Firs thank you for this really good software that allows to maintain the professional activity even with this epidemy. Also, please excuse my engilsh level.
I’m setting a server using docker for professionals of education.
Ideally they would like to :
- Restrict access to the service to the set of registered students
- Restrict the creation of the room to the staff
- Control which student can access which room on the basis of their credential
The idea would be to allow the staff to planify the room in advance and have the gurantee that only the student registered for this course can access it impeding an abusive use of the resources or pertubation of the lesson.
I think this situation appears to be common: in fine, it is the use-case addressed by at least the following topics:
Here are the results of my investigations:
A. It seems to me that the third point is difficult to realize ; I didn’t see any option about it. I read about tokens, but do not know if it can address the issue and how to do it.
B. The first point may be achieved by setting authorization, providing any user an authorization and prohibiting guests. But in this case any student could create a room to its liking. Also they could put a password to the room, and block everyone, what has already happened.
C. The second point may be achieved by only creating credential for the staff and allowing guest. As mentionned here, Restrict_room_creation doesn't work -> https://github.com/jitsi/jicofo#secure-domain. Or, as I commented on the above topic, by simply authorizing both authentification and guest. But this option would allow anyone to join an existent room thus invalidating 1.
D. Last, this last solution could be incremented by adding a password to the room. But this would add a significant load to both the staff and the student as the passwords should be renewed sufficiently too not be leaked while not being able to filter by identifier and thus impeding some persons to use it in a non desired way.
Hence, I can not find a way to achieve both 1 and 2, and worse, 3. Similarly to the OP of Restrict_room_creation doesn't work, I had identified the presence of administrators in the configuration of prosody and supposed that I could give to administrators additional right. But it seems that it does not work this way (as answered in the afformentioned post).
So, my question is the following:
Is there a way to achieve both 1 and 2 and even 3? Maybe the use of those tokens??
Thanks to anyone that will take the time to attend my problem.
And thanks again for this work that is already really cool!!