1
Fork 0
mirror of https://github.com/jech/galene.git synced 2024-11-22 16:45:58 +01:00

Remove galene-link.

Our tokens are not revocable, they should not be generated with
a large lifetime.  Don't encourage users to do that.
This commit is contained in:
Juliusz Chroboczek 2022-02-24 12:20:24 +01:00
parent e19716489c
commit 96588d0aa3
2 changed files with 0 additions and 113 deletions

View file

@ -8,7 +8,6 @@ Galene 0.5 (unreleased)
* Add side-menu options for high-quality audio (Opus at 128kbps) and * Add side-menu options for high-quality audio (Opus at 128kbps) and
disabling audio preprocessing. disabling audio preprocessing.
* Send audio in addition to video when sharing browser tabs. * Send audio in addition to video when sharing browser tabs.
* Add the "galene-link" utility, which generates autologin links.
1 February 2022: Galene 0.4.4 1 February 2022: Galene 0.4.4

View file

@ -1,112 +0,0 @@
package main
import (
"flag"
"fmt"
"log"
"net/url"
"path"
"time"
"github.com/golang-jwt/jwt/v4"
"github.com/jech/galene/group"
"github.com/jech/galene/token"
)
func main() {
var username, kid, server string
var valid int
var tokenOnly bool
flag.StringVar(&group.Directory, "groups", "./groups/",
"group description `directory`")
flag.StringVar(&username, "user", "", "username")
flag.StringVar(&kid, "kid", "", "`id` of key to use")
flag.IntVar(&valid, "valid", 86400, "`seconds` validity")
flag.StringVar(&server, "server", "https://galene.org:8443",
"server `url`")
flag.BoolVar(&tokenOnly, "token", false, "generate token only")
flag.Parse()
if flag.NArg() != 1 {
log.Fatal("One argument (the group URL) required")
}
groupname := flag.Arg(0)
desc, err := group.GetDescription(groupname)
if err != nil {
log.Fatal("Get group description: ", err)
}
serverURL, err := url.Parse(server)
if err != nil {
log.Fatal("Couldn't parse server URL")
}
pth := path.Join(path.Join(serverURL.Path, "group"), groupname) + "/"
groupURL := &url.URL{
Scheme: serverURL.Scheme,
Host: serverURL.Host,
Path: pth,
}
keys := desc.AuthKeys
var key map[string]interface{}
for _, k := range keys {
kid2, _ := k["kid"].(string)
if kid == "" || kid == kid2 {
key = k
break
}
}
if key == nil {
log.Fatal("Couldn't find key")
}
alg, ok := key["alg"].(string)
var method jwt.SigningMethod
if ok {
method = jwt.GetSigningMethod(alg)
}
if method == nil {
log.Fatal("Couldn't determine key signing method")
}
kstring, err := token.ParseKey(key)
if err != nil {
log.Fatal("Couldn't parse key")
}
now := time.Now()
end := now.Add(time.Second * time.Duration(valid))
token := jwt.NewWithClaims(
method,
&jwt.MapClaims{
"sub": username,
"aud": groupURL.String(),
"exp": &jwt.NumericDate{end},
"nbf": &jwt.NumericDate{now},
"iat": &jwt.NumericDate{now},
"permissions": []string{"present"},
},
)
s, err := token.SignedString(kstring)
if err != nil {
log.Fatal("Couldn't sign token: ", err)
}
if tokenOnly {
fmt.Println(s)
} else {
query := url.Values{}
query.Add("token", s)
outURL := &url.URL{
Scheme: groupURL.Scheme,
Host: groupURL.Host,
Path: groupURL.Path,
RawQuery: query.Encode(),
}
fmt.Println(outURL.String())
}
}