mirror of
https://github.com/wukko/cobalt.git
synced 2024-11-17 13:49:58 +00:00
91 lines
2.6 KiB
JavaScript
91 lines
2.6 KiB
JavaScript
import NodeCache from "node-cache";
|
|
import { randomBytes } from "crypto";
|
|
import { nanoid } from 'nanoid';
|
|
|
|
import { decryptStream, encryptStream, sha256 } from "../sub/crypto.js";
|
|
import { streamLifespan } from "../config.js";
|
|
|
|
const streamCache = new NodeCache({
|
|
stdTTL: streamLifespan/1000,
|
|
checkperiod: 10,
|
|
deleteOnExpire: true
|
|
})
|
|
|
|
streamCache.on("expired", (key) => {
|
|
streamCache.del(key);
|
|
})
|
|
|
|
const hmacSalt = randomBytes(64).toString('hex');
|
|
|
|
export function createStream(obj) {
|
|
const streamID = nanoid(),
|
|
iv = randomBytes(16).toString('base64'),
|
|
secret = randomBytes(256).toString('base64'),
|
|
exp = new Date().getTime() + streamLifespan,
|
|
hmac = sha256(`${streamID},${exp},${iv},${secret}`, hmacSalt),
|
|
streamData = {
|
|
service: obj.service,
|
|
type: obj.type,
|
|
urls: obj.u,
|
|
filename: obj.filename,
|
|
exp: exp,
|
|
audioFormat: obj.audioFormat,
|
|
isAudioOnly: !!obj.isAudioOnly,
|
|
time: obj.time || false,
|
|
copy: !!obj.copy,
|
|
mute: !!obj.mute,
|
|
metadata: obj.fileMetadata || false
|
|
};
|
|
|
|
streamCache.set(
|
|
streamID,
|
|
encryptStream(streamData, iv, secret)
|
|
)
|
|
|
|
let streamLink = new URL('/api/stream', process.env.apiURL);
|
|
|
|
const params = {
|
|
't': streamID,
|
|
'e': exp,
|
|
'h': hmac,
|
|
's': secret,
|
|
'i': iv
|
|
}
|
|
|
|
for (const [key, value] of Object.entries(params)) {
|
|
streamLink.searchParams.append(key, value);
|
|
}
|
|
|
|
return streamLink.toString();
|
|
}
|
|
|
|
export function verifyStream(id, hmac, exp, secret, iv) {
|
|
try {
|
|
const ghmac = sha256(`${id},${exp},${iv},${secret}`, hmacSalt);
|
|
|
|
if (ghmac !== String(hmac)) {
|
|
return {
|
|
error: "i couldn't verify if you have access to this stream. go back and try again!",
|
|
status: 401
|
|
}
|
|
}
|
|
|
|
const streamInfo = JSON.parse(decryptStream(streamCache.get(id.toString()), iv, secret));
|
|
|
|
if (!streamInfo) return {
|
|
error: "this download link has expired or doesn't exist. go back and try again!",
|
|
status: 400
|
|
}
|
|
|
|
if (String(exp) === String(streamInfo.exp) && Number(exp) > new Date().getTime()) {
|
|
return streamInfo;
|
|
}
|
|
return {
|
|
error: "i couldn't verify if you have access to this stream. go back and try again!",
|
|
status: 401
|
|
}
|
|
} catch (e) {
|
|
return { status: 500, body: { status: "error", text: "couldn't verify this stream. request a new one!" } };
|
|
}
|
|
}
|