326 lines
7.1 KiB
JavaScript
Executable File
326 lines
7.1 KiB
JavaScript
Executable File
#!/usr/bin/env node
|
|
|
|
'use strict';
|
|
|
|
process.title = 'multiparty-meeting-server';
|
|
|
|
const config = require('./config/config');
|
|
const fs = require('fs');
|
|
const https = require('https');
|
|
const http = require('http');
|
|
const express = require('express');
|
|
const compression = require('compression');
|
|
const Logger = require('./lib/Logger');
|
|
const Room = require('./lib/Room');
|
|
const utils = require('./util');
|
|
const base64 = require('base-64');
|
|
// auth
|
|
const passport = require('passport');
|
|
const { Issuer, Strategy } = require('openid-client');
|
|
const session = require('express-session')
|
|
|
|
/* eslint-disable no-console */
|
|
console.log('- process.env.DEBUG:', process.env.DEBUG);
|
|
console.log('- config.mediasoup.logLevel:', config.mediasoup.logLevel);
|
|
console.log('- config.mediasoup.logTags:', config.mediasoup.logTags);
|
|
/* eslint-enable no-console */
|
|
|
|
// Start the mediasoup server.
|
|
const mediaServer = require('./mediasoup');
|
|
|
|
const logger = new Logger();
|
|
|
|
// Map of Room instances indexed by roomId.
|
|
const rooms = new Map();
|
|
|
|
// TLS server configuration.
|
|
const tls =
|
|
{
|
|
cert : fs.readFileSync(config.tls.cert),
|
|
key : fs.readFileSync(config.tls.key)
|
|
};
|
|
|
|
let app = express();
|
|
let httpsServer;
|
|
let oidcClient;
|
|
let oidcStrategy;
|
|
|
|
passport.serializeUser(function(user, done)
|
|
{
|
|
done(null, user);
|
|
});
|
|
|
|
passport.deserializeUser(function(user, done)
|
|
{
|
|
done(null, user);
|
|
});
|
|
|
|
const auth=config.auth;
|
|
|
|
function setupAuth(oidcIssuer)
|
|
{
|
|
oidcClient = new oidcIssuer.Client(auth.clientOptions);
|
|
const params =
|
|
{
|
|
...auth.clientOptions
|
|
// ... any authorization request parameters go here
|
|
// client_id defaults to client.client_id
|
|
// redirect_uri defaults to client.redirect_uris[0]
|
|
// response type defaults to client.response_types[0], then 'code'
|
|
// scope defaults to 'openid'
|
|
};
|
|
|
|
// optional, defaults to false, when true req is passed as a first
|
|
// argument to verify fn
|
|
const passReqToCallback = false;
|
|
|
|
// optional, defaults to false, when true the code_challenge_method will be
|
|
// resolved from the issuer configuration, instead of true you may provide
|
|
// any of the supported values directly, i.e. "S256" (recommended) or "plain"
|
|
const usePKCE = false;
|
|
const client=oidcClient;
|
|
|
|
oidcStrategy = new Strategy(
|
|
{ client, params, passReqToCallback, usePKCE },
|
|
(tokenset, userinfo, done) =>
|
|
{
|
|
let user = {
|
|
id : tokenset.claims.sub,
|
|
provider : tokenset.claims.iss,
|
|
_userinfo : userinfo,
|
|
_claims : tokenset.claims,
|
|
};
|
|
|
|
|
|
if ( typeof(userinfo.picture) !== 'undefined' ){
|
|
if ( ! userinfo.picture.match(/^http/g) ) {
|
|
user.Photos = [ { value: `data:image/jpeg;base64, ${userinfo.picture}` } ];
|
|
} else {
|
|
user.Photos= [ { value: userinfo.picture } ];
|
|
}
|
|
}
|
|
|
|
if ( typeof(userinfo.nickname) !== 'undefined' ){
|
|
user.displayName=userinfo.nickname;
|
|
}
|
|
|
|
if ( typeof(userinfo.name) !== 'undefined' ){
|
|
user.displayName=userinfo.name;
|
|
}
|
|
|
|
if ( typeof(userinfo.email) !== 'undefined' ){
|
|
user.emails=[{value: userinfo.email}];
|
|
}
|
|
|
|
if ( typeof(userinfo.given_name) !== 'undefined' ){
|
|
user.name={givenName: userinfo.given_name};
|
|
}
|
|
|
|
if ( typeof(userinfo.family_name) !== 'undefined' ){
|
|
user.name={familyName: userinfo.family_name};
|
|
}
|
|
|
|
if ( typeof(userinfo.middle_name) !== 'undefined' ){
|
|
user.name={middleName: userinfo.middle_name};
|
|
}
|
|
|
|
|
|
return done(null, user);
|
|
}
|
|
);
|
|
passport.use('oidc', oidcStrategy);
|
|
|
|
app.use(session({
|
|
secret: config.cookieSecret,
|
|
resave: true,
|
|
saveUninitialized: true,
|
|
cookie: { secure: true }
|
|
}));
|
|
|
|
app.use(passport.initialize());
|
|
app.use(passport.session());
|
|
|
|
// login
|
|
app.get('/auth/login', (req, res, next) =>
|
|
{
|
|
passport.authenticate('oidc', {
|
|
state : base64.encode(JSON.stringify({
|
|
roomId : req.query.roomId,
|
|
peerName : req.query.peerName,
|
|
code : utils.random(10)
|
|
}))
|
|
})(req, res, next);
|
|
});
|
|
|
|
// logout
|
|
app.get('/auth/logout', function(req, res)
|
|
{
|
|
req.logout();
|
|
res.redirect('/');
|
|
}
|
|
);
|
|
// callback
|
|
app.get(
|
|
'/auth/callback',
|
|
passport.authenticate('oidc', { failureRedirect: '/auth/login' }),
|
|
(req, res) =>
|
|
{
|
|
const state = JSON.parse(base64.decode(req.query.state));
|
|
|
|
if (rooms.has(state.roomId))
|
|
{
|
|
let displayName,photo
|
|
if (typeof(req.user) !== 'undefined'){
|
|
if (typeof(req.user.displayName) !== 'undefined') displayName=req.user.displayName;
|
|
else displayName="";
|
|
if (
|
|
typeof(req.user.Photos) !== 'undefined' &&
|
|
typeof(req.user.Photos[0]) !== 'undefined' &&
|
|
typeof(req.user.Photos[0].value) !== 'undefined'
|
|
) photo=req.user.Photos[0].value;
|
|
else photo="/static/media/buddy.403cb9f6.svg";
|
|
}
|
|
|
|
const data =
|
|
{
|
|
peerName : state.peerName,
|
|
name : displayName,
|
|
picture : photo
|
|
};
|
|
|
|
const room = rooms.get(state.roomId);
|
|
|
|
room.authCallback(data);
|
|
}
|
|
|
|
res.send('');
|
|
}
|
|
);
|
|
}
|
|
|
|
function setupWebServer() {
|
|
app.use(compression());
|
|
|
|
app.all('*', (req, res, next) =>
|
|
{
|
|
if (req.secure)
|
|
{
|
|
return next();
|
|
}
|
|
|
|
res.redirect(`https://${req.hostname}${req.url}`);
|
|
});
|
|
|
|
app.get('/', (req, res) =>
|
|
{
|
|
res.sendFile(`${__dirname}/public/chooseRoom.html`);
|
|
});
|
|
|
|
// Serve all files in the public folder as static files.
|
|
app.use(express.static('public'));
|
|
|
|
app.use((req, res) => res.sendFile(`${__dirname}/public/index.html`));
|
|
|
|
httpsServer = https.createServer(tls, app);
|
|
|
|
httpsServer.listen(config.listeningPort, '0.0.0.0', () =>
|
|
{
|
|
logger.info('Server running on port: ', config.listeningPort);
|
|
});
|
|
|
|
const httpServer = http.createServer(app);
|
|
|
|
httpServer.listen(config.listeningRedirectPort, '0.0.0.0', () =>
|
|
{
|
|
logger.info('Server redirecting port: ', config.listeningRedirectPort);
|
|
});
|
|
};
|
|
|
|
function setupSocketIO(){
|
|
const io = require('socket.io')(httpsServer);
|
|
|
|
// Handle connections from clients.
|
|
io.on('connection', (socket) =>
|
|
{
|
|
const { roomId, peerName } = socket.handshake.query;
|
|
|
|
if (!roomId || !peerName)
|
|
{
|
|
logger.warn('connection request without roomId and/or peerName');
|
|
|
|
socket.disconnect(true);
|
|
|
|
return;
|
|
}
|
|
|
|
logger.info(
|
|
'connection request [roomId:"%s", peerName:"%s"]', roomId, peerName);
|
|
|
|
let room;
|
|
|
|
// If an unknown roomId, create a new Room.
|
|
if (!rooms.has(roomId))
|
|
{
|
|
logger.info('creating a new Room [roomId:"%s"]', roomId);
|
|
|
|
try
|
|
{
|
|
room = new Room(roomId, mediaServer, io);
|
|
|
|
global.APP_ROOM = room;
|
|
}
|
|
catch (error)
|
|
{
|
|
logger.error('error creating a new Room: %s', error);
|
|
|
|
socket.disconnect(true);
|
|
|
|
return;
|
|
}
|
|
|
|
const logStatusTimer = setInterval(() =>
|
|
{
|
|
room.logStatus();
|
|
}, 30000);
|
|
|
|
rooms.set(roomId, room);
|
|
|
|
room.on('close', () =>
|
|
{
|
|
rooms.delete(roomId);
|
|
clearInterval(logStatusTimer);
|
|
});
|
|
}
|
|
else
|
|
{
|
|
room = rooms.get(roomId);
|
|
}
|
|
|
|
socket.room = roomId;
|
|
|
|
room.handleConnection(peerName, socket);
|
|
});
|
|
}
|
|
if (
|
|
typeof(auth) !== 'undefined' &&
|
|
typeof(auth.issuerURL) !== 'undefined' &&
|
|
typeof(auth.clientOptions) !== 'undefined'
|
|
)
|
|
{
|
|
Issuer.discover(auth.issuerURL).then((oidcIssuer) =>
|
|
{
|
|
setupAuth(oidcIssuer);
|
|
setupWebServer();
|
|
setupSocketIO();
|
|
}).catch((err) => {
|
|
logger.error(err);
|
|
}
|
|
);
|
|
} else
|
|
{
|
|
logger.error('Auth is not configure properly!');
|
|
setupWebServer();
|
|
setupSocketIO();
|
|
}
|
|
|