I am exploring whether it’s possible to use an API key or application token to retrieve the OctoPrint webcam stream and embed it on a personal website I’m building from scratch. The goal is to securely share the live feed with a small, authorized audience.
From a legal and compliance perspective (thinking along the lines of law firm internal policies or client data security), what are the best practices to ensure access is secure and doesn’t violate privacy rules? Are there recommended methods or plugins for safely exposing the stream without compromising the OctoPrint instance?
There's my RTMPStreamer plugin that can restream the webcam to twitch/YouTube Live, etc. It's not the greatest and embedding those can get tricky, as it is with the plugin's tab itself.
Other solutions involve using an external application, ie OBS to ingest the stream from OctoPrint and deliver that outside the network.
Depending on the version of OctoPi, this may require some tweaks to the service or octopi.txt file to tell mjpgstreamer to allow connections other than from localhost (expecting haproxy).
So adjusting camera_http_options in octopi.txt would override that. Something like this would require authentication.