github-forks
/
lal
mirror of https://github.com/q191201771/lal.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
v0.0.1
v0.1.0
v0.10.0
v0.11.0
v0.12.0
v0.13.0
v0.14.0
v0.15.0
v0.15.1
v0.16.0
v0.17.0
v0.18.0
v0.19.0
v0.19.1
v0.2.0
v0.20.0
v0.21.0
v0.22.0
v0.23.0
v0.24.0
v0.25.0
v0.26.0
v0.27.0
v0.27.1
v0.28.0
v0.29.0
v0.29.1
v0.3.0
v0.3.1
v0.3.2
v0.30.0
v0.30.1
v0.31.0
v0.31.1
v0.32.0
v0.33.0
v0.34.3
v0.35.4
v0.35.41
v0.36.7
v0.37.4
v0.4.0
v0.5.0
v0.6.0
v0.7.0
v0.8.0
v0.8.1
v0.9.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
lal/pkg/logic/simple_auth.go

89 lines
2.4 KiB
Go
Raw Permalink Blame History Unescape Escape

This file contains ambiguous Unicode characters!

This file contains ambiguous Unicode characters that may be confused with others in your current locale. If your use case is intentional and legitimate, you can safely ignore this warning. Use the Escape button to highlight these characters.

// Copyright 2022, Chef. All rights reserved.
// https://github.com/q191201771/lal
//
// Use of this source code is governed by a MIT-style license
// that can be found in the License file.
//
// Author: Chef (191201771@qq.com)
package logic
import (
"net/url"
"strings"
"github.com/q191201771/lal/pkg/base"
"github.com/q191201771/naza/pkg/nazamd5"
)
func SimpleAuthCalcSecret(key string, streamName string) string {
return nazamd5.Md5([]byte(key + streamName))
}
// ---------------------------------------------------------------------------------------------------------------------
// TODO(chef): [refactor] 结合 NotifyHandler 整理
const secretName = "lal_secret"
type SimpleAuthCtx struct {
config SimpleAuthConfig
}
func NewSimpleAuthCtx(config SimpleAuthConfig) *SimpleAuthCtx {
return &SimpleAuthCtx{
config: config,
}
}
func (s *SimpleAuthCtx) OnPubStart(info base.PubStartInfo) error {
if s.config.PubRtmpEnable && info.Protocol == base.SessionProtocolRtmpStr ||
s.config.PubRtspEnable && info.Protocol == base.SessionProtocolRtspStr {
return s.check(info.StreamName, info.UrlParam)
}
return nil
}
func (s *SimpleAuthCtx) OnSubStart(info base.SubStartInfo) error {
if (s.config.SubRtmpEnable && info.Protocol == base.SessionProtocolRtmpStr) ||
(s.config.SubHttpflvEnable && info.Protocol == base.SessionProtocolFlvStr) ||
(s.config.SubHttptsEnable && info.Protocol == base.SessionProtocolTsStr) ||
(s.config.SubRtspEnable && info.Protocol == base.SessionProtocolRtspStr) {
return s.check(info.StreamName, info.UrlParam)
}
return nil
}
func (s *SimpleAuthCtx) OnHls(streamName string, urlParam string) error {
if s.config.HlsM3u8Enable {
return s.check(streamName, urlParam)
}
return nil
}
func (s *SimpleAuthCtx) check(streamName string, urlParam string) error {
q, err := url.ParseQuery(urlParam)
if err != nil {
return err
}
v := q.Get(secretName)
if v == "" {
return base.ErrSimpleAuthParamNotFound
}
v = strings.ToLower(v)
// 注意只有DangerousLalSecret配置了值才验证参数是否和DangerousLalSecret相等
if len(s.config.DangerousLalSecret) != 0 && v == s.config.DangerousLalSecret {
return nil
}
se := SimpleAuthCalcSecret(s.config.Key, streamName)
if v == se {
return nil
}
Log.Warnf("[%p] SimpleAuthCtx::check failed, se=%s, key=%s, streamName=%s, v=%s, urlParam=%s",
s, se, s.config.Key, streamName, v, urlParam)
return base.ErrSimpleAuthFailed
}
Reference in New Issue View Git Blame Copy Permalink