[jitsi-dev] [JIGASI] Password protected rooms


#1

Hi guys,

It is possible to join a password protected room with jigasi without specifying any password (header that containing it)?

Can we declare jigasi user as admin and by-pass the XMPP password?

PS: i found this part of code mentioning that but in my use-case the password can't be provided via the SIP headers.

https://github.com/jitsi/jigasi/blob/6b68483921354ccda8c22c49844d9ec10c22a53d/src/main/java/org/jitsi/jigasi/xmpp/CallControl.java#L49

Thanks for you help.

Arthur


#2

Hi,

The part you are referring to is for a locked room, you can specify
locked room password in sip headers.
Take a look at this part:
https://github.com/jitsi/jigasi/blob/master/jigasi-home/sip-communicator.properties#L58
This is about authenticating the jigasi user that normally joins anonymously.

Regards
damencho

···

On Mon, May 1, 2017 at 4:25 PM, Arthur TOUMASSIAN <artogu@live.fr> wrote:

Hi guys,

It is possible to join a password protected room with jigasi without
specifying any password (header that containing it)?

Can we declare jigasi user as admin and by-pass the XMPP password?

PS: i found this part of code mentioning that but in my use-case the
password can't be provided via the SIP headers.

https://github.com/jitsi/jigasi/blob/6b68483921354ccda8c22c49844d9ec10c22a53d/src/main/java/org/jitsi/jigasi/xmpp/CallControl.java#L49

Thanks for you help.

Arthur

_______________________________________________
dev mailing list
dev@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/dev


#3

Hi Damian,

Yes you're right i'm talking about the password for the locked room (jitsi-meet lock).

The problem is that i cant specify the password (via header) of the locked room as the SIP user can't always type alphanumerical characters.

Is there way to always grant access to SIP users, without specifying the lock password?

···

________________________________
De : dev <dev-bounces@jitsi.org> de la part de Damian Minkov <damencho@jitsi.org>
Envoyé : lundi 1 mai 2017 23:51
À : Jitsi Developers
Objet : Re: [jitsi-dev] [JIGASI] Password protected rooms

Hi,

The part you are referring to is for a locked room, you can specify
locked room password in sip headers.
Take a look at this part:
https://github.com/jitsi/jigasi/blob/master/jigasi-home/sip-communicator.properties#L58

This is about authenticating the jigasi user that normally joins anonymously.

Regards
damencho

On Mon, May 1, 2017 at 4:25 PM, Arthur TOUMASSIAN <artogu@live.fr> wrote:

Hi guys,

It is possible to join a password protected room with jigasi without
specifying any password (header that containing it)?

Can we declare jigasi user as admin and by-pass the XMPP password?

PS: i found this part of code mentioning that but in my use-case the
password can't be provided via the SIP headers.

https://github.com/jitsi/jigasi/blob/6b68483921354ccda8c22c49844d9ec10c22a53d/src/main/java/org/jitsi/jigasi/xmpp/CallControl.java#L49

[https://avatars2.githubusercontent.com/u/3671647?v=3&s=400]<https://github.com/jitsi/jigasi/blob/6b68483921354ccda8c22c49844d9ec10c22a53d/src/main/java/org/jitsi/jigasi/xmpp/CallControl.java#L49>

jitsi/jigasi<https://github.com/jitsi/jigasi/blob/6b68483921354ccda8c22c49844d9ec10c22a53d/src/main/java/org/jitsi/jigasi/xmpp/CallControl.java#L49>
github.com
jigasi - JItsi GAteway to SIP : a server-side application that links allows regular SIP clients to join JitMeet conferences hosted by Jitsi Videobridge.

Thanks for you help.

Arthur

_______________________________________________
dev mailing list
dev@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/dev

dev -- Jitsi Developers - Mailing Lists<http://lists.jitsi.org/mailman/listinfo/dev>
lists.jitsi.org
For discussion of technical implementation details, and is where developers meet and discuss issues, code changes, etc. To see the collection of prior postings to the ...

_______________________________________________
dev mailing list
dev@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/dev
dev -- Jitsi Developers - Mailing Lists<http://lists.jitsi.org/mailman/listinfo/dev>
lists.jitsi.org
For discussion of technical implementation details, and is where developers meet and discuss issues, code changes, etc. To see the collection of prior postings to the ...


#4

Hi again,

Nope, there is currently no such functionality. The only way, I can see it
be done, is to have some prosody module that can join users without a
password to a locked room, even this I'm not sure how easy it is.
And this, by the way, breaks the security, cause anybody with a number and
room name can join a secured room.

Regards
damencho

···

On Mon, May 1, 2017 at 5:13 PM, Arthur TOUMASSIAN <artogu@live.fr> wrote:

Hi Damian,

Yes you're right i'm talking about the password for the locked room
(jitsi-meet lock).

The problem is that i cant specify the password (via header) of the locked
room as the SIP user can't always type alphanumerical characters.

Is there way to always grant access to SIP users, without specifying
the lock password?

------------------------------
*De :* dev <dev-bounces@jitsi.org> de la part de Damian Minkov <
damencho@jitsi.org>
*Envoyé :* lundi 1 mai 2017 23:51
*À :* Jitsi Developers
*Objet :* Re: [jitsi-dev] [JIGASI] Password protected rooms

Hi,

The part you are referring to is for a locked room, you can specify
locked room password in sip headers.
Take a look at this part:
https://github.com/jitsi/jigasi/blob/master/jigasi-home/sip-communicator.
properties#L58

This is about authenticating the jigasi user that normally joins
anonymously.

Regards
damencho

On Mon, May 1, 2017 at 4:25 PM, Arthur TOUMASSIAN <artogu@live.fr> wrote:
> Hi guys,
>
>
> It is possible to join a password protected room with jigasi without
> specifying any password (header that containing it)?
>
> Can we declare jigasi user as admin and by-pass the XMPP password?
>
>
> PS: i found this part of code mentioning that but in my use-case the
> password can't be provided via the SIP headers.
>
> https://github.com/jitsi/jigasi/blob/6b68483921354ccda8c22c49844d9e
c10c22a53d/src/main/java/org/jitsi/jigasi/xmpp/CallControl.java#L49

<https://github.com/jitsi/jigasi/blob/6b68483921354ccda8c22c49844d9ec10c22a53d/src/main/java/org/jitsi/jigasi/xmpp/CallControl.java#L49>
jitsi/jigasi
<https://github.com/jitsi/jigasi/blob/6b68483921354ccda8c22c49844d9ec10c22a53d/src/main/java/org/jitsi/jigasi/xmpp/CallControl.java#L49>
github.com
jigasi - JItsi GAteway to SIP : a server-side application that links
allows regular SIP clients to join JitMeet conferences hosted by Jitsi
Videobridge.

>
>
> Thanks for you help.
>
> Arthur
>
>
> _______________________________________________
> dev mailing list
> dev@jitsi.org
> Unsubscribe instructions and other list options:
> http://lists.jitsi.org/mailman/listinfo/dev
dev -- Jitsi Developers - Mailing Lists
<http://lists.jitsi.org/mailman/listinfo/dev>
lists.jitsi.org
For discussion of technical implementation details, and is where
developers meet and discuss issues, code changes, etc. To see the
collection of prior postings to the ...

_______________________________________________
dev mailing list
dev@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/dev
dev -- Jitsi Developers - Mailing Lists
<http://lists.jitsi.org/mailman/listinfo/dev>
lists.jitsi.org
For discussion of technical implementation details, and is where
developers meet and discuss issues, code changes, etc. To see the
collection of prior postings to the ...

_______________________________________________
dev mailing list
dev@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/dev


#5

Actually i implemented a voicemail that works with jicofo's reservations system. Each conference is affected with a random conference number and pin code. So before joining the conference the user have to know these numbers. So security part isn't too much compromised.

AFAIK adding password to the conference will send event to jicofo . May be i can use this to store the password in the reservation. So i can inject it while SIP call. Will try to dig a little further.

Thank you.

Best regards,

Arthur

···

________________________________
De : dev <dev-bounces@jitsi.org> de la part de Damian Minkov <damencho@jitsi.org>
Envoyé : mardi 2 mai 2017 00:21
À : Jitsi Developers
Objet : Re: [jitsi-dev] [JIGASI] Password protected rooms

Hi again,

Nope, there is currently no such functionality. The only way, I can see it be done, is to have some prosody module that can join users without a password to a locked room, even this I'm not sure how easy it is.
And this, by the way, breaks the security, cause anybody with a number and room name can join a secured room.

Regards
damencho

On Mon, May 1, 2017 at 5:13 PM, Arthur TOUMASSIAN <artogu@live.fr<mailto:artogu@live.fr>> wrote:

Hi Damian,

Yes you're right i'm talking about the password for the locked room (jitsi-meet lock).

The problem is that i cant specify the password (via header) of the locked room as the SIP user can't always type alphanumerical characters.

Is there way to always grant access to SIP users, without specifying the lock password?

________________________________
De : dev <dev-bounces@jitsi.org<mailto:dev-bounces@jitsi.org>> de la part de Damian Minkov <damencho@jitsi.org<mailto:damencho@jitsi.org>>
Envoyé : lundi 1 mai 2017 23:51
À : Jitsi Developers
Objet : Re: [jitsi-dev] [JIGASI] Password protected rooms

Hi,

The part you are referring to is for a locked room, you can specify
locked room password in sip headers.
Take a look at this part:
https://github.com/jitsi/jigasi/blob/master/jigasi-home/sip-communicator.properties#L58

This is about authenticating the jigasi user that normally joins anonymously.

Regards
damencho

On Mon, May 1, 2017 at 4:25 PM, Arthur TOUMASSIAN <artogu@live.fr<mailto:artogu@live.fr>> wrote:

Hi guys,

It is possible to join a password protected room with jigasi without
specifying any password (header that containing it)?

Can we declare jigasi user as admin and by-pass the XMPP password?

PS: i found this part of code mentioning that but in my use-case the
password can't be provided via the SIP headers.

https://github.com/jitsi/jigasi/blob/6b68483921354ccda8c22c49844d9ec10c22a53d/src/main/java/org/jitsi/jigasi/xmpp/CallControl.java#L49

[https://avatars2.githubusercontent.com/u/3671647?v=3&s=400]<https://github.com/jitsi/jigasi/blob/6b68483921354ccda8c22c49844d9ec10c22a53d/src/main/java/org/jitsi/jigasi/xmpp/CallControl.java#L49>

jitsi/jigasi<https://github.com/jitsi/jigasi/blob/6b68483921354ccda8c22c49844d9ec10c22a53d/src/main/java/org/jitsi/jigasi/xmpp/CallControl.java#L49>
github.com<http://github.com>
jigasi - JItsi GAteway to SIP : a server-side application that links allows regular SIP clients to join JitMeet conferences hosted by Jitsi Videobridge.

Thanks for you help.

Arthur

_______________________________________________
dev mailing list
dev@jitsi.org<mailto:dev@jitsi.org>
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/dev

dev -- Jitsi Developers - Mailing Lists<http://lists.jitsi.org/mailman/listinfo/dev>
lists.jitsi.org<http://lists.jitsi.org>
For discussion of technical implementation details, and is where developers meet and discuss issues, code changes, etc. To see the collection of prior postings to the ...

_______________________________________________
dev mailing list
dev@jitsi.org<mailto:dev@jitsi.org>
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/dev
dev -- Jitsi Developers - Mailing Lists<http://lists.jitsi.org/mailman/listinfo/dev>
lists.jitsi.org<http://lists.jitsi.org>
For discussion of technical implementation details, and is where developers meet and discuss issues, code changes, etc. To see the collection of prior postings to the ...

_______________________________________________
dev mailing list
dev@jitsi.org<mailto:dev@jitsi.org>
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/dev