[Request] Allow "null" origin #192
Comments
|
I will take another point against me here and inform you that we can't currently support this. A WebSocket connection is allowed if there's no origin header. It's a special case that tells us that a local app is trying to connect, and not a random website. Because of that security piece in RPC, any origin header other than no origin triggers the auth check. The documentation you linked is correct, but authenticated RPC access is currently a closed program, as noted by the red warning at the top of the page. So you can't set a valid RPC origin in your app settings. (As a side note, yeah, non-urls aren't allowed) |
|
Related, I know Garry's Mod does support lua scripting, right? Is there a way within that framework to open a no-origin socket connection? |
|
There is no way to do that without using a custom made .dll which people have to place manually in their game's files, so not really intuitive. The closest you can get to a websocket connection using just the game's API is trying to do it through Awesomium / Chromium in JavaScript, as said in the original post. |
|
Yes, it has lua scripting. Nope, the native way is only by using the http lib it provides. A hacky workaround is to use awesomium (which is getting replaced by chromium in the future), but awesomium sets the origin to "null" and after today's testing on the WIP chromium branch, chromium sets it to "asset://html". So unfortunately, there is no other way to go around this, and due to the RPC origin being restricted to valid urls, there won't be any integration with rich presence at all. This is the reason why I was asking for a way to maybe avoid the auth check. |
|
Thank you very much for the specific information! |
|
Do you think there would be any chance that Garry's Mod could get some type of "shared" dev application with RPC origin's "hardcoded" to "null" and "asset://html" so that communities could use it? I understand that you mostly want it to be used for the "Ask to join" and similar features, but the Garry's Mod devs are currently focused on chromium and bug fixes, so it's unlikely to get these features into the game itself. Most communities also go around the joining their server button by having short urls like "join.domain.tld" in details that redirect you to steam://join//serverip making it easy to know how to join your friend. |
|
@msciotti - bumping as I think you missed the above question. |
|
The caveat with RPC access is that it's a full RPC access—including all commands/events. While I know everyone here's reaction to that is "Even better!" haha, it's not something we want to get into right now. Having a shared RPC application also seems like more of a hacky workaround for one game than a better overall solution. When you say hardcoded to null, do you mean the string |
|
Yes, the origin header is set to a string "null" (or "asset://html" for people using the wip chromium branch) This causes the issue that no one can implement any RPC features when it gets out of beta due to not being a valid url. |
ghost
mentioned this issue
Hi,
After the change not allowing to use HTTP API for setting activity (#191 (comment)), some games have been limited in terms of implementing Rich Presence. For example, Garry's Mod doesn't have any type of websocket/ipc implementation other than using awesomium/chromium to create websocket connections, but this causes a new issue. The origin is set to "null" due to not being in any actual page, not allowing to be connected to the RPC server.
Would there be a chance that the origin "null" (or invalid urls altogether, as chromium sets it to asset://html) could be ignored? It shouldn't break anything as far as I'm aware as it not being an actual url anyways. The only way I've found to avoid this is by setting the RPC Origin which is "documentated" here https://discordapp.com/developers/docs/topics/rpc#connecting, but there's no actual option to set it in the app's settings (and I doubt non-urls would even be allowed?)
The text was updated successfully, but these errors were encountered: