Comments (13)
SDAdham
commented on August 30, 2024
1
Thanks @prayagsingh , it's working, sorry I forgot to write back here.
from jitsi-kubernetes.
prayagsingh
commented on August 30, 2024
Please add the below env variable under service: prosody and share the prosody logs and the prosody config too.
- name: LOG_LEVEL
value: debug
from jitsi-kubernetes.
SDAdham
commented on August 30, 2024
@prayagsingh , it doesn't show authentication, it just access jitsi as normal but no auth
from jitsi-kubernetes.
prayagsingh
commented on August 30, 2024
Please share the prosody config file. it's not possible to suggest anything without the prosody config file.
Are you using this repo for the deployment?
from jitsi-kubernetes.
SDAdham
commented on August 30, 2024
how can I get the config file? I am using this repo and I just followed the same exact instructions, only things I added are the environment variables, nothing else done. Brand new deployment, no pre-existing data, you can definitely reproduce this easy just set the environment variable and deploy to a new namespace.
from jitsi-kubernetes.
rsoika
commented on August 30, 2024
You can check the prosy prosody file from within the prosody container when you ssh into the container.
@prayagsingh : can you explain where exactly the prosody config file is located?
from jitsi-kubernetes.
prayagsingh
commented on August 30, 2024
@SDAdham @rsoika exec into the container. then go to config/conf.d/ directory and check jitsi-meet.cfg.lua file.
jwt config in jitsi-meet.cfg.lua file
admins = {
"[email protected]",
"[email protected]"
}
plugin_paths = { "/prosody-plugins/", "/prosody-plugins-custom" }
http_default_host = "meet.jitsi"
muc_mapper_domain_base = "meet.jitsi"
asap_accepted_issuers = { "my_web_client","my_app_client" }
asap_accepted_audiences = { "myserver1","myserver2" }
consider_bosh_secure = true;
-- Deprecated in 0.12
-- https://github.com/bjc/prosody/commit/26542811eafd9c708a130272d7b7de77b92712de
cross_domain_websocket = true
cross_domain_bosh = true
unlimited_jids = {
"[email protected]",
"[email protected]"
}
VirtualHost "meet.jitsi"
authentication = "token"
app_id = "xxxx" -- change it
app_secret = "XXXX -- change it
allow_empty_token = false
ssl = {
key = "/config/certs/meet.jitsi.key";
certificate = "/config/certs/meet.jitsi.crt";
}
modules_enabled = {
"websocket";
"smacks"; -- XEP-0198: Stream Management
"bosh";
"pubsub";
"ping";
"speakerstats";
"conference_duration";
"av_moderation";
}
av_moderation_component = "avmoderation.meet.jitsi"
speakerstats_component = "speakerstats.meet.jitsi"
conference_duration_component = "conferenceduration.meet.jitsi"
c2s_require_encryption = false
VirtualHost "auth.meet.jitsi"
ssl = {
key = "/config/certs/auth.meet.jitsi.key";
certificate = "/config/certs/auth.meet.jitsi.crt";
}
modules_enabled = {
"limits_exception";
}
authentication = "internal_hashed"
VirtualHost "recorder.meet.jitsi"
modules_enabled = {
"ping";
}
authentication = "internal_hashed"
Component "internal-muc.meet.jitsi" "muc"
storage = "memory"
modules_enabled = {
"ping";
}
restrict_room_creation = true
muc_room_locking = false
muc_room_default_public_jids = true
Component "muc.meet.jitsi" "muc"
storage = "memory"
modules_enabled = {
"muc_meeting_id";
"token_verification";
"token_affiliation"; -- not necessary
"muc_domain_mapper";
}
muc_room_cache_size = 1000
muc_room_locking = false
muc_room_default_public_jids = true
-- Proxy to jicofo's user JID, so that it doesn't have to register as a component.
Component "focus.meet.jitsi" "client_proxy"
target_address = "[email protected]"
Component "speakerstats.meet.jitsi" "speakerstats_component"
muc_component = "muc.meet.jitsi"
Component "conferenceduration.meet.jitsi" "conference_duration_component"
muc_component = "muc.meet.jitsi"
Component "avmoderation.meet.jitsi" "av_moderation_component"
muc_component = "muc.meet.jitsi"
from jitsi-kubernetes.
SDAdham
commented on August 30, 2024
@prayagsingh which container? There are 4
from jitsi-kubernetes.
prayagsingh
commented on August 30, 2024
@prayagsingh which container? There are 4
Prosody container.
from jitsi-kubernetes.
SDAdham
commented on August 30, 2024
Thanks
admins = {
"[email protected]",
"[email protected]"
}
plugin_paths = { "/prosody-plugins/", "/prosody-plugins-custom" }
http_default_host = "meet.jitsi"
consider_bosh_secure = true;
-- Deprecated in 0.12
-- https://github.com/bjc/prosody/commit/26542811eafd9c708a130272d7b7de77b92712de
cross_domain_websocket = { "https://jitsi.example.com" }
cross_domain_bosh = { "https://jitsi.example.com" }
VirtualHost "meet.jitsi"
authentication = "token"
app_id = "<app_id>"
app_secret = "<app_secret>"
allow_empty_token = false
ssl = {
key = "/config/certs/meet.jitsi.key";
certificate = "/config/certs/meet.jitsi.crt";
}
modules_enabled = {
"bosh";
"websocket";
"smacks"; -- XEP-0198: Stream Management
"pubsub";
"ping";
"speakerstats";
"conference_duration";
}
speakerstats_component = "speakerstats.meet.jitsi"
conference_duration_component = "conferenceduration.meet.jitsi"
c2s_require_encryption = false
VirtualHost "auth.meet.jitsi"
ssl = {
key = "/config/certs/auth.meet.jitsi.key";
certificate = "/config/certs/auth.meet.jitsi.crt";
}
authentication = "internal_hashed"
Component "internal-muc.meet.jitsi" "muc"
storage = "memory"
modules_enabled = {
"ping";
}
muc_room_locking = false
muc_room_default_public_jids = true
Component "muc.meet.jitsi" "muc"
storage = "memory"
modules_enabled = {
"muc_meeting_id";
"token_verification";
}
muc_room_cache_size = 1000
muc_room_locking = false
muc_room_default_public_jids = true
Component "focus.meet.jitsi" "client_proxy"
target_address = "[email protected]"
Component "speakerstats.meet.jitsi" "speakerstats_component"
muc_component = "muc.meet.jitsi"
Component "conferenceduration.meet.jitsi" "conference_duration_component"
muc_component = "muc.meet.jitsi"
from jitsi-kubernetes.
prayagsingh
commented on August 30, 2024
@SDAdham config looks fine to me. Please share the prosody logs.
from jitsi-kubernetes.
SDAdham
commented on August 30, 2024
Here is the logs from prosody:
[s6-init] making user provided files available at /var/run/s6/etc...exited 0.
[s6-init] ensuring user provided files have correct perms...exited 0.
[fix-attrs.d] applying ownership & permissions fixes...
[fix-attrs.d] done.
[cont-init.d] executing container initialization scripts...
[cont-init.d] 01-set-timezone: executing...
[cont-init.d] 01-set-timezone: exited 0.
[cont-init.d] 10-config: executing...
Adding user `prosody' to group `sasl' ...
Adding user prosody to group sasl
Done.
Generating RSA private key, 2048 bit long modulus (2 primes)
........................................................................+++++
..+++++
e is 65537 (0x010001)
Choose key size (2048): Key written to /config/data/meet.jitsi.key
Please provide details to include in the certificate config file.
Leave the field empty to use the default value or '.' to exclude the field.
countryName (GB): localityName (The Internet): organizationName (Your Organisation): organizationalUnitName (XMPP Department): commonName (meet.jitsi): emailAddress ([email protected]):
Config written to /config/data/meet.jitsi.cnf
Certificate written to /config/data/meet.jitsi.crt
Generating RSA private key, 2048 bit long modulus (2 primes)
.........+++++
......................+++++
e is 65537 (0x010001)
Choose key size (2048): Key written to /config/data/auth.meet.jitsi.key
Please provide details to include in the certificate config file.
Leave the field empty to use the default value or '.' to exclude the field.
countryName (GB): localityName (The Internet): organizationName (Your Organisation): organizationalUnitName (XMPP Department): commonName (auth.meet.jitsi): emailAddress ([email protected]):
Config written to /config/data/auth.meet.jitsi.cnf
Certificate written to /config/data/auth.meet.jitsi.crt
[cont-init.d] 10-config: exited 0.
[cont-init.d] done.
[services.d] starting services
[services.d] done.
saslauthd[256] :num_procs : 5
saslauthd[256] :mech_option: /etc/saslauthd.conf
saslauthd[256] :run_path : /var/run/saslauthd
saslauthd[256] :auth_mech : ldap
startup �[1minfo�[0m Hello and welcome to Prosody version 0.11.9
saslauthd[256] :mmaped shared memory segment on file: /var/run/saslauthd/cache.mmap
saslauthd[256] :bucket size: 96 bytes
saslauthd[256] :stats size : 36 bytes
saslauthd[256] :timeout : 28800 seconds
saslauthd[256] :cache table: 985828 total bytes
saslauthd[256] :cache table: 1711 slots
saslauthd[256] :cache table: 10266 buckets
saslauthd[256] :flock file opened at /var/run/saslauthd/cache.flock
saslauthd[256] :using accept lock file: /var/run/saslauthd/mux.accept
saslauthd[256] :master pid is: 0
saslauthd[256] :listening on socket: /var/run/saslauthd/mux
saslauthd[256] :using process model
saslauthd[256] :forked child: 274
saslauthd[274] :acquired accept lock
saslauthd[256] :forked child: 275
saslauthd[256] :forked child: 276
saslauthd[256] :forked child: 277
startup �[1minfo�[0m Prosody is using the epoll backend for connection handling
internal-muc.meet.jitsi:tls �[1minfo�[0m Certificates loaded
general �[1minfo�[0m Starting speakerstats for muc.meet.jitsi
speakerstats.meet.jitsi:speakerstats_component �[1minfo�[0m No muc component found, will listen for it: muc.meet.jitsi
speakerstats.meet.jitsi:tls �[1minfo�[0m Certificates loaded
general �[1minfo�[0m Starting conference duration timer for muc.meet.jitsi
conferenceduration.meet.jitsi:conference_duration_component �[1minfo�[0m No muc component found, will listen for it: muc.meet.jitsi
conferenceduration.meet.jitsi:tls �[1minfo�[0m Certificates loaded
auth.meet.jitsi:tls �[1minfo�[0m Certificates loaded
portmanager �[1minfo�[0m Activated service 'c2s' on [*]:5222, [::]:5222
portmanager �[1minfo�[0m Activated service 'legacy_ssl' on no ports
meet.jitsi:tls �[1minfo�[0m Certificates loaded
portmanager �[1minfo�[0m Activated service 'http' on [*]:5280, [::]:5280
portmanager �[1minfo�[0m Activated service 'https' on no ports
conferenceduration.meet.jitsi:conference_duration_component �[1minfo�[0m Hook to muc events on muc.meet.jitsi
speakerstats.meet.jitsi:speakerstats_component �[1minfo�[0m Hook to muc events on muc.meet.jitsi
muc.meet.jitsi:tls �[1minfo�[0m Certificates loaded
focus.meet.jitsi:tls �[1minfo�[0m Certificates loaded
c2s5613cb88c0f0 �[1minfo�[0m Client connected
c2s5613cbd545b0 �[1minfo�[0m Client connected
c2s5613cb88c0f0 �[1minfo�[0m Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384)
c2s5613cb88c0f0 �[1minfo�[0m Authenticated as [email protected]
c2s5613cbd545b0 �[1minfo�[0m Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384)
c2s5613cbd545b0 �[1minfo�[0m Authenticated as [email protected]
from jitsi-kubernetes.
SDAdham
commented on August 30, 2024
@prayagsingh after several deployments, i think its working now, pls give me a 1 hour or till tomorrow. I'll get back to you again. Thanks @prayagsingh
from jitsi-kubernetes.
Related Issues (20)
- Provide a setup example for Kubernetes Kustomize HOT 2
- no matches for kind "Ingress" in version "networking.k8s.io/v1 HOT 1
- kustomize example not working HOT 5
- Typo in README of Kustomize example HOT 1
- JSA-2021-0004 - Log4J Patch HOT 2
- upgrade from version 6726 to 6826
- updating docker-compose file HOT 7
- error: accumulating resources HOT 21
- Provide a Docker-Compose migration example HOT 3
- websocket connect error after when joined meet HOT 6
- do not see video after when join meet and jvb websocket connected HOT 1
- How can I configure JVB which is running on Linux server with Jitsi Kubernetes deployment ?
- API supports is too old to run 020-rbac.yaml HOT 2
- Rootless? HOT 5
- Documentation is not up-to-date HOT 11
- Jitsi kubernetes running in AWS EKS HOT 1
- Upgrade Container Versions to stable HOT 3
- Cannot have more than 2 users connected HOT 5
- Unable to record Video during meeting HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from jitsi-kubernetes.