Multiplexing over https

From Arianne
Jump to: navigation, search

This article describes a future concept. It may still have some open issues and it was not decided, yet, whether to implement it in this way.

In order to encrypt the complete client server communication and to make the marauroa protocol more firewall friendly, it should possible to tunnel it over https.

There is, however, the issue that we want to be able to use a normal https server serving web content on the same ip-address.

It would be possible to send a CONNECT 127.0.01:32160 http-command but this will cause the game server to see all connections as coming from localhost.

A possible solution would be to request a sessionid with an normal https-GET-request from a php page. This php-program will store the client ip-address and the sessionid in the database. Then the client does the CONNECT-dance and sends that sessionid. If there is no sessionid, the login is rejected. If there is a sessionid, marauroa will use that to lookup the real ip-address and log it in loginEvent

Https multiplexing.png