Sravan
54b74d5db1
- /api/ice: when TURN_SECRET is set, mint short-lived HMAC credentials (coturn use-auth-secret) so no permanent password is exposed and the relay can't be abused. Static TURN_USERNAME/CREDENTIAL still supported. - share.html: connection watchdog + clear "couldn't connect on this network" message instead of a blank screen when no path can be established. - deploy/coturn: ready-to-run turnserver.conf + docker-compose + README for hosting our own TURN on a VM we own (flat cost, no per-GB billing). Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
13 lines
457 B
YAML
13 lines
457 B
YAML
# Run coturn on your VM: docker compose up -d
|
|
# host networking is required so the UDP relay port range works without per-port mapping.
|
|
services:
|
|
coturn:
|
|
image: coturn/coturn:latest
|
|
container_name: coturn
|
|
restart: unless-stopped
|
|
network_mode: host
|
|
volumes:
|
|
- ./turnserver.conf:/etc/coturn/turnserver.conf:ro
|
|
- /etc/letsencrypt:/etc/letsencrypt:ro # TLS cert for turns:
|
|
command: ["-c", "/etc/coturn/turnserver.conf"]
|