Fixed Chrome compatibility issue and improved overall functionality

Author: polius

README.md

@@ -98,7 +98,7 @@ https://yourdomain
 To stop and remove the containers, run:
 
 ```
-docker-compose rm -f
+docker-compose down
 ```
 
 ## Under the hood

deploy/docker-compose.yml

@@ -17,8 +17,9 @@ services:
     command:
       - --fingerprint
       - --use-auth-secret
-      - --static-auth-secret=<SECRET_KEY>
       - --no-multicast-peers
+      - --realm=filesync.app
+      - --static-auth-secret=<SECRET_KEY>
     ports:
       - "3478:3478/tcp"
       - "3478:3478/udp"

web/css/bootstrap.min.css

@@ -4,12 +4,12 @@
     <title>FileSync.app | Send files securely in real-time.</title>
     <meta name="description" content="Send files securely from one device to many in real-time.">
     <meta charset="UTF-8">
-    <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css" rel="stylesheet" integrity="sha384-9ndCyUaIbzAi2FUVXJi0CjmCapSmO7SnpJef0486qhLnuZ2cdeRhO02iuK6FUUVM" crossorigin="anonymous">
     <link rel="icon" type="image/png" href="assets/icon.png">
     <link rel="apple-touch-icon" href="assets/icon.png">
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
-    <link href='https://fonts.googleapis.com/css?family=Acme|Lato' rel='stylesheet'>
-    <link rel="stylesheet" href="css/style.css">
+    <link href="https://fonts.googleapis.com/css?family=Acme|Lato" rel="stylesheet">
+    <link href="css/bootstrap.min.css" rel="stylesheet">
+    <link href="css/style.css" rel="stylesheet">
     <script>
       if (window.localStorage.getItem('mode') == 'light') {
         document.documentElement.classList.remove("dark")
@@ -416,7 +416,7 @@ <h5 style="color: var(--color-h1); margin:0">
       </div>
     </div>
 
-    <script src="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.bundle.min.js" integrity="sha384-geWF76RCwLtnZ8qwWowPQNguL3RmwHVBC9FhGdlKrxdiJJigb/j/68SIy3Te4Bkz" crossorigin="anonymous"></script>
+    <script src="js/vendors/bootstrap.bundle.min.js" type="text/javascript"></script>
     <script src="js/vendors/jszip.min.js" type="text/javascript"></script>
     <script src="js/vendors/qrious.min.js" type="text/javascript"></script>
     <script src="js/vendors/crypto-js.min.js" type="text/javascript"></script>

web/index.html

@@ -115,41 +115,33 @@ export class File {
   }
 
   async init(peer_id) {
-    // Get short-lived TURN credentials
-    let username, credential;
+    // Get ICE servers
+    let iceServers;
     try {
-      ({ username, credential } = await turn.getToken());
+      iceServers = await turn.getServers();
     } catch (err) {
       console.log(err)
       dom.transfer_div.style.display = 'none'
       dom.connect_div.style.display = 'none'
       dom.error_div.style.display = 'block'
-      dom.error_message.innerHTML = 'An error occurred getting the TURN credentials. Please try again later.'
+      dom.error_message.innerHTML = 'An error occurred getting the ICE servers. Please try again later.'
       return
     }
-    
+
     await new Promise(async (resolve) => {
       // Get UUID
       const uuid = await this._getUUID();
 
       // Create a new Peer instance
+      const isSecure = window.isSecureContext && window.location.hostname !== 'localhost';
       const peer = new Peer(uuid, {
         host: window.location.hostname,
         port: 9000,
         path: "/",
-        secure: window.location.hostname !== 'localhost',
+        secure: isSecure,
         config: {
-          // iceTransportPolicy: "relay",  // Force TURN-only
-          iceServers: [
-            { 
-              urls: `stun:${window.location.hostname}:3478`
-            },
-            {
-              urls: `turn:${window.location.hostname}:3478`,
-              username: username,
-              credential: credential
-            }
-          ]
+          iceServers: iceServers,
+          // iceTransportPolicy: "relay",  // Force TURN
         }
       });
 

web/js/modules/webrtc/file.js

@@ -1,16 +1,23 @@
 class Turn {
-  _url = "/api/credentials";
-  _expiration = null;
   _username = null;
   _credential = null;
+  _expiration = null;
 
-  _decodeJwt(token) {
-    const payload = token.split(".")[1];
-    const json = atob(payload);
-    return JSON.parse(json);
+  getServers = async () => {
+    await this._getCredentials();
+    return [
+      {
+        urls: `stun:${window.location.hostname}:3478`
+      },
+      {
+        urls: `turn:${window.location.hostname}:3478`,
+        username: this._username,
+        credential: this._credential,
+      }
+    ]
   }
 
-  getToken = async () => {
+  _getCredentials = async () => {
     const now = Math.floor(Date.now() / 1000);
 
     // Check if token is still valid
@@ -19,7 +26,7 @@ class Turn {
     }
 
     // Fetch new token
-    const response = await fetch(this._url, { method: "GET" });
+    const response = await fetch("/api/credentials", { method: "GET" });
 
     if (!response.ok) {
       throw new Error("An issue occurred while getting the token.");
@@ -36,13 +43,16 @@ class Turn {
     const payload = this._decodeJwt(token);
 
     // Set cached values
-    this._expiration = payload.exp - 10; // Subtract 10 seconds for safety
     this._username = payload.username;
     this._credential = payload.credential;
-
-    // Return the username and credential
-    return { username: this._username, credential: this._credential };
+    this._expiration = payload.exp - 10; // Subtract 10 seconds for safety
   };
+
+  _decodeJwt(token) {
+    const payload = token.split(".")[1];
+    const json = atob(payload);
+    return JSON.parse(json);
+  }
 }
 
 export const turn = new Turn();

web/js/modules/webrtc/turn.js

@@ -46,38 +46,30 @@ export class User {
     // Get UUID
     if (peer_id == null) peer_id = await this._getUUID();
 
-    // Get short-lived TURN credentials
-    let username, credential;
+    // Get ICE servers
+    let iceServers;
     try {
-      ({ username, credential } = await turn.getToken());
+      iceServers = await turn.getServers();
     } catch (err) {
       console.log(err)
       dom.transfer_div.style.display = 'none'
       dom.connect_div.style.display = 'none'
       dom.error_div.style.display = 'block'
-      dom.error_message.innerHTML = 'An error occurred getting the TURN credentials. Please try again later.'
+      dom.error_message.innerHTML = 'An error occurred getting the ICE servers. Please try again later.'
       return
     }
 
     await new Promise((resolve) => {
       // Create a new Peer instance
+      const isSecure = window.isSecureContext && window.location.hostname !== 'localhost';
       this._peer = new Peer(peer_id, {
         host: window.location.hostname,
         port: 9000,
         path: "/",
-        secure: window.location.hostname !== 'localhost',
+        secure: isSecure,
         config: {
-          // iceTransportPolicy: "relay",  // Force TURN-only
-          iceServers: [
-            { 
-              urls: `stun:${window.location.hostname}:3478`
-            },
-            {
-              urls: `turn:${window.location.hostname}:3478`,
-              username: username,
-              credential: credential
-            }
-          ]
+          iceServers: iceServers,
+          // iceTransportPolicy: "relay",  // Force TURN
         }
       });
 

web/js/modules/webrtc/user.js

@@ -0,0 +1,126 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>Test ICE Servers</title>
+  <meta charset="utf-8" />
+  <meta http-equiv="X-UA-Compatible" content="IE=edge" />
+  <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+</head>
+
+<body>
+  <h1>Test ICE Servers</h1>
+  <hr />
+  <p id="ip"></p>
+  <p id="stun">🔴 The STUN server is NOT reachable!</p>
+  <p id="turn">🔴 The TURN server is NOT reachable!</p>
+  <p id="err"></p>
+  <hr />
+  <script>
+    const IP = document.getElementById('ip');
+    const Stun = document.getElementById('stun');
+    const Turn = document.getElementById('turn');
+    const Err = document.getElementById('err');
+
+    document.addEventListener("DOMContentLoaded", main);
+
+    async function main() {
+      const token = await _getToken()
+      const payload = await _decodeJwt(token);
+      const iceServers = [
+        {
+          urls: `stun:${window.location.hostname}:3478`
+        },
+        {
+          urls: `turn:${window.location.hostname}:3478`,
+          username: payload.username,
+          credential: payload.credential
+        }
+      ];
+
+      // Print iceServers config
+      console.log("ICE Servers", iceServers)
+
+      // Create a new RTCPeerConnection using the STUN and TURN servers
+      const pc = new RTCPeerConnection({ iceServers });
+
+      // Handle each ICE candidate as it is discovered.
+      pc.onicecandidate = (e) => {
+        // Ignore the final empty candidate (null means gathering finished)
+        if (!e.candidate || e.candidate.candidate === '') return;
+
+        // Show candidate
+        console.log(e.candidate.candidate);
+
+        // Detect and indicate if a STUN candidate is found and gather the Public IP address
+        if (e.candidate.type == 'srflx' || e.candidate.candidate.includes('srflx')) {
+          let ip = /\b\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}\b/;
+          let address = e.candidate.address 
+            ? e.candidate.address 
+            : e.candidate.candidate.match(ip);
+          IP.innerHTML = '🟢 Your Public IP Address is ' + address;
+          Stun.innerHTML = '🟢 The STUN server is reachable!';
+        }
+
+        // Detect and indicate if a TURN (relay) candidate is found
+        if (e.candidate.type == 'relay' || e.candidate.candidate.includes('relay')) {
+          Turn.innerHTML = '🟢 The TURN server is reachable!';
+        }
+      };
+
+      // Close the connection when ICE gathering is complete.
+      pc.onicegatheringstatechange = () => {
+        if (pc.iceGatheringState === 'complete') {
+          pc.close();
+        }
+      };
+
+      // Handle any ICE candidate errors.
+      pc.onicecandidateerror = (e) => {
+        console.error(e);
+      };
+
+      // Create a dummy data channel (required to initiate ICE gathering)
+      pc.createDataChannel('test');
+
+      // Start ICE gathering by creating and setting a local offer
+      pc.createOffer().then(offer => pc.setLocalDescription(offer));
+    }
+
+    // Fetches a temporary token (JWT) from the server.
+    async function _getToken() {
+      try {
+        // Request the credentials from the server API
+        const response = await fetch('/api/credentials', { method: "GET" });
+
+        // Check if the response is successful (HTTP 2xx)
+        if (!response.ok) {
+          throw new Error(`Failed to fetch token: ${response.status} ${response.statusText}`);
+        }
+
+        // Parse the response as JSON
+        const data = await response.json();
+
+        // Extract the token from the response
+        const token = data?.token;
+        if (!token) {
+          throw new Error('No token found in server response.');
+        }
+
+        // Return token
+        return token;
+      } 
+      catch (err) {
+        // Log and rethrow for higher-level error handling
+        console.error('Error fetching token:', err);
+      }
+    }
+
+    // Decodes the payload of a JWT
+    async function _decodeJwt(token) {
+      const payload = token.split(".")[1];
+      const json = atob(payload);
+      return JSON.parse(json);
+    }
+  </script>
+</body>
+</html>