mirror of
https://github.com/jech/galene.git
synced 2024-11-22 08:35:57 +01:00
Remove galene-link.
Our tokens are not revocable, they should not be generated with a large lifetime. Don't encourage users to do that.
This commit is contained in:
parent
e19716489c
commit
96588d0aa3
2 changed files with 0 additions and 113 deletions
1
CHANGES
1
CHANGES
|
@ -8,7 +8,6 @@ Galene 0.5 (unreleased)
|
|||
* Add side-menu options for high-quality audio (Opus at 128kbps) and
|
||||
disabling audio preprocessing.
|
||||
* Send audio in addition to video when sharing browser tabs.
|
||||
* Add the "galene-link" utility, which generates autologin links.
|
||||
|
||||
1 February 2022: Galene 0.4.4
|
||||
|
||||
|
|
|
@ -1,112 +0,0 @@
|
|||
package main
|
||||
|
||||
import (
|
||||
"flag"
|
||||
"fmt"
|
||||
"log"
|
||||
"net/url"
|
||||
"path"
|
||||
"time"
|
||||
|
||||
"github.com/golang-jwt/jwt/v4"
|
||||
|
||||
"github.com/jech/galene/group"
|
||||
"github.com/jech/galene/token"
|
||||
)
|
||||
|
||||
func main() {
|
||||
var username, kid, server string
|
||||
var valid int
|
||||
var tokenOnly bool
|
||||
flag.StringVar(&group.Directory, "groups", "./groups/",
|
||||
"group description `directory`")
|
||||
flag.StringVar(&username, "user", "", "username")
|
||||
flag.StringVar(&kid, "kid", "", "`id` of key to use")
|
||||
flag.IntVar(&valid, "valid", 86400, "`seconds` validity")
|
||||
flag.StringVar(&server, "server", "https://galene.org:8443",
|
||||
"server `url`")
|
||||
flag.BoolVar(&tokenOnly, "token", false, "generate token only")
|
||||
flag.Parse()
|
||||
|
||||
if flag.NArg() != 1 {
|
||||
log.Fatal("One argument (the group URL) required")
|
||||
}
|
||||
groupname := flag.Arg(0)
|
||||
|
||||
desc, err := group.GetDescription(groupname)
|
||||
if err != nil {
|
||||
log.Fatal("Get group description: ", err)
|
||||
}
|
||||
|
||||
serverURL, err := url.Parse(server)
|
||||
if err != nil {
|
||||
log.Fatal("Couldn't parse server URL")
|
||||
}
|
||||
pth := path.Join(path.Join(serverURL.Path, "group"), groupname) + "/"
|
||||
groupURL := &url.URL{
|
||||
Scheme: serverURL.Scheme,
|
||||
Host: serverURL.Host,
|
||||
Path: pth,
|
||||
}
|
||||
|
||||
keys := desc.AuthKeys
|
||||
var key map[string]interface{}
|
||||
for _, k := range keys {
|
||||
kid2, _ := k["kid"].(string)
|
||||
if kid == "" || kid == kid2 {
|
||||
key = k
|
||||
break
|
||||
}
|
||||
}
|
||||
|
||||
if key == nil {
|
||||
log.Fatal("Couldn't find key")
|
||||
}
|
||||
|
||||
alg, ok := key["alg"].(string)
|
||||
var method jwt.SigningMethod
|
||||
if ok {
|
||||
method = jwt.GetSigningMethod(alg)
|
||||
}
|
||||
if method == nil {
|
||||
log.Fatal("Couldn't determine key signing method")
|
||||
}
|
||||
|
||||
kstring, err := token.ParseKey(key)
|
||||
if err != nil {
|
||||
log.Fatal("Couldn't parse key")
|
||||
}
|
||||
|
||||
now := time.Now()
|
||||
end := now.Add(time.Second * time.Duration(valid))
|
||||
token := jwt.NewWithClaims(
|
||||
method,
|
||||
&jwt.MapClaims{
|
||||
"sub": username,
|
||||
"aud": groupURL.String(),
|
||||
"exp": &jwt.NumericDate{end},
|
||||
"nbf": &jwt.NumericDate{now},
|
||||
"iat": &jwt.NumericDate{now},
|
||||
"permissions": []string{"present"},
|
||||
},
|
||||
)
|
||||
|
||||
s, err := token.SignedString(kstring)
|
||||
if err != nil {
|
||||
log.Fatal("Couldn't sign token: ", err)
|
||||
}
|
||||
|
||||
if tokenOnly {
|
||||
fmt.Println(s)
|
||||
} else {
|
||||
query := url.Values{}
|
||||
query.Add("token", s)
|
||||
outURL := &url.URL{
|
||||
Scheme: groupURL.Scheme,
|
||||
Host: groupURL.Host,
|
||||
Path: groupURL.Path,
|
||||
RawQuery: query.Encode(),
|
||||
}
|
||||
fmt.Println(outURL.String())
|
||||
}
|
||||
}
|
Loading…
Reference in a new issue