new UserPermissionRequirement(PermissionKind.EnableColl`
21	`73`	`options.AddPolicy(Policies.Download, new UserPermissionRequirement(PermissionKind.EnableContentDownloadi`
21	`74`	`options.AddPolicy(Policies.FirstTimeSetupOrDefault, new FirstTimeSetupRequirement(requireAdmin: false));`
21	`75`	`options.AddPolicy(Policies.FirstTimeSetupOrElevated, new FirstTimeSetupRequirement());`
21	`76`	`options.AddPolicy(Policies.FirstTimeSetupOrIgnoreParentalControl, new FirstTimeSetupRequirement(false, f`
21	`77`	`options.AddPolicy(Policies.IgnoreParentalControl, new DefaultAuthorizationRequirement(validateParentalSc`
21	`78`	`options.AddPolicy(Policies.LiveTvAccess, new UserPermissionRequirement(PermissionKind.EnableLiveTvAccess`
21	`79`	`options.AddPolicy(Policies.LiveTvManagement, new UserPermissionRequirement(PermissionKind.EnableLiveTvMa`
21	`80`	`options.AddPolicy(Policies.LocalAccessOrRequiresElevation, new LocalAccessOrRequiresElevationRequirement`
21	`81`	`options.AddPolicy(Policies.SyncPlayHasAccess, new SyncPlayAccessRequirement(SyncPlayAccessRequirementTyp`
21	`82`	`options.AddPolicy(Policies.SyncPlayCreateGroup, new SyncPlayAccessRequirement(SyncPlayAccessRequirementT`
21	`83`	`options.AddPolicy(Policies.SyncPlayJoinGroup, new SyncPlayAccessRequirement(SyncPlayAccessRequirementTyp`
21	`84`	`options.AddPolicy(Policies.SyncPlayIsInGroup, new SyncPlayAccessRequirement(SyncPlayAccessRequirementTyp`
21	`85`	`options.AddPolicy(Policies.SubtitleManagement, new UserPermissionRequirement(PermissionKind.EnableSubtit`
21	`86`	`options.AddPolicy(Policies.LyricManagement, new UserPermissionRequirement(PermissionKind.EnableLyricMana`
21	`87`	`options.AddPolicy(`
21	`88`	`Policies.RequiresElevation,`
21	`89`	`policy => policy.AddAuthenticationSchemes(AuthenticationSchemes.CustomAuthentication)`
21	`90`	`.RequireClaim(ClaimTypes.Role, UserRoles.Administrator));`
21	`91`	`});`
	`92`	`}`
	`93`
	`94`	`/// <summary>`
	`95`	`/// Adds custom legacy authentication to the service collection.`
	`96`	`/// </summary>`
	`97`	`/// <param name="serviceCollection">The service collection.</param>`
	`98`	`/// <returns>The updated service collection.</returns>`
	`99`	`public static AuthenticationBuilder AddCustomAuthentication(this IServiceCollection serviceCollection)`
	`100`	`{`
21	`101`	`return serviceCollection.AddAuthentication(AuthenticationSchemes.CustomAuthentication)`
21	`102`	`.AddScheme<AuthenticationSchemeOptions, CustomAuthenticationHandler>(AuthenticationSchemes.CustomAuthent`
	`103`	`}`
	`104`
	`105`	`/// <summary>`
	`106`	`/// Extension method for adding the Jellyfin API to the service collection.`
	`107`	`/// </summary>`
	`108`	`/// <param name="serviceCollection">The service collection.</param>`
	`109`	`/// <param name="pluginAssemblies">An IEnumerable containing all plugin assemblies with API controllers.</param>`
	`110`	`/// <param name="config">The <see cref="NetworkConfiguration"/>.</param>`
	`111`	`/// <returns>The MVC builder.</returns>`
	`112`	`public static IMvcBuilder AddJellyfinApi(this IServiceCollection serviceCollection, IEnumerable<Assembly> plugin`
	`113`	`{`
21	`114`	`IMvcBuilder mvcBuilder = serviceCollection`
21	`115`	`.AddCors()`
21	`116`	`.AddTransient<ICorsPolicyProvider, CorsPolicyProvider>()`
21	`117`	`.Configure<ForwardedHeadersOptions>(options =>`
21	`118`	`{`
21	`119`	`// https://github.com/dotnet/aspnetcore/blob/master/src/Middleware/HttpOverrides/src/ForwardedHeader`
21	`120`	`// Enable debug logging on Microsoft.AspNetCore.HttpOverrides.ForwardedHeadersMiddleware to help inv`
21	`121`
21	`122`	`options.ForwardedHeaders = ForwardedHeaders.XForwardedFor \| ForwardedHeaders.XForwardedProto \| Forwa`
21	`123`
21	`124`	`if (config.KnownProxies.Length == 0)`
21	`125`	`{`
21	`126`	`options.KnownNetworks.Clear();`
21	`127`	`options.KnownProxies.Clear();`
21	`128`	`}`
21	`129`	`else`
21	`130`	`{`
21	`131`	`AddProxyAddresses(config, config.KnownProxies, options);`
21	`132`	`}`
21	`133`
21	`134`	`// Only set forward limit if we have some known proxies or some known networks.`
21	`135`	`if (options.KnownProxies.Count != 0 \|\| options.KnownNetworks.Count != 0)`
21	`136`	`{`
21	`137`	`options.ForwardLimit = null;`
21	`138`	`}`
21	`139`	`})`
21	`140`	`.AddMvc(opts =>`
21	`141`	`{`
21	`142`	`// Allow requester to change between camelCase and PascalCase`
21	`143`	`opts.RespectBrowserAcceptHeader = true;`
21	`144`
21	`145`	`opts.OutputFormatters.Insert(0, new CamelCaseJsonProfileFormatter());`
21	`146`	`opts.OutputFormatters.Insert(0, new PascalCaseJsonProfileFormatter());`
21	`147`
21	`148`	`opts.OutputFormatters.Add(new CssOutputFormatter());`
21	`149`	`opts.OutputFormatters.Add(new XmlOutputFormatter());`
21	`150`
21	`151`	`opts.ModelBinderProviders.Insert(0, new NullableEnumModelBinderProvider());`
21	`152`	`})`
21	`153`
21	`154`	`// Clear app parts to avoid other assemblies being picked up`
21	`155`	`.ConfigureApplicationPartManager(a => a.ApplicationParts.Clear())`
21	`156`	`.AddApplicationPart(typeof(StartupController).Assembly)`
21	`157`	`.AddJsonOptions(options =>`
21	`158`	`{`
21	`159`	`// Update all properties that are set in JsonDefaults`
21	`160`	`var jsonOptions = JsonDefaults.PascalCaseOptions;`
21	`161`
21	`162`	`// From JsonDefaults`
21	`163`	`options.JsonSerializerOptions.ReadCommentHandling = jsonOptions.ReadCommentHandling;`
21	`164`	`options.JsonSerializerOptions.WriteIndented = jsonOptions.WriteIndented;`
21	`165`	`options.JsonSerializerOptions.DefaultIgnoreCondition = jsonOptions.DefaultIgnoreCondition;`
21	`166`	`options.JsonSerializerOptions.NumberHandling = jsonOptions.NumberHandling;`
21	`167`
21	`168`	`options.JsonSerializerOptions.Converters.Clear();`
21	`169`	`foreach (var converter in jsonOptions.Converters)`
21	`170`	`{`
21	`171`	`options.JsonSerializerOptions.Converters.Add(converter);`
21	`172`	`}`
21	`173`
21	`174`	`// From JsonDefaults.PascalCase`
21	`175`	`options.JsonSerializerOptions.PropertyNamingPolicy = jsonOptions.PropertyNamingPolicy;`
21	`176`	`});`
	`177`
126	`178`	`foreach (Assembly pluginAssembly in pluginAssemblies)`
	`179`	`{`
42	`180`	`mvcBuilder.AddApplicationPart(pluginAssembly);`
	`181`	`}`
	`182`
21	`183`	`return mvcBuilder.AddControllersAsServices();`
	`184`	`}`
	`185`
	`186`	`/// <summary>`
	`187`	`/// Adds Swagger to the service collection.`
	`188`	`/// </summary>`
	`189`	`/// <param name="serviceCollection">The service collection.</param>`
	`190`	`/// <returns>The updated service collection.</returns>`
	`191`	`public static IServiceCollection AddJellyfinApiSwagger(this IServiceCollection serviceCollection)`
	`192`	`{`
21	`193`	`return serviceCollection.AddSwaggerGen(c =>`
21	`194`	`{`
21	`195`	`var version = typeof(ApplicationHost).Assembly.GetName().Version?.ToString(3) ?? "0.0.1";`
21	`196`	`c.SwaggerDoc("api-docs", new OpenApiInfo`
21	`197`	`{`
21	`198`	`Title = "Jellyfin API",`
21	`199`	`Version = version,`
21	`200`	`Extensions = new Dictionary<string, IOpenApiExtension>`
21	`201`	`{`
21	`202`	`{`
21	`203`	`"x-jellyfin-version",`
21	`204`	`new OpenApiString(version)`
21	`205`	`}`
21	`206`	`}`
21	`207`	`});`
21	`208`
21	`209`	`c.AddSecurityDefinition(AuthenticationSchemes.CustomAuthentication, new OpenApiSecurityScheme`
21	`210`	`{`
21	`211`	`Type = SecuritySchemeType.ApiKey,`
21	`212`	`In = ParameterLocation.Header,`
21	`213`	`Name = "Authorization",`
21	`214`	`Description = "API key header parameter"`
21	`215`	`});`
21	`216`
21	`217`	`// Add all xml doc files to swagger generator.`
21	`218`	`var xmlFiles = Directory.GetFiles(`
21	`219`	`AppContext.BaseDirectory,`
21	`220`	`"*.xml",`
21	`221`	`SearchOption.TopDirectoryOnly);`
21	`222`
21	`223`	`foreach (var xmlFile in xmlFiles)`
21	`224`	`{`
21	`225`	`c.IncludeXmlComments(xmlFile);`
21	`226`	`}`
21	`227`
21	`228`	`// Order actions by route path, then by http method.`
21	`229`	`c.OrderActionsBy(description =>`
21	`230`	`$"{description.ActionDescriptor.RouteValues["controller"]}_{description.RelativePath}");`
21	`231`
21	`232`	`// Use method name as operationId`
21	`233`	`c.CustomOperationIds(`
21	`234`	`description =>`
21	`235`	`{`
21	`236`	`description.TryGetMethodInfo(out MethodInfo methodInfo);`
21	`237`	`// Attribute name, method name, none.`
21	`238`	`return description?.ActionDescriptor.AttributeRouteInfo?.Name`
21	`239`	`?? methodInfo?.Name`
21	`240`	`?? null;`
21	`241`	`});`
21	`242`
21	`243`	`// Allow parameters to properly be nullable.`
21	`244`	`c.UseAllOfToExtendReferenceSchemas();`
21	`245`	`c.SupportNonNullableReferenceTypes();`
21	`246`
21	`247`	`// TODO - remove when all types are supported in System.Text.Json`
21	`248`	`c.AddSwaggerTypeMappings();`
21	`249`
21	`250`	`c.SchemaFilter<IgnoreEnumSchemaFilter>();`
21	`251`	`c.OperationFilter<RetryOnTemporarlyUnavailableFilter>();`
21	`252`	`c.OperationFilter<SecurityRequirementsOperationFilter>();`
21	`253`	`c.OperationFilter<FileResponseFilter>();`
21	`254`	`c.OperationFilter<FileRequestFilter>();`
21	`255`	`c.OperationFilter<ParameterObsoleteFilter>();`
21	`256`	`c.DocumentFilter<AdditionalModelFilter>();`
21	`257`	`});`
	`258`	`}`
	`259`
	`260`	`private static void AddPolicy(this AuthorizationOptions authorizationOptions, string policyName, IAuthorizationR`
	`261`	`{`
336	`262`	`authorizationOptions.AddPolicy(policyName, policy =>`
336	`263`	`{`
336	`264`	`policy.AddAuthenticationSchemes(AuthenticationSchemes.CustomAuthentication).AddRequirements(authorizatio`
336	`265`	`});`
336	`266`	`}`
	`267`
	`268`	`/// <summary>`
	`269`	`/// Sets up the proxy configuration based on the addresses/subnets in <paramref name="allowedProxies"/>.`
	`270`	`/// </summary>`
	`271`	`/// <param name="config">The <see cref="NetworkConfiguration"/> containing the config settings.</param>`
	`272`	`/// <param name="allowedProxies">The string array to parse.</param>`
	`273`	`/// <param name="options">The <see cref="ForwardedHeadersOptions"/> instance.</param>`
	`274`	`internal static void AddProxyAddresses(NetworkConfiguration config, string[] allowedProxies, ForwardedHeadersOpt`
	`275`	`{`
38	`276`	`for (var i = 0; i < allowedProxies.Length; i++)`
	`277`	`{`
12	`278`	`if (IPAddress.TryParse(allowedProxies[i], out var addr))`
	`279`	`{`
4	`280`	`AddIPAddress(config, options, addr, addr.AddressFamily == AddressFamily.InterNetwork ? NetworkConsta`
	`281`	`}`
8	`282`	`else if (NetworkUtils.TryParseToSubnet(allowedProxies[i], out var subnet))`
	`283`	`{`
0	`284`	`if (subnet is not null)`
	`285`	`{`
0	`286`	`AddIPAddress(config, options, subnet.Prefix, subnet.PrefixLength);`
	`287`	`}`
	`288`	`}`
8	`289`	`else if (NetworkUtils.TryParseHost(allowedProxies[i], out var addresses, config.EnableIPv4, config.Enabl`
	`290`	`{`
24	`291`	`foreach (var address in addresses)`
	`292`	`{`
8	`293`	`AddIPAddress(config, options, address, address.AddressFamily == AddressFamily.InterNetwork ? Net`
	`294`	`}`
	`295`	`}`
	`296`	`}`
7	`297`	`}`
	`298`
	`299`	`private static void AddIPAddress(NetworkConfiguration config, ForwardedHeadersOptions options, IPAddress addr, i`
	`300`	`{`
12	`301`	`if (addr.IsIPv4MappedToIPv6)`
	`302`	`{`
0	`303`	`addr = addr.MapToIPv4();`
	`304`	`}`
	`305`
12	`306`	`if ((!config.EnableIPv4 && addr.AddressFamily == AddressFamily.InterNetwork) \|\| (!config.EnableIPv6 && addr.`
	`307`	`{`
4	`308`	`return;`
	`309`	`}`
	`310`
8	`311`	`if (prefixLength == NetworkConstants.MinimumIPv4PrefixSize)`
	`312`	`{`
4	`313`	`options.KnownProxies.Add(addr);`
	`314`	`}`
	`315`	`else`
	`316`	`{`
4	`317`	`options.KnownNetworks.Add(new Microsoft.AspNetCore.HttpOverrides.IPNetwork(addr, prefixLength));`
	`318`	`}`
4	`319`	`}`
	`320`
	`321`	`private static void AddSwaggerTypeMappings(this SwaggerGenOptions options)`
	`322`	`{`
	`323`	`/*`
	`324`	`* TODO remove when System.Text.Json properly supports non-string keys.`
	`325`	`* Used in BaseItemDto.ImageBlurHashes`
	`326`	`*/`
20	`327`	`options.MapType<Dictionary<ImageType, string>>(() =>`
20	`328`	`new OpenApiSchema`
20	`329`	`{`
20	`330`	`Type = "object",`
20	`331`	`AdditionalProperties = new OpenApiSchema`
20	`332`	`{`
20	`333`	`Type = "string"`
20	`334`	`}`
20	`335`	`});`
	`336`
	`337`	`/*`
	`338`	`* Support BlurHash dictionary`
	`339`	`*/`
20	`340`	`options.MapType<Dictionary<ImageType, Dictionary<string, string>>>(() =>`
20	`341`	`new OpenApiSchema`
20	`342`	`{`
20	`343`	`Type = "object",`
20	`344`	`Properties = typeof(ImageType).GetEnumNames().ToDictionary(`
20	`345`	`name => name,`
20	`346`	`_ => new OpenApiSchema`
20	`347`	`{`
20	`348`	`Type = "object",`
20	`349`	`AdditionalProperties = new OpenApiSchema`
20	`350`	`{`
20	`351`	`Type = "string"`
20	`352`	`}`
20	`353`	`})`
20	`354`	`});`
	`355`
	`356`	`// Support dictionary with nullable string value.`
20	`357`	`options.MapType<Dictionary<string, string?>>(() =>`
20	`358`	`new OpenApiSchema`
20	`359`	`{`
20	`360`	`Type = "object",`
20	`361`	`AdditionalProperties = new OpenApiSchema`
20	`362`	`{`
20	`363`	`Type = "string",`
20	`364`	`Nullable = true`
20	`365`	`}`
20	`366`	`});`
	`367`
	`368`	`// Manually describe Flags enum.`
20	`369`	`options.MapType<TranscodeReason>(() =>`
20	`370`	`new OpenApiSchema`
20	`371`	`{`
20	`372`	`Type = "array",`
20	`373`	`Items = new OpenApiSchema`
20	`374`	`{`
20	`375`	`Reference = new OpenApiReference`
20	`376`	`{`
20	`377`	`Id = nameof(TranscodeReason),`
20	`378`	`Type = ReferenceType.Schema,`
20	`379`	`}`
20	`380`	`}`
20	`381`	`});`
	`382`
	`383`	`// Swashbuckle doesn't use JsonOptions to describe responses, so we need to manually describe it.`
20	`384`	`options.MapType<Version>(() => new OpenApiSchema`
20	`385`	`{`
20	`386`	`Type = "string"`
20	`387`	`});`
20	`388`	`}`
	`389`	`}`
	`390`	`}`

< Summary - Jellyfin

Coverage history

Metrics

File(s)

/srv/git/jellyfin/Jellyfin.Server/Extensions/ApiServiceCollectionExtensions.cs

Methods/Properties