Add Support for https://tools.ietf.org/html/draft-uberti-behave-turn-rest-00.

Author: cloudwebrtc

pkg/signaler/signaler.go

@@ -1,18 +1,34 @@
 package signaler
 
 import (
+	"crypto/hmac"
+	"crypto/sha1"
+	"encoding/base64"
 	"encoding/json"
+	"fmt"
 	"net"
 	"net/http"
+	"net/url"
 	"strings"
-
-	"github.com/gorilla/mux"
+	"time"
 
 	"github.com/cloudwebrtc/flutter-webrtc-server/pkg/logger"
 	"github.com/cloudwebrtc/flutter-webrtc-server/pkg/turn"
+	"github.com/cloudwebrtc/flutter-webrtc-server/pkg/util"
 	"github.com/cloudwebrtc/flutter-webrtc-server/pkg/websocket"
 )
 
+const (
+	sharedKey = `flutter-webrtc-turn-server-shared-key`
+)
+
+type TurnCredentials struct {
+	Username string   `json:"username"`
+	Password string   `json:"password"`
+	TTL      int      `json:"ttl"`
+	Uris     []string `json:"uris"`
+}
+
 func Marshal(m map[string]interface{}) string {
 	if byt, err := json.Marshal(m); err != nil {
 		logger.Errorf(err.Error())
@@ -52,26 +68,33 @@ type Session struct {
 }
 
 type Signaler struct {
-	peers    map[string]Peer
-	sessions map[string]Session
-	turn     *turn.TurnServer
+	peers     map[string]Peer
+	sessions  map[string]Session
+	turn      *turn.TurnServer
+	expresMap *util.ExpiredMap
 }
 
 func NewSignaler(turn *turn.TurnServer) *Signaler {
 	var signaler = &Signaler{
-		peers:    make(map[string]Peer),
-		sessions: make(map[string]Session),
-		turn:     turn,
+		peers:     make(map[string]Peer),
+		sessions:  make(map[string]Session),
+		turn:      turn,
+		expresMap: util.NewExpiredMap(),
 	}
 	signaler.turn.AuthHandler = signaler.authHandler
 	return signaler
 }
 
 func (s Signaler) authHandler(username string, realm string, srcAddr net.Addr) ([]byte, bool) {
-	// handle turn auth info.
+	// handle turn credential.
+	if found, info := s.expresMap.Get(username); found {
+		credential := info.(TurnCredentials)
+		return []byte(credential.Password), true
+	}
 	return nil, false
 }
 
+// NotifyPeersUpdate .
 func (s *Signaler) NotifyPeersUpdate(conn *websocket.WebSocketConn, peers map[string]Peer) {
 	infos := []PeerInfo{}
 	for _, peer := range peers {
@@ -85,35 +108,58 @@ func (s *Signaler) NotifyPeersUpdate(conn *websocket.WebSocketConn, peers map[st
 	}
 }
 
-// HandleTurnServerCredentials
+// HandleTurnServerCredentials .
 // https://tools.ietf.org/html/draft-uberti-behave-turn-rest-00
 func (s *Signaler) HandleTurnServerCredentials(writer http.ResponseWriter, request *http.Request) {
 	writer.Header().Set("Content-Type", "application/json")
-	params := mux.Vars(request) //Get params
-	service := params["service"]
+
+	params, err := url.ParseQuery(request.URL.RawQuery)
+	if err != nil {
+
+	}
+	logger.Debugf("%v", params)
+	service := params["service"][0]
 	if service != "turn" {
 		return
 	}
+	username := params["username"][0]
+	timestamp := time.Now().Unix()
+	turnUsername := fmt.Sprintf("%d:%s", timestamp, username)
+	hmac := hmac.New(sha1.New, []byte(sharedKey))
+	hmac.Write([]byte(turnUsername))
+	turnPassword := base64.StdEncoding.EncodeToString(hmac.Sum(nil))
 	/*
-		username := params["username"]
-
-		//key := params["key"]
-		timestamp := time.Now().Unix()
-		turnUserName := string(timestamp) + ":" + username
-		// credential = base64(hmac(key, turn_username))
-		credential := ""
-
-				{
-			     "username" : "12334939:mbzrxpgjys",
-			     "password" : "adfsaflsjfldssia",
-			     "ttl" : 86400,
-			     "uris" : [
-			       "turn:1.2.3.4:9991?transport=udp",
-				 ]
-				}
+		{
+		     "username" : "12334939:mbzrxpgjys",
+		     "password" : "adfsaflsjfldssia",
+		     "ttl" : 86400,
+		     "uris" : [
+		       "turn:1.2.3.4:9991?transport=udp",
+		       "turn:1.2.3.4:9992?transport=tcp",
+		       "turns:1.2.3.4:443?transport=tcp"
+			 ]
+		}
+		For client pc.
+		var iceServer = {
+			"username": response.username,
+			"credential": response.password,
+			"uris": response.uris
+		};
+		var config = {"iceServers": [iceServer]};
+		var pc = new RTCPeerConnection(config);
+
 	*/
-	//tuts := make(map[string]interface{})
-	json.NewEncoder(writer).Encode(params)
+	ttl := 86400
+	credential := TurnCredentials{
+		Username: turnUsername,
+		Password: turnPassword,
+		TTL:      ttl,
+		Uris: []string{
+			"turn:1.2.3.4:19302?transport=udp",
+		},
+	}
+	s.expresMap.Set(turnUsername, credential, int64(ttl))
+	json.NewEncoder(writer).Encode(credential)
 }
 
 func (s *Signaler) HandleNewWebSocket(conn *websocket.WebSocketConn, request *http.Request) {

pkg/util/expire.go

@@ -0,0 +1,184 @@
+package util
+
+import (
+	"sync"
+	"sync/atomic"
+	"time"
+
+	"github.com/cloudwebrtc/flutter-webrtc-server/pkg/logger"
+)
+
+type val struct {
+	data        interface{}
+	expiredTime int64
+}
+
+const delChannelCap = 100
+
+type ExpiredMap struct {
+	m        map[interface{}]*val
+	timeMap  map[int64][]interface{}
+	lck      *sync.Mutex
+	stop     chan struct{}
+	needStop int32
+}
+
+func NewExpiredMap() *ExpiredMap {
+	e := ExpiredMap{
+		m:       make(map[interface{}]*val),
+		lck:     new(sync.Mutex),
+		timeMap: make(map[int64][]interface{}),
+		stop:    make(chan struct{}),
+	}
+	atomic.StoreInt32(&e.needStop, 0)
+	go e.run(time.Now().Unix())
+	return &e
+}
+
+type delMsg struct {
+	keys []interface{}
+	t    int64
+}
+
+func (e *ExpiredMap) run(now int64) {
+	t := time.NewTicker(time.Second * 1)
+	delCh := make(chan *delMsg, delChannelCap)
+	go func() {
+		for v := range delCh {
+			if atomic.LoadInt32(&e.needStop) == 1 {
+				logger.Infof("---del stop---")
+				return
+			}
+			e.multiDelete(v.keys, v.t)
+		}
+	}()
+	for {
+		select {
+		case <-t.C:
+			now++
+			if keys, found := e.timeMap[now]; found {
+				delCh <- &delMsg{keys: keys, t: now}
+			}
+		case <-e.stop:
+			logger.Infof("=== STOP ===")
+			atomic.StoreInt32(&e.needStop, 1)
+			delCh <- &delMsg{keys: []interface{}{}, t: 0}
+			return
+		}
+	}
+}
+
+func (e *ExpiredMap) Set(key, value interface{}, expireSeconds int64) {
+	if expireSeconds <= 0 {
+		return
+	}
+	logger.Debugf("ExpiredMap: Set %s ttl[%d] => %v", key, expireSeconds, value)
+	e.lck.Lock()
+	defer e.lck.Unlock()
+	expiredTime := time.Now().Unix() + expireSeconds
+	e.m[key] = &val{
+		data:        value,
+		expiredTime: expiredTime,
+	}
+	e.timeMap[expiredTime] = append(e.timeMap[expiredTime], key)
+}
+
+func (e *ExpiredMap) Get(key interface{}) (found bool, value interface{}) {
+	e.lck.Lock()
+	defer e.lck.Unlock()
+	if found = e.checkDeleteKey(key); !found {
+		return
+	}
+	value = e.m[key].data
+	return
+}
+
+func (e *ExpiredMap) Delete(key interface{}) {
+	e.lck.Lock()
+	delete(e.m, key)
+	e.lck.Unlock()
+}
+
+func (e *ExpiredMap) Remove(key interface{}) {
+	e.Delete(key)
+}
+
+func (e *ExpiredMap) multiDelete(keys []interface{}, t int64) {
+	e.lck.Lock()
+	defer e.lck.Unlock()
+	delete(e.timeMap, t)
+	for _, key := range keys {
+		delete(e.m, key)
+	}
+}
+
+func (e *ExpiredMap) Length() int {
+	e.lck.Lock()
+	defer e.lck.Unlock()
+	return len(e.m)
+}
+
+func (e *ExpiredMap) Size() int {
+	return e.Length()
+}
+
+func (e *ExpiredMap) TTL(key interface{}) int64 {
+	e.lck.Lock()
+	defer e.lck.Unlock()
+	if !e.checkDeleteKey(key) {
+		return -1
+	}
+	return e.m[key].expiredTime - time.Now().Unix()
+}
+
+func (e *ExpiredMap) Clear() {
+	e.lck.Lock()
+	defer e.lck.Unlock()
+	e.m = make(map[interface{}]*val)
+	e.timeMap = make(map[int64][]interface{})
+}
+
+func (e *ExpiredMap) Close() {
+	e.lck.Lock()
+	defer e.lck.Unlock()
+	e.stop <- struct{}{}
+}
+
+func (e *ExpiredMap) Stop() {
+	e.Close()
+}
+
+func (e *ExpiredMap) DoForEach(handler func(interface{}, interface{})) {
+	e.lck.Lock()
+	defer e.lck.Unlock()
+	for k, v := range e.m {
+		if !e.checkDeleteKey(k) {
+			continue
+		}
+		handler(k, v)
+	}
+}
+
+func (e *ExpiredMap) DoForEachWithBreak(handler func(interface{}, interface{}) bool) {
+	e.lck.Lock()
+	defer e.lck.Unlock()
+	for k, v := range e.m {
+		if !e.checkDeleteKey(k) {
+			continue
+		}
+		if handler(k, v) {
+			break
+		}
+	}
+}
+
+func (e *ExpiredMap) checkDeleteKey(key interface{}) bool {
+	if val, found := e.m[key]; found {
+		if val.expiredTime <= time.Now().Unix() {
+			delete(e.m, key)
+			return false
+		}
+		return true
+	}
+	return false
+}