BetterFrame

BetterCorp/BetterFrame

Fork 0

mirror of https://github.com/BetterCorp/BetterFrame.git synced 2026-05-26 20:16:35 +00:00

Commit graph

Author	SHA1	Message	Date
Mitchell R	4cf9704350	fix(onvif-events): store cluster_key at pairing + implement AES-256-GCM decrypt Root cause: kiosk never stored cluster_key from pairing response. Bundle ships onvif_password_encrypted (AES-256-GCM with cluster key). decrypt_cluster was a stub returning None → empty password → WSSE auth fails → CreatePullPoint rejected → no events ever. Fix: 1. ClaimResp now includes cluster_key field 2. Stored encrypted at rest alongside kiosk_key (at_rest.rs) 3. Loaded at bundle render, passed to onvif_events::start() 4. decrypt_cluster implements full AES-256-GCM: parse v1.<iv>.<tag>.<ct> format, base64url decode, decrypt with cluster key Also: removed BF_ENABLE_ONVIF_EVENTS env gate — if camera is type=onvif with onvif_host, subscribe. Gate was redundant with the type filter. Also: bump Angie proxy_read_timeout to 600s on /api/admin/ for OS bundle import (downloads ~1GB from GitHub, was timing out at 60s). NOTE: existing paired kiosks won't have cluster_key stored. They need to re-pair (delete + re-add) to receive it. New pairings get it automatically.	2026-05-22 22:18:25 +02:00
Mitchell R	01a1aad2fd	fix(kiosk): rename reserved keyword gen, clean warnings gen is reserved in Rust 2024 edition. Also remove unused serde_json::Value import and prefix unused end_idx variable.	2026-05-21 12:14:24 +02:00
Mitchell R	991c2f0cd5	feat(onvif-events): PullPoint subscription for all ONVIF cameras New kiosk/src/onvif_events.rs: for each ONVIF camera in the bundle, creates a PullPoint subscription, polls every 3s, parses NotificationMessage XML into structured JSON (topic + source key/values + data key/values + timestamp), and POSTs to /api/kiosk/event with source_type=onvif + camera_id. Forwards ALL event topics: motion, ANPR (LicensePlateRecognition), line crossing, intrusion, digital input, analytics, tamper — everything the camera exposes. Node-RED sorts what matters. Subscription lifecycle: - CreatePullPointSubscription with 60s InitialTerminationTime - Renew every 55s before timeout - Unsubscribe on bundle change / shutdown - Auto-resubscribe on pull/renew failure (30s backoff) - Generation tracking via Weak<()> so old workers self-terminate when start() is called with a new bundle WSSE PasswordDigest auth for SOAP calls — same scheme the server's onvif.ts uses. sha1 crate added. BundleCamera extended with onvif_host/port/username/password_encrypted fields (server already ships them; kiosk just wasn't deserializing). Gated by BF_ENABLE_ONVIF_EVENTS=1. Enabled by default in the pi-gen image env file. TODO: cluster-key-based decryption of onvif_password_encrypted. For now relies on the RTSP URI having plaintext credentials embedded (which the ONVIF import path already ensures via rtspWithCredentials).	2026-05-21 12:03:30 +02:00

Author

SHA1

Message

Date

Mitchell R

4cf9704350

fix(onvif-events): store cluster_key at pairing + implement AES-256-GCM decrypt

Root cause: kiosk never stored cluster_key from pairing response.
Bundle ships onvif_password_encrypted (AES-256-GCM with cluster key).
decrypt_cluster was a stub returning None → empty password → WSSE auth
fails → CreatePullPoint rejected → no events ever.

Fix:
1. ClaimResp now includes cluster_key field
2. Stored encrypted at rest alongside kiosk_key (at_rest.rs)
3. Loaded at bundle render, passed to onvif_events::start()
4. decrypt_cluster implements full AES-256-GCM: parse v1.<iv>.<tag>.<ct>
   format, base64url decode, decrypt with cluster key

Also: removed BF_ENABLE_ONVIF_EVENTS env gate — if camera is type=onvif
with onvif_host, subscribe. Gate was redundant with the type filter.

Also: bump Angie proxy_read_timeout to 600s on /api/admin/ for OS
bundle import (downloads ~1GB from GitHub, was timing out at 60s).

NOTE: existing paired kiosks won't have cluster_key stored. They need
to re-pair (delete + re-add) to receive it. New pairings get it
automatically.

2026-05-22 22:18:25 +02:00

Mitchell R

01a1aad2fd

fix(kiosk): rename reserved keyword gen, clean warnings

gen is reserved in Rust 2024 edition. Also remove unused
serde_json::Value import and prefix unused end_idx variable.

2026-05-21 12:14:24 +02:00

Mitchell R

991c2f0cd5

feat(onvif-events): PullPoint subscription for all ONVIF cameras

New kiosk/src/onvif_events.rs: for each ONVIF camera in the bundle,
creates a PullPoint subscription, polls every 3s, parses
NotificationMessage XML into structured JSON (topic + source key/values
+ data key/values + timestamp), and POSTs to /api/kiosk/event with
source_type=onvif + camera_id.

Forwards ALL event topics: motion, ANPR (LicensePlateRecognition),
line crossing, intrusion, digital input, analytics, tamper — everything
the camera exposes. Node-RED sorts what matters.

Subscription lifecycle:
  - CreatePullPointSubscription with 60s InitialTerminationTime
  - Renew every 55s before timeout
  - Unsubscribe on bundle change / shutdown
  - Auto-resubscribe on pull/renew failure (30s backoff)
  - Generation tracking via Weak<()> so old workers self-terminate
    when start() is called with a new bundle

WSSE PasswordDigest auth for SOAP calls — same scheme the server's
onvif.ts uses. sha1 crate added.

BundleCamera extended with onvif_host/port/username/password_encrypted
fields (server already ships them; kiosk just wasn't deserializing).

Gated by BF_ENABLE_ONVIF_EVENTS=1. Enabled by default in the pi-gen
image env file.

TODO: cluster-key-based decryption of onvif_password_encrypted. For
now relies on the RTSP URI having plaintext credentials embedded (which
the ONVIF import path already ensures via rtspWithCredentials).

2026-05-21 12:03:30 +02:00

3 commits