HTTP Authorization
HTTP authorization controls who can access your protected video content. It ensures only authorized users can watch your streams.
Authorization workflow
Section titled “Authorization workflow”Before configuring authorization in Astra, you need to understand how the process works.
-
Get channel list from Middleware
The client sends their login credentials to your Middleware system. If the credentials are valid, the Middleware returns a list of channels the user can access. Each channel includes a unique token for later authorization.
-
Request channel from Astra
When the user selects a channel, their video player sends a request to Astra with the unique token from Step 1.
-
Astra authorizes the request
Astra checks the token against the configured authorization method. If the token is valid, Astra returns the channel stream. If not, it responds with an error.
Authorization methods
Section titled “Authorization methods”- User Authorization: Uses login/password or tokens stored in Astra’s user settings
- HTTP Backend Authorization: Sends the token to your Middleware for verification
- Securetoken: Validates tokens using cryptographic algorithms
- IP Authorization: Checks if the user’s IP address is on your access list
Choose the method that best fits your security needs and existing infrastructure.