From: Rob Dean <robdeanmzl@gmail.com>
To: Juliusz Chroboczek <jch@irif.fr>
Cc: galene@lists.galene.org
Subject: [Galene] Re: Galène with PHP
Date: Fri, 5 Mar 2021 11:49:15 +0000 [thread overview]
Message-ID: <CA+_U3xavep8nMpdY5Sg1VmDUf24UfT0nx4+xXB2Q=dcvo2iq5Q@mail.gmail.com> (raw)
In-Reply-To: <874kht1jxv.wl-jch@irif.fr>
[-- Attachment #1: Type: text/plain, Size: 2227 bytes --]
Hi Everyone,
I'm still wondering how to get PHP working on port 8443, so that I can run
PHP and MYSQL alongside Galene. (e.g.
https://www.servername.com:8443/test.php)
Is this query beyond the scope of this group, and more of an Apache
configuration issue?
As you can tell there is a gap in my knowledge of this kind of architecture
but from my testing, I definitely cannot have a host php page running on
port 80 that attempts to create the websocket for Galene over on port 8443
via javascript. That definitely doesn't work, and therefore, for a
successful Galene connection, I need to use an https uri request on port
8443, before the javascript makes the wss connection.
This means therefore, for my design to work, I need PHP to run on port 8443.
Any ideas how to get PHP running on port 8443?
Hopefully we can forge an answer although I realise this is slightly
leftfield to the amazing development of core Galène that you're all working
on.
Best wishes and kind regards,
Rob
On Tue, 2 Mar 2021 at 18:37, Juliusz Chroboczek <jch@irif.fr> wrote:
> > I was wondering if it were possible to use Galčne inside a PHP page, as
> we want
> > to get our students to fill out some details before joining in, and we
> thought
> > that we could use php SESSION cookies to check they've completed
> everything
> > before letting them in.
>
> Sure. What you'll want to do depends on your security model, though.
>
> The simplest, but least secure, would be to check your session cookie in
> the galene.js file; look around line 2600, where it says
>
> document.getElementById('userform').onsubmit
>
> This is easily gamed by the user (they can edit the source code in the
> browser), but if the goal is simply to guide the students and has no
> influence on their grades, it's probably good enough.
>
> If, on the other hand, you want stronger security, you'll need to pass the
> session cookie to the server and do the validation there. You'll need to
> add a parameter to the serverConnect.join method, pass the value within
> the "value" field of the join message, and do the validation in the
> function
> handleClientMessage in webclient.go.
>
> -- Juliusz
>
[-- Attachment #2: Type: text/html, Size: 2852 bytes --]
next prev parent reply other threads:[~2021-03-05 11:49 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-03-02 17:59 [Galene] " Rob Dean
2021-03-02 18:37 ` [Galene] " Juliusz Chroboczek
2021-03-02 20:48 ` Gabriel Kerneis
2021-03-05 11:49 ` Rob Dean [this message]
2021-03-05 13:27 ` Juliusz Chroboczek
2021-03-05 15:56 ` Jeroen van Veen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://lists.galene.org/postorius/lists/galene.lists.galene.org/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='CA+_U3xavep8nMpdY5Sg1VmDUf24UfT0nx4+xXB2Q=dcvo2iq5Q@mail.gmail.com' \
--to=robdeanmzl@gmail.com \
--cc=galene@lists.galene.org \
--cc=jch@irif.fr \
--subject='[Galene] Re: Galène with PHP' \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox