joshpatra/allstarr
1
0
Fork 0
mirror of https://github.com/SoPat712/allstarr.git synced 2026-02-09 23:55:10 -05:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

Fix reauthentication and artist song counts

Browse Source 
- Fixed reauthentication: Pass through 401 responses to client instead of hiding them with empty results
- Fixed artist song counts: Artists now show correct song count instead of total library count (1290)
- Fixed external artist Similar endpoint to prevent errors
- Improved auth header forwarding with case-insensitive detection
This commit is contained in:
Josh Patra
2026-01-30 00:09:44 -05:00
parent e10b4408ba
commit 457a5b7582
2 changed files with 113 additions and 28 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
allstarr/Controllers/JellyfinController.cs
View File

@@ -108,13 +108,8 @@ public class JellyfinController : ControllerBase
if (browseResult == null)
{
_logger.LogInformation("Jellyfin returned null, returning empty result");
return new JsonResult(new Dictionary<string, object>
{
["Items"] = Array.Empty<object>(),
["TotalRecordCount"] = 0,
["StartIndex"] = startIndex
});
_logger.LogInformation("Jellyfin returned null - likely 401 Unauthorized, returning 401 to client");
return Unauthorized(new { error = "Authentication required" });
}
var result = JsonSerializer.Deserialize<object>(browseResult.RootElement.GetRawText());
@@ -1207,6 +1202,7 @@ public class JellyfinController : ControllerBase
/// </summary>
[HttpGet("Items/{itemId}/Similar")]
[HttpGet("Songs/{itemId}/Similar")]
[HttpGet("Artists/{artistId}/Similar")]
public async Task<IActionResult> GetSimilarItems(
string itemId,
[FromQuery] int limit = 50,
@@ -1217,6 +1213,18 @@ public class JellyfinController : ControllerBase
if (isExternal)
{
// Check if this is an artist
if (itemId.Contains("-artist-", StringComparison.OrdinalIgnoreCase))
{
// For external artists, return empty - we don't have similar artist functionality
_logger.LogDebug("Similar artists not supported for external artist {ItemId}", itemId);
return _responseBuilder.CreateJsonResponse(new
{
Items = Array.Empty<object>(),
TotalRecordCount = 0
});
}
try
{
// Get the original song to find similar content

121
allstarr/Services/Jellyfin/JellyfinProxyService.cs
View File

@@ -145,26 +145,77 @@ public class JellyfinProxyService
{
using var request = new HttpRequestMessage(HttpMethod.Get, url);
bool authHeaderAdded = false;
// Forward authentication headers from client if provided
if (clientHeaders != null)
if (clientHeaders != null && clientHeaders.Count > 0)
{
if (clientHeaders.TryGetValue("X-Emby-Authorization", out var embyAuth))
// Try X-Emby-Authorization first (case-insensitive)
foreach (var header in clientHeaders)
{
request.Headers.TryAddWithoutValidation("X-Emby-Authorization", embyAuth.ToString());
}
else if (clientHeaders.TryGetValue("Authorization", out var auth))
if (header.Key.Equals("X-Emby-Authorization", StringComparison.OrdinalIgnoreCase))
{
request.Headers.TryAddWithoutValidation("Authorization", auth.ToString());
var headerValue = header.Value.ToString();
request.Headers.TryAddWithoutValidation("X-Emby-Authorization", headerValue);
authHeaderAdded = true;
_logger.LogInformation("✓ Forwarded X-Emby-Authorization: {Value}", headerValue);
break;
}
}
// Only use API key for server-initiated requests (when no client headers provided)
// This ensures client requests use the logged-in user's permissions
if (clientHeaders == null && !request.Headers.Contains("X-Emby-Authorization") && !request.Headers.Contains("Authorization"))
// If no X-Emby-Authorization, check if Authorization header contains MediaBrowser format
// Some clients send it as "Authorization" instead of "X-Emby-Authorization"
if (!authHeaderAdded)
{
foreach (var header in clientHeaders)
{
if (header.Key.Equals("Authorization", StringComparison.OrdinalIgnoreCase))
{
var headerValue = header.Value.ToString();
// Check if it's MediaBrowser/Jellyfin format (contains "MediaBrowser" or "Token=")
if (headerValue.Contains("MediaBrowser", StringComparison.OrdinalIgnoreCase) ||
headerValue.Contains("Token=", StringComparison.OrdinalIgnoreCase))
{
// Forward as X-Emby-Authorization (Jellyfin's expected header)
request.Headers.TryAddWithoutValidation("X-Emby-Authorization", headerValue);
authHeaderAdded = true;
_logger.LogInformation("✓ Converted Authorization to X-Emby-Authorization: {Value}", headerValue);
}
else
{
// Standard Bearer token - forward as-is
request.Headers.TryAddWithoutValidation("Authorization", headerValue);
authHeaderAdded = true;
_logger.LogInformation("✓ Forwarded Authorization (Bearer): {Value}", headerValue);
}
break;
}
}
}
if (!authHeaderAdded)
{
_logger.LogWarning("✗ No auth header found. Available headers: {Headers}",
string.Join(", ", clientHeaders.Select(h => $"{h.Key}={h.Value}")));
}
}
else
{
_logger.LogWarning("✗ No client headers provided for {Url}", url);
}
// Use API key if no valid client auth was found
if (!authHeaderAdded)
{
if (!string.IsNullOrEmpty(_settings.ApiKey))
{
request.Headers.Add("Authorization", GetAuthorizationHeader());
_logger.LogInformation("→ Using API key for {Url}", url);
}
else
{
_logger.LogWarning("✗ No authentication available for {Url} - request will fail", url);
}
}
@@ -172,13 +223,26 @@ public class JellyfinProxyService
var response = await _httpClient.SendAsync(request);
// Always parse the response, even for errors
// The caller needs to see 401s so the client can re-authenticate
var content = await response.Content.ReadAsStringAsync();
if (!response.IsSuccessStatusCode)
{
if (response.StatusCode == System.Net.HttpStatusCode.Unauthorized)
{
_logger.LogWarning("Jellyfin returned 401 Unauthorized for {Url} - passing through to client", url);
}
else
{
_logger.LogWarning("Jellyfin request failed: {StatusCode} for {Url}", response.StatusCode, url);
}
// Return null so caller knows request failed
// TODO: We should return the status code too so caller can pass it through
return null;
}
var content = await response.Content.ReadAsStringAsync();
return JsonDocument.Parse(content);
}
@@ -203,27 +267,40 @@ public class JellyfinProxyService
_logger.LogWarning("POST body is empty for {Url}", url);
}
// For auth endpoints, we need X-Emby-Authorization header with client info (no token yet)
// Jellyfin requires this header format even for login
if (clientHeaders.TryGetValue("X-Emby-Authorization", out var embyAuth))
bool authHeaderAdded = false;
// Forward authentication headers from client (case-insensitive)
foreach (var header in clientHeaders)
{
request.Headers.TryAddWithoutValidation("X-Emby-Authorization", embyAuth.ToString());
_logger.LogDebug("Forwarding X-Emby-Authorization: {Header}", embyAuth.ToString());
if (header.Key.Equals("X-Emby-Authorization", StringComparison.OrdinalIgnoreCase))
{
request.Headers.TryAddWithoutValidation("X-Emby-Authorization", header.Value.ToString());
authHeaderAdded = true;
break;
}
else if (clientHeaders.TryGetValue("Authorization", out var auth))
{
request.Headers.TryAddWithoutValidation("Authorization", auth.ToString());
_logger.LogDebug("Forwarding Authorization: {Header}", auth.ToString());
}
else
if (!authHeaderAdded)
{
foreach (var header in clientHeaders)
{
if (header.Key.Equals("Authorization", StringComparison.OrdinalIgnoreCase))
{
request.Headers.TryAddWithoutValidation("Authorization", header.Value.ToString());
authHeaderAdded = true;
break;
}
}
}
// For login requests without auth headers, provide a minimal client auth header
if (!authHeaderAdded)
{
// For login requests, provide a minimal client auth header (no token)
var clientAuthHeader = $"MediaBrowser Client=\"{_settings.ClientName}\", " +
$"Device=\"{_settings.DeviceName}\", " +
$"DeviceId=\"{_settings.DeviceId}\", " +
$"Version=\"{_settings.ClientVersion}\"";
request.Headers.TryAddWithoutValidation("X-Emby-Authorization", clientAuthHeader);
_logger.LogDebug("Using default X-Emby-Authorization for login: {Header}", clientAuthHeader);
}
request.Headers.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));