Playback Callback

Notice

This document is a machine-translated draft and is currently undergoing review. Some content may be inaccurate or differ from the original Korean version. For the most precise information, refer to the Korean documentation.

Kollus VOD supports a playback callback feature that obtains approval from the customer's server at the moment playback begins, for content security and access control purposes. It is invoked in real time when a user clicks the play button, and content playback is activated only when a valid approval response is received from the customer's server.

---

Notes

• Per-channel control policy: Channels with a callback URL configured require server approval for all playback requests. (If not configured, playback proceeds immediately without approval.)
• Identifier required: The client_user_id parameter must be included when generating the JWT for playback.
• Offline playback restriction: Playback control for content stored on a device is handled by the DRM download callback.
  • Guide: DRM Download Callback

---

Callback configuration

The callback URL can be configured in the Kollus VOD console.

• Guide: Callback Integration - Playback Callback

---

Callback flow

Caution

• Response specification: The response data from the callback server must be returned in JWT(JSON Web Token) format.
• Header authentication: The HTTP response header must include X-KOLLUS-USERKEY: {CUSTOM_KEY}.
  • Where to find it: Kollus VOD console > [Service account] > [Custom key]
• Data types: All integer fields in JSON (expiration_date, result, content_expired, etc.) must be passed as integer type. (Sending as a string type such as "1" will cause processing failure.)

---

Callback types

Playback callbacks are divided into two types based on when they are invoked and their purpose.

• kind1 (Playback expiration setting): Dynamically assigns the viewer's playback expiration date before playback begins.
• kind3 (Final playback approval): Performs a final check of the current playback permission immediately after the player is ready.

---

Request specifications

delivery method

• Method: POST
• Content-Type: application/x-www-form-urlencoded
• Data Format: FormData

Request parameters

Parameter	Type	Required	Description
kind	integer	◯	Playback callback type 1: Playback expiration setting 3: Final playback approval
client_user_id	string	◯	User ID (the client_user_id entered when generating the JWT)
player_id	string	◯	Kollus Player unique ID
hardware_id	string	-	Hardware ID (provided when an identifiable value exists, such as in a Windows environment)
device_name	string	-	Device model name
media_content_key	string	◯	Media content key
localtime	integer	-	Device time at the time of the request (Unix timestamp)
uservalues	JSON string	-	Custom variables (uservalue0–uservalue99)

Uservalues example

{
  "uservalue0": "class_code_01",
  "uservalue1": "product_code_02",
  "uservalue99": "custom_code_03"
}

---

Response specifications

Kind1 response fields

The kind1 response is used to define the viewer's permissions and dynamically control security options (such as capture blocking and virtual machine environment detection).

Data fields

Caution

The expiration date and time (expiration_date) cannot be modified or revoked once recorded in the Kollus system. Be sure to assign an accurate Unix timestamp value.

Field	Type	Required	Description
expiration_date	integer	◯	Playback expiration date and time (Unix timestamp) Maximum value: 2145916799 (2037-12-31 23:59:59)
result	integer	◯	Approval result 0: Abnormal (playback blocked) 1: Normal (playback allowed)
message	string	-	Guidance message to display on the player screen when playback is blocked (result: 0) For PC, the loadcheck=0 parameter must be included in the Playback URL for the message to appear. Example: https://v.kr.kollus.com/{MEDIA_CONTENT_KEY}?loadcheck=0
vmcheck	integer	-	(HTML5 Player for PC only) Whether to allow playback in virtual machine (VM) environments 0: Allow 1: Detect and block virtual machine environments (default)
disable_tvout	integer	-	Whether to allow external display output (takes precedence over the channel's default policy) 0: Allow (capture prevention may be disabled when using App Player for iOS) 1: Block
expiration_playtime	integer	-	Playback time limit (sec) 0 or null: No limit
cpcheck	integer	-	Whether to enable capture program detection (PC) 0: Disabled 1: Enabled (default)

Exp fields

Field	Type	Required	Description
exp	integer	-	JWT expiration date and time (Unix timestamp)

Kind1 response example

{
  "data" : {
    "expiration_date": 1402444800,
    "vmcheck": 1,
    "disable_tvout": 1,
    "expiration_playtime": 1800,
    "result": 1
  },
  "exp" : 1477558242
}

Kind3 response fields

The kind3 response is used to perform a final check of the user's current permission status immediately before playback.

Data fields

Field	Type	Required	Description
content_expired	integer	-	Playback expiration status 0: Playback available 1: Playback blocked (expired)
result	integer	◯	Approval result (the result value takes precedence over the content_expired setting.) 0: Abnormal (playback blocked) 1: Normal (playback allowed)
message	string	-	Guidance message to display on the player when playback is blocked (result: 0 or content_expired: 1) For PC, the loadcheck=0 parameter must be included in the Playback URL for the message to appear. Example: https://v.kr.kollus.com/{MEDIA_CONTENT_KEY}?loadcheck=0

Exp fields

Field	Type	Required	Description
exp	integer	-	JWT expiration date and time (Unix timestamp)

Kind3 response example

{
  "data" : {
    "content_expired": 1,
    "result": 1
  },
  "exp" : 1477558242
}