> > I have started an implementation in the kh branch, so that libcurl > could > be used for listener auth, so can shell commands, but neither have been > used in anger yet.Ooo. :) Having just had a look at auth_curl.c in kh, that would probably do what we want even better. Is it possible (or would it *be* possible) to make <mount> sections take wildcards for <mount-path>? From our viewpoint it'd be much easier to process whether the user is authorized to handle a *specific* stream in the auth URL, rather than by tweaking icecast.xml every time we add a new stream.
On 24 Oct 2004, at 13:25, Mike Whitaker wrote:>> >> I have started an implementation in the kh branch, so that libcurl >> could >> be used for listener auth, so can shell commands, but neither have >> been >> used in anger yet. > > Ooo. :) > > Having just had a look at auth_curl.c in kh, that would probably do > what we want even better. > > Is it possible (or would it *be* possible) to make <mount> sections > take wildcards for <mount-path>? From our viewpoint it'd be much > easier to process whether the user is authorized to handle a > *specific* stream in the auth URL, rather than by tweaking icecast.xml > every time we add a new stream.A oneline fix for you that drove me briefly mad till I realised that CGI->header capitaliases the first character of custom headers: src/auth_url.c: line 345 should read: if (strncasecmp (ptr, "icecast-auth-user: 1", 20) == 0) Other than that, I can report that my quick hack to test auth_url works a treat :)
On Sun, 2004-10-24 at 15:33, Mike Whitaker wrote:> On 24 Oct 2004, at 13:25, Mike Whitaker wrote: > > > Ooo. :) > > > > Having just had a look at auth_curl.c in kh, that would probably do > > what we want even better.nice, these things aren't fully settled yet, for instance are enough parameters passed etc.> > Is it possible (or would it *be* possible) to make <mount> sections > > take wildcards for <mount-path>? From our viewpoint it'd be much > > easier to process whether the user is authorized to handle a > > *specific* stream in the auth URL, rather than by tweaking icecast.xml > > every time we add a new stream.wildcard type specifications are not handled, but adding/removing <mount> sections is easy and only requires HUP to become ready for incoming source connections (the kh branch applies most mount settings on active streams as well).> A oneline fix for you that drove me briefly mad till I realised that > CGI->header capitaliases the first character of custom headers: > > src/auth_url.c: line 345 should read: > if (strncasecmp (ptr, "icecast-auth-user: 1", 20) == 0) > > Other than that, I can report that my quick hack to test auth_url works > a treat :)ok, although I don't think all platforms have that call although it can be worked-around. karl.