Websocket Server
Ody WebSocket is a high-performance WebSocket server implementation that provides a complete solution for building real-time applications. Built on top of Swoole’s coroutine capabilities, it offers excellent performance, scalability, and a clean API for developers.
Features
- Channel System: Supports public, private, and presence channels for various use cases
- Authentication: Secure your WebSockets with token-based authentication
- Middleware Pipeline: Flexible middleware system for request/response processing
- REST API Integration: Run a REST API alongside your WebSocket server
- Client Libraries: JavaScript client library for browser integration
- Comprehensive Logging: Detailed logging of connections, messages, and errors
- Rate Limiting: Built-in protection against abuse and DoS attacks
- Event-Driven Architecture: Simple event-based programming model
Installation
composer require ody/websocketConfiguration
Create/edit the config/websocket.php file to configure your WebSocket server:
return [
'host' => env('WEBSOCKET_HOST', '127.0.0.1'),
'port' => env('WEBSOCKET_PORT', 9502),
'mode' => SWOOLE_PROCESS,
'secret_key' => env('WEBSOCKET_SECRET_KEY', '123123123'),
'sock_type' => SWOOLE_SOCK_TCP,
'enable_api' => true,
'callbacks' => [
WsEvent::ON_HAND_SHAKE => [\Ody\Websocket\WsServerCallbacks::class, 'onHandShake'],
WsEvent::ON_WORKER_START => [\Ody\Websocket\WsServerCallbacks::class, 'onWorkerStart'],
WsEvent::ON_MESSAGE => [\Ody\Websocket\WsServerCallbacks::class, 'onMessage'],
WsEvent::ON_CLOSE => [\Ody\Websocket\WsServerCallbacks::class, 'onClose'],
WsEvent::ON_DISCONNECT => [\Ody\Websocket\WsServerCallbacks::class, 'onDisconnect'],
// if enable_api is set to true, the Application class will be
// bootstrapped and expose a REST API. This enables all normal
// functionality of ODY framework including route middleware.
WsEvent::ON_REQUEST => [\Ody\Websocket\WsServerCallbacks::class, 'onRequest'],
],
"additional" => [
"worker_num" => env('WEBSOCKET_WORKER_COUNT', swoole_cpu_num() * 2),
'dispatch_mode' => 2, // Important: This ensures connections stay with their worker, does not work in SWOOLE_BASE
/*
* log level
* SWOOLE_LOG_DEBUG (default)
* SWOOLE_LOG_TRACE
* SWOOLE_LOG_INFO
* SWOOLE_LOG_NOTICE
* SWOOLE_LOG_WARNING
* SWOOLE_LOG_ERROR
*/
'log_level' => SWOOLE_LOG_DEBUG,
'log_file' => base_path('storage/logs/ody_websockets.log'),
'ssl_cert_file' => null,
'ssl_key_file' => null,
],
'runtime' => [
'enable_coroutine' => true,
/**
* SWOOLE_HOOK_TCP - Enable TCP hook only
* SWOOLE_HOOK_TCP | SWOOLE_HOOK_UDP | SWOOLE_HOOK_SOCKETS - Enable TCP, UDP and socket hooks
* SWOOLE_HOOK_ALL - Enable all runtime hooks
* SWOOLE_HOOK_ALL ^ SWOOLE_HOOK_FILE ^ SWOOLE_HOOK_STDIO - Enable all runtime hooks except file and stdio hooks
* 0 - Disable runtime hooks
*/
'hook_flag' => SWOOLE_HOOK_ALL,
],
'middleware' => [
// Common middleware applied to both pipelines
'global' => [
\Ody\Websocket\Middleware\LoggingMiddleware::class,
// \Ody\Websocket\Middleware\MetricsMiddleware::class,
],
// Handshake-specific middleware
'handshake' => [
// \Ody\Websocket\Middleware\AuthenticationMiddleware::class,
// \Ody\Websocket\Middleware\OriginValidationMiddleware::class,
// \Ody\Websocket\Middleware\ConnectionRateLimitMiddleware::class,
],
// Message-specific middleware
'message' => [
// \Ody\Websocket\Middleware\MessageRateLimitMiddleware::class,
// \Ody\Websocket\Middleware\MessageValidationMiddleware::class,
// \Ody\Websocket\Middleware\MessageSizeLimitMiddleware::class,
],
],
// Middleware parameters
'middleware_params' => [
// Authentication middleware parameters
\Ody\Websocket\Middleware\AuthenticationMiddleware::class => [
'header_name' => 'sec-websocket-protocol',
],
// // Rate limit middleware parameters
// \Ody\Websocket\Middleware\MessageRateLimitMiddleware::class => [
// 'messages_per_minute' => env('WEBSOCKET_RATE_LIMIT', 60),
// 'table_size' => 1024,
// ],
//
// // Origin validation middleware parameters
// \Ody\Websocket\Middleware\OriginValidationMiddleware::class => [
// 'allowed_origins' => [
// env('APP_URL', 'http://localhost'),
// // Add additional allowed origins
// ],
// ],
],
'rate_limits' => [
'messages_per_minute' => env('WEBSOCKET_RATE_LIMIT', 60),
'connections_per_minute' => env('WEBSOCKET_CONNECTION_LIMIT', 10),
],
];Include WebsocketServiceProvider in the provider section of the config
'providers' => [
// Core providers
// ...
// Package providers
\Ody\Websocket\Providers\WebsocketServiceProvider::class,
// ...
],Usage
Start the Server
php ody websocket:startAdd the -d flag to run the server in daemon mode:
php ody websocket:start -dStop the Server
php ody websocket:stopCore Concepts
Channels
Channels provide a way to categorize and manage WebSocket connections. There are three types of channels:
- Public Channels: Open to all clients
- Private Channels: Require authentication
- Presence Channels: Track user presence with authentication
Public Channels
Public channels are open to any client and don’t require authentication.
// Client-side
const channel = wsClient.subscribe('my-channel');Private Channels
Private channels require authentication and are prefixed with private-.
// Client-side
const privateChannel = wsClient.subscribe('private-my-channel', {
auth: 'your-auth-token'
});Presence Channels
Presence channels track user presence and are prefixed with presence-.
// Client-side
const presenceChannel = wsClient.subscribe('presence-chat', {
auth: 'your-auth-token',
channel_data: JSON.stringify({
user_id: '1',
user_info: {
name: 'John Doe'
}
})
});
// Listen for presence events
presenceChannel.on('member_added', (data) => {
console.log('User joined:', data.user_id);
});
presenceChannel.on('member_removed', (data) => {
console.log('User left:', data.user_id);
});Authentication
The framework uses a simple token-based authentication system. For private and presence channels, you’ll need to implement an authentication endpoint:
// Server-side
Route::post('/broadcasting/auth', [ChannelAuthController::class, 'auth']);Clients must include the authentication token when subscribing to private or presence channels.
Publishing Messages
From the Server
Use the WebSocket facade to publish messages from your PHP application:
use Ody\Websocket\Facades\WebSocket;
// Publish to a channel
WebSocket::publish('my-channel', 'event-name', [
'message' => 'Hello from the server!'
]);
// Publish to multiple channels
WebSocket::publishToChannels(['channel1', 'channel2'], 'event-name', [
'message' => 'Broadcast to multiple channels'
]);
// Send to a specific client
WebSocket::whisper($fd, 'event-name', [
'message' => 'Private message'
]);From the Client
Clients can publish messages to channels they’re subscribed to:
// Public channel
channel.publish('event-name', {
message: 'Hello everyone!'
});
// Private/presence channels (client events must be prefixed with 'client-')
privateChannel.publish('client-typing', {
user: 'John Doe'
});Event Handling
Listen for events on channels:
// Listen for a specific event
channel.on('message', (data) => {
console.log('New message:', data.message);
});
// Global event handling
wsClient.on('connected', () => {
console.log('Connected to WebSocket server');
});
wsClient.on('error', (error) => {
console.error('WebSocket error:', error);
});Middleware System
The middleware system provides a way to process WebSocket connections and messages. Middleware components are executed in a pipeline, allowing you to implement cross-cutting concerns like authentication, logging, and rate limiting.
Built-in Middleware
- LoggingMiddleware: Logs connection and message events
- AuthenticationMiddleware: Handles WebSocket authentication
- RateLimitingMiddleware: Protects against abuse
Custom Middleware
Create custom middleware by implementing the WebSocketMiddlewareInterface:
namespace App\Websocket\Middleware;
use Ody\Websocket\Middleware\WebSocketMiddlewareInterface;
use Swoole\Http\Request;
use Swoole\Http\Response;
use Swoole\WebSocket\Frame;
use Swoole\WebSocket\Server;
class CustomMiddleware implements WebSocketMiddlewareInterface
{
public function processHandshake(Request $request, Response $response, callable $next): bool
{
// Process handshake request
return $next($request, $response);
}
public function processMessage(Server $server, Frame $frame, callable $next)
{
// Process message frame
return $next($server, $frame);
}
}Then add your middleware to the configuration:
// config/websocket.php
'middleware' => [
'global' => [
// ...
\App\Websocket\Middleware\CustomMiddleware::class,
],
],JavaScript Client
Installation
<script src="path/to/OdyWebSocketClient.js"></script>Basic Usage
// Create a client instance
const wsClient = new OdyWebSocketClient('ws://localhost:9502', 'your-secret-key', {
debug: true,
reconnectAttempts: 5
});
// Connect to the server
wsClient.connect().then(() => {
console.log('Connected!');
// Subscribe to a channel
const channel = wsClient.subscribe('my-channel');
// Listen for events
channel.on('message', (data) => {
console.log('Received message:', data);
});
// Publish an event
channel.publish('message', {
text: 'Hello world!'
});
});
// Global event handlers
wsClient.on('error', (error) => {
console.error('WebSocket error:', error);
});
wsClient.on('disconnected', () => {
console.log('Disconnected from server');
});API Reference
Server-Side
WebSocket Facade
publish(string $channel, string $event, array $data): intpublishToChannels(array $channels, string $event, array $data): intwhisper(int $fd, string $event, array $data, ?string $channel = null): boolgetSubscribers(string $channel): arraychannelExists(string $channel): boolisSubscribed(int $fd, string $channel): boolgetChannels(): array
ChannelAuthGenerator
generatePrivateAuth(string $socketId, string $channel): stringgeneratePresenceAuth(string $socketId, string $channel, array $userData): stringvalidatePrivateAuth(string $socketId, string $channel, string $authSignature): boolvalidatePresenceAuth(string $socketId, string $channel, string $authSignature)
Client-Side
OdyWebSocketClient
connect(): Promisedisconnect(): voidsubscribe(string channelName, object data = {}): Channelunsubscribe(string channelName): voidpublish(string channelName, string event, object data = {}): voidon(string event, Function callback): OdyWebSocketClientoff(string event, Function callback = null): OdyWebSocketClientgetSocketId(): string|nullisConnected(): boolean
Channel
on(string event, Function callback): Channeloff(string event, Function callback = null): Channelpublish(string event, object data = {}): Channelunsubscribe(): void
Advanced Configuration
SSL Support
Configure SSL for secure WebSocket connections:
// config/websocket.php
//...
'sock_type' => SWOOLE_SOCK_TCP | SWOOLE_SSL,
//...
'aditional' => [
// ...
'ssl_cert_file' => '/path/to/cert.pem',
'ssl_key_file' => '/path/to/key.pem',
// ...
],Worker Configuration
Adjust the number of worker processes:
// config/websocket.php
'additional' => [
'worker_num' => env('WEBSOCKET_WORKER_COUNT', swoole_cpu_num() * 2),
],Logging
Configure logging levels:
// config/websocket.php
'additional' => [
'log_level' => SWOOLE_LOG_DEBUG,
'log_file' => base_path('storage/logs/ody_websockets.log'),
],Rate Limiting
Set rate limits for connections and messages:
// config/websocket.php
'rate_limits' => [
'messages_per_minute' => env('WEBSOCKET_RATE_LIMIT', 60),
'connections_per_minute' => env('WEBSOCKET_CONNECTION_LIMIT', 10),
],Examples
Chat Application
// Connect to the WebSocket server
const wsClient = new OdyWebSocketClient('ws://localhost:9502', 'your-secret-key');
// Subscribe to the chat channel
const chatChannel = wsClient.subscribe('presence-chat', {
auth: authToken,
channel_data: JSON.stringify({
user_id: userId,
user_info: {
name: username
}
})
});
// Listen for new messages
chatChannel.on('message', (data) => {
addMessageToChat(data.user, data.message);
});
// Listen for typing indicators
chatChannel.on('client-typing', (data) => {
showTypingIndicator(data.user);
});
// Send a message
function sendMessage(message) {
chatChannel.publish('message', {
user: username,
message: message
});
}
// Send typing indicator
function sendTypingIndicator() {
chatChannel.publish('client-typing', {
user: username
});
}Server-Side Broadcasting
// In a controller
public function sendNotification($userId, $message)
{
// Find the user's channel
$userChannel = 'private-user-' . $userId;
// Send the notification
WebSocket::publish($userChannel, 'notification', [
'message' => $message,
'timestamp' => now()->toIso8601String()
]);
return response()->json(['success' => true]);
}Troubleshooting
Common Issues
Connection Refused
- Check if the WebSocket server is running
- Verify the host and port configuration
Authentication Failed
- Ensure the secret key matches in both client and server
- Check that the authentication token is valid
Channel Subscription Failed
- Verify that you’re using the correct channel name and prefix
- Check authentication for private and presence channels
High Memory Usage
- Adjust the worker_num setting in configuration
- Check for memory leaks in custom middleware or handlers
Debugging
Enable debug mode in the client:
const wsClient = new OdyWebSocketClient('ws://localhost:9502', 'your-secret-key', {
debug: true
});Set the server log level to DEBUG:
// config/websocket.php
'additional' => [
'log_level' => SWOOLE_LOG_DEBUG,
],