Name is required.
Email address is required.
Invalid email address
Answer is required.
Exceeding max length of 5KB

Signed Tokens in HLS URL Segment QueryStrings

I am using the premium version of JW Player v7.4.3.

I have successfully setup the player and my server-side code to do HLS streaming by serving m3u8 files and ts segment files via an Amazon Cloudfront Private Content distribution. In order for this to work, I have implemented Cloudfront Signed Cookies. While this works in Safari/iOS, this approach doesn't currently work in Chrome due to Bug #1185 that will be fixed in v7.5 by adding the withCredentials property.

The downside to using cookies for authentication is that a small minority of our clients block cookies by default. We do have instructions to show them how to properly enable cookies just for our streaming domain, but this obviously isn't a user-friendly approach.

A more reliable approach would be for all Cloudfront m3u8/ts requests to have the signed tokens added to the querystring, thus avoiding cookies all together. However, adding the signed url tokens to every single *.ts segment url within the *.m3u8 file would make a VERY large file (we typically stream programs >60 minutes with many segments) and would require a lot of extra back-end work to dynamically generate m3u8 files with dynamic signed tokens.

Is there any way in the HTML5 player to automatically append signed tokens (specified in javascript) to the querystring of all outbound streaming requests? It could be something along the lines of a property called "appendCredentials" or perhaps a version of the new "withCredentials" that would allow one to specify querystring instead of cookies.

The format of actual segment requests would be something like:[number].ts?[SignedTokenString]
(where [SignedTokenString] is what would be specified dynamically in javascript)

Assuming there currently isn't a way I can accomplish this in javascript, are there any plans to add this feature in the future?

I believe this would provide a lot of value to anyone using CDNs that support signed tokens in the URL (and would be more reliable than cookie based approaches).


2 Community Answers


1 rated :

One more comment that I omitted. I am using a self-hosted player (using the cloud-based player isn't an option for me).


JW Player Support Agent  
0 rated :

Hi there,

There is no built-in functionality in our player to append tokens, or anything else, to the network requests for segments and there are currently no plans to support this in the future. If you would like a more detailed explanation, or to suggest the functionality, I would recommend either replying to the specific issue on GitHub that you referenced or you can create a new issue on GitHub.

Please let me know if you need any more help or have any other questions.

Thank you!

This question has received the maximum number of answers.