Skip to main content
A
Anonymous
July 18, 2010
Question

Protect live stream on FMIS

  • July 18, 2010
  • 1 reply
  • 821 views

Hi,

I want to protect my live streams. I use allowhtmldomain.txt and  include my domain name there. after i did that people stream to my FMIS  using FME can not connect to my server. they are receiving error on FME  saying "

I did research and found this code

var VALID_REFERRER = "http://localhost/SimpleConnect.swf";
var VALID_PAGEURL = "http://localhost/SimpleConnect.html";
application.onConnect = function(pClient) {
if (pClient.referrer == VALID_REFERRER && pClient.pageUrl ==  VALID_PAGEURL) {
this.acceptConnection(pClient);
} else {
this.rejectConnection(pClient)
}
}
}

and put that on main.asc, and change URL to my file location. but i  still get same error.


Is there is a way to allow only my website and disable all other  websites from leeching, while FME can stream to my FMIS without  problems.

    This topic has been closed for replies.

    1 reply

    A
    Anonymous
    July 19, 2010

    Hi,

    I think some information got missed in your post :

    " ---people stream to my FMIS  using FME can not connect to my server. they are receiving error on FME  saying "

    Could you let me know what error is encountered?

    On the first look I think you have set

    var VALID_REFERRER = "http://localhost/SimpleConnect.swf";
    var VALID_PAGEURL = "http://localhost/SimpleConnect.html";

    which could be implying your subscriber app but not FMLE (FME). So this setting looks like is allowing only SimpleConnect.swf to connect and disallowing FMLE.

    You can probably first trace what is received when you trace out pClient.referrer && pClient.pageUrlon the server side. Then connect using FMLE and also your subscriber app (SimpleConnect.swf). You would recieve different values for both of them. You need to allow both to be accepted in your server side code.

    Also you can checkout the usage of authentication plug-in of FMLE at http://www.adobe.com/products/flashmediaserver/flashmediaencoder/faq/#section-5 (check the section named Authentication).

    You could make use of the SWFVerification feature on FMIS, to allow only valid client SWFs to connect to FMIS. And team it up with the server-side authentication like you are attempting. If you want a more finegrained control you can also build a custom C++ authorization plug in to select who can connect to your FMIS.

    Thanks

    Mamata

    S
    sandy_adams
    Known Participant
    August 8, 2010

    her mamata, if you can create a such a program, i would like to buy that.

    A
    Anonymous
    August 9, 2010

    Hi sandy_adams,

    I am not sure if you have already reffered the white paper at http://www.adobe.com/devnet/flashmediaserver/articles/protecting_video_fms.pdf .

    It details the various measures that you can take to accomplish protected streaming from FMS.

    Content security can be brought about through a combination of client-side verification, server-side verification and various FMS security features hence I do not have a ready solution with me. How much security you would like to bring in would depend on you. That way you could customize and build a solution which works best for your needs based on the recommendations provided in the white paper.

    Thanks

    Mamata

    Terms & ConditionsAccessibility statement
    Using the community Terms of use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices