Skip to content

Permanent Certificates

Jump to bottom Edit New page
benny daon edited this page Jun 6, 2021 · 3 revisions

Motivation

The need arose in peerbook signaling server. Users of peerbook have a address book of peers. For each peer it stores it's fingerprint, owner and and is it verified. The fingerprint can't be ephemeral has it's the peer's ID.

Browser Implementation

In the browser storing & loading a certificate is done using RTCCertificate and IndexedDB. IndexedDB has a complicated interface, an alternative is (idvb)[https://www.npmjs.com/package/idb] and open source library that adds promises and lessens the pain/

In Pion

To support this feature pion supports PEM serialization. Certificate has a PEM() method returning a string with two PEM blocks CERTIFICATE & PRIVATE KEY.

It is up to the user to store this string is a secure manner. To load a certificate from this string user webrtc.CertificateFromPEM() function.

Sign up for the Golang Slack and join the #pion channel for discussions and support

If you need commercial support/don't want to use public methods you can contact us at team@pion.ly

  1. Overview
  2. Road Map
  3. Dev Docs
    1. Contributing
    2. Code Structure
    3. Debug Tools
    4. Relative Drafts And Usages
    5. Network Address Translation
    6. WebAssembly Development and Testing
  4. FAQ
  5. Release notes
    1. WebRTC v2.0.0
    2. WebRTC v3.0.0
  6. Goals
    1. Goals 2021
  7. Big Ideas
Clone this wiki locally