|
|
# Install Jitsi-Meet
|
|
|
First you need Jitsi-Meet server. To install it please follow the [Self-Hosting Guide](https://jitsi.github.io/handbook/docs/devops-guide/devops-guide-start). Then disable creating rooms by anonymous users and enable anonymous login for guests as described in the [Secure Domain Setup Guide](https://jitsi.github.io/handbook/docs/devops-guide/secure-domain).
|
|
|
|
|
|
# Install privmx-api plugin for prosody
|
|
|
- Download latest privmx-api plugin [mod_privmx_api.lua](https://dev.privmx.com/main/privmx-video-server-docker/-/raw/master/prosody/plugins/mod_privmx_api.lua?inline=false)
|
|
|
- Copy `mod_privmx_api.lua` file to prosody modules directory `/usr/lib/prosody/modules/`
|
|
|
- Generate `PRIVMX_API_SECRET`, for example
|
|
|
```
|
|
|
openssl rand -hex 16
|
|
|
```
|
|
|
- Configure privmx-api plugin. Edit `/etc/prosody/prosody.cfg.lua` and in section `modules_enabled` add
|
|
|
```
|
|
|
"privmx_api";
|
|
|
```
|
|
|
and under `modules_enabled` section add
|
|
|
```
|
|
|
privmx_api_secret = "your-generated-api-secret"
|
|
|
privmx_api_host = "your.domain.com"
|
|
|
```
|
|
|
- Configure nginx. You need to proxy `/privmx-api` url to BOSH, to do this edit `/etc/nginx/sites-available/your.domain.com.conf` and under `BOSH` section add
|
|
|
```
|
|
|
# PrivMX Api
|
|
|
location ^~ /privmx-api {
|
|
|
proxy_pass http://127.0.0.1:5280/privmx-api;
|
|
|
proxy_http_version 1.1;
|
|
|
|
|
|
proxy_set_header Connection "upgrade";
|
|
|
proxy_set_header Upgrade $http_upgrade;
|
|
|
|
|
|
proxy_set_header Host $http_host;
|
|
|
proxy_set_header X-Forwarded-For $remote_addr;
|
|
|
tcp_nodelay on;
|
|
|
}
|
|
|
```
|
|
|
- Restart prosody and nginx
|
|
|
```
|
|
|
sudo service prosody restart
|
|
|
sudo service nginx restart
|
|
|
```
|
|
|
|
|
|
## Pairing with your PrivMX Team Server
|
|
|
|
|
|
Use generated `PRIVMX_API_SECRET` in the `video` section of [team server configuration file](Team-server-configuration-file). Don't forget to restart your team server!
|
|
|
|
|
|
## Making encrypted video calls in PrivMX
|
|
|
|
|
|
Just click "Start Video" in any chat in your privMX client appliction :)
|
|
|
|
|
|
|
|
|
# Troubleshooting
|
|
|
|
|
|
## Configs:
|
|
|
- prosody main config `/etc/prosody/prosody.cfg.lua`
|
|
|
- prosody domain config `/etc/prosody/conf.avail/your.domain.com.cfg.lua`
|
|
|
- jicofo config dir `/etc/jitsi/jicofo`
|
|
|
- nginx domain config `/etc/nginx/sites-available/your.domain.com.conf`
|
|
|
|
|
|
## Logs:
|
|
|
- prosody error `/var/log/prosody/prosody.err`
|
|
|
- prosody log `/var/log/prosody/prosody.log`
|
|
|
- jicofo log `/var/log/jitsi/jicofo.log`
|
|
|
|
|
|
## SASLError using SCRAM-SHA-1: not-authorized
|
|
|
When in jicofo log you have an error like `Failed to connect/login: SASLError using SCRAM-SHA-1: not-authorized` you can reset passwords for `focus` and `jvb` users.
|
|
|
|
|
|
### For jvb user
|
|
|
```
|
|
|
cat /etc/jitsi/videobridge/config | grep JVB_SECRET
|
|
|
```
|
|
|
you should get your secret like that
|
|
|
```
|
|
|
JVB_SECRET=MySecretIsHere
|
|
|
```
|
|
|
than
|
|
|
```
|
|
|
prosodyctl passwd jvb@auth.your.domain.com
|
|
|
```
|
|
|
Enter `JVB_SECRET` twice here
|
|
|
|
|
|
### For focus user
|
|
|
```
|
|
|
cat /etc/jitsi/jicofo/config | grep JICOFO_AUTH_PASSWORD
|
|
|
```
|
|
|
you should get your password like that
|
|
|
```
|
|
|
JICOFO_AUTH_PASSWORD=MyPasswordIsHere
|
|
|
```
|
|
|
than
|
|
|
```
|
|
|
prosodyctl passwd focus@auth.your.domain.com
|
|
|
```
|
|
|
Enter `JICOFO_AUTH_PASSWORD` twice here
|
|
|
|
|
|
At the end restart prosody
|
|
|
```
|
|
|
sudo service prosody restart
|
|
|
``` |
|
|
\ No newline at end of file |