No OneTemporary
Actions

Size

11 KB

Referenced Files

None

Subscribers

None

View Options

	diff --git a/sylk/applications/webrtcgateway/storage.py b/sylk/applications/webrtcgateway/storage.py
	index 00743d1..52c0dee 100644
	--- a/sylk/applications/webrtcgateway/storage.py
	+++ b/sylk/applications/webrtcgateway/storage.py
	@@ -1,57 +1,63 @@

	import cPickle as pickle
	import os

	from application.python.types import Singleton
	from collections import defaultdict
	from sipsimple.threading import run_in_thread

	from sylk.configuration import ServerConfig


	__all__ = 'TokenStorage',


	# TODO: This implementation is a prototype. It should be refactored to store tokens in a
	# distributed DB so other SylkServer instances can access them. Also add some metadata
	# like the modification date so we know when a token was refreshed, and thus it's ok to
	# scrap it after a reasonable amount of time.


	class TokenStorage(object):
	__metaclass__ = Singleton

	def __init__(self):
	self._tokens = defaultdict()

	@run_in_thread('file-io')
	def _save(self):
	with open(os.path.join(ServerConfig.spool_dir, 'webrtc_device_tokens'), 'wb+') as f:
	pickle.dump(self._tokens, f)

	@run_in_thread('file-io')
	def load(self):
	try:
	tokens = pickle.load(open(os.path.join(ServerConfig.spool_dir, 'webrtc_device_tokens'), 'rb'))
	except Exception:
	pass
	else:
	self._tokens.update(tokens)

	def __getitem__(self, key):
	return self._tokens[key]

	def add(self, account, contact_params):
	data = {
	'token': contact_params['pn_tok'],
	'platform': contact_params['pn_type'],
	'silent': contact_params['pn_silent'],
	'app': contact_params['pn_app']
	}
	if account in self._tokens:
	if isinstance(self._tokens[account], set):
	self._tokens[account] = {}
	self._tokens[account][contact_params['pn_device']] = data
	else:
	self._tokens[account] = {contact_params['pn_device']: data}
	self._save()
	+
	+ def remove(self, account, device_id):
	+ try:
	+ del self._tokens[account][device_id]
	+ except KeyError as e:
	+ pass
	diff --git a/sylk/applications/webrtcgateway/web.py b/sylk/applications/webrtcgateway/web.py
	index fd2a60c..fd9a3e6 100644
	--- a/sylk/applications/webrtcgateway/web.py
	+++ b/sylk/applications/webrtcgateway/web.py
	@@ -1,200 +1,198 @@

	import json

	from application.python.types import Singleton
	from autobahn.twisted.resource import WebSocketResource
	from twisted.internet import defer, reactor
	from twisted.python.failure import Failure
	from twisted.web.server import Site
	from werkzeug.exceptions import Forbidden, NotFound
	from werkzeug.utils import secure_filename

	from sylk import __version__ as sylk_version
	from sylk.resources import Resources
	from sylk.web import File, Klein, StaticFileResource, server

	from . import push
	from .configuration import GeneralConfig, JanusConfig
	from .factory import SylkWebSocketServerFactory
	from .janus import JanusBackend
	from .logger import log
	from .models import sylkrtc
	from .protocol import SYLK_WS_PROTOCOL
	from .storage import TokenStorage


	__all__ = 'WebHandler', 'AdminWebHandler'


	class FileUploadRequest(object):
	def __init__(self, shared_file, content):
	self.deferred = defer.Deferred()
	self.shared_file = shared_file
	self.content = content
	self.had_error = False


	class WebRTCGatewayWeb(object):
	__metaclass__ = Singleton

	app = Klein()

	def __init__(self, ws_factory):
	self._resource = self.app.resource()
	self._ws_resource = WebSocketResource(ws_factory)
	self._ws_factory = ws_factory

	@property
	def resource(self):
	return self._resource

	@app.route('/', branch=True)
	def index(self, request):
	return StaticFileResource(Resources.get('html/webrtcgateway/'))

	@app.route('/ws')
	def ws(self, request):
	return self._ws_resource

	@app.route('/filesharing/<string:conference>/<string:session_id>/<string:filename>', methods=['OPTIONS', 'POST', 'GET'])
	def filesharing(self, request, conference, session_id, filename):
	conference_uri = conference.lower()
	if conference_uri in self._ws_factory.videorooms:
	videoroom = self._ws_factory.videorooms[conference_uri]
	if session_id in videoroom:
	request.setHeader('Access-Control-Allow-Origin', '*')
	request.setHeader('Access-Control-Allow-Headers', 'content-type')
	method = request.method.upper()
	session = videoroom[session_id]
	if method == 'POST':
	def log_result(result):
	if isinstance(result, Failure):
	videoroom.log.warning('{file.uploader.uri} failed to upload {file.filename}: {error}'.format(file=upload_request.shared_file, error=result.value))
	else:
	videoroom.log.info('{file.uploader.uri} has uploaded {file.filename}'.format(file=upload_request.shared_file))
	return result

	filename = secure_filename(filename)
	filesize = int(request.getHeader('Content-Length'))
	shared_file = sylkrtc.SharedFile(filename=filename, filesize=filesize, uploader=dict(uri=session.account.id, display_name=session.account.display_name), session=session_id)
	session.owner.log.info('wants to upload file {filename} to video room {conference_uri} with session {session_id}'.format(filename=filename, conference_uri=conference_uri, session_id=session_id))
	upload_request = FileUploadRequest(shared_file, request.content)
	videoroom.add_file(upload_request)
	upload_request.deferred.addBoth(log_result)
	return upload_request.deferred
	elif method == 'GET':
	filename = secure_filename(filename)
	session.owner.log.info('wants to download file {filename} from video room {conference_uri} with session {session_id}'.format(filename=filename, conference_uri=conference_uri, session_id=session_id))
	try:
	path = videoroom.get_file(filename)
	except LookupError as e:
	videoroom.log.warning('{session.account.id} failed to download {filename}: {error}'.format(session=session, filename=filename, error=e))
	raise NotFound()
	else:
	videoroom.log.info('{session.account.id} is downloading {filename}'.format(session=session, filename=filename))
	request.setHeader('Content-Disposition', 'attachment;filename=%s' % filename)
	return File(path)
	else:
	return 'OK'
	raise Forbidden()


	class WebHandler(object):
	def __init__(self):
	self.backend = None
	self.factory = None
	self.resource = None
	self.web = None

	def start(self):
	ws_url = 'ws' + server.url[4:] + '/webrtcgateway/ws'
	self.factory = SylkWebSocketServerFactory(ws_url, protocols=[SYLK_WS_PROTOCOL], server='SylkServer/%s' % sylk_version)
	self.factory.setProtocolOptions(allowedOrigins=GeneralConfig.web_origins,
	allowNullOrigin=GeneralConfig.web_origins == ['*'],
	autoPingInterval=GeneralConfig.websocket_ping_interval,
	autoPingTimeout=GeneralConfig.websocket_ping_interval/2)

	self.web = WebRTCGatewayWeb(self.factory)
	server.register_resource('webrtcgateway', self.web.resource)

	log.info('WebSocket handler started at %s' % ws_url)
	log.info('Allowed web origins: %s' % ', '.join(GeneralConfig.web_origins))
	log.info('Allowed SIP domains: %s' % ', '.join(GeneralConfig.sip_domains))
	log.info('Using Janus API: %s' % JanusConfig.api_url)

	self.backend = JanusBackend()
	self.backend.start()

	def stop(self):
	if self.factory is not None:
	for conn in self.factory.connections.copy():
	conn.dropConnection(abort=True)
	self.factory = None
	if self.backend is not None:
	self.backend.stop()
	self.backend = None


	# TODO: This implementation is a prototype. Moving forward it probably makes sense to provide admin API
	# capabilities for other applications too. This could be done in a number of ways:
	#
	# * On the main web server, under a /admin/ parent route.
	# * On a separate web server, which could listen on a different IP and port.
	#
	# In either case, HTTPS aside, a token based authentication mechanism would be desired.
	# Which one is best is not 100% clear at this point.

	class AuthError(Exception): pass


	class AdminWebHandler(object):
	__metaclass__ = Singleton

	app = Klein()

	def __init__(self):
	self.listener = None

	def start(self):
	host, port = GeneralConfig.http_management_interface
	# noinspection PyUnresolvedReferences
	self.listener = reactor.listenTCP(port, Site(self.app.resource()), interface=host)
	log.info('Admin web handler started at http://%s:%d' % (host, port))

	def stop(self):
	if self.listener is not None:
	self.listener.stopListening()
	self.listener = None

	# Admin web API

	def _check_auth(self, request):
	auth_secret = GeneralConfig.http_management_auth_secret
	if auth_secret:
	auth_headers = request.requestHeaders.getRawHeaders('Authorization', default=None)
	if not auth_headers or auth_headers[0] != auth_secret:
	raise AuthError()

	@app.handle_errors(AuthError)
	def auth_error(self, request, failure):
	request.setResponseCode(403)
	return 'Authentication error'

	@app.route('/tokens/<string:account>')
	def get_tokens(self, request, account):
	self._check_auth(request)
	request.setHeader('Content-Type', 'application/json')
	storage = TokenStorage()
	tokens = storage[account]
	- return json.dumps({'tokens': list(tokens)})
	+ return json.dumps({'tokens': tokens})

	- @app.route('/tokens/<string:account>/<string:token>', methods=['POST', 'DELETE'])
	- def process_token(self, request, account, token):
	+ @app.route('/tokens/<string:account>/<string:device_id>', methods=['DELETE'])
	+ def process_token(self, request, account, device_id):
	self._check_auth(request)
	request.setHeader('Content-Type', 'application/json')
	storage = TokenStorage()
	- if request.method == 'POST':
	- storage.add(account, token)
	- elif request.method == 'DELETE':
	- storage.remove(account, token)
	+ if request.method == 'DELETE':
	+ storage.remove(account, device_id)
	return json.dumps({'success': True})

File Metadata

Mime Type: text/x-diff
Expires: Sat, Nov 23, 5:55 AM (1 d, 8 h)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 3408915
Default Alt Text: (11 KB)

No OneTemporaryActions

View Options

File Metadata

Event Timeline

No OneTemporary
Actions