JSON Web Tokens available with MistServer
JSON Web Token (JWT) support is now available in MistServer, making integration with other platforms and applications easier.
What are JSON Web Tokens?
JSON Web Tokens are an open standard (RFC 7519) that defines a compact and self-contained way for securely transmitting information between parties as a JSON object. Simply put: it's a simple, secure and standardized method of passing on information from point A to point B. For MistServer this is mostly interesting for 2 things:
- Accepting streams
- Allowing playback
How do I use JWTs with MistServer?
The only thing you need to do is pass the JWK (JSON Web Key) or url-location for the JWK and define permissions for pushing into MistServer, playback from MistServer and what streams should be affected. Afterwards, whenever a JWT is used for pushing in or playback it will be verified against any JWK that's set up and used if valid.
The neat part is that this is a configuration in itself, meaning it will allow you to create streams while pushing into MistServer and bypass hooks/triggers normally meant for access control. The idea here is that since the JWT is trusted/verified there is no need to do this again. You could run a full MistServer configuration from just a single JWK setup if you want to.
Want to get started?
Check out our documentation on what should be included & how to start: