Authorization of sessions with Central
In a cluster of servers managed by Flussonic Central, authorization of publication and playback sessions is performed by one or several authorization backends.
Authorization backend is a server-side application that defines permissions to access sessions. When a user requests to publish or play video, Central redirects it to the appropriate streamer; then the streamer requests the authorization backend to find out if the session is allowed for that user.
You can develop your own authorization backend (application or script) implementing our authorization API. An example of a script for authorization is given here.
In addition, Central provides the settings to allow or deny specific tokens, IP addresses, countries or user agents.
Caution
Do not configure authorization backends separately on each streamer with Flussonic Media Server when the streamers operate in a cluster managed by Central.
Adding authorization backends
Flussonic Central allows specifying the authorization backend URLs and the settings for Flussonic Media Server auth backend. These settings are provisioned to all streamers in the cluster at each Central's restart.
To configure the auth backends:
- Go to Config — Auth backends.
- Click Add Auth Backend.
- Enter the backend's URL in HTTP Backends.
- Optionally, specify tokens, IP addresses, countries or user agents that should be allowed or denied to access the streams without further requests to other authorization backends.
Note
You can also manage the authorization backends using the corresponding API methods.