How to secure my screen sharing link
- Thread starter Rajesh
- Start date
Good day.
You can use REST hooks to backend server allows or does not allow client to connect WCS (screen sharing in you case). The workflow looks like this:
1. You configure the backend server.
2. Your backend returns 200 OK if clients has rights to connect, or 403 Forbidden if has not.
For example,
3. Test step 2 from you WCS server:
4. Update your WCS to send REST hook queries to your own backend: get access to core CLI via SSH
and modify the app and add data:
5. Pass as custom parameter user authentification data to createSession function.
Edit JS file and add custom data - userTest and passTest:
6. Add custom parameter user authentification data to backend server.
For example,
7. Client tries to connect to your server:
If in the screen-shared.js file user data and authentication data on the internal server match - screen sharing to this user allowed.
You can use REST hooks to backend server allows or does not allow client to connect WCS (screen sharing in you case). The workflow looks like this:
1. You configure the backend server.
Code:
https://<your backend server>/hook/connectFor example,
PHP:
<?php
header('HTTP/1.1 200 OK',true,200);
?>
Code:
[root@p16 /]# curl -k -I https://<your backend server>/hook/connect
HTTP/1.1 200 OK
Date: Thu, 31 Oct 2019 16:48:39 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
X-Powered-By: PHP/5.4.16
Content-Type: text/html; charset=UTF-8and modify the app and add data:
Code:
update app -l https://<your backend server>/hook defaultAppEdit JS file and add custom data - userTest and passTest:
Code:
https://<your WCS IP-address or domain name>:8444/client2/examples/demo/streaming/screen-sharing/screen-sharing.js
Code:
function start() {
...
Flashphoner.createSession({urlServer: url,custom:{userTest: "passTest"}}).on(SESSION_STATUS.ESTABLISHED,function(session){...})
...
}For example,
PHP:
<?php
$incoming_data = json_decode(file_get_contents('php://input'), true);
if ($incoming_data['custom']['passwd'] == 'passwdTest') {
header('HTTP/1.1 200 OK',true,200);
} else {
header('HTTP/1.1 403 Forbidden',true,403);
}
?>7. Client tries to connect to your server:
Code:
https://<your WCS IP-address or domain name>:8444/client2/examples/demo/streaming/screen-sharing/screen-sharing.html
Last edited: