2019-11-12 15:40:20 +00:00
|
|
|
plugin_paths = { "/usr/share/jitsi-meet/prosody-plugins/" }
|
2015-11-02 21:02:50 +00:00
|
|
|
|
2019-12-04 14:59:28 +00:00
|
|
|
-- domain mapper options, must at least have domain base set to use the mapper
|
|
|
|
muc_mapper_domain_base = "jitmeet.example.com";
|
|
|
|
|
2021-01-21 22:14:00 +00:00
|
|
|
external_service_secret = "__turnSecret__";
|
|
|
|
external_services = {
|
|
|
|
{ type = "stun", host = "jitmeet.example.com", port = 3478 },
|
|
|
|
{ type = "turn", host = "jitmeet.example.com", port = 3478, transport = "udp", secret = true, ttl = 86400, algorithm = "turn" },
|
|
|
|
{ type = "turns", host = "jitmeet.example.com", port = 5349, transport = "tcp", secret = true, ttl = 86400, algorithm = "turn" }
|
2020-01-09 16:51:27 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
cross_domain_bosh = false;
|
|
|
|
consider_bosh_secure = true;
|
2020-05-12 14:32:37 +00:00
|
|
|
-- https_ports = { }; -- Remove this line to prevent listening on port 5284
|
2020-01-09 16:51:27 +00:00
|
|
|
|
2020-05-20 16:56:05 +00:00
|
|
|
-- https://ssl-config.mozilla.org/#server=haproxy&version=2.1&config=intermediate&openssl=1.1.0g&guideline=5.4
|
|
|
|
ssl = {
|
2021-01-04 14:22:40 +00:00
|
|
|
protocol = "tlsv1_2+";
|
|
|
|
ciphers = "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"
|
2020-05-20 16:56:05 +00:00
|
|
|
}
|
|
|
|
|
2014-09-05 12:22:21 +00:00
|
|
|
VirtualHost "jitmeet.example.com"
|
2021-01-04 14:22:40 +00:00
|
|
|
-- enabled = false -- Remove this line to enable this host
|
|
|
|
authentication = "anonymous"
|
|
|
|
-- Properties below are modified by jitsi-meet-tokens package config
|
|
|
|
-- and authentication above is switched to "token"
|
|
|
|
--app_id="example_app_id"
|
|
|
|
--app_secret="example_app_secret"
|
|
|
|
-- Assign this host a certificate for TLS, otherwise it would use the one
|
|
|
|
-- set in the global section (if any).
|
|
|
|
-- Note that old-style SSL on port 5223 only supports one certificate, and will always
|
|
|
|
-- use the global one.
|
|
|
|
ssl = {
|
|
|
|
key = "/etc/prosody/certs/jitmeet.example.com.key";
|
|
|
|
certificate = "/etc/prosody/certs/jitmeet.example.com.crt";
|
|
|
|
}
|
2021-05-12 21:36:02 +00:00
|
|
|
av_moderation_component = "avmoderation.jitmeet.example.com"
|
2021-01-04 14:22:40 +00:00
|
|
|
speakerstats_component = "speakerstats.jitmeet.example.com"
|
|
|
|
conference_duration_component = "conferenceduration.jitmeet.example.com"
|
|
|
|
-- we need bosh
|
|
|
|
modules_enabled = {
|
|
|
|
"bosh";
|
|
|
|
"pubsub";
|
|
|
|
"ping"; -- Enable mod_ping
|
|
|
|
"speakerstats";
|
2021-01-21 22:14:00 +00:00
|
|
|
"external_services";
|
2021-01-04 14:22:40 +00:00
|
|
|
"conference_duration";
|
|
|
|
"muc_lobby_rooms";
|
2021-05-12 21:36:02 +00:00
|
|
|
"av_moderation";
|
2021-01-04 14:22:40 +00:00
|
|
|
}
|
|
|
|
c2s_require_encryption = false
|
|
|
|
lobby_muc = "lobby.jitmeet.example.com"
|
|
|
|
main_muc = "conference.jitmeet.example.com"
|
|
|
|
-- muc_lobby_whitelist = { "recorder.jitmeet.example.com" } -- Here we can whitelist jibri to enter lobby enabled rooms
|
2017-04-16 18:19:47 +00:00
|
|
|
|
2014-09-05 12:22:21 +00:00
|
|
|
Component "conference.jitmeet.example.com" "muc"
|
2021-05-21 14:35:20 +00:00
|
|
|
restrict_room_creation = true
|
2020-04-08 18:06:49 +00:00
|
|
|
storage = "memory"
|
2019-11-25 11:51:07 +00:00
|
|
|
modules_enabled = {
|
|
|
|
"muc_meeting_id";
|
2019-12-04 14:59:28 +00:00
|
|
|
"muc_domain_mapper";
|
2021-01-04 14:22:40 +00:00
|
|
|
--"token_verification";
|
2019-11-25 11:51:07 +00:00
|
|
|
}
|
2019-12-18 15:46:49 +00:00
|
|
|
admins = { "focusUser@auth.jitmeet.example.com" }
|
2020-03-30 22:13:59 +00:00
|
|
|
muc_room_locking = false
|
|
|
|
muc_room_default_public_jids = true
|
2014-09-05 12:22:21 +00:00
|
|
|
|
2019-12-18 15:46:49 +00:00
|
|
|
-- internal muc component
|
|
|
|
Component "internal.auth.jitmeet.example.com" "muc"
|
2020-04-08 18:06:49 +00:00
|
|
|
storage = "memory"
|
2019-12-18 15:46:49 +00:00
|
|
|
modules_enabled = {
|
2021-01-04 14:22:40 +00:00
|
|
|
"ping";
|
2019-12-18 15:46:49 +00:00
|
|
|
}
|
|
|
|
admins = { "focusUser@auth.jitmeet.example.com", "jvb@auth.jitmeet.example.com" }
|
2020-04-08 18:06:49 +00:00
|
|
|
muc_room_locking = false
|
|
|
|
muc_room_default_public_jids = true
|
2014-12-02 19:11:54 +00:00
|
|
|
|
|
|
|
VirtualHost "auth.jitmeet.example.com"
|
2021-01-26 15:33:41 +00:00
|
|
|
authentication = "internal_hashed"
|
2014-12-02 19:11:54 +00:00
|
|
|
|
2021-01-11 21:45:00 +00:00
|
|
|
-- Proxy to jicofo's user JID, so that it doesn't have to register as a component.
|
|
|
|
Component "focus.jitmeet.example.com" "client_proxy"
|
|
|
|
target_address = "focusUser@auth.jitmeet.example.com"
|
2019-12-04 22:07:02 +00:00
|
|
|
|
|
|
|
Component "speakerstats.jitmeet.example.com" "speakerstats_component"
|
|
|
|
muc_component = "conference.jitmeet.example.com"
|
2020-01-13 17:12:25 +00:00
|
|
|
|
2020-01-14 12:11:51 +00:00
|
|
|
Component "conferenceduration.jitmeet.example.com" "conference_duration_component"
|
2020-01-13 17:12:25 +00:00
|
|
|
muc_component = "conference.jitmeet.example.com"
|
2020-05-27 23:01:41 +00:00
|
|
|
|
2021-05-12 21:36:02 +00:00
|
|
|
Component "avmoderation.jitmeet.example.com" "av_moderation_component"
|
|
|
|
muc_component = "conference.jitmeet.example.com"
|
|
|
|
|
2020-05-27 23:01:41 +00:00
|
|
|
Component "lobby.jitmeet.example.com" "muc"
|
|
|
|
storage = "memory"
|
|
|
|
restrict_room_creation = true
|
|
|
|
muc_room_locking = false
|
|
|
|
muc_room_default_public_jids = true
|