How to secure a TURN server for WebRTC?

青春壹個敷衍的年華 提交于 2019-12-05 17:03:55

问题


I've just installed rfc5766-turn-server (https://code.google.com/p/rfc5766-turn-server/) on an Amazon server in order to relay my WebRTC calls.

Since authentication username and password will be distributed to every client in WebRTC iceServers, how can I ensure that only my clients use my TURN to relay their call?


回答1:


You can use this instead https://code.google.com/p/coturn/. It's evolved from rfc5766-turn-server project.

Supported TURN authentication mechanisms:

  • 'classic' long-term credentials mechanism;
  • TURN REST API (a modification of the long-term mechanism, for time-limited secret-based authentication, for WebRTC applications: http://tools.ietf.org/html/draft-uberti-behave-turn-rest-00)
  • experimental third-party oAuth-based client authorization option


来源:https://stackoverflow.com/questions/28092251/how-to-secure-a-turn-server-for-webrtc

易学教程内所有资源均来自网络或用户发布的内容,如有违反法律规定的内容欢迎反馈
该文章没有解决你所遇到的问题?点击提问,说说你的问题,让更多的人一起探讨吧!