Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # Web server stuff: whether any should be enabled, which ports they
- # should use, whether security should be handled directly or demanded to
- # an external application (e.g., web frontend) and what should be the
- # base path for the Janus API protocol. You can also specify the
- # threading model to use for the HTTP webserver: by default this is
- # 'unlimited' (which means a thread per connection, as specified by the
- # libmicrohttpd documentation), using a number will make use of a thread
- # pool instead. Since long polls are involved, make sure you choose a
- # value that doesn't keep new connections waiting. Notice that by default
- # all the web servers will try and bind on both IPv4 and IPv6: if you
- # want to only bind to IPv4 addresses (e.g., because your system does not
- # support IPv6), you should set the web server 'ip' property to '0.0.0.0'.
- general: {
- json = "indented" # Whether the JSON messages should be indented (default),
- # plain (no indentation) or compact (no indentation and no spaces)
- base_path = "/janus" # Base path to bind to in the web server (plain HTTP only)
- threads = "unlimited" # unlimited=thread per connection, number=thread pool
- http = true # Whether to enable the plain HTTP interface
- port = 8088 # Web server HTTP port
- #interface = "eth0" # Whether we should bind this server to a specific interface only
- #ip = "" # Whether we should bind this server to a specific IP address (v4 or v6) only
- https = true # Whether to enable HTTPS (default=no)
- secure_port = 8089 # Web server HTTPS port, if enabled
- #secure_interface = "eth0" # Whether we should bind this server to a specific interface only
- #secure_ip = "" # Whether we should bind this server to a specific IP address (v4 or v6) only
- #acl = "127.,192.168.0." # Only allow requests coming from this comma separated list of addresses
- }
- # Janus can also expose an admin/monitor endpoint, to allow you to check
- # which sessions are up, which handles they're managing, their current
- # status and so on. This provides a useful aid when debugging potential
- # issues in Janus. The configuration is pretty much the same as the one
- # already presented above for the webserver stuff, as the API is very
- # similar: choose the base bath for the admin/monitor endpoint (/admin
- # by default), ports, threading model, etc. Besides, you can specify
- # a secret that must be provided in all requests as a crude form of
- # authorization mechanism, and partial or full source IPs if you want to
- # limit access basing on IP addresses. For security reasons, this
- # endpoint is disabled by default, enable it by setting admin_http=yes.
- admin: {
- admin_base_path = "/admin" # Base path to bind to in the admin/monitor web server (plain HTTP only)
- admin_threads = "unlimited" # unlimited=thread per connection, number=thread pool
- admin_http = false # Whether to enable the plain HTTP interface
- admin_port = 7088 # Admin/monitor web server HTTP port
- #admin_interface = "eth0" # Whether we should bind this server to a specific interface only
- #admin_ip = "192.168.0.1" # Whether we should bind this server to a specific IP address (v4 or v6) only
- admin_https = false # Whether to enable HTTPS (default=no)
- admin_secure_port = 7889 # Admin/monitor web server HTTPS port, if enabled
- #admin_secure_interface = "eth0" # Whether we should bind this server to a specific interface only
- #admin_secure_ip = "192.168.0.1 # Whether we should bind this server to a specific IP address (v4 or v6) only
- admin_acl = "127.,192.168.0." # Only allow requests coming from this comma separated list of addresses
- }
- # The HTTP servers created in Janus support CORS out of the box, but by
- # default they return a wildcard (*) in the 'Access-Control-Allow-Origin'
- # header. This works fine in most situations, except when we have to
- # respond to a credential request (withCredentials=true in the XHR). If
- # you need that, uncomment and set the 'allow_origin' below to specify
- # what must be returned in 'Access-Control-Allow-Origin'. More details:
- # https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS
- cors: {
- #allow_origin = ""
- }
- # Certificate and key to use for HTTPS, if enabled (and passphrase if needed).
- # You can also disable insecure protocols and ciphers by configuring the
- # 'ciphers' property accordingly (no limitation by default).
- certificates: {
- cert_pem = "/etc/ssl/certs/ssl-cert-snakeoil.pem"
- cert_key = "/etc/ssl/private/ssl-cert-snakeoil.key"
- #cert_pwd = "secretpassphrase"
- ciphers = "PFS:-VERS-TLS1.0:-VERS-TLS1.1:-3DES-CBC:-ARCFOUR-128"
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement