I have a question around Smooth Streaming authentication. I have researched this on the forums and search engines, and have seen some other people ask similar questions, but I can't seem to get to the answer I am looking for.
My scenario ---- I have some h264 and vc-1 streams I have created through Expression Encoder 4, and I deliver them to my users through a custom Silverlight 5 application on Silverlight compatible browsers and then just as a straight steam to iOS devices.
The streams play just fine everywhere that I try to play them. What I'm trying to do is STOP unauthenticated users from viewing the streams directly from the URL (e.g. http://blah/blah/blahvideo.ism/manifest). The platform for my application is ASP.Net
4.0. Before I moved to smooth streaming with IIS 7, I was using custom HttpHandlers specified in my web.config file to block access to my MP4 and WMV files for users that were not authorized to view the subscription-based content ... This worked like a charm.
However, I do not seem to be able to use an HttpHandler to intercept the request for the .ism manifest. It does seem to process the request in the development environment (that does not have Media Services 4.1 installed), but the handler no longer gets used
once I put it into my IIS 7 environment with all of that stuff turned on.
Has anyone ever run into this? I have heard of (and have installed) Web Playlists, but the users of my site are not registered users on the IIS Server, so I'm not sure that this is the right way to go. Also, I realize that I could use the REST API through
the Silverlight application, but that does not prevent users that are viewing the streams outside of silverlight from obtaining unauthorized access. How about custom Managed Modules or URL Rewriting? Am I possibly not doing something right with the HttpHandler
to make it intercept the ism request?
Any advice anyone has would be greatly appreciated.
Just wondering if you ever found a solution for providing custom authentication for Smooth Streaming manifests? I'm stuck with the same problem - nothing I've been trying has managed to work.
I have a basic MVC app that has one view(Index). This view has an iframe that references a video as its source. The video is streamed by IIS Smooth Streaming. My problem is that anyone can view the source for the page and get the URL for the video and view
it without the application I only want the video to accessible from the application. I currently have the authentication scheme for the application and video set to anonymous. If I diable anonymous access for the video folder under IIS, the video is not accessible
from the application.
Is there a way to disable anonymous access for the video but keep it accessible for the application? Anyone should be able to access the app. I don't want users to have to authenticate to view the video. Solutions may be somewhat limited because I'm using
Windows 7. It seems as though some features of IIS aren't available on Windows 7. I tried to use impersonation in the webconfig but haven't have any success yet.
BirdDog
1 Post
Smooth Streaming Authentication
Aug 11, 2012 08:04 PM|LINK
I have a question around Smooth Streaming authentication. I have researched this on the forums and search engines, and have seen some other people ask similar questions, but I can't seem to get to the answer I am looking for.
My scenario ---- I have some h264 and vc-1 streams I have created through Expression Encoder 4, and I deliver them to my users through a custom Silverlight 5 application on Silverlight compatible browsers and then just as a straight steam to iOS devices. The streams play just fine everywhere that I try to play them. What I'm trying to do is STOP unauthenticated users from viewing the streams directly from the URL (e.g. http://blah/blah/blahvideo.ism/manifest). The platform for my application is ASP.Net 4.0. Before I moved to smooth streaming with IIS 7, I was using custom HttpHandlers specified in my web.config file to block access to my MP4 and WMV files for users that were not authorized to view the subscription-based content ... This worked like a charm. However, I do not seem to be able to use an HttpHandler to intercept the request for the .ism manifest. It does seem to process the request in the development environment (that does not have Media Services 4.1 installed), but the handler no longer gets used once I put it into my IIS 7 environment with all of that stuff turned on.
Has anyone ever run into this? I have heard of (and have installed) Web Playlists, but the users of my site are not registered users on the IIS Server, so I'm not sure that this is the right way to go. Also, I realize that I could use the REST API through the Silverlight application, but that does not prevent users that are viewing the streams outside of silverlight from obtaining unauthorized access. How about custom Managed Modules or URL Rewriting? Am I possibly not doing something right with the HttpHandler to make it intercept the ism request?
Any advice anyone has would be greatly appreciated.
Smooth Streaming authorization authentication HttpHandler Subscription
JoshD43
1 Post
Re: Smooth Streaming Authentication
Sep 26, 2012 06:50 AM|LINK
Hi BirdDog,
Just wondering if you ever found a solution for providing custom authentication for Smooth Streaming manifests? I'm stuck with the same problem - nothing I've been trying has managed to work.
Thanks!
Josh
keramel
2 Posts
Re: Smooth Streaming Authentication
Dec 07, 2012 01:21 AM|LINK
I'm stuck also. Has anyone figured this out yet? Thanks.
Kerry
samzhang
249 Posts
Microsoft
Re: Smooth Streaming Authentication
Dec 07, 2012 09:36 PM|LINK
You should be able to use any built-in or custom authentication/authorization module for this purpose. See this post:
http://blogs.iis.net/samzhang/archive/2011/03/29/how-to-only-authenticate-encoder-streams-but-not-the-clients-for-live-smooth-streaming.aspx
keramel
2 Posts
Re: Smooth Streaming Authentication
Dec 17, 2012 03:33 PM|LINK
My problem area is as follows.
I have a basic MVC app that has one view(Index). This view has an iframe that references a video as its source. The video is streamed by IIS Smooth Streaming. My problem is that anyone can view the source for the page and get the URL for the video and view it without the application I only want the video to accessible from the application. I currently have the authentication scheme for the application and video set to anonymous. If I diable anonymous access for the video folder under IIS, the video is not accessible from the application.
Is there a way to disable anonymous access for the video but keep it accessible for the application? Anyone should be able to access the app. I don't want users to have to authenticate to view the video. Solutions may be somewhat limited because I'm using Windows 7. It seems as though some features of IIS aren't available on Windows 7. I tried to use impersonation in the webconfig but haven't have any success yet.
<identity impersonate="true" userName="Victory\MvcUser" password="MvcUser" />
Any help is greatly appreciated. Thanks.
Kerry