UNPKG

open-easyrtc

Version:

Open-EasyRTC enables quick development of WebRTC

github.com/open-easyrtc/open-easyrtc

open-easyrtc/open-easyrtc

106 lines (78 loc) 4.55 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
EasyRTC: Authentication ======================= By default EasyRTC allows all connections, however it can be locked down to work against a variety of authentication methods. Most commonly this is done by sending a username and credential upon connecting to the server. Even if authentication is not needed, setting the username can be used to create a visible alternative to the easyrtcid. Setting Username and Credential in JS Client -------------------------------------------- **easyrtc.setUsername()** - Use before connecting to the server via `easyrtc.connect()` or `easyrtc.easyApp()` - Shared to other connections in the same room - Can be used for setting a visible name (instead of easyrtcid) - To avoid sharing username, embed it inside the credential via `easyrtc.setCredential()` - Restricted by regular expression - Default is to allow up to 64 of any characters. - In client JS, set `easyrtc.usernameRegExp` - In server, set option `usernameRegExp` - Usernames should not be considered unique to a connection. One user could have multiple connections open. - Value is sent to the server "authenticate" event listener easyrtc.setUsername("handsomeJack"); **easyrtc.setCredential()** - Use before connecting to the server via `easyrtc.connect()` or `easyrtc.easyApp()` - Can contain any JSONable object - Value is sent to the server "authenticate" event listener easyrtc.setCredential({ "password":"345RTC!", "realm":"easyrtc.com", "apikey":"d834kds81vs189s10kkd4" }); Checking Authentication On Server --------------------------------- **Using "authenticate" Event Listener** The "authenticate" event is fired during the initial connection. The listener is provided with full details about the connection, so it may decide whether to authenticate or disconnect them. In this simplistic example, any clients connecting to the adminSite application will be denied unless they have a username of "handsomeJack". Any clients connecting to any other application will be let through. var onAuthenticate = function(socket, easyrtcid, appName, username, credential, easyrtcAuthMessage, next){ if (appName == "adminSite" && username != "handsomeJack"){ next(new easyrtc.util.ConnectionError("Failed our private auth.")); } else { next(null); } }; easyrtc.events.on("authenticate", onAuthenticate); **Listener Parameters:** - **socket** - Socket.io object for the specific socket connection - The IP Address of the connection is available from `socket.handshake.address.address` - If using a proxy, the IP may be available from `socket.handshake.headers['x-forwarded-for']` - Referer *may* be available from `socket.handshake.headers.referer` - The socket can be disconnected using `socket.disconnect()` however it is recommended to call next() with an error - **easyrtcid** - A unique identifier given to this connection - **appName** - The requested EasyRTC application. Useful for application specific authentication. - **username** - Shared to other connections in the same room - Can be used for setting a visible name (instead of easyrtcid) - To avoid sharing username, embed it inside the credential via `easyrtc.setCredential()` - Restricted by regular expression - Default is to allow up to 64 of any characters. - In client JS, set `easyrtc.usernameRegExp` - In server, set option `usernameRegExp` - **credential** - Depending on authentication method, may be used for storing passwords, realms, hashes, apikeys, etc. - Can be any JSONable object - Type checking should be performed - **easyrtcAuthMessage** - Includes the complete authentication message sent by the client - May be used to deny authentication based on requested rooms, api fields, etc. - **next** - A callback function which should be called once (and only once) - If client should be authenticated, call with a null parameter - `next(null);` - If client should not be authenticated, call with an Error for the parameter - `next(new easyrtc.util.ConnectionError("Failed our private auth."));` For more information about EasyRTC server events, see [easyrtc_server_events.md](easyrtc_server_events.md) If You Run Into Problems ------------------------ Please feel free to post on our discussion forum: - [https://groups.google.com/forum/?fromgroups#!forum/easyrtc](https://groups.google.com/forum/?fromgroups#!forum/easyrtc)