-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathbbb.go
90 lines (73 loc) · 2.6 KB
/
bbb.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
package main
import (
"crypto/sha1"
"fmt"
"log"
"net/http"
"net/url"
"github.com/SUASecLab/workadventure_admin_extensions/extensions"
)
func bbbApi(apiCall, queryString string) string {
securityString := apiCall + queryString + bbbSharedSecret
checksum := sha1.Sum([]byte(securityString))
stringChecksum := fmt.Sprintf("%x", checksum)
return queryString + "&checksum=" + stringChecksum
}
func generateBBBUrl(meetingName, meetingID, userName string, moderatorDecision extensions.AuthDecision) string {
// generate room
// pasword are secured by being hashed with bbb's secret
generateRoomUrl := bbbUrl + "api/create?" +
bbbApi("create", "name="+meetingName+"&meetingID="+meetingID+
"&attendeePW=attendeePW&moderatorPW=moderatorPW")
_, err := extensions.Request(generateRoomUrl)
if err != nil {
log.Println("Could not generate BBB meeting", err)
}
// generate join link
var generateJoinUrl string
if moderatorDecision.Allowed {
generateJoinUrl = bbbUrl + "api/join?" +
bbbApi("join", "fullName="+userName+"&meetingID="+meetingID+
"&password=moderatorPW")
} else {
generateJoinUrl = bbbUrl + "api/join?" +
bbbApi("join", "fullName="+userName+"&meetingID="+meetingID+
"&password=attendeePW")
}
return generateJoinUrl
}
func getBBBUrl(w http.ResponseWriter, r *http.Request) {
//Send HTTP headers for CORS and enable JSON encoding
w.Header().Set("Access-Control-Allow-Origin", "*")
w.Header().Set("Content-Type", "text/plain")
// Get provided information
token := r.URL.Query().Get("token")
meetingName := url.QueryEscape(r.URL.Query().Get("meetingName"))
meetingID := url.QueryEscape(r.URL.Query().Get("meetingID"))
userName := url.QueryEscape(r.URL.Query().Get("userName"))
if len(token) == 0 || len(meetingName) == 0 ||
len(meetingID) == 0 || len(userName) == 0 {
w.WriteHeader(http.StatusBadRequest)
fmt.Fprintln(w, "Insufficient parameters provided")
return
}
var joinUrl string
if jitsiReplacesBBB {
// redirect user to jitsi handler
joinUrl = extensionsSubdir + "/jitsi/?roomName=" + meetingID + "&userName=" + userName + "&token=" + token
} else {
// does the user have moderator rights?
moderatorDecision, err := extensions.GetAuthDecision("http://" + sidecarUrl +
"/auth?token=" + token + "&service=bbbModerator")
// did the query succeed?
if err != nil {
w.WriteHeader(http.StatusInternalServerError)
fmt.Fprintf(w, "Could not authorize user")
log.Println("Could not authorize user for BBB:", err)
return
}
// if so, generate the url
joinUrl = generateBBBUrl(meetingName, meetingID, userName, moderatorDecision)
}
fmt.Fprintln(w, joinUrl)
}