BackChannel is a web application what provides centralized remote control for connected clients, and monitors their status in real-time.
architecture-beta
group server[Server]
group client[Client]
group backlink_server[BackLink] in server
service laptop(server)[Laptop]
service http_port(server)[http port] in server
service forwarding_port1(server)[forwarding port] in server
service forwarding_port2(server)[forwarding port] in server
service web_app(server)[WebApp] in backlink_server
service forwarder(server)[Forwarder] in backlink_server
service blacklink_client(server)[BlackLink] in client
service ssh_port(server)[SSH port] in client
laptop:R --> L:http_port
laptop:B --> L:forwarding_port1
http_port:R --> L:web_app
forwarding_port1:R --> L:forwarder
forwarder:R <--> L:forwarding_port2
forwarding_port2:R <--> L:blacklink_client
blacklink_client:R <--> L:ssh_port
Sequence of monitoring:
sequenceDiagram
actor User
participant Server
participant Client
loop 30 sec
Client->>Server: Get order
activate Server
Server-->>Client: Return empty
deactivate Server
Client->>Server: Put metrics
end
User->>Server: Get all client data
activate Server
Server-->>User: return
deactivate Server
Sequence of connecting:
sequenceDiagram
actor User
participant Server
participant Client
Client->>Server: Get order
activate Server
Server-->>Client: Return empty
Client->>Server: Put metrics
deactivate Server
User->>Server: Initiate connection
activate Server
Client->>Server: Get order
activate Server
Server-->>Client: Return opened port
deactivate Server
Client->>Server: Connect to opened port
Server-->>User: Return opened port
User<<->>Client: Two way connection
deactivate Server
Pull the latest docker image:
docker pull ghcr.io/radaron/backchannel:latestOr use docker-compose:
version: '3.8'
services:
backchannel:
image: ghcr.io/radaron/backchannel:latest
ports:
- "8000:8000"
- 20000-20100:20000-20100
environment:
- SECRET_KEY=your-secret-key
- MASTER_PASSWORD_HASH=your-master-password-hash
- ALLOWED_ORIGINS=*
volumes:
- ./data:/app/datamake generate-secretThis will generate a UUID-based secret key that you should set in your environment.
make hash-passwordThe script will prompt you to enter a password and return a base64-encoded bcrypt hash. Set this in your environment.
- Python 3.12+
- uv package manager
- Node.js 18+ (for frontend development)
- Docker or OCI-compatible container runtime
-
Install dependencies:
make install
-
Generate security credentials:
# Generate a secret key make generate-secret # Generate password hash make hash-password
-
Set up environment:
cp backchannel.env.example backchannel.env # Edit backchannel.env with your generated credentials -
Build frontend and run the application:
make up
-
Access the application:
Configuration can be customized via environment variables or the backchannel.env file:
SECRET_KEY- Session secret key (required for production)MASTER_PASSWORD_HASH- Hashed master password (preferred over plain text)SESSION_EXPIRE_DAYS- Session expiration time (default: 1 day)COOKIE_NAME- Session cookie name (default: backchannel_session)ALLOWED_ORIGINS- CORS allowed origins (default: "*")PORT_RANGE_START- Start of port range for dynamic forwarding (default: 20000)PORT_RANGE_END- End of port range for dynamic forwarding (default: 20100)LOCAL_ADDRESS- Local address to bind (default: "0.0.0.0")CUSTOM_MESSAGES- Custom connection instructions (default provided)