· 6 years ago · Nov 30, 2019, 09:46 PM
1# Web server stuff: whether any should be enabled, which ports they
2# should use, whether security should be handled directly or demanded to
3# an external application (e.g., web frontend) and what should be the
4# base path for the Janus API protocol. You can also specify the
5# threading model to use for the HTTP webserver: by default this is
6# 'unlimited' (which means a thread per connection, as specified by the
7# libmicrohttpd documentation), using a number will make use of a thread
8# pool instead. Since long polls are involved, make sure you choose a
9# value that doesn't keep new connections waiting. Notice that by default
10# all the web servers will try and bind on both IPv4 and IPv6: if you
11# want to only bind to IPv4 addresses (e.g., because your system does not
12# support IPv6), you should set the web server 'ip' property to '0.0.0.0'.
13general: {
14 json = "indented" # Whether the JSON messages should be indented (default),
15 # plain (no indentation) or compact (no indentation and no spaces)
16 base_path = "/janus" # Base path to bind to in the web server (plain HTTP only)
17 threads = "unlimited" # unlimited=thread per connection, number=thread pool
18 http = true # Whether to enable the plain HTTP interface
19 port = 8088 # Web server HTTP port
20 #interface = "eth0" # Whether we should bind this server to a specific interface only
21 #ip = "192.168.0.1" # Whether we should bind this server to a specific IP address (v4 or v6) only
22 https = false # Whether to enable HTTPS (default=false)
23 #secure_port = 8089 # Web server HTTPS port, if enabled
24 #secure_interface = "eth0" # Whether we should bind this server to a specific interface only
25 #secure_ip = "192.168.0.1" # Whether we should bind this server to a specific IP address (v4 or v6) only
26 #acl = "127.,192.168.0." # Only allow requests coming from this comma separated list of addresses
27}
28
29# Janus can also expose an admin/monitor endpoint, to allow you to check
30# which sessions are up, which handles they're managing, their current
31# status and so on. This provides a useful aid when debugging potential
32# issues in Janus. The configuration is pretty much the same as the one
33# already presented above for the webserver stuff, as the API is very
34# similar: choose the base bath for the admin/monitor endpoint (/admin
35# by default), ports, threading model, etc. Besides, you can specify
36# a secret that must be provided in all requests as a crude form of
37# authorization mechanism, and partial or full source IPs if you want to
38# limit access basing on IP addresses. For security reasons, this
39# endpoint is disabled by default, enable it by setting admin_http=true.
40admin: {
41 admin_base_path = "/admin" # Base path to bind to in the admin/monitor web server (plain HTTP only)
42 admin_threads = "unlimited" # unlimited=thread per connection, number=thread pool
43 admin_http = false # Whether to enable the plain HTTP interface
44 admin_port = 7088 # Admin/monitor web server HTTP port
45 #admin_interface = "eth0" # Whether we should bind this server to a specific interface only
46 #admin_ip = "192.168.0.1" # Whether we should bind this server to a specific IP address (v4 or v6) only
47 admin_https = false # Whether to enable HTTPS (default=false)
48 #admin_secure_port = 7889 # Admin/monitor web server HTTPS port, if enabled
49 #admin_secure_interface = "eth0" # Whether we should bind this server to a specific interface only
50 #admin_secure_ip = "192.168.0.1 # Whether we should bind this server to a specific IP address (v4 or v6) only
51 #admin_acl = "127.,192.168.0." # Only allow requests coming from this comma separated list of addresses
52}
53
54# The HTTP servers created in Janus support CORS out of the box, but by
55# default they return a wildcard (*) in the 'Access-Control-Allow-Origin'
56# header. This works fine in most situations, except when we have to
57# respond to a credential request (withCredentials=true in the XHR). If
58# you need that, uncomment and set the 'allow_origin' below to specify
59# what must be returned in 'Access-Control-Allow-Origin'. More details:
60# https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS
61cors: {
62 #allow_origin = "http://foo.example"
63}
64
65# Certificate and key to use for HTTPS, if enabled (and passphrase if needed).
66# You can also disable insecure protocols and ciphers by configuring the
67# 'ciphers' property accordingly (no limitation by default).
68certificates: {
69 #cert_pem = "/path/to/cert.pem"
70 #cert_key = "/path/to/key.pem"
71 #cert_pwd = "secretpassphrase"
72 #ciphers = "PFS:-VERS-TLS1.0:-VERS-TLS1.1:-3DES-CBC:-ARCFOUR-128"
73}