jfinn
/
jitsi_app_c0
Beobachten 1
Favorisieren 0
Fork 0
Code Issues 0 Pull-Requests 0 Releases 0 Wiki Aktivität
Du kannst nicht mehr als 25 Themen auswählen Themen müssen mit entweder einem Buchstaben oder einer Ziffer beginnen. Sie können Bindestriche („-“) enthalten und bis zu 35 Zeichen lang sein.
7518 Commits
2 Branches
Struktur: 3da7798e9f
Branches Tags
${ item.name }
Erstelle Branch ${ searchTerm }
von „3da7798e9f“
${ noResults }
jitsi_app_c0/resources/prosody-plugins/mod_jibri_queue_component.lua

mod_jibri_queue_component.lua 18KB
Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510 
  1. local st = require "util.stanza";

  2. local jid = require "util.jid";

  3. local http = require "net.http";

  4. local json = require "cjson";

  5. local inspect = require('inspect');

  6. local socket = require "socket";

  7. local uuid_gen = require "util.uuid".generate;

  8. local jwt = require "luajwtjitsi";

  9. local it = require "util.iterators";

  10. local neturl = require "net.url";

  11. local parse = neturl.parseQuery;

  12. 

  13. local get_room_from_jid = module:require "util".get_room_from_jid;

  14. local room_jid_match_rewrite = module:require "util".room_jid_match_rewrite;

  15. local is_healthcheck_room = module:require "util".is_healthcheck_room;

  16. local room_jid_split_subdomain = module:require "util".room_jid_split_subdomain;

  17. local internal_room_jid_match_rewrite = module:require "util".internal_room_jid_match_rewrite;

  18. local async_handler_wrapper = module:require "util".async_handler_wrapper;

  19. 

  20. -- this basically strips the domain from the conference.domain address

  21. local parentHostName = string.gmatch(tostring(module.host), "%w+.(%w.+)")();

  22. if parentHostName == nil then

  23.     log("error", "Failed to start - unable to get parent hostname");

  24.     return;

  25. end

  26. 

  27. local parentCtx = module:context(parentHostName);

  28. if parentCtx == nil then

  29.     log("error",

  30.         "Failed to start - unable to get parent context for host: %s",

  31.         tostring(parentHostName));

  32.     return;

  33. end

  34. local token_util = module:require "token/util".new(parentCtx);

  35. 

  36. local ASAPKeyServer

  37.     = module:get_option_string("asap_key_server");

  38. 

  39. if ASAPKeyServer then

  40.     module:log("info", "ASAP Public Key URL %s", ASAPKeyServer);

  41.     token_util:set_asap_key_server(ASAPKeyServer);

  42. end

  43. 

  44. local ASAPKeyPath

  45.     = module:get_option_string("asap_key_path", '/etc/prosody/certs/asap.key');

  46. 

  47. local ASAPKeyId

  48.     = module:get_option_string("asap_key_id", 'jitsi');

  49. 

  50. local ASAPIssuer

  51.     = module:get_option_string("asap_issuer", 'jitsi');

  52. 

  53. local ASAPAudience

  54.     = module:get_option_string("asap_audience", 'jibri-queue');

  55. 

  56. local ASAPAcceptedIssuers

  57.     = module:get_option_array('asap_accepted_issuers',{'jibri-queue'});

  58. 

  59. module:log("info", "ASAP Accepted Issuers %s", ASAPAcceptedIssuers);

  60. token_util:set_asap_accepted_issuers(ASAPAcceptedIssuers);

  61. 

  62. local ASAPAcceptedAudiences

  63.     = module:get_option_array('asap_accepted_audiences',{'*'});

  64. 

  65.     module:log("info", "ASAP Accepted Audiences %s", ASAPAcceptedAudiences);

  66.     token_util:set_asap_accepted_audiences(ASAPAcceptedAudiences);

  67. 

  68. local ASAPTTL

  69.     = module:get_option_number("asap_ttl", 3600);

  70. 

  71. local ASAPTTL_THRESHOLD

  72.     = module:get_option_number("asap_ttl_threshold", 600);

  73. 

  74. local ASAPKey;

  75. 

  76. local queueServiceURL

  77.     = module:get_option_string("jibri_queue_url");

  78. 

  79. local JibriRegion

  80.     = module:get_option_string("jibri_region", 'default');

  81. 

  82. if queueServiceURL == nil then

  83.     log("error", "No jibri_queue_url specified. No service to contact!");

  84.     return;

  85. end

  86. 

  87. -- option to enable/disable token verifications

  88. local disableTokenVerification

  89.     = module:get_option_boolean("disable_jibri_queue_token_verification", false);

  90. 

  91. local http_headers = {

  92.     ["User-Agent"] = "Prosody ("..prosody.version.."; "..prosody.platform..")",

  93.     ["Content-Type"] = "application/json"

  94. };

  95. 

  96. -- we use async to detect Prosody 0.10 and earlier

  97. local have_async = pcall(require, "util.async");

  98. if not have_async then

  99.     module:log("warn", "conference duration will not work with Prosody version 0.10 or less.");

  100.     return;

  101. end

  102. 

  103. local muc_component_host = module:get_option_string("muc_component");

  104. if muc_component_host == nil then

  105.     log("error", "No muc_component specified. No muc to operate on for jibri queue!");

  106.     return;

  107. end

  108. 

  109. log("info", "Starting jibri queue handling for %s", muc_component_host);

  110. 

  111. local external_api_url = module:get_option_string("external_api_url",tostring(parentHostName));

  112. module:log("info", "External advertised API URL", external_api_url);

  113. 

  114. -- Read ASAP key once on module startup

  115. local f = io.open(ASAPKeyPath, "r");

  116. if f then

  117.     ASAPKey = f:read("*all");

  118.     f:close();

  119.     if not ASAPKey then

  120.         module:log("warn", "No ASAP Key read, disabling muc_events plugin");

  121.         return

  122.     end

  123. else

  124.     module:log("warn", "Error reading ASAP Key, disabling muc_events plugin");

  125.     return

  126. end

  127. 

  128. -- TODO: Figure out a less arbitrary default cache size.

  129. local jwtKeyCacheSize = module:get_option_number("jwt_pubkey_cache_size", 128);

  130. local jwtKeyCache = require"util.cache".new(jwtKeyCacheSize);

  131. 

  132. local function round(num, numDecimalPlaces)

  133.     local mult = 10^(numDecimalPlaces or 0)

  134.     return math.floor(num * mult + 0.5) / mult

  135. end

  136.       

  137. local function generateToken(audience)

  138.     audience = audience or ASAPAudience

  139.     local t = os.time()

  140.     local err

  141.     local exp_key = 'asap_exp.'..audience

  142.     local token_key = 'asap_token.'..audience

  143.     local exp = jwtKeyCache:get(exp_key)

  144.     local token = jwtKeyCache:get(token_key)

  145. 

  146.     --if we find a token and it isn't too far from expiry, then use it

  147.     if token ~= nil and exp ~= nil then

  148.         exp = tonumber(exp)

  149.         if (exp - t) > ASAPTTL_THRESHOLD then

  150.             return token

  151.         end

  152.     end

  153. 

  154.     --expiry is the current time plus TTL

  155.     exp = t + ASAPTTL

  156.     local payload = {

  157.         iss = ASAPIssuer,

  158.         aud = audience,

  159.         nbf = t,

  160.         exp = exp,

  161.     }

  162. 

  163.     -- encode

  164.     local alg = "RS256"

  165.     token, err = jwt.encode(payload, ASAPKey, alg, {kid = ASAPKeyId})

  166.     if not err then

  167.         token = 'Bearer '..token

  168.         jwtKeyCache:set(exp_key,exp)

  169.         jwtKeyCache:set(token_key,token)

  170.         return token

  171.     else

  172.         return ''

  173.     end

  174. end

  175. 

  176. local function sendIq(participant,action,requestId,time,position,token)

  177.     local iqId = uuid_gen();

  178.     local from = module:get_host();

  179.     module:log("info","Oubound iq id %s",iqId);

  180.     local outStanza = st.iq({type = 'set', from = from, to = participant, id = iqId}):tag("jibri-queue", 

  181.        { xmlns = 'http://jitsi.org/protocol/jibri-queue', requestId = requestId, action = action });

  182. 

  183.     module:log("info","Oubound base stanza %s",inspect(outStanza));

  184. 

  185.     if token then

  186.         outStanza:tag("token"):text(token):up()

  187.     end

  188.     if time then

  189.         outStanza:tag("time"):text(tostring(time)):up()

  190.     end

  191.     if position then

  192.         outStanza:tag("position"):text(tostring(position)):up()

  193.     end

  194.     module:log("info","Oubound stanza %s",inspect(outStanza));

  195.     module:send(outStanza);

  196. end

  197. 

  198. local function cb(content_, code_, response_, request_)

  199.     if code_ == 200 or code_ == 204 then

  200.         module:log("debug", "URL Callback: Code %s, Content %s, Request (host %s, path %s, body %s), Response: %s",

  201.                 code_, content_, request_.host, request_.path, inspect(request_.body), inspect(response_));

  202.     else

  203.         module:log("warn", "URL Callback non successful: Code %s, Content %s, Request (%s), Response: %s",

  204.                 code_, content_, inspect(request_), inspect(response_));

  205.     end

  206. end

  207. 

  208. local function sendEvent(type,room_address,participant,requestId,replyIq,replyError)

  209.     local event_ts = round(socket.gettime()*1000);

  210.     local node, host, resource, target_subdomain = room_jid_split_subdomain(room_address);

  211.     local room_param = '';

  212.     if target_subdomain then

  213.         room_param = target_subdomain..'/'..node;

  214.     else

  215.         room_param = node;

  216.     end

  217. 

  218.     local out_event = {

  219.         ["conference"] = room_address,

  220.         ["roomParam"] = room_param,

  221.         ["eventType"] = type,

  222.         ["participant"] = participant,

  223.         ["externalApiUrl"] = external_api_url.."/jibriqueue/update",

  224.         ["requestId"] = requestId,

  225.         ["region"] = JibriRegion,

  226.     }

  227.     module:log("debug","Sending event %s",inspect(out_event));

  228. 

  229.     local headers = http_headers or {}

  230.     headers['Authorization'] = generateToken()

  231. 

  232.     module:log("debug","Sending headers %s",inspect(headers));

  233.     local requestURL = queueServiceURL.."/job/recording"

  234.     if type=="LeaveQueue" then

  235.         requestURL = requestURL .."/cancel"

  236.     end

  237.     local request = http.request(requestURL, {

  238.         headers = headers,

  239.         method = "POST",

  240.         body = json.encode(out_event)

  241.     }, function (content_, code_, response_, request_)

  242.         if code_ == 200 or code_ == 204 then

  243.             module:log("debug", "URL Callback: Code %s, Content %s, Request (host %s, path %s, body %s), Response: %s",

  244.                     code_, content_, request_.host, request_.path, inspect(request_.body), inspect(response_));

  245.             module:log("info", "sending reply IQ %s",inspect(replyIq));

  246.             module:send(replyIq);

  247.         else

  248.             module:log("warn", "URL Callback non successful: Code %s, Content %s, Request (%s), Response: %s",

  249.                     code_, content_, inspect(request_), inspect(response_));

  250.             module:log("warn", "sending reply error IQ %s",inspect(replyError));

  251.             module:send(replyError);

  252.         end

  253.     end);

  254. end

  255. 

  256. -- receives iq from client currently connected to the room

  257. function on_iq(event)

  258.     local requestId;

  259.     -- Check the type of the incoming stanza to avoid loops:

  260.     if event.stanza.attr.type == "error" then

  261.         return; -- We do not want to reply to these, so leave.

  262.     end

  263.     if event.stanza.attr.to == module:get_host() then

  264.         if event.stanza.attr.type == "set" then

  265.             log("info", "Jibri Queue Messsage Event found: %s ",inspect(event.stanza));

  266.             local reply = st.reply(event.stanza);

  267.             local replyError = st.error_reply(event.stanza,'cancel','internal-server-error',"Queue Server Error");

  268.             module:log("info","Reply stanza %s",inspect(reply));

  269. 

  270.             local jibriQueue

  271.                 = event.stanza:get_child('jibri-queue', 'http://jitsi.org/protocol/jibri-queue');

  272.             if jibriQueue then

  273.                 module:log("info", "Jibri Queue Request: %s ",inspect(jibriQueue));

  274. 

  275.                 local roomAddress = jibriQueue.attr.room;

  276.                 local room = get_room_from_jid(room_jid_match_rewrite(roomAddress));

  277. 

  278.                 if not room then

  279.                     module:log("warn", "No room found %s", roomAddress);

  280.                     return false;

  281.                 end

  282. 

  283.                 local from = event.stanza.attr.from;

  284. 

  285.                 local occupant = room:get_occupant_by_real_jid(from);

  286.                 if not occupant then

  287.                     module:log("warn", "No occupant %s found for %s", from, roomAddress);

  288.                     return false;

  289.                 end

  290. 

  291.                 local action = jibriQueue.attr.action;

  292.                 if action == 'join' then

  293.                     -- join action, so send event out

  294.                     requestId = uuid_gen();

  295. 

  296.                     -- now handle new jibri queue message

  297.                     room.jibriQueue[occupant.jid] = requestId;

  298.                     reply:add_child(st.stanza("jibri-queue", { xmlns = 'http://jitsi.org/protocol/jibri-queue', requestId = requestId})):up()

  299.                     replyError:add_child(st.stanza("jibri-queue", { xmlns = 'http://jitsi.org/protocol/jibri-queue', requestId = requestId})):up()

  300. 

  301.                     module:log("info","Sending JoinQueue event for jid %s occupant %s reply %s",roomAddress,occupant.jid,inspect(reply));

  302.                     sendEvent('JoinQueue',roomAddress,occupant.jid,requestId,reply,replyError);

  303.                 end

  304.                 if action == 'leave' then

  305.                     requestId = jibriQueue.attr.requestId;

  306.                     -- TODO: check that requestId is the same as cached value

  307.                     room.jibriQueue[occupant.jid] = nil;

  308.                     reply:add_child(st.stanza("jibri-queue", { xmlns = 'http://jitsi.org/protocol/jibri-queue', requestId = requestId})):up()

  309.                     replyError:add_child(st.stanza("jibri-queue", { xmlns = 'http://jitsi.org/protocol/jibri-queue', requestId = requestId})):up()

  310.                     sendEvent('LeaveQueue',roomAddress,occupant.jid,requestId,reply,replyError);

  311.                 end

  312.             else

  313.                 module:log("warn","Jibri Queue Stanza missing child %s",inspect(event.stanza))

  314.             end

  315.         end

  316.     end

  317.     return true

  318. end

  319. 

  320. -- create recorder queue cache for the room

  321. function room_created(event)

  322.     local room = event.room;

  323. 

  324.     if is_healthcheck_room(room.jid) then

  325.         return;

  326.     end

  327. 

  328.     room.jibriQueue = {};

  329. end

  330. 

  331. -- Conference ended, clear all queue cache jids

  332. function room_destroyed(event)

  333.     local room = event.room;

  334. 

  335.     if is_healthcheck_room(room.jid) then

  336.         return;

  337.     end

  338.     for jid, x in pairs(room.jibriQueue) do

  339.         if x then

  340.             sendEvent('LeaveQueue',internal_room_jid_match_rewrite(room.jid),jid,x);

  341.         end

  342.     end

  343. end

  344. 

  345. -- Occupant left remove it from the queue if it joined the queue

  346. function occupant_leaving(event)

  347.     local room = event.room;

  348. 

  349.     if is_healthcheck_room(room.jid) then

  350.         return;

  351.     end

  352. 

  353.     local occupant = event.occupant;

  354.     local requestId = room.jibriQueue[occupant.jid];

  355.     -- check if user has cached queue request

  356.     if requestId then

  357.         -- remove occupant from queue cache, signal backend

  358.         room.jibriQueue[occupant.jid] = nil;

  359.         sendEvent('LeaveQueue',internal_room_jid_match_rewrite(room.jid),occupant.jid,requestId);

  360.     end

  361. end

  362. 

  363. module:hook("iq/host", on_iq);

  364. 

  365. -- executed on every host added internally in prosody, including components

  366. function process_host(host)

  367.     if host == muc_component_host then -- the conference muc component

  368.         module:log("info","Hook to muc events on %s", host);

  369. 

  370.         local muc_module = module:context(host);

  371.         muc_module:hook("muc-room-created", room_created, -1);

  372.         -- muc_module:hook("muc-occupant-joined", occupant_joined, -1);

  373.         muc_module:hook("muc-occupant-pre-leave", occupant_leaving, -1);

  374.         muc_module:hook("muc-room-destroyed", room_destroyed, -1);

  375.     end

  376. end

  377. 

  378. if prosody.hosts[muc_component_host] == nil then

  379.     module:log("info","No muc component found, will listen for it: %s", muc_component_host)

  380. 

  381.     -- when a host or component is added

  382.     prosody.events.add_handler("host-activated", process_host);

  383. else

  384.     process_host(muc_component_host);

  385. end

  386. 

  387. module:log("info", "Loading jibri_queue_component");

  388. 

  389. --- Verifies room name, domain name with the values in the token

  390. -- @param token the token we received

  391. -- @param room_name the room name

  392. -- @param group name of the group (optional)

  393. -- @param session the session to use for storing token specific fields

  394. -- @return true if values are ok or false otherwise

  395. function verify_token(token, room_jid, session)

  396.     if disableTokenVerification then

  397.         return true;

  398.     end

  399. 

  400.     -- if not disableTokenVerification and we do not have token

  401.     -- stop here, cause the main virtual host can have guest access enabled

  402.     -- (allowEmptyToken = true) and we will allow access to rooms info without

  403.     -- a token

  404.     if token == nil then

  405.         log("warn", "no token provided");

  406.         return false;

  407.     end

  408. 

  409.     session.auth_token = token;

  410.     local verified, reason, message = token_util:process_and_verify_token(session);

  411.     if not verified then

  412.         log("warn", "not a valid token %s: %s", tostring(reason), tostring(message));

  413.         return false;

  414.     end

  415. 

  416.     if not token_util:verify_room(session, room_jid) then

  417.         log("warn", "Token %s not allowed to access: %s",

  418.             tostring(token), tostring(room_jid));

  419.         return false;

  420.     end

  421. 

  422.     return true;

  423. end

  424. 

  425. --- Handles request for updating jibri queue status

  426. -- @param event the http event, holds the request query

  427. -- @return GET response, containing a json with response details

  428. function handle_update_jibri_queue(event)

  429.     module:log("info","Update Jibri Queue Event Received");

  430.     -- if (not event.request.url.query) then

  431.     --     return { status_code = 400; };

  432.     -- end

  433. 

  434.     local body = json.decode(event.request.body);

  435. --    local params = parse(event.request.url.query);

  436. 

  437.     module:log("info","Update Jibri Event Body %s",inspect(body));

  438. 

  439. --    local token = params["token"];

  440.     local token

  441.     if not token then

  442.         token = event.request.headers["authorization"];

  443.         if not token then

  444.             token = ''

  445.         else

  446.             local prefixStart, prefixEnd = token:find("Bearer ");

  447.             if prefixStart ~= 1 then

  448.                 module:log("error", "Invalid authorization header format. The header must start with the string 'Bearer '");

  449.                 return 403

  450.             end

  451.             token = token:sub(prefixEnd + 1);

  452.         end

  453.     end

  454.     

  455.     local user_jid = body["participant"];

  456.     local roomAddress = body["conference"];

  457.     local userJWT = body["token"];

  458.     local action = body["action"];

  459.     local time = body["time"];

  460.     local position = body["position"];

  461.     local requestId = body["requestId"];

  462. 

  463.     local room_jid = room_jid_match_rewrite(roomAddress);

  464. 

  465.     if not verify_token(token, room_jid, {}) then

  466.         return { status_code = 403; };

  467.     end

  468. 

  469.     local room = get_room_from_jid(room_jid);

  470.     if (not room) then

  471.         log("error", "no room found %s", roomAddress);

  472.         return { status_code = 404; };

  473.     end

  474. 

  475.     local occupant = room:get_occupant_by_real_jid(user_jid);

  476.     if not occupant then

  477.         log("warn", "No occupant %s found for %s", user_jid, roomAddress);

  478.         return { status_code = 404; };

  479.     end

  480. 

  481.     if not room.jibriQueue[occupant.jid] then

  482.         log("warn", "No queue request found for occupant %s in conference %s",occupant.jid,room.jid)

  483.         return { status_code = 404; };

  484.     end

  485. 

  486.     if not action then

  487.         if userJWT then

  488.             action = 'token';

  489.         else

  490.             action = 'info';

  491.         end

  492.     end

  493. 

  494.     if not requestId then

  495.         requestId = room.jibriQueue[occupant.jid];

  496.     end

  497. 

  498.     -- TODO: actually implement udpate code here

  499.     sendIq(occupant.jid,action,requestId,time,position,userJWT);

  500.     return { status_code = 200; };

  501. end

  502. 

  503. module:depends("http");

  504. module:provides("http", {

  505.     default_path = "/";

  506.     name = "jibriqueue";

  507.     route = {

  508.         ["POST /jibriqueue/update"] = function (event) return async_handler_wrapper(event,handle_update_jibri_queue) end;

  509.     };

  510. });