2019-07-14 01:17:46 +02:00
|
|
|
component_ports = { __PORT_COMPONENT__ }
|
2020-05-01 14:34:38 +02:00
|
|
|
--c2s_require_encryption = false --Why would it be needed?
|
2020-04-13 17:16:38 +02:00
|
|
|
|
2020-04-10 05:21:33 +02:00
|
|
|
plugin_paths = { "__FINAL_PATH__/jitsi-meet-prosody/" }
|
2020-04-11 21:55:05 +02:00
|
|
|
|
2020-05-01 14:34:38 +02:00
|
|
|
modules_enabled = {
|
|
|
|
|
|
|
|
-- Generally required
|
|
|
|
"roster"; -- Allow users to have a roster. Recommended.
|
|
|
|
"saslauth"; -- Authentication for clients. Recommended if you want to log in.
|
|
|
|
"tls"; -- Add support for secure TLS on c2s/s2s connections
|
|
|
|
"disco"; -- Service discovery
|
|
|
|
|
|
|
|
-- Not essential, but recommended
|
|
|
|
"private"; -- Private XML storage (for room bookmarks, etc.)
|
|
|
|
"vcard"; -- Allow users to set vCards
|
|
|
|
"pep"; -- Allows setting of mood, tune, etc.
|
|
|
|
"posix"; -- POSIX functionality, sends server to background, enables syslog, etc.
|
|
|
|
"bidi"; -- Enables Bidirectional Server-to-Server Streams.
|
|
|
|
|
|
|
|
-- Nice to have
|
|
|
|
"version"; -- Replies to server version requests
|
|
|
|
"uptime"; -- Report how long server has been running
|
|
|
|
"time"; -- Let others know the time here on this server
|
|
|
|
"ping"; -- Replies to XMPP pings with pongs
|
|
|
|
"register"; -- Allow users to register on this server using a client and change passwords
|
|
|
|
"stream_management"; -- Allows clients and servers to use Stream Management
|
|
|
|
"stanza_optimizations"; -- Allows clients to use Client State Indication and SIFT
|
|
|
|
"message_carbons"; -- Allows clients to enable carbon copies of messages
|
|
|
|
"mam"; -- Enable server-side message archives using Message Archive Management
|
|
|
|
"push"; -- Enable Push Notifications via PubSub using XEP-0357
|
|
|
|
"lastactivity"; -- Enables clients to know the last presence status of an user
|
|
|
|
"adhoc_cm"; -- Allow to set client certificates to login through SASL External via adhoc
|
|
|
|
"admin_adhoc"; -- administration adhoc commands
|
|
|
|
"bookmarks"; -- XEP-0048 Bookmarks synchronization between PEP and Private Storage
|
|
|
|
"sec_labels"; -- Allows to use a simplified version XEP-0258 Security Labels and related ACDFs.
|
|
|
|
"privacy"; -- Add privacy lists and simple blocking command support
|
|
|
|
|
|
|
|
-- Other specific functionality
|
|
|
|
--"admin_telnet"; -- administration console, telnet to port 5582
|
|
|
|
--"admin_web"; -- administration web interface
|
|
|
|
"bosh"; -- Enable support for BOSH clients, aka "XMPP over Bidirectional Streams over Synchronous HTTP"
|
|
|
|
--"compression"; -- Allow clients to enable Stream Compression
|
|
|
|
--"spim_block"; -- Require authorization via OOB form for messages from non-contacts and block unsollicited messages
|
|
|
|
--"gate_guard"; -- Enable config-based blacklisting and hit-based auto-banning features
|
|
|
|
--"incidents_handling"; -- Enable Incidents Handling support (can be administered via adhoc commands)
|
|
|
|
--"server_presence"; -- Enables Server Buddies extension support
|
|
|
|
--"service_directory"; -- Enables Service Directories extension support
|
|
|
|
--"public_service"; -- Enables Server vCard support for public services in directories and advertises in features
|
|
|
|
--"register_api"; -- Provides secure API for both Out-Of-Band and In-Band registration for E-Mail verification
|
|
|
|
"websocket"; -- Enable support for WebSocket clients, aka "XMPP over WebSockets"
|
|
|
|
|
|
|
|
-- For Jitsi Meet
|
|
|
|
"http_altconnect";
|
|
|
|
}
|
|
|
|
|
2020-05-01 15:22:07 +02:00
|
|
|
-- Make the focus user a global administrator
|
|
|
|
admins = { "__FOCUS_USER__@auth.__DOMAIN__" }
|
|
|
|
|
2020-04-11 21:55:05 +02:00
|
|
|
-- domain mapper options, must at least have domain base set to use the mapper
|
2020-04-10 05:21:33 +02:00
|
|
|
muc_mapper_domain_base = "__DOMAIN__";
|
2020-04-11 21:55:05 +02:00
|
|
|
|
2020-04-10 05:21:33 +02:00
|
|
|
cross_domain_bosh = false;
|
|
|
|
consider_bosh_secure = true;
|
2019-06-06 06:04:22 +02:00
|
|
|
|
|
|
|
VirtualHost "__DOMAIN__"
|
2020-04-15 08:50:39 +02:00
|
|
|
authentication = "anonymous"
|
2020-04-11 21:55:05 +02:00
|
|
|
-- Properties below are modified by jitsi-meet-tokens package config
|
|
|
|
-- and authentication above is switched to "token"
|
|
|
|
--app_id="example_app_id"
|
|
|
|
--app_secret="example_app_secret"
|
2020-04-15 08:50:39 +02:00
|
|
|
-- Assign this host a certificate for TLS, otherwise it would use the one
|
|
|
|
-- set in the global section (if any).
|
|
|
|
-- Note that old-style SSL on port 5223 only supports one certificate, and will always
|
|
|
|
-- use the global one.
|
|
|
|
ssl = {
|
|
|
|
key = "/etc/yunohost/certs/__DOMAIN__/key.pem";
|
|
|
|
certificate = "/etc/yunohost/certs/__DOMAIN__/crt.pem";
|
|
|
|
}
|
2020-04-10 05:21:33 +02:00
|
|
|
speakerstats_component = "speakerstats.__DOMAIN__"
|
|
|
|
conference_duration_component = "conferenceduration.__DOMAIN__"
|
|
|
|
-- we need bosh
|
|
|
|
modules_enabled = {
|
|
|
|
"pubsub";
|
|
|
|
"ping"; -- Enable mod_ping
|
|
|
|
"speakerstats";
|
|
|
|
"conference_duration";
|
2020-05-01 15:18:03 +02:00
|
|
|
"extdisco";
|
2020-04-10 05:21:33 +02:00
|
|
|
}
|
|
|
|
c2s_require_encryption = false
|
2020-05-01 14:34:38 +02:00
|
|
|
external_services = {
|
|
|
|
["__DOMAIN__"] = {
|
|
|
|
{ type = "stun", port = "4446", trasport = "udp" },
|
|
|
|
{ type = "stun", port = "4446", trasport = "tcp" }
|
|
|
|
{ type = "turn", port = "4446", transport = "udp", turn_secret = "__TURN_SECRET__", turn_ttl = "86400" },
|
|
|
|
{ type = "turns", port = "443", transport = "tcp", turn_secret = "__TURN_SECRET__", turn_ttl = "86400" },
|
|
|
|
}
|
|
|
|
}
|
2020-04-10 05:21:33 +02:00
|
|
|
|
2020-04-11 21:55:05 +02:00
|
|
|
Component "conference.__DOMAIN__" "muc"
|
|
|
|
modules_enabled = {
|
|
|
|
"muc_meeting_id";
|
2020-04-14 02:37:45 +02:00
|
|
|
"muc_domain_mapper";
|
2020-04-11 21:55:05 +02:00
|
|
|
-- "token_verification";
|
|
|
|
}
|
|
|
|
admins = { "__FOCUS_USER__@auth.__DOMAIN__" }
|
2020-05-01 15:18:03 +02:00
|
|
|
allow_anonymous_creation = true
|
|
|
|
instant_room_on_creation = true
|
|
|
|
room_default_whois = "anyone"
|
2020-04-11 21:55:05 +02:00
|
|
|
|
|
|
|
-- internal muc component
|
2020-04-10 05:21:33 +02:00
|
|
|
Component "internal.auth.__DOMAIN__" "muc"
|
2020-05-01 15:22:07 +02:00
|
|
|
modules_enabled = {
|
2020-04-10 05:21:33 +02:00
|
|
|
"ping";
|
|
|
|
}
|
2020-04-13 17:16:38 +02:00
|
|
|
admins = { "__FOCUS_USER__@auth.__DOMAIN__", "__VIDEOBRIDGE_USER__@auth.__DOMAIN__" }
|
2020-05-01 15:18:03 +02:00
|
|
|
instant_room_on_creation = true
|
|
|
|
room_default_whois = "anyone"
|
2019-06-06 06:04:22 +02:00
|
|
|
|
|
|
|
VirtualHost "auth.__DOMAIN__"
|
2020-04-15 08:50:39 +02:00
|
|
|
ssl = {
|
|
|
|
key = "/etc/yunohost/certs/auth.__DOMAIN__/key.pem";
|
|
|
|
certificate = "/etc/yunohost/certs/auth.__DOMAIN__/crt.pem";
|
|
|
|
}
|
|
|
|
storage = "internal"
|
|
|
|
authentication = "internal_plain"
|
2019-06-06 06:04:22 +02:00
|
|
|
|
|
|
|
Component "focus.__DOMAIN__"
|
|
|
|
component_secret = "__FOCUS_SECRET__"
|
2020-04-10 05:21:33 +02:00
|
|
|
|
|
|
|
Component "speakerstats.__DOMAIN__" "speakerstats_component"
|
|
|
|
muc_component = "conference.__DOMAIN__"
|
|
|
|
|
|
|
|
Component "conferenceduration.__DOMAIN__" "conference_duration_component"
|
2020-04-11 21:55:05 +02:00
|
|
|
muc_component = "conference.__DOMAIN__"
|