Hello, I have a self-hosted Jitsi Server(Docker) and I am trying to enable the jwt token authentication option. I am looking at the self-host Docker guide. These are the relevant parts that I saw:
Here is the link of these pictures:https://jitsi.github.io/handbook/docs/devops-guide/devops-guide-docker
I have done the things told here. I have enabled the “ENABLE_AUTH”, “AUTH_TYPE” variables in the .env file and I specified a “JWT_APP_ID” and “JWT_APP_SECRET” in the .env file again. Then I did
docker-compose down
and
docker-compose up -d
But I can still create/join a room without a token. Can someone please please help me? Do I need to install extra plugins (if so, why didn’t they talk about it in the guide)? Or did I do something wrong? I am trying to do this for days…
Of course
https://{an_ıp_address}:8443/roomtryout?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjb250ZXh0Ijp7InVzZXIiOnsiYXZhdGFyIjoiaHR0cHM6Ly9yb2JvaGFzaC5vcmcvam9obi1kb2UiLCJuYW1lIjoiSm9obiBEb2UiLCJlbWFpbCI6Impkb2VAZXhhbXBsZS5jb20ifX0sInN1YiI6IioiLCJpc3MiOiJteV9qaXRzaV9hcHBfaWQiLCJyb29tIjoiKiJ9.piDCVrAhDmUtXGcgC22XwHBMhiYzBty-9nYBCl2aK7I
Did you remove the previous config before running docker-compose up -d command?
For me it is working fine with below config.
# Select authentication type: internal, jwt or ldap
AUTH_TYPE=jwt
# JWT authentication
#
# Application identifier
JWT_APP_ID=my_id
# Application secret known only to your token
JWT_APP_SECRET=XXXX
# (Optional) Set asap_accepted_issuers as a comma separated list
JWT_ACCEPTED_ISSUERS=my_web_client,my_app_client
# (Optional) Set asap_accepted_audiences as a comma separated list
JWT_ACCEPTED_AUDIENCES=myserver1,myserver2
JWT_ALLOW_EMPTY=0
JWT_TOKEN_AUTH_MODULE=token_verification
#
Waıt. I dıdnt catch it. How will I Set prosody to debug mode using LOG_LEVEL=debug? Where will I do ıt? And ıf ıt ıs default should I not ınstall the plugin?
Okay I wıll. I have to go right now but as soon as I do it, I will write here. You are the most helping person thank you so much, hope I can contact again.
Hello, I did not remove the previouse config but instead did “docker-compose down” and then “docker-compose up -d”. (I stıll could not do the debug thing [not accesing the server rn] but I tried to enter a room with the token and the name of the person I wrote to the token got displayed on the screen. I think the token is being registered correctly but I still could join w/o a token)