DMZ - We want to install Jitsi on a server in our company.

(I’m sorry for my English). :relaxed:
We want to install Jitsi on a server in our company.
The server will be available from the outside. So it is installed in the DMZ of our network. We want it to be available only by our employees. How can I protect my server so that no foreign person can use it?

it depends… just for you employees? … or do you need to share conferences links with extern people?

a) one way, set up Jicofo “secure domain”: jitsi/jicofo/blob/master/README.md#secure-domain

b) another simple approach would be to add some php code, like a simple login page (hardcoded login credentials or based on a user database, on request ip, or whatever)

simple example:

  1. rename your “index.html” in /usr/share/jitsi/meet/ to “xxx.html”
  2. in your nginx configuration, add “php” file extension to your index
  3. add new “index.php” in /usr/share/jitsi/meet/ with example code below:

<?php
$userAuth = false;
if(isset($_POST["username"]) && isset($_POST["password"])){
if(($_POST["username"] == "myname")
&& ($_POST["password"] == "mypass")){
$userAuth = true;
}
}
if($userAuth == false){
echo '<form method="post">'
echo '<input type="text" placeholder="Enter Username" name="username" required>';
echo '<input type="password" placeholder="Enter Password" name="password" required>';
echo '<button type="submit">Login</button>';
echo '</form>';
} else {
include("xxx.html");
}
?>

important, to use php on nginx you have to install/setup it first, like this (step 3+4): https://calendarific.com/blog/how-to-setup-nginx-with-php-and-mysql-lemp-stack-on-ubuntu-18-04?PageSpeed=noscript

1 Like

Hi m_aejou, Thank you. It’s in progress. :blush:

nice to hear … well done :wink: