Skip to end of metadata
Go to start of metadata

1.0 Overview

The External Control Protocol enables the Roku to be controlled via the network. The External Control Service is discoverable via SSDP (Simple Service Discovery Protocol). The service is a simple RESTful API that can be accessed by programs in virtually any programming environment.

2.0 SSDP (Simple Service Discovery Protocol)

SSDP is an industry IETF standard network protocol for the discovery of network services. Roku boxes will advertise their External Control Protocol through SSDP so that programs can discover the IP address of Roku's in the area by using the multicast ssdp protocol. There is a standard SSDP multicast address and port ( that is used for local network communication. The Roku responds to M-SEARCH queries on this ip address and port.

In order to query for the roku ip address, your program can send the following request using the http protocol to port 1900:

Man: "ssdp:discover"
ST: roku:ecp

Remember that there must be a blank line at the end of the file above. If the above request is put into the file roku_ecp_req.txt, you can issue the following command on most Linux machines to test the request.
% ncat 1900 < roku_ecp_req.txt

If you view the response via wireshark and filter on port 1900 you can see the Roku's response. Ncat has trouble receiving multicast traffic so viewing the response using ncat does not work. The response has the following format:

HTTP/1.1 200 OK
Cache-Control: max-age=300
ST: roku:ecp
USN: uuid:roku:ecp:P0A070000007

When you get a 200 status response, the Location header will be valid. You can parse out the URL for the Roku ECP service from the Location header. The Roku serial number is contained in the USN line after uuid:roku:ecp. Note that if there are multiple Roku boxes in your local network, you will get multiple responses. Your program could keep a map of USNs to location URLs and allow the user to select which Roku on your network to send commands to. It's probably best to also let the user give his own names to the USNs

When parsing headers in the response, in accordance with the UPnP Device Architecture specification, field names should not be treated as case sensitive.  That means that, for example, the Location header may begin with either "Location:" or "LOCATION:" or "location:", etc.

Please note the Cache-Control header, we multicast NOTIFY messages periodically (approximately every 20 minutes). It is safe to assume the unit is no longer available if you haven't received a new NOTIFY message before the Cache-Control max-age time expires.

3.0 External Control Protocol Services

The External Control Service is a simple, RESTful service accessed via the http protocol on port 8060. Once you have the Roku ipaddress to connect to, you can issue the following External Control commands to the Roku:

  • query/apps This 'query/apps' returns a map of all the channels installed on the Roku box paired with their app id. This command is accessed via an http GET.
  • keydown is followed by a slash and the name of the key pressed. Keydown is equivalent to pressing down the remote key whose value is the argument passed. This command is sent via a POST with no body.
  • keyup is followed by a slash and the name of the key to release. Keyup is equivalent to releasing the remote key whose value is the argument passed. This command is sent via a POST with no body.
  • keypress is followed by a slash and the name of the key pressed. Keypress is equivalent to pressing down and releasing the remote key whose value is the argument passed. This command is sent via a POST with no body.
  • launch is followed by a slash and an app id, optionally followed by a question mark and a list of URL parameters that are sent to the app id as an roAssociativeArray passed to the RunUserInterface() or Main() entry point. This command is sent via a POST with no body.
  • query/icon is followed by a slash and an app id and returns an icon corresponding to that app. The binary data with an identifying MIME-type header is returned. This command is accessed via an http GET.

Example: GET /query/icon/12

  • input enables a developer to send custom events to their Brightscript application. It takes a user defined list of name-value pairs sent as query string uri parameters. The external control server places these name-value pairs into a BrightScript associative array and passes them directly through to the currently executing channel script via a Message Port attached to a created roInput object. Please refer to Section 3.1 below for more detailed recommendations on how to pass your data. Messages of type roInputEvent have a GetInfo() method that will obtain the associative array. The arguments must be URL-encoded. This command is sent via a POST with no body.

Example: POST /input?acceleration.x=0.0&acceleration.y=0.0&acceleration.z=9.8

3.1 External Control Input Command Conventions

As the firmware simply marshals the arguments to the input command and passes them to the channel script, the forms below compose a conventional way to communicate input from several common input device types.
Sensor Input
There are four sensor values to report, accelerometer, orientation, gyroscope (rotation), and magnetometer (magnetic).
All except orientation are vectors in a cartesian coordinate system relative to the device in its default orientation:
+x = to the right of the front face of the device (usually the short side)
+y = to the top of the front face of the device (usually the long side)
+z = out of the front face of the device (toward the viewer)
Orientation's coordinate system is relative to the point on Earth's surface between the device and the Earth's center:
+x = east
+y = north
+z = towards Earth's center (down).
The type in all such cases is a string representation of a signed floating point number with or without an explicit decimal and with or without a signed integer exponent following the letter E. A missing decimal will be presumed after the rightmost present digit, and a missing exponent will be presumed 0.
indicates: acceleration in each dimension relative to free fall
units: meters/sec^2
names: acceleration.x, acceleration.y, acceleration.z
indicates: angular displacement from flat/level and true (or magnetic?) north.
units: radians
names: orientation.x, orientation.y, orientation.z
notes: Accurate indication of this is not generally possible without correlation with other sensors or assumptions. Devices make assumptions to flip the display, for example, that assume that the device is usually not moving (much) so that all force is simply opposed to gravity, and that can be assumed to be the "up" direction. Deviation from magnetic north depends on a magnetometer, and deviation from true north also depends on geolocation.
indicates: angular rotation rate about each axis using the right hand rule for sign
units: radians/sec
names: rotation.x, rotation.y, rotation.z
indicates: magnetic field strength
units: micro-Tesla
names: magnetic.x, magnetic.y, magnetic.z
Touch and Multi-touch
Touch and Multi-touch commands take the same form. The resource is the same "input" as all other generic input commands.
Each action is decomposed to an argument in each dimension (of 2, x and y with the same orientation as for the sensor inputs, with origin in lower left). There is an additional "op" argument which can specify down, up, press (down and up), move, or cancel. Each input is also qualified with a pointer id that indicates the initial order of down touches in a multi-touch gesture.
Several such points can be specified in a single POST, especially a move, but a full triad of x, y, and op arguments should be sent and expected for each point within a POST that contains any of them.
Other information you might want to pass via the input command may include:
1. sensor accuracy
2. geolocation (from GPS)
3. device-provided derivations of above sensor readings, for example "shake" from accelerometer, or "pinch" from multi-touch.

3.2 External Control Protocol Examples

The following are some example ECP commands sent via the curl command.

1. The following command gets a list of channels and their corresponding app ids.

$ curl
<app id="11">Roku Channel Store</app>
<app id="12">Netflix</app>
<app id="13">Amazon Video on Demand</app>
<app id="14">MLB.TV®</app>
<app id="26">Free FrameChannel Service</app>
<app id="27">Mediafly</app>
<app id="28">Pandora</app>

2. The following command simulates a user hitting the "Home" button

$ curl -d ''

3. The following commands move the cursor to the far left by holding down the Left key for 10 seconds

$ curl -d ''
$ sleep 10
$ curl -d ''

4. The following command will launch the dev app on the box. The simplevideoplayer app that comes with the SDK will process the "url" and "streamformat" parameters and launch the roVideoScreen to play the passed in video. We assume simplevideoplayer is installed as the side-loaded developer application.

$ curl -d '' '' 

5. The following command will launch the dev app on the box. The launchparams app that comes with the SDK will process the "contentID" and "options" parameters and display them on a SpringBoard page. We assume launchparams is installed as the side-loaded developer application. This technique is a useful way to create "clickable" ads that launch a springboard page for a particular title in your channel. Roku now supports clickable ads on the home screen as well.

$ curl -d '' ''

6. The following command will launch the channel store app (11) on the box with a contentID equal to 14 (the MLB app). You can get the plugin ID for your app using the /query/apps example above. It returns the installed apps on a Roku box. This technique would be useful in creating clickable ads in a free "Lite" version of a paid app. When a user clicks on the ad, the channel store page to purchase the full version could be launched.

$ curl -d '' ''

7. This following command will return the icon for the channel with id 12 (Netflix). The response will be raw binary picture data after http headers including one with the MIME type of the picture data.

$ curl '' > img.png

8. The following command passes three components of acceleration through to the channel app. All query string parameters are passed to the currently running app.  The remote app and the currently running app just need to agree on the query string parameters and any communication can be developed.

$ curl -d '' ''

9. The following command indicates that a touch at the given x and y has touched down on the screen.

 $ curl -d '' ''

3.3 Implementing Deep Linking in a Channel

One of the most common ways that channel developers encounter ECP is when implementing deep linking.  Deep linking on Roku is used by the Roku search service to launch titles as well as to launch channels and play specific content in response to the user clicking on an ad in the Roku home screen.  Deep linking uses the optional parameters that are sent via the External Control Protocol from an ad or the search engine to the entry point of the channel's BrightScript code.  Typical BrightScript code to implement deep linking looks like this:

Deep Linking BrightScript Code

The standard for deep linking parameters enforced by Roku to support ads or universal search is that channels use the following parameters:

ParameterDescriptionPossible Values
contentIDPartner defined unique identifier for a specific piece of contentcontentID=12345, etc.
mediaTypeOptional parameter to give context to the type of contentID passed.
For example, these are sometimes used by Roku search to differentiate
between searches for single titles, series, actors, etc. 
















appScreen (application specific parameter indicating a specific screen to navigate to)

Developers can test deep linking by invoking the appropriate ECP command from the command line.  For example, the command below launches the side loaded channel on the Roku device on IP address and passes the content ID 13234.

echo -e 'POST /launch/dev?contentID=13234 HTTP/1.1\r\n\r\n' | ncat 8060

3.4 Valid Keys

When the current screen on the Roku box includes an on screen keyboard, any keyboard character can be sent via the keyup, keydown, and keypress commands. The single keys are transmitted with the "Lit_" prefix. So that you can send a 'r' with "Lit_r". In addition, any UTF-8 encoded character can be sent by URL-encoding it. For example, the euro symbol can be sent with "Lit_%E2%82%AC". There are even some keys you can send that are not available on our actual physical remotes. Enter is for completing keyboard entry fields, such as search fields (It is not the same as Select). Search is useful for short-cutting directly to search screens.

The following are the keys that are recognized by the Roku ECP:


On the on-screen keyboard, the string 'roku' can be sent via the following commands:

$ curl -d ''
$ curl -d ''
$ curl -d ''
$ curl -d ''

3.5 Security Implications

Note that with the launch command, anyone could write a program that could pass arbitrary parameters to your BrightScript channel. It is important that you validate any parameters that are passed to your program and check what they may do to your program flow. The launch command can be very powerful to provide all kinds of interaction between network devices and your program. We envision internet catalogs browsed on the internet that could instantly be watched in your channel on the Roku. The door is open to many creative uses.
If you prefer to shut this door on your channel, you can choose to not process any passed parameters. This will mean external control programs could launch your channel, but they could not change the program flow within your channel.

3.6 Example Programs

The SDK includes a sample External Control Protocol application that requires only glibc to compile. The program is self contained in the /examples/rokuExternalControl.c file of the SDK. You can compile and run it with the following commands:
% cd <SDK Directory>
% gcc ./examples/rokuExternalControl.c –o rokuExternalControl
% ./rokuExternalControl
On Windows, it can be compiled with the following line:
% cl /D "WIN32" rokuExternalControl.c
The program first uses SSDP to query for Roku boxes on the local network. The first box that responds is the one that the program then sends commands to. All requests and responses are printed to stdout so that you can easily follow what the program is doing. The program next moves the cursor to the home screen and highlights the "Netflix" program. It does this by sending the Home key command and then holding down the left key for twelve seconds. Then it sends the Right key three times. After keeping the "Netflix" program highlighted for five seconds, the program launches the simplevideoplayer application with url and streamformat as keys in the roAssociativeArray passed to the Main() entry point.
The simplevideoplayer application immediately launches the roVideoScreen when it is launched with an roAssociativeArray containing valid url and streamformat keys.
With the External Control Protocol, you have complete control of your Roku box over the network. We can't wait to see what kind of solutions our developer community can create. The sample C program can be quickly modified to run in a variety of environments including firefox, IE, and other browser plugins, iPhone, iPad, and other mobile device environments.
The SDK also includes a couple of java applications. There is an android remote app in examples/source/ecp_client/android_remote and a simple applications to find Roku boxes on the local LAN in examples/source/ecp_client/Roku_Finder.

3.7 DIAL (Discovery and Launch)

The Roku platform supports the DIAL (Discovery and Launch) protocol.  DIAL is a simple network protocol for discovering first screen devices and applications from a second screen (such as a mobile iOS or Android application,) and for launching first screen applications on the first screen device from the second screen app.  In the context of the Roku platform, the first screen device is the Roku device itself.  A first screen application is a DIAL-aware channel installed on the Roku device.  Complete details of the DIAL specification can be found here:

Many current Roku developers are familiar with the Roku external control protocol (ECP) which includes functionality similar to DIAL.  An experienced Roku developer may thus fairly ask the question “why do I need DIAL?”  One reason is that you may already have a DIAL based second screen implementation for use with other platforms.  DIAL support on Roku means that you don’t need to add a second protocol to your current application for discovery and launch.

The Roku DIAL SDK contains detailed documentation of Roku's DIAL support, as well as BrightScript, Android, and iOS sample applications.  In DIAL parlance, the BrightScript sample is the first screen application, and the Android and iOS apps are the second screen apps.  These samples applications should help you get started with your own Roku DIAL support.

  1. Apr 11, 2013


    How about sending a literal space char? POST /keypress/Lit_%20 HTTP/1.1 doesn't seem to work.

    1. Jun 02, 2013


      "\ " im sure with the escape char

  2. Jun 05, 2013


    URLEncode characters and it works great.  URLEncode(" ") == "+" 

  3. Sep 05, 2013


    Requests via i.e. javascript XmlHttpRequest appearantly don't work as this is a cross-domain request and there is no way to control Access-Control and/or Access-Control-Allow-Origin headers. Sigh, back to the drawing board for me then... 

  4. Sep 08, 2013


    @Anonymous with cross-domain issues: I get around this by using a Raspberry Pi to serve up a mobile-optimised site that uses server-side Python to call the Roku (and other AV components controlled over HTTP)