mirror of
https://mau.dev/maunium/synapse.git
synced 2024-10-01 01:36:05 -04:00
23740eaa3d
During the migration the automated script to update the copyright headers accidentally got rid of some of the existing copyright lines. Reinstate them.
89 lines
2.9 KiB
Python
89 lines
2.9 KiB
Python
#
|
|
# This file is licensed under the Affero General Public License (AGPL) version 3.
|
|
#
|
|
# Copyright 2014-2016 OpenMarket Ltd
|
|
# Copyright (C) 2023 New Vector, Ltd
|
|
#
|
|
# This program is free software: you can redistribute it and/or modify
|
|
# it under the terms of the GNU Affero General Public License as
|
|
# published by the Free Software Foundation, either version 3 of the
|
|
# License, or (at your option) any later version.
|
|
#
|
|
# See the GNU Affero General Public License for more details:
|
|
# <https://www.gnu.org/licenses/agpl-3.0.html>.
|
|
#
|
|
# Originally licensed under the Apache License, Version 2.0:
|
|
# <http://www.apache.org/licenses/LICENSE-2.0>.
|
|
#
|
|
# [This file includes modifications made by New Vector Limited]
|
|
#
|
|
#
|
|
|
|
import base64
|
|
import hashlib
|
|
import hmac
|
|
from typing import TYPE_CHECKING, Tuple
|
|
|
|
from synapse.http.server import HttpServer
|
|
from synapse.http.servlet import RestServlet
|
|
from synapse.http.site import SynapseRequest
|
|
from synapse.rest.client._base import client_patterns
|
|
from synapse.types import JsonDict
|
|
|
|
if TYPE_CHECKING:
|
|
from synapse.server import HomeServer
|
|
|
|
|
|
class VoipRestServlet(RestServlet):
|
|
PATTERNS = client_patterns("/voip/turnServer$", v1=True)
|
|
CATEGORY = "Client API requests"
|
|
|
|
def __init__(self, hs: "HomeServer"):
|
|
super().__init__()
|
|
self.hs = hs
|
|
self.auth = hs.get_auth()
|
|
|
|
async def on_GET(self, request: SynapseRequest) -> Tuple[int, JsonDict]:
|
|
requester = await self.auth.get_user_by_req(
|
|
request, self.hs.config.voip.turn_allow_guests
|
|
)
|
|
|
|
turnUris = self.hs.config.voip.turn_uris
|
|
turnSecret = self.hs.config.voip.turn_shared_secret
|
|
turnUsername = self.hs.config.voip.turn_username
|
|
turnPassword = self.hs.config.voip.turn_password
|
|
userLifetime = self.hs.config.voip.turn_user_lifetime
|
|
|
|
if turnUris and turnSecret and userLifetime:
|
|
expiry = (self.hs.get_clock().time_msec() + userLifetime) / 1000
|
|
username = "%d:%s" % (expiry, requester.user.to_string())
|
|
|
|
mac = hmac.new(
|
|
turnSecret.encode(), msg=username.encode(), digestmod=hashlib.sha1
|
|
)
|
|
# We need to use standard padded base64 encoding here
|
|
# encode_base64 because we need to add the standard padding to get the
|
|
# same result as the TURN server.
|
|
password = base64.b64encode(mac.digest()).decode("ascii")
|
|
|
|
elif turnUris and turnUsername and turnPassword and userLifetime:
|
|
username = turnUsername
|
|
password = turnPassword
|
|
|
|
else:
|
|
return 200, {}
|
|
|
|
return (
|
|
200,
|
|
{
|
|
"username": username,
|
|
"password": password,
|
|
"ttl": userLifetime // 1000,
|
|
"uris": turnUris,
|
|
},
|
|
)
|
|
|
|
|
|
def register_servlets(hs: "HomeServer", http_server: HttpServer) -> None:
|
|
VoipRestServlet(hs).register(http_server)
|