[mirotalksfu] - improve host protection

main
Miroslav Pejic 4 years ago
parent f45d41a5e9
commit 11790210a2

@ -12,4 +12,7 @@ module.exports = class Host {
isAuthorized(ip) { isAuthorized(ip) {
return this.auth.has(ip); return this.auth.has(ip);
} }
deleteIP(ip) {
return this.auth.delete(ip);
}
}; };

@ -600,6 +600,8 @@ io.on('connection', (socket) => {
} }
roomList.get(socket.room_id).broadCast(socket.id, 'removeMe', removeMeData()); roomList.get(socket.room_id).broadCast(socket.id, 'removeMe', removeMeData());
removeIP(socket);
}); });
socket.on('exitRoom', async (_, callback) => { socket.on('exitRoom', async (_, callback) => {
@ -622,6 +624,8 @@ io.on('connection', (socket) => {
socket.room_id = null; socket.room_id = null;
removeIP(socket);
callback('Successfully exited room'); callback('Successfully exited room');
}); });
@ -661,3 +665,13 @@ function getIP(req) {
function allowedIP(ip) { function allowedIP(ip) {
return authHost != null && authHost.isAuthorized(ip); return authHost != null && authHost.isAuthorized(ip);
} }
function removeIP(socket) {
if (hostCfg.protected == true) {
let ip = socket.handshake.address;
if (ip && allowedIP(ip)) {
authHost.deleteIP(ip);
hostCfg.authenticated = false;
log.debug('Remove IP from auth', { ip: ip });
}
}
}

Loading…
Cancel
Save