<html><head><meta http-equiv="Content-Type" content="text/html charset=us-ascii"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">you can secure it on a user by user basis, but limited only to which commands that user can run the attrs are:<div class=""><br class=""></div><div class="">jsonrpc-allowed-jsapi</div><div class="">jsonrpc-allowed-fsapi</div><div class=""><br class=""></div><div class="">for fsapi commands and jsapi commands.</div><div class=""><br class=""></div><div class="">if you look in the default configs you can see similar settings put in at a global level, the same is possible per user:</div><div class=""><br class=""></div><div class=""><div style="margin: 0px; font-size: 13px; line-height: normal; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">conf/testing/directory/default.xml</span><span style="font-variant-ligatures: no-common-ligatures; color: #34bbc7" class="">:</span><span style="font-variant-ligatures: no-common-ligatures" class="">5</span><span style="font-variant-ligatures: no-common-ligatures; color: #34bbc7" class="">:</span><span style="font-variant-ligatures: no-common-ligatures" class=""> <param name="</span><span style="font-variant-ligatures: no-common-ligatures; color: #c33720" class="">jsonrpc-allowed</span><span style="font-variant-ligatures: no-common-ligatures" class="">-methods" value="verto"/></span></div><div style="margin: 0px; font-size: 13px; line-height: normal; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">conf/vanilla/directory/default.xml</span><span style="font-variant-ligatures: no-common-ligatures; color: #34bbc7" class="">:</span><span style="font-variant-ligatures: no-common-ligatures" class="">26</span><span style="font-variant-ligatures: no-common-ligatures; color: #34bbc7" class="">:</span><span style="font-variant-ligatures: no-common-ligatures" class=""> <param name="</span><span style="font-variant-ligatures: no-common-ligatures; color: #c33720" class="">jsonrpc-allowed</span><span style="font-variant-ligatures: no-common-ligatures" class="">-methods" value="verto"/></span></div><div style="margin: 0px; font-size: 13px; line-height: normal; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);" class=""><span style="font-variant-ligatures: no-common-ligatures" class="">conf/vanilla/directory/default.xml</span><span style="font-variant-ligatures: no-common-ligatures; color: #34bbc7" class="">:</span><span style="font-variant-ligatures: no-common-ligatures" class="">27</span><span style="font-variant-ligatures: no-common-ligatures; color: #34bbc7" class="">:</span><span style="font-variant-ligatures: no-common-ligatures" class=""> <!-- <param name="</span><span style="font-variant-ligatures: no-common-ligatures; color: #c33720" class="">jsonrpc-allowed</span><span style="font-variant-ligatures: no-common-ligatures" class="">-event-channels" value="demo,conference,presence"/> --></span></div></div><div class=""><span style="font-variant-ligatures: no-common-ligatures" class=""><br class=""></span></div><div class=""><span style="font-variant-ligatures: no-common-ligatures" class=""><br class=""></span></div><div class=""><br class=""><div><blockquote type="cite" class=""><div class="">On Oct 31, 2016, at 3:00 AM, Donny Hardyanto <<a href="mailto:hardyanto.donny@gmail.com" class="">hardyanto.donny@gmail.com</a>> wrote:</div><br class="Apple-interchange-newline"><div class=""><div dir="ltr" class="">Hi all,<div class=""><br class=""></div><div class="">Is it possible to run JSAPI via verto? Is it as powerfull as Event Socket? Is there any way to secure it? I like to deploy the verto webrtc to website, but dont want any one can abuse and control my FS box via JSAPi/verto.</div><div class=""><br class=""></div><div class="">Thanks,</div><div class=""><br class=""></div><div class="">Donny</div></div>
_________________________________________________________________________<br class="">Professional FreeSWITCH Consulting Services: <br class=""><a href="mailto:consulting@freeswitch.org" class="">consulting@freeswitch.org</a><br class="">http://www.freeswitchsolutions.com<br class=""><br class="">Official FreeSWITCH Sites<br class="">http://www.freeswitch.org<br class="">http://confluence.freeswitch.org<br class="">http://www.cluecon.com<br class=""><br class="">FreeSWITCH-users mailing list<br class="">FreeSWITCH-users@lists.freeswitch.org<br class="">http://lists.freeswitch.org/mailman/listinfo/freeswitch-users<br class="">UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users<br class="">http://www.freeswitch.org</div></blockquote></div><br class=""></div></body></html>