Forum Rules
Our Rules: Read to avoid getting banned!
Advertising
Introduce Yourself to the World with Us!
Resource Database
Find the newest resources around IPTV!
Account upgrade
Upgrade your account to unlock more benefits!
Script php script for Wowza playback security (SecureToken version 2)
- Thread starter alexw216
- Start date
Players use the URI of "http://your-php-server-ip-address/this.php?id=wowza-stream-name" to play.
The php will generate secured access token for your stream with token expiration to prevent re-streaming.
This is tested and verified with Wowza 4.3.0. I do not have 4.5.0 and 4.7.x, so those two versions of Wowza are not tested yet. If you have 4.5.0 and 4.7.x and if you are willing to seed me a copy, I can test and verify this php in those to versions of Wowza.
The php will generate secured access token for your stream with token expiration to prevent re-streaming.
This is tested and verified with Wowza 4.3.0. I do not have 4.5.0 and 4.7.x, so those two versions of Wowza are not tested yet. If you have 4.5.0 and 4.7.x and if you are willing to seed me a copy, I can test and verify this php in those to versions of Wowza.
Last edited:
G
great share m8
will check later and replay
regards
will check later and replay
regards
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
200 likes.... I think this "like's thing" is going to far...
ufff need likes , help
200 likes uff
200 likes uff
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
it takes time and effort to develop the script and same as it takes time and effort for the site admin to support this site. the reason for 200 likes is to make sure only members can see it and this is an implicit way to support site admin as I am only new to this site as two-days fresh member. if this is improper or if there is a better way to do so, I can adjust. I just cut the likes to 100 likes. hopefully it helps.
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
J
can anyone help me how to use this code in wowza 4.3.0. -- thanks
@jhon73us 1. put the php in your web service that has php-fpm enabled.
2. revise the PHP to reflect your wowza server ip, port and secure token shared secret
3. please make sure the Wowza secure token is also set up in the player security page.
4. then you can open VLC to test with http://your-woza-server-ip-address
ort/this-php?wowza-stream-name-without-dot-stream
e.g. http://1.1.1.1:1935/channel.php?id=abcnews assuming you name your php as channel.php
5. then the php will generate the proper secure token link and automatically redirect the link to VLC and then VLC will play flawlessly.
Please note in v4.3.0 the client_ip as hash is not working, so do not enable client_ip as hash. other than that, I have sing this script to secure my team to prevent restreaming for more than two years, so the script works properly with no flaw and it is proof working,
2. revise the PHP to reflect your wowza server ip, port and secure token shared secret
3. please make sure the Wowza secure token is also set up in the player security page.
4. then you can open VLC to test with http://your-woza-server-ip-address
ort/this-php?wowza-stream-name-without-dot-streame.g. http://1.1.1.1:1935/channel.php?id=abcnews assuming you name your php as channel.php
5. then the php will generate the proper secure token link and automatically redirect the link to VLC and then VLC will play flawlessly.
Please note in v4.3.0 the client_ip as hash is not working, so do not enable client_ip as hash. other than that, I have sing this script to secure my team to prevent restreaming for more than two years, so the script works properly with no flaw and it is proof working,
Last edited:
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
J
Thanks@jhon73us 1. put the php in your web service that has php-fpm enabled.
2. revise the PHP to reflect your wowza server ip, port and secure token shared secret
3. please make sure the Wowza secure token is also set up in the player security page.
4. then you can open VLC to test with http://your-woza-server-ip-address
e.g. http://1.1.1.1:1935/channel.php?id=abcnews assuming you name your php as channel.php
5. then the php will generate the proper secure token link and automatically redirect the link to VLC and then VLC will play flawlessly.
Please note in v4.3.0 the client_ip as hash is not working, so do not enable client_ip as hash. other than that, I have sing this script to secure my team to prevent restreaming for more than two years, so the script works properly with no flaw and it is proof working,
good work
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
@all I just verified that this script works great in 4.7..0 with full function. that means the client ip as hash works great in 4.7..0.
but however, for unknown reason the client_ip as hash does not work in 4.3.0. so if your Wowza is 4.3.0 you just cannot enable client ip as hash feature, but for 4.7.0 it all works great. there is no 4.7..7 cracked version out yet, so I have no idea if the script stills woks in 4.7.7.
but however, for unknown reason the client_ip as hash does not work in 4.3.0. so if your Wowza is 4.3.0 you just cannot enable client ip as hash feature, but for 4.7.0 it all works great. there is no 4.7..7 cracked version out yet, so I have no idea if the script stills woks in 4.7.7.
Sample wget output shown as below:
$ wget "http://76.244.x.x/goat-hls.php?id=discoverylife" -O test1
--2019-10-18 03:06:24-- http://76.244.x.x/goat-hls.php?id=discoverylife
Connecting to 76.244.x.x:80... connected.
HTTP request sent, awaiting response... 302 Found
Location: http://147.135.x.x:1935/live/discov...V3M9xsn2CIoBQ==&goattokenstarttime=1571382385 [following]
--2019-10-18 03:06:25-- http://147.135.x.x:1935/live/discov...V3M9xsn2CIoBQ==&goattokenstarttime=1571382385
Connecting to 147.135.40.15:1935... connected.
HTTP request sent, awaiting response... 200 OK
Length: 369 [application/vnd.apple.mpegurl]
Saving to: ‘test1’
100%[========================================================================================================================================>] 369 --.-K/s in 0.06s
2019-10-18 03:06:25 (5.65 KB/s) - ‘test1’ saved [369/369]
$ wget "http://76.244.x.x/goat-hls.php?id=discoverylife" -O test1
--2019-10-18 03:06:24-- http://76.244.x.x/goat-hls.php?id=discoverylife
Connecting to 76.244.x.x:80... connected.
HTTP request sent, awaiting response... 302 Found
Location: http://147.135.x.x:1935/live/discov...V3M9xsn2CIoBQ==&goattokenstarttime=1571382385 [following]
--2019-10-18 03:06:25-- http://147.135.x.x:1935/live/discov...V3M9xsn2CIoBQ==&goattokenstarttime=1571382385
Connecting to 147.135.40.15:1935... connected.
HTTP request sent, awaiting response... 200 OK
Length: 369 [application/vnd.apple.mpegurl]
Saving to: ‘test1’
100%[========================================================================================================================================>] 369 --.-K/s in 0.06s
2019-10-18 03:06:25 (5.65 KB/s) - ‘test1’ saved [369/369]
| Channels | MatchTime Unblock CDN | Offshore Server | Contact |
| 100 cnx / 90€ | 5Gbps / 180€ | 48CPU-256GRAM 10Gbps 569€ | Skype live:giefsl |
| 500 cnx / 350€ | 10Gbps / 350€ | 48CPU-128GRAM 5Gbps / 349€ | TG @changcdn |
| 1000 cnx / 500€ | 20Gbps / 700€ | 40CPU-128GRAM 20Gbps / €980 | http://coronaserver.com |
@all for people who has access right to see the scripts, I have added both 4.3.0 and 4.7.0 php version there for your reference. Even this is proof working version it is still under your discretion to use it with your own situation. e.g. in some of my internal service due to NAT can cause client ip hash become not correct from servers perspective, then I disable client ip as hash to be safe. again please use it accordingly for your need and scenario.
@all updated and Fixed the 4.7..0 version php to correctly capture clients coming behind NAT device, so client ip can be safely used as hash,
However, if you happen to have your php script running in internal network and Wowza fungi in the cloud in this case, you simply cannot use client IP as hash as the php will detect your priavte client IP while the Wowza sees yo connect form public IP so there is a no go
Generally, I would suggest unless your WOWza become a target for restroom hacking, you probably do not need client ip as hash. just the regular token version is enough. however, if re-streaming hacking is bother you too much, then you have no choice but client ip hash to limit the client IP connection exactly form your authorized client.
However, if you happen to have your php script running in internal network and Wowza fungi in the cloud in this case, you simply cannot use client IP as hash as the php will detect your priavte client IP while the Wowza sees yo connect form public IP so there is a no go
Generally, I would suggest unless your WOWza become a target for restroom hacking, you probably do not need client ip as hash. just the regular token version is enough. however, if re-streaming hacking is bother you too much, then you have no choice but client ip hash to limit the client IP connection exactly form your authorized client.
Similar threads
