Comments (13)
Thanks @prayagsingh , it's working, sorry I forgot to write back here.
from jitsi-kubernetes.
Please add the below env variable under service: prosody
and share the prosody logs and the prosody config too.
- name: LOG_LEVEL
value: debug
from jitsi-kubernetes.
@prayagsingh , it doesn't show authentication, it just access jitsi as normal but no auth
from jitsi-kubernetes.
Please share the prosody config file. it's not possible to suggest anything without the prosody config file.
Are you using this repo for the deployment?
from jitsi-kubernetes.
how can I get the config file? I am using this repo and I just followed the same exact instructions, only things I added are the environment variables, nothing else done. Brand new deployment, no pre-existing data, you can definitely reproduce this easy just set the environment variable and deploy to a new namespace.
from jitsi-kubernetes.
You can check the prosy prosody file from within the prosody container when you ssh into the container.
@prayagsingh : can you explain where exactly the prosody config file is located?
from jitsi-kubernetes.
@SDAdham @rsoika exec into the container. then go to config/conf.d/
directory and check jitsi-meet.cfg.lua
file.
jwt config in jitsi-meet.cfg.lua file
admins = {
"[email protected]",
"[email protected]"
}
plugin_paths = { "/prosody-plugins/", "/prosody-plugins-custom" }
http_default_host = "meet.jitsi"
muc_mapper_domain_base = "meet.jitsi"
asap_accepted_issuers = { "my_web_client","my_app_client" }
asap_accepted_audiences = { "myserver1","myserver2" }
consider_bosh_secure = true;
-- Deprecated in 0.12
-- https://github.com/bjc/prosody/commit/26542811eafd9c708a130272d7b7de77b92712de
cross_domain_websocket = true
cross_domain_bosh = true
unlimited_jids = {
"[email protected]",
"[email protected]"
}
VirtualHost "meet.jitsi"
authentication = "token"
app_id = "xxxx" -- change it
app_secret = "XXXX -- change it
allow_empty_token = false
ssl = {
key = "/config/certs/meet.jitsi.key";
certificate = "/config/certs/meet.jitsi.crt";
}
modules_enabled = {
"websocket";
"smacks"; -- XEP-0198: Stream Management
"bosh";
"pubsub";
"ping";
"speakerstats";
"conference_duration";
"av_moderation";
}
av_moderation_component = "avmoderation.meet.jitsi"
speakerstats_component = "speakerstats.meet.jitsi"
conference_duration_component = "conferenceduration.meet.jitsi"
c2s_require_encryption = false
VirtualHost "auth.meet.jitsi"
ssl = {
key = "/config/certs/auth.meet.jitsi.key";
certificate = "/config/certs/auth.meet.jitsi.crt";
}
modules_enabled = {
"limits_exception";
}
authentication = "internal_hashed"
VirtualHost "recorder.meet.jitsi"
modules_enabled = {
"ping";
}
authentication = "internal_hashed"
Component "internal-muc.meet.jitsi" "muc"
storage = "memory"
modules_enabled = {
"ping";
}
restrict_room_creation = true
muc_room_locking = false
muc_room_default_public_jids = true
Component "muc.meet.jitsi" "muc"
storage = "memory"
modules_enabled = {
"muc_meeting_id";
"token_verification";
"token_affiliation"; -- not necessary
"muc_domain_mapper";
}
muc_room_cache_size = 1000
muc_room_locking = false
muc_room_default_public_jids = true
-- Proxy to jicofo's user JID, so that it doesn't have to register as a component.
Component "focus.meet.jitsi" "client_proxy"
target_address = "[email protected]"
Component "speakerstats.meet.jitsi" "speakerstats_component"
muc_component = "muc.meet.jitsi"
Component "conferenceduration.meet.jitsi" "conference_duration_component"
muc_component = "muc.meet.jitsi"
Component "avmoderation.meet.jitsi" "av_moderation_component"
muc_component = "muc.meet.jitsi"
from jitsi-kubernetes.
@prayagsingh which container? There are 4
from jitsi-kubernetes.
@prayagsingh which container? There are 4
Prosody container.
from jitsi-kubernetes.
Thanks
admins = {
"[email protected]",
"[email protected]"
}
plugin_paths = { "/prosody-plugins/", "/prosody-plugins-custom" }
http_default_host = "meet.jitsi"
consider_bosh_secure = true;
-- Deprecated in 0.12
-- https://github.com/bjc/prosody/commit/26542811eafd9c708a130272d7b7de77b92712de
cross_domain_websocket = { "https://jitsi.example.com" }
cross_domain_bosh = { "https://jitsi.example.com" }
VirtualHost "meet.jitsi"
authentication = "token"
app_id = "<app_id>"
app_secret = "<app_secret>"
allow_empty_token = false
ssl = {
key = "/config/certs/meet.jitsi.key";
certificate = "/config/certs/meet.jitsi.crt";
}
modules_enabled = {
"bosh";
"websocket";
"smacks"; -- XEP-0198: Stream Management
"pubsub";
"ping";
"speakerstats";
"conference_duration";
}
speakerstats_component = "speakerstats.meet.jitsi"
conference_duration_component = "conferenceduration.meet.jitsi"
c2s_require_encryption = false
VirtualHost "auth.meet.jitsi"
ssl = {
key = "/config/certs/auth.meet.jitsi.key";
certificate = "/config/certs/auth.meet.jitsi.crt";
}
authentication = "internal_hashed"
Component "internal-muc.meet.jitsi" "muc"
storage = "memory"
modules_enabled = {
"ping";
}
muc_room_locking = false
muc_room_default_public_jids = true
Component "muc.meet.jitsi" "muc"
storage = "memory"
modules_enabled = {
"muc_meeting_id";
"token_verification";
}
muc_room_cache_size = 1000
muc_room_locking = false
muc_room_default_public_jids = true
Component "focus.meet.jitsi" "client_proxy"
target_address = "[email protected]"
Component "speakerstats.meet.jitsi" "speakerstats_component"
muc_component = "muc.meet.jitsi"
Component "conferenceduration.meet.jitsi" "conference_duration_component"
muc_component = "muc.meet.jitsi"
from jitsi-kubernetes.
@SDAdham config looks fine to me. Please share the prosody logs.
from jitsi-kubernetes.
Here is the logs from prosody:
[s6-init] making user provided files available at /var/run/s6/etc...exited 0.
[s6-init] ensuring user provided files have correct perms...exited 0.
[fix-attrs.d] applying ownership & permissions fixes...
[fix-attrs.d] done.
[cont-init.d] executing container initialization scripts...
[cont-init.d] 01-set-timezone: executing...
[cont-init.d] 01-set-timezone: exited 0.
[cont-init.d] 10-config: executing...
Adding user `prosody' to group `sasl' ...
Adding user prosody to group sasl
Done.
Generating RSA private key, 2048 bit long modulus (2 primes)
........................................................................+++++
..+++++
e is 65537 (0x010001)
Choose key size (2048): Key written to /config/data/meet.jitsi.key
Please provide details to include in the certificate config file.
Leave the field empty to use the default value or '.' to exclude the field.
countryName (GB): localityName (The Internet): organizationName (Your Organisation): organizationalUnitName (XMPP Department): commonName (meet.jitsi): emailAddress ([email protected]):
Config written to /config/data/meet.jitsi.cnf
Certificate written to /config/data/meet.jitsi.crt
Generating RSA private key, 2048 bit long modulus (2 primes)
.........+++++
......................+++++
e is 65537 (0x010001)
Choose key size (2048): Key written to /config/data/auth.meet.jitsi.key
Please provide details to include in the certificate config file.
Leave the field empty to use the default value or '.' to exclude the field.
countryName (GB): localityName (The Internet): organizationName (Your Organisation): organizationalUnitName (XMPP Department): commonName (auth.meet.jitsi): emailAddress ([email protected]):
Config written to /config/data/auth.meet.jitsi.cnf
Certificate written to /config/data/auth.meet.jitsi.crt
[cont-init.d] 10-config: exited 0.
[cont-init.d] done.
[services.d] starting services
[services.d] done.
saslauthd[256] :num_procs : 5
saslauthd[256] :mech_option: /etc/saslauthd.conf
saslauthd[256] :run_path : /var/run/saslauthd
saslauthd[256] :auth_mech : ldap
startup �[1minfo�[0m Hello and welcome to Prosody version 0.11.9
saslauthd[256] :mmaped shared memory segment on file: /var/run/saslauthd/cache.mmap
saslauthd[256] :bucket size: 96 bytes
saslauthd[256] :stats size : 36 bytes
saslauthd[256] :timeout : 28800 seconds
saslauthd[256] :cache table: 985828 total bytes
saslauthd[256] :cache table: 1711 slots
saslauthd[256] :cache table: 10266 buckets
saslauthd[256] :flock file opened at /var/run/saslauthd/cache.flock
saslauthd[256] :using accept lock file: /var/run/saslauthd/mux.accept
saslauthd[256] :master pid is: 0
saslauthd[256] :listening on socket: /var/run/saslauthd/mux
saslauthd[256] :using process model
saslauthd[256] :forked child: 274
saslauthd[274] :acquired accept lock
saslauthd[256] :forked child: 275
saslauthd[256] :forked child: 276
saslauthd[256] :forked child: 277
startup �[1minfo�[0m Prosody is using the epoll backend for connection handling
internal-muc.meet.jitsi:tls �[1minfo�[0m Certificates loaded
general �[1minfo�[0m Starting speakerstats for muc.meet.jitsi
speakerstats.meet.jitsi:speakerstats_component �[1minfo�[0m No muc component found, will listen for it: muc.meet.jitsi
speakerstats.meet.jitsi:tls �[1minfo�[0m Certificates loaded
general �[1minfo�[0m Starting conference duration timer for muc.meet.jitsi
conferenceduration.meet.jitsi:conference_duration_component �[1minfo�[0m No muc component found, will listen for it: muc.meet.jitsi
conferenceduration.meet.jitsi:tls �[1minfo�[0m Certificates loaded
auth.meet.jitsi:tls �[1minfo�[0m Certificates loaded
portmanager �[1minfo�[0m Activated service 'c2s' on [*]:5222, [::]:5222
portmanager �[1minfo�[0m Activated service 'legacy_ssl' on no ports
meet.jitsi:tls �[1minfo�[0m Certificates loaded
portmanager �[1minfo�[0m Activated service 'http' on [*]:5280, [::]:5280
portmanager �[1minfo�[0m Activated service 'https' on no ports
conferenceduration.meet.jitsi:conference_duration_component �[1minfo�[0m Hook to muc events on muc.meet.jitsi
speakerstats.meet.jitsi:speakerstats_component �[1minfo�[0m Hook to muc events on muc.meet.jitsi
muc.meet.jitsi:tls �[1minfo�[0m Certificates loaded
focus.meet.jitsi:tls �[1minfo�[0m Certificates loaded
c2s5613cb88c0f0 �[1minfo�[0m Client connected
c2s5613cbd545b0 �[1minfo�[0m Client connected
c2s5613cb88c0f0 �[1minfo�[0m Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384)
c2s5613cb88c0f0 �[1minfo�[0m Authenticated as [email protected]
c2s5613cbd545b0 �[1minfo�[0m Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384)
c2s5613cbd545b0 �[1minfo�[0m Authenticated as [email protected]
from jitsi-kubernetes.
@prayagsingh after several deployments, i think its working now, pls give me a 1 hour or till tomorrow. I'll get back to you again. Thanks @prayagsingh
from jitsi-kubernetes.
Related Issues (20)
- Provide a setup example for Kubernetes Kustomize HOT 2
- no matches for kind "Ingress" in version "networking.k8s.io/v1 HOT 1
- kustomize example not working HOT 5
- Typo in README of Kustomize example HOT 1
- JSA-2021-0004 - Log4J Patch HOT 2
- upgrade from version 6726 to 6826
- updating docker-compose file HOT 7
- error: accumulating resources HOT 21
- Provide a Docker-Compose migration example HOT 3
- websocket connect error after when joined meet HOT 6
- do not see video after when join meet and jvb websocket connected HOT 1
- How can I configure JVB which is running on Linux server with Jitsi Kubernetes deployment ?
- API supports is too old to run 020-rbac.yaml HOT 2
- Rootless? HOT 5
- Documentation is not up-to-date HOT 11
- Jitsi kubernetes running in AWS EKS HOT 1
- Upgrade Container Versions to stable HOT 3
- Cannot have more than 2 users connected HOT 5
- Unable to record Video during meeting HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from jitsi-kubernetes.