rob/octoplex
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity

security(mediaserver): bind to 127.0.0.1

Browse Source
This commit is contained in:
Rob Watson 2025-04-11 09:28:30 +02:00
parent b257f456ba
commit 524dafd800
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
internal/mediaserver/actor.go
View File

@ -104,8 +104,10 @@ func NewActor(ctx context.Context, params NewActorParams) (_ *Actor, err error)
}
func (a *Actor) Start(ctx context.Context) error {
apiPortSpec := nat.Port(strconv.Itoa(a.apiPort) + ":9997")
rtmpPortSpec := nat.Port(strconv.Itoa(+a.rtmpPort) + ":1935")
// Exposed ports are bound to 127.0.0.1 for security.
// TODO: configurable RTMP bind address
apiPortSpec := nat.Port("127.0.0.1:" + strconv.Itoa(a.apiPort) + ":9997")
rtmpPortSpec := nat.Port("127.0.0.1:" + strconv.Itoa(+a.rtmpPort) + ":1935")
exposedPorts, portBindings, _ := nat.ParsePortSpecs([]string{string(apiPortSpec), string(rtmpPortSpec)})
// The RTMP URL is passed to the UI via the state.