jfinn
/
jitsi_app_c0
Observar 1
Favorito 0
Fork 0
Código Issues 0 Pull requests 0 Versões 0 Wiki Atividade
Você não pode selecionar mais de 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
7522 Commits
2 Branches
Tag: 3fd85720bc
Branches Tags
${ item.name }
Criar branch ${ searchTerm }
de 3fd85720bc
${ noResults }
jitsi_app_c0/resources/prosody-plugins/mod_jibri_queue_component.lua

mod_jibri_queue_component.lua 19KB
Histórico Original

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556 
  1. local st = require "util.stanza";

  2. local jid = require "util.jid";

  3. local http = require "net.http";

  4. local json = require "cjson";

  5. local inspect = require('inspect');

  6. local socket = require "socket";

  7. local uuid_gen = require "util.uuid".generate;

  8. local jwt = require "luajwtjitsi";

  9. local it = require "util.iterators";

  10. local neturl = require "net.url";

  11. local parse = neturl.parseQuery;

  12. 

  13. local get_room_from_jid = module:require "util".get_room_from_jid;

  14. local room_jid_match_rewrite = module:require "util".room_jid_match_rewrite;

  15. local is_healthcheck_room = module:require "util".is_healthcheck_room;

  16. local room_jid_split_subdomain = module:require "util".room_jid_split_subdomain;

  17. local internal_room_jid_match_rewrite = module:require "util".internal_room_jid_match_rewrite;

  18. local async_handler_wrapper = module:require "util".async_handler_wrapper;

  19. 

  20. -- this basically strips the domain from the conference.domain address

  21. local parentHostName = string.gmatch(tostring(module.host), "%w+.(%w.+)")();

  22. if parentHostName == nil then

  23.     log("error", "Failed to start - unable to get parent hostname");

  24.     return;

  25. end

  26. 

  27. local parentCtx = module:context(parentHostName);

  28. if parentCtx == nil then

  29.     log("error",

  30.         "Failed to start - unable to get parent context for host: %s",

  31.         tostring(parentHostName));

  32.     return;

  33. end

  34. local token_util = module:require "token/util".new(parentCtx);

  35. 

  36. local ASAPKeyServer;

  37. local ASAPKeyPath;

  38. local ASAPKeyId;

  39. local ASAPIssuer;

  40. local ASAPAudience;

  41. local ASAPAcceptedIssuers;

  42. local ASAPAcceptedAudiences;

  43. local ASAPTTL;

  44. local ASAPTTL_THRESHOLD;

  45. local ASAPKey;

  46. local JibriRegion;

  47. local disableTokenVerification;

  48. local muc_component_host;

  49. local external_api_url;

  50. local jwtKeyCacheSize;

  51. local jwtKeyCache;

  52. 

  53. local function load_config()

  54.     ASAPKeyServer = module:get_option_string("asap_key_server");

  55. 

  56.     if ASAPKeyServer then

  57.         module:log("debug", "ASAP Public Key URL %s", ASAPKeyServer);

  58.         token_util:set_asap_key_server(ASAPKeyServer);

  59.     end

  60. 

  61.     ASAPKeyPath

  62.         = module:get_option_string("asap_key_path", '/etc/prosody/certs/asap.key');

  63. 

  64.     ASAPKeyId

  65.         = module:get_option_string("asap_key_id", 'jitsi');        

  66. 

  67.     ASAPIssuer

  68.         = module:get_option_string("asap_issuer", 'jitsi');

  69. 

  70.     ASAPAudience

  71.         = module:get_option_string("asap_audience", 'jibri-queue');

  72. 

  73.     ASAPAcceptedIssuers

  74.         = module:get_option_array('asap_accepted_issuers',{'jibri-queue'});

  75.     module:log("debug", "ASAP Accepted Issuers %s", ASAPAcceptedIssuers);

  76.     token_util:set_asap_accepted_issuers(ASAPAcceptedIssuers);

  77. 

  78.     ASAPAcceptedAudiences 

  79.         = module:get_option_array('asap_accepted_audiences',{'*'});

  80.     module:log("debug", "ASAP Accepted Audiences %s", ASAPAcceptedAudiences);

  81.     token_util:set_asap_accepted_audiences(ASAPAcceptedAudiences);

  82. 

  83.     -- do not require room to be set on tokens for jibri queue

  84.     token_util:set_asap_require_room_claim(false);

  85. 

  86.     ASAPTTL

  87.         = module:get_option_number("asap_ttl", 3600);

  88.  

  89.     ASAPTTL_THRESHOLD

  90.         = module:get_option_number("asap_ttl_threshold", 600);

  91. 

  92.     queueServiceURL

  93.         = module:get_option_string("jibri_queue_url");

  94. 

  95.     JibriRegion

  96.         = module:get_option_string("jibri_region", 'default');

  97. 

  98.     -- option to enable/disable token verifications

  99.     disableTokenVerification

  100.         = module:get_option_boolean("disable_jibri_queue_token_verification", false);

  101. 

  102.     muc_component_host 

  103.         = module:get_option_string("muc_component");

  104. 

  105.     external_api_url = module:get_option_string("external_api_url",tostring(parentHostName));

  106.     module:log("debug", "External advertised API URL", external_api_url);

  107. 

  108. 

  109.     -- TODO: Figure out a less arbitrary default cache size.

  110.     jwtKeyCacheSize 

  111.         = module:get_option_number("jwt_pubkey_cache_size", 128);

  112.     jwtKeyCache = require"util.cache".new(jwtKeyCacheSize);

  113. 

  114.     if queueServiceURL == nil then

  115.         log("error", "No jibri_queue_url specified. No service to contact!");

  116.         return;

  117.     end

  118. 

  119.     if muc_component_host == nil then

  120.         log("error", "No muc_component specified. No muc to operate on for jibri queue!");

  121.         return;

  122.     end

  123. 

  124.     -- Read ASAP key once on module startup

  125.     local f = io.open(ASAPKeyPath, "r");

  126.     if f then

  127.         ASAPKey = f:read("*all");

  128.         f:close();

  129.         if not ASAPKey then

  130.             module:log("warn", "No ASAP Key read from %s, disabling jibri queue component plugin", ASAPKeyPath);

  131.             return

  132.         end

  133.     else

  134.         module:log("warn", "Error reading ASAP Key %s, disabling jibri queue component plugin", ASAPKeyPath);

  135.         return

  136.     end

  137. 

  138.     return true;

  139. end

  140. 

  141. local function reload_config()

  142.     module:log("info", "Reloading configuration for jibri queue component");

  143.     local config_success = load_config();

  144. 

  145.     if not config_success then

  146.         log("error", "Unsuccessful reconfiguration, jibri queue component may misbehave");

  147.     end

  148. end

  149. 

  150. local config_success = load_config();

  151. 

  152. if not config_success then

  153.     log("error", "Unsuccessful configuration step, jibri queue component disabled")

  154.     return;

  155. end

  156. 

  157. 

  158. local http_headers = {

  159.     ["User-Agent"] = "Prosody ("..prosody.version.."; "..prosody.platform..")",

  160.     ["Content-Type"] = "application/json"

  161. };

  162. 

  163. -- we use async to detect Prosody 0.10 and earlier

  164. local have_async = pcall(require, "util.async");

  165. if not have_async then

  166.     module:log("warn", "conference duration will not work with Prosody version 0.10 or less.");

  167.     return;

  168. end

  169. 

  170. 

  171. log("info", "Starting jibri queue handling for %s", muc_component_host);

  172. 

  173. local function round(num, numDecimalPlaces)

  174.     local mult = 10^(numDecimalPlaces or 0)

  175.     return math.floor(num * mult + 0.5) / mult

  176. end

  177.       

  178. local function generateToken(audience)

  179.     audience = audience or ASAPAudience

  180.     local t = os.time()

  181.     local err

  182.     local exp_key = 'asap_exp.'..audience

  183.     local token_key = 'asap_token.'..audience

  184.     local exp = jwtKeyCache:get(exp_key)

  185.     local token = jwtKeyCache:get(token_key)

  186. 

  187.     --if we find a token and it isn't too far from expiry, then use it

  188.     if token ~= nil and exp ~= nil then

  189.         exp = tonumber(exp)

  190.         if (exp - t) > ASAPTTL_THRESHOLD then

  191.             return token

  192.         end

  193.     end

  194. 

  195.     --expiry is the current time plus TTL

  196.     exp = t + ASAPTTL

  197.     local payload = {

  198.         iss = ASAPIssuer,

  199.         aud = audience,

  200.         nbf = t,

  201.         exp = exp,

  202.     }

  203. 

  204.     -- encode

  205.     local alg = "RS256"

  206.     token, err = jwt.encode(payload, ASAPKey, alg, {kid = ASAPKeyId})

  207.     if not err then

  208.         token = 'Bearer '..token

  209.         jwtKeyCache:set(exp_key,exp)

  210.         jwtKeyCache:set(token_key,token)

  211.         return token

  212.     else

  213.         return ''

  214.     end

  215. end

  216. 

  217. local function sendIq(participant,action,requestId,time,position,token)

  218.     local iqId = uuid_gen();

  219.     local from = module:get_host();

  220.     local outStanza = st.iq({type = 'set', from = from, to = participant, id = iqId}):tag("jibri-queue", 

  221.        { xmlns = 'http://jitsi.org/protocol/jibri-queue', requestId = requestId, action = action });

  222. 

  223.     if token then

  224.         outStanza:tag("token"):text(token):up()

  225.     end

  226.     if time then

  227.         outStanza:tag("time"):text(tostring(time)):up()

  228.     end

  229.     if position then

  230.         outStanza:tag("position"):text(tostring(position)):up()

  231.     end

  232. 

  233.     module:send(outStanza);

  234. end

  235. 

  236. local function cb(content_, code_, response_, request_)

  237.     if code_ == 200 or code_ == 204 then

  238.         module:log("debug", "URL Callback: Code %s, Content %s, Request (host %s, path %s, body %s), Response: %s",

  239.                 code_, content_, request_.host, request_.path, inspect(request_.body), inspect(response_));

  240.     else

  241.         module:log("warn", "URL Callback non successful: Code %s, Content %s, Request (%s), Response: %s",

  242.                 code_, content_, inspect(request_), inspect(response_));

  243.     end

  244. end

  245. 

  246. local function sendEvent(type,room_address,participant,requestId,replyIq,replyError)

  247.     local event_ts = round(socket.gettime()*1000);

  248.     local node, host, resource, target_subdomain = room_jid_split_subdomain(room_address);

  249.     local room_param = '';

  250.     if target_subdomain then

  251.         room_param = target_subdomain..'/'..node;

  252.     else

  253.         room_param = node;

  254.     end

  255. 

  256.     local out_event = {

  257.         ["conference"] = room_address,

  258.         ["roomParam"] = room_param,

  259.         ["eventType"] = type,

  260.         ["participant"] = participant,

  261.         ["externalApiUrl"] = external_api_url.."/jibriqueue/update",

  262.         ["requestId"] = requestId,

  263.         ["region"] = JibriRegion,

  264.     }

  265.     module:log("debug","Sending event %s",inspect(out_event));

  266. 

  267.     local headers = http_headers or {}

  268.     headers['Authorization'] = generateToken()

  269. 

  270.     module:log("debug","Sending headers %s",inspect(headers));

  271.     local requestURL = queueServiceURL.."/job/recording"

  272.     if type=="LeaveQueue" then

  273.         requestURL = requestURL .."/cancel"

  274.     end

  275.     local request = http.request(requestURL, {

  276.         headers = headers,

  277.         method = "POST",

  278.         body = json.encode(out_event)

  279.     }, function (content_, code_, response_, request_)

  280.         if code_ == 200 or code_ == 204 then

  281.             module:log("debug", "URL Callback: Code %s, Content %s, Request (host %s, path %s, body %s), Response: %s",

  282.                     code_, content_, request_.host, request_.path, inspect(request_.body), inspect(response_));

  283.             if (replyIq) then

  284.                 module:log("debug", "sending reply IQ %s",inspect(replyIq));

  285.                 module:send(replyIq);

  286.             end

  287.         else

  288.             module:log("warn", "URL Callback non successful: Code %s, Content %s, Request (%s), Response: %s",

  289.                     code_, content_, inspect(request_), inspect(response_));

  290.             if (replyError) then

  291.                 module:log("warn", "sending reply error IQ %s",inspect(replyError));

  292.                 module:send(replyError);

  293.             end

  294.         end

  295.     end);

  296. end

  297. 

  298. function clearRoomQueueByOccupant(room, occupant)

  299.     room.jibriQueue[occupant.jid] = nil;

  300. end

  301. 

  302. function addRoomQueueByOccupant(room, occupant, requestId)

  303.     room.jibriQueue[occupant.jid] = requestId;

  304. end

  305. 

  306. -- receives iq from client currently connected to the room

  307. function on_iq(event)

  308.     local requestId;

  309.     -- Check the type of the incoming stanza to avoid loops:

  310.     if event.stanza.attr.type == "error" then

  311.         return; -- We do not want to reply to these, so leave.

  312.     end

  313.     if event.stanza.attr.to == module:get_host() then

  314.         if event.stanza.attr.type == "set" then

  315.             local reply = st.reply(event.stanza);

  316.             local replyError = st.error_reply(event.stanza,'cancel','internal-server-error',"Queue Server Error");

  317. 

  318.             local jibriQueue

  319.                 = event.stanza:get_child('jibri-queue', 'http://jitsi.org/protocol/jibri-queue');

  320.             if jibriQueue then

  321.                 module:log("debug", "Received Jibri Queue Request: %s ",inspect(jibriQueue));

  322. 

  323.                 local roomAddress = jibriQueue.attr.room;

  324.                 local room = get_room_from_jid(room_jid_match_rewrite(roomAddress));

  325. 

  326.                 if not room then

  327.                     module:log("warn", "No room found %s", roomAddress);

  328.                     return false;

  329.                 end

  330. 

  331.                 local from = event.stanza.attr.from;

  332. 

  333.                 local occupant = room:get_occupant_by_real_jid(from);

  334.                 if not occupant then

  335.                     module:log("warn", "No occupant %s found for %s", from, roomAddress);

  336.                     return false;

  337.                 end

  338. 

  339.                 local action = jibriQueue.attr.action;

  340.                 if action == 'join' then

  341.                     -- join action, so send event out

  342.                     requestId = uuid_gen();

  343.                     module:log("debug","Received join queue request for jid %s occupant %s requestId %s",roomAddress,occupant.jid,requestId);

  344. 

  345.                     -- now handle new jibri queue message

  346.                     addRoomQueueByOccupant(room, occupant, requestId);

  347.                     reply:add_child(st.stanza("jibri-queue", { xmlns = 'http://jitsi.org/protocol/jibri-queue', requestId = requestId})):up()

  348.                     replyError:add_child(st.stanza("jibri-queue", { xmlns = 'http://jitsi.org/protocol/jibri-queue', requestId = requestId})):up()

  349. 

  350.                     module:log("debug","Sending JoinQueue event for jid %s occupant %s reply %s",roomAddress,occupant.jid,inspect(reply));

  351.                     sendEvent('JoinQueue',roomAddress,occupant.jid,requestId,reply,replyError);

  352.                 end

  353.                 if action == 'leave' then

  354.                     requestId = jibriQueue.attr.requestId;

  355.                     module:log("debug","Received leave queue request for jid %s occupant %s requestId %s",roomAddress,occupant.jid,requestId);

  356. 

  357.                     -- TODO: check that requestId is the same as cached value

  358.                     clearRoomQueueByOccupant(room, occupant);

  359.                     reply:add_child(st.stanza("jibri-queue", { xmlns = 'http://jitsi.org/protocol/jibri-queue', requestId = requestId})):up()

  360.                     replyError:add_child(st.stanza("jibri-queue", { xmlns = 'http://jitsi.org/protocol/jibri-queue', requestId = requestId})):up()

  361. 

  362.                     module:log("debug","Sending LeaveQueue event for jid %s occupant %s reply %s",roomAddress,occupant.jid,inspect(reply));

  363.                     sendEvent('LeaveQueue',roomAddress,occupant.jid,requestId,reply,replyError);

  364.                 end

  365.             else

  366.                 module:log("warn","Jibri Queue Stanza missing child %s",inspect(event.stanza))

  367.             end

  368.         end

  369.     end

  370.     return true

  371. end

  372. 

  373. -- create recorder queue cache for the room

  374. function room_created(event)

  375.     local room = event.room;

  376. 

  377.     if is_healthcheck_room(room.jid) then

  378.         return;

  379.     end

  380. 

  381.     room.jibriQueue = {};

  382. end

  383. 

  384. -- Conference ended, clear all queue cache jids

  385. function room_destroyed(event)

  386.     local room = event.room;

  387. 

  388.     if is_healthcheck_room(room.jid) then

  389.         return;

  390.     end

  391.     for jid, x in pairs(room.jibriQueue) do

  392.         if x then

  393.             sendEvent('LeaveQueue',internal_room_jid_match_rewrite(room.jid),jid,x);

  394.         end

  395.     end

  396. end

  397. 

  398. -- Occupant left remove it from the queue if it joined the queue

  399. function occupant_leaving(event)

  400.     local room = event.room;

  401. 

  402.     if is_healthcheck_room(room.jid) then

  403.         return;

  404.     end

  405. 

  406.     local occupant = event.occupant;

  407.     local requestId = room.jibriQueue[occupant.jid];

  408.     -- check if user has cached queue request

  409.     if requestId then

  410.         -- remove occupant from queue cache, signal backend

  411.         room.jibriQueue[occupant.jid] = nil;

  412.         sendEvent('LeaveQueue',internal_room_jid_match_rewrite(room.jid),occupant.jid,requestId);

  413.     end

  414. end

  415. 

  416. module:hook("iq/host", on_iq);

  417. 

  418. -- executed on every host added internally in prosody, including components

  419. function process_host(host)

  420.     if host == muc_component_host then -- the conference muc component

  421.         module:log("debug","Hook to muc events on %s", host);

  422. 

  423.         local muc_module = module:context(host);

  424.         muc_module:hook("muc-room-created", room_created, -1);

  425.         -- muc_module:hook("muc-occupant-joined", occupant_joined, -1);

  426.         muc_module:hook("muc-occupant-pre-leave", occupant_leaving, -1);

  427.         muc_module:hook("muc-room-destroyed", room_destroyed, -1);

  428.     end

  429. end

  430. 

  431. if prosody.hosts[muc_component_host] == nil then

  432.     module:log("debug","No muc component found, will listen for it: %s", muc_component_host)

  433. 

  434.     -- when a host or component is added

  435.     prosody.events.add_handler("host-activated", process_host);

  436. else

  437.     process_host(muc_component_host);

  438. end

  439. 

  440. module:log("info", "Loading jibri_queue_component");

  441. 

  442. --- Verifies room name, domain name with the values in the token

  443. -- @param token the token we received

  444. -- @param room_name the room name

  445. -- @param group name of the group (optional)

  446. -- @param session the session to use for storing token specific fields

  447. -- @return true if values are ok or false otherwise

  448. function verify_token(token, room_jid, session)

  449.     if disableTokenVerification then

  450.         return true;

  451.     end

  452. 

  453.     -- if not disableTokenVerification and we do not have token

  454.     -- stop here, cause the main virtual host can have guest access enabled

  455.     -- (allowEmptyToken = true) and we will allow access to rooms info without

  456.     -- a token

  457.     if token == nil then

  458.         log("warn", "no token provided");

  459.         return false;

  460.     end

  461. 

  462.     session.auth_token = token;

  463.     local verified, reason, message = token_util:process_and_verify_token(session);

  464.     if not verified then

  465.         log("warn", "not a valid token %s: %s", tostring(reason), tostring(message));

  466.         log("debug", "invalid token %s", token);

  467.         return false;

  468.     end

  469. 

  470.     return true;

  471. end

  472. 

  473. --- Handles request for updating jibri queue status

  474. -- @param event the http event, holds the request query

  475. -- @return GET response, containing a json with response details

  476. function handle_update_jibri_queue(event)

  477.     local body = json.decode(event.request.body);

  478. 

  479.     module:log("debug","Update Jibri Queue Event Received: %s",inspect(body));

  480. 

  481.     local token = event.request.headers["authorization"];

  482.     if not token then

  483.         token = ''

  484.     else

  485.         local prefixStart, prefixEnd = token:find("Bearer ");

  486.         if prefixStart ~= 1 then

  487.             module:log("error", "REST event: Invalid authorization header format. The header must start with the string 'Bearer '");

  488.             return 403

  489.         end

  490.         token = token:sub(prefixEnd + 1);

  491.     end

  492. 

  493.     local user_jid = body["participant"];

  494.     local roomAddress = body["conference"];

  495.     local userJWT = body["token"];

  496.     local action = body["action"];

  497.     local time = body["time"];

  498.     local position = body["position"];

  499.     local requestId = body["requestId"];

  500. 

  501.     if not action then

  502.         if userJWT then

  503.             action = 'token';

  504.         else

  505.             action = 'info';

  506.         end

  507.     end

  508. 

  509.     local room_jid = room_jid_match_rewrite(roomAddress);

  510. 

  511.     if not verify_token(token, room_jid, {}) then

  512.         log("error", "REST event: Invalid token for room %s to route action %s for requestId %s", roomAddress, action, requestId);

  513.         return { status_code = 403; };

  514.     end

  515. 

  516.     local room = get_room_from_jid(room_jid);

  517.     if (not room) then

  518.         log("error", "REST event: no room found %s to route action %s for requestId %s", roomAddress, action, requestId);

  519.         return { status_code = 404; };

  520.     end

  521. 

  522.     local occupant = room:get_occupant_by_real_jid(user_jid);

  523.     if not occupant then

  524.         log("warn", "REST event: No occupant %s found for %s to route action %s for requestId %s", user_jid, roomAddress, action, requestId);

  525.         return { status_code = 404; };

  526.     end

  527. 

  528.     if not room.jibriQueue[occupant.jid] then

  529.         log("warn", "REST event: No queue request found for occupant %s in conference %s to route action %s for requestId %s",occupant.jid,room.jid, action, requestId)

  530.         return { status_code = 404; };

  531.     end

  532. 

  533.     if not requestId then

  534.         requestId = room.jibriQueue[occupant.jid];

  535.     end

  536. 

  537.     if action == 'token' and userJWT then

  538.         log("debug", "REST event: Token received for occupant %s in conference %s requestId %s, clearing room queue");

  539.         clearRoomQueueByOccupant(room, occupant);

  540.     end

  541. 

  542.     log("debug", "REST event: Sending update for occupant %s in conference %s to route action %s for requestId %s",occupant.jid,room.jid, action, requestId);

  543.     sendIq(occupant.jid,action,requestId,time,position,userJWT);

  544.     return { status_code = 200; };

  545. end

  546. 

  547. module:depends("http");

  548. module:provides("http", {

  549.     default_path = "/";

  550.     name = "jibriqueue";

  551.     route = {

  552.         ["POST /jibriqueue/update"] = function (event) return async_handler_wrapper(event,handle_update_jibri_queue) end;

  553.     };

  554. });

  555. 

  556. module:hook_global('config-reloaded', reload_config);