Advanced API

Playticon + API

Embed our advanced player with custom headers, DRM, and encrypted URLs.

URL Encryption API

Use our encryption API to generate secure player URLs that hide your stream links from inspection.

POST /api/encrypt.php
fetch('https://gorok.space/api/encrypt.php', {
    method: 'POST',
    headers: { 'Content-Type': 'application/json' },
    body: JSON.stringify({
        url: 'https://example.com/video.m3u8',
        license: 'https://drm-server.com/license',  // Optional
        headers: {                                   // Optional
            'Authorization': 'Bearer token123',
            'X-Custom-Header': 'value'
        }
    })
})
.then(res => res.json())
.then(data => {
    // data.player_url contains encrypted URL
    window.location.href = data.player_url;
});

Response

{
    "success": true,
    "player_url": "https://gorok.space/player-plus.php?v=...(encrypted)...",
    "encrypted": true
}

Direct Embed

For quick testing, you can embed directly with URL parameters (not encrypted).

Basic Embed
<iframe 
    src="https://gorok.space/player-plus.php?link=YOUR_STREAM_URL"
    width="100%" 
    height="450"
    frameborder="0"
    allowfullscreen
    allow="autoplay; encrypted-media; picture-in-picture"
></iframe>
With DRM License
<iframe 
    src="https://gorok.space/player-plus.php?link=STREAM_URL&license=LICENSE_URL"
    width="100%" 
    height="450"
    frameborder="0"
    allowfullscreen
></iframe>

Parameters

Parameter Type Description
link string Media stream URL (HLS, DASH, MP4, etc.)
license string DRM license server URL (Widevine/PlayReady)
v string Encrypted URL from the encryption API

Custom Headers (Encryption API)

When using the encryption API, you can pass custom HTTP headers that will be used when fetching the stream.

{
    "url": "https://protected.cdn.com/stream.m3u8",
    "headers": {
        "Authorization": "Bearer eyJhbG...",
        "X-API-Key": "your-api-key",
        "Cookie": "session=abc123",
        "Referer": "https://allowed-domain.com"
    }
}

Headers are encrypted along with the URL for maximum security. Only our player can decrypt and use them.

Security Features

AES-256 Encryption

URLs are encrypted using military-grade AES-256-CBC encryption.

Hidden Source URLs

Users cannot inspect or copy the original stream URL from browser tools.

Timestamp Validation

Encrypted URLs include timestamps to prevent replay attacks.