Merge pull request #173806 from rahulva-msft/relay_docs_2

Network traversal document updates

Author: laurabren

articles/communication-services/concepts/network-traversal.md

@@ -0,0 +1,32 @@
+---
+title: Conceptual documentation for  Azure Communication Services - Network Traversal
+titleSuffix: An Azure Communication Services Concept Document
+description: Learn more about Azure Communication Services Network Traversal SDKs and REST APIs.
+author: rahulva
+manager: shahen
+services: azure-communication-services
+ms.author: rahulva
+ms.date: 09/20/2021
+ms.topic: conceptual
+ms.service: azure-communication-services
+---
+
+#  Network Traversal Concepts	
+
+Real-time Relays solve the problem of NAT (Network Address Translation) traversal for Peer-to-Peer (P2P) connections. Most devices on the internet today have an IP address used for internal LAN traffic (home or corporate network) or an externally visible address (router or NAT gateway). To connect two devices on the internet, the external address is required, but is typically not available to a device behind a NAT gateway. To address the connectivity issue, following protocols are used:
+
+  STUN (Session Traversal Utilities for NAT) offers a protocol to allow devices to exchange external IPs on the internet. If the clients can see each other, there is typically no need for a relay through a TURN service since the connection can be made peer-to-peer. A STUN server's job is to respond to request for a device's external IP.
+  
+  TURN (Traversal Using Relays around NAT) is an extension of the STUN protocol that also relays the data between two endpoints through a mutually visible server.
+        
+## ACS Network Traversal Overview 	
+
+WebRTC(Web Real-Time Technologies) allow web browsers to stream audio, video, and data between devices without needing to have a gateway in the middle. Some of the common use cases here are voice, video, broadcasting, and screen sharing. To connect two endpoints on the internet, their external IP address is required. External IP is typically not available for devices sitting behind a corporate firewall. The protocols like STUN (Session Traversal Utilities for NAT) and TURN (Traversal Using Relays around NAT)  are used to help the endpoints communicate.
+
+Azure Communication Service provides high bandwidth, low latency connections between peers for real-time communications scenarios. The ACS  Network Traversal Service hosts TURN servers for use with the NAT scenarios. Azure Real-Time Relay Service exposes the existing STUN/TURN infrastructure as a Platform as a Service(PaaS) Azure offering. The service will provide low-level STUN and TURN services.  Users are then billed proportional to the amount of data relayed. 
+
+
+## Next Steps:
+
+* For an introduction to authentication, see [Authenticate to Azure Communication Services](./authentication.md).
+* For an introduction to acquire relay candidates, see [Create and manage access tokens](../quickstarts/relay-token.md).

articles/communication-services/quickstarts/includes/relay-token-java.md

@@ -0,0 +1,175 @@
+---
+title: include file
+description: include file
+services: azure-communication-services
+author: rahulva
+manager: shahen
+ms.service: azure-communication-services
+ms.subservice: azure-communication-services
+ms.date: 09/20/2021
+ms.topic: include
+ms.custom: include file
+ms.author: rahulva
+---
+
+> [!NOTE]
+> Find the finalized code for this quickstart on [GitHub](https://github.com/Azure-Samples/communication-services-java-quickstarts/tree/main/relay-token-quickstart)
+
+## Prerequisites for Java
+
+- An Azure account with an active subscription. [Create an account for free](https://azure.microsoft.com/free/?WT.mc_id=A261C142F).
+- [Java Development Kit (JDK)](/azure/developer/java/fundamentals/java-jdk-install) version 8 or above.
+- [Apache Maven](https://maven.apache.org/download.cgi).
+- A deployed Communication Services resource and connection string. [Create a Communication Services resource](../create-communication-resource.md).
+
+## Setting Up
+
+### Create a new Java application
+
+Open your terminal or command window. Navigate to the directory where you'd like to create your Java application. Run the command below to generate the Java project from the maven-archetype-quickstart template.
+
+```console
+mvn archetype:generate -DgroupId=com.communication.quickstart -DartifactId=communication-quickstart -DarchetypeArtifactId=maven-archetype-quickstart -DarchetypeVersion=1.4 -DinteractiveMode=false
+```
+
+You'll notice that the 'generate' task created a directory with the same name as the `artifactId`. Under this directory, the src/main/java directory contains the project source code, the `src/test/java directory` contains the test source, and the `pom.xml` file is the project's Project Object Model, or POM.
+
+### Install the package
+
+Open the **pom.xml** file in your text editor. Add the following dependency element to the group of dependencies.
+
+```xml
+<dependency>
+    <groupId>com.azure</groupId>
+    <artifactId>azure-communication-identity</artifactId>
+    <version>1.0.0</version>
+</dependency>
+```
+
+### Set up the app framework 
+
+From the project directory:
+
+1. Navigate to the `/src/main/java/com/communication/quickstart` directory
+2. Open the `App.java` file in your editor
+3. Replace the `System.out.println("Hello world!");` statement
+4. Add `import` directives
+
+Use the following code to begin:
+
+```java
+package com.communication.quickstart;
+
+import com.azure.communication.common.*;
+import com.azure.communication.identity.*;
+import com.azure.communication.identity.models.*;
+import com.azure.core.credential.*;
+import com.communication.network.traversal.*;
+
+import java.io.IOException;
+import java.time.*;
+import java.util.*;
+
+public class App
+{
+    public static void main( String[] args ) throws IOException
+    {
+        System.out.println("Azure Communication Services - Network Credentials Quickstart");
+        // Quickstart code goes here
+    }
+}
+```
+
+## Authenticate the client
+
+Instantiate a `CommunicationIdentityClient` with your resource's access key and endpoint. Learn how to [manage your resource's connection string](../create-communication-resource.md#store-your-connection-string). In addition, you can initialize the client with any custom HTTP client the implements the `com.azure.core.http.HttpClient` interface.
+
+Add the following code to the `main` method:
+
+```java
+// Your can find your endpoint and access key from your resource in the Azure portal
+String endpoint = "https://<RESOURCE_NAME>.communication.azure.com";
+String accessKey = "SECRET";
+
+CommunicationRelayClient communicationRelayClient = new CommunicationRelayClientBuilder()
+    .endpoint(endpoint)
+    .credential(new DefaultAzureCredentialBuilder().build())
+    .buildClient();
+
+```
+
+You can also provide the entire connection string using the `connectionString()` function instead of providing the endpoint and access key.
+```java
+// Your can find your connection string from your resource in the Azure portal
+String connectionString = "<connection_string>";
+
+CommunicationRelayClient communicationRelayClient = new CommunicationRelayClientBuilder()
+    .connectionString(connectionString)
+    .buildClient();
+```
+
+## Create an identity
+
+Azure Communication Services maintains a lightweight identity directory. Use the `createUser` method to create a new entry in the directory with a unique `Id`. Store received identity with mapping to your application's users. For example, by storing them in your application server's database. The identity is required later to issue access tokens.
+
+```java
+CommunicationUserIdentifier user = communicationIdentityClient.createUser();
+System.out.println("\nCreated an identity with ID: " + user.getId());
+```
+
+## Getting the relay configuration
+Call the Azure Communication token service to exchange the user access token for a TURN service token
+
+```java
+CommunicationIdentityClient communicationIdentityClient = new CommunicationIdentityClientBuilder()
+            .connectionString(connectionString)
+            .buildClient();
+
+CommunicationUserIdentifier user = communicationIdentityClient.createUser();
+System.out.println("User id: " + user.getId());
+
+CommunicationRelayConfiguration config = communicationRelayClient.getRelayConfiguration(user);
+        
+        System.out.println("Expires on:" + config.getExpiresOn());
+        List<CommunicationIceServer> iceServers = config.getIceServers();
+
+        for (CommunicationIceServer iceS : iceServers) {
+            System.out.println("URLS: " + iceS.getUrls());
+            System.out.println("Username: " + iceS.getUsername());
+            System.out.println("Credential: " + iceS.getCredential());
+        } 
+```
+
+## Run the code
+
+Navigate to the directory containing the *pom.xml* file and compile the project by using the following `mvn` command.
+
+```console
+mvn compile
+```
+
+Then, build the package.
+
+```console
+mvn package
+```
+
+Run the following `mvn` command to execute the app.
+
+Navigate to the directory containing the *pom.xml* file and compile the project by using the following `mvn` command.
+
+```console
+mvn compile
+```
+
+Then, build the package.
+
+```console
+mvn package
+```
+
+Run the following `mvn` command to execute the app.
+
+```console
+mvn exec:java -Dexec.mainClass="com.communication.quickstart.App" -Dexec.cleanupDaemonThreads=false
+```

articles/communication-services/quickstarts/includes/relay-token-net.md

@@ -26,7 +26,7 @@ ms.author: shahen
 dotnet new console -o RelayTokenQuickstart
 ```
 
-1. Change your directory to the newly created app folder and use the `dotnet build` command to compile your application.
+2. Change your directory to the newly created app folder and use the `dotnet build` command to compile your application.
 
 ```console
 cd RelayTokenQuickstart
@@ -91,7 +91,7 @@ var client = new CommunicationIdentityClient(connectionString);
 Azure Communication Services maintains a lightweight identity directory. Use the `createUser` method to create a new entry in the directory with a unique `Id`. Store received identity with mapping to your application's users. For example, by storing them in your application server's database. The identity is required later to issue access tokens.
 
 ```csharp
-var identityResponse = await client.CreateUserAsync();
+var identityResponse = await client.CreateUserAsync().Result;
 var identity = identityResponse.Value;
 Console.WriteLine($"\nCreated an identity with ID: {identity.Id}");
 ```
@@ -103,18 +103,18 @@ Call the Azure Communication token service to exchange the user access token for
 ```csharp
 var relayClient = new CommunicationRelayClient("COMMUNICATION_SERVICES_CONNECTION_STRING");
 
-Response<CommunicationRelayConfiguration> turnTokenResponse = await relayClient.GetRelayConfigurationAsync(identity);
+Response<CommunicationRelayConfiguration> turnTokenResponse = await relayClient.GetRelayConfigurationAsync(identity).Result;
 DateTimeOffset turnTokenExpiresOn = turnTokenResponse.Value.ExpiresOn;
-IReadOnlyList<CommunicationTurnServer> turnServers = turnTokenResponse.Value.TurnServers;
+IReadOnlyList<CommunicationIceServer> iceServers = turnTokenResponse.Value.IceServers;
 Console.WriteLine($"Expires On: {turnTokenExpiresOn}");
-foreach (CommunicationTurnServer turnServer in turnServers)
+foreach (CommunicationIceServer iceServer in iceServers)
 {
-    foreach (string url in turnServer.Urls)
+    foreach (string url in iceServer.Urls)
     {
         Console.WriteLine($"TURN Url: {url}");
     }
-    Console.WriteLine($"TURN Username: {turnServer.Username}");
-    Console.WriteLine($"TURN Credential: {turnServer.Credential}");
+    Console.WriteLine($"TURN Username: {iceServer.Username}");
+    Console.WriteLine($"TURN Credential: {iceServer.Credential}");
 }
 ```
 

articles/communication-services/quickstarts/includes/relay-token-python.md

@@ -0,0 +1,114 @@
+---
+title: include file
+description: include file
+services: azure-communication-services
+author: rahulva 
+manager: shahen
+ms.service: azure-communication-services
+ms.subservice: azure-communication-services
+ms.date: 07/30/2021
+ms.topic: include
+ms.custom: include file
+ms.author: rahulva
+---
+
+> [!NOTE]
+> Find the finalized code for this quickstart on [GitHub](https://github.com/Azure-Samples/communication-services-python-quickstarts/tree/main/relay-token-quickstart)
+
+## Prerequisites for Python
+
+ An Azure account with an active subscription. [Create an account for free](https://azure.microsoft.com/free/?WT.mc_id=A261C142F).
+- [Python](https://www.python.org/downloads/) 2.7 or 3.6+.
+- An active Communication Services resource and connection string. [Create a Communication Services resource](../create-communication-resource.md).
+
+## Setting Up
+
+### Create a new Python application
+
+1. Open your terminal or command window create a new directory for your app, and navigate to it.
+
+   ```console
+   mkdir access-tokens-quickstart && cd relay-tokens-quickstart
+   ```
+
+2. Use a text editor to create a file called **issue-relay-tokens.py** in the project root directory and add the structure for the program, including basic exception handling. You'll add all the source code for this quickstart to this file in the following sections.
+
+   ```python
+    import os
+    from azure.communication.networktraversal import CommunicationRelayClient
+    from azure.identity import DefaultAzureCredential
+    from azure.communication.identity import CommunicationIdentityClient
+    
+    try:
+      print("Azure Communication Services - Access Relay Configuration  Quickstart")
+      # Quickstart code goes here
+    except Exception as ex:
+      print("Exception:")
+      print(ex)
+   ```
+
+### Install the package
+
+While still in the application directory, install the Azure Communication Services Identity SDK for Python package by using the `pip install` command.
+
+```console
+pip install azure-communication-identity
+pip install azure.communication.networktraversal
+```
+
+## Authenticate the client
+
+Instantiate a `CommunicationIdentityClient` with your resource's access key and endpoint. The code below retrieves the connection string for the resource from an environment variable named `COMMUNICATION_SERVICES_CONNECTION_STRING`. Learn how to [manage your resource's connection string](../create-communication-resource.md#store-your-connection-string). 
+
+Add this code inside the `try` block:
+
+```python
+
+# You can find your endpoint and access token from your resource in the Azure Portal
+connection_str = "endpoint=ENDPOINT;accessKey=KEY"
+endpoint = "https://<RESOURCE_NAME>.communication.azure.com"
+
+# To use Azure Active Directory Authentication (DefaultAzureCredential) make sure to have
+# AZURE_TENANT_ID, AZURE_CLIENT_ID and AZURE_CLIENT_SECRET as env variables.
+# We also need Identity client to get a User Identifier
+identity_client = CommunicationIdentityClient(endpoint, DefaultAzureCredential())
+relay_client = CommunicationRelayClient(endpoint, DefaultAzureCredential())
+
+#You can also authenticate using your connection string
+identity_client = CommunicationIdentityClient.from_connection_string(self.connection_string)
+relay_client = CommunicationRelayClient.from_connection_string(self.connection_string)
+```
+
+## Create a user from identity 
+
+Azure Communication Services maintains a lightweight identity directory. Use the `create_user` method to create a new entry in the directory with a unique `Id`. Store received identity with mapping to your application's users. For example, by storing them in your application server's database. The identity is required later to issue access tokens.
+
+```python
+user = identity_client.create_user()
+```
+
+## Getting the relay configuration
+Call the Azure Communication token service to exchange the user access token for a TURN service token
+
+```python
+relay_configuration = relay_client.get_relay_configuration(user)
+
+for iceServer in config.ice_servers:
+    assert iceServer.username is not None
+    print('Username: ' + iceServer.username)
+
+    assert iceServer.credential is not None
+    print('Credential: ' + iceServer.credential)
+    
+    assert iceServer.urls is not None
+    for url in iceServer.urls:
+        print('Url:' + url)
+```     
+
+## Run the code
+
+From a console prompt, navigate to the directory containing the *issue-relay-tokens.py* file, then execute the following `python` command to run the app.
+
+```console
+python ./issue-relay-tokens.py
+```