Restrict room creation for guest

I use jwt auth and I want grant privileges for room creation only for user who has token. and I want guest users not can be create new rooms, only have access for existing.

I read this post JWT tokens and guest access

I create VH:

VirtualHost “meet.jitsi”
authentication = “token”
app_id = “appui”
app_secret = “secrer”
allow_empty_token = true

ssl = {
    key = "/config/certs/meet.jitsi.key";
    certificate = "/config/certs/meet.jitsi.crt";
}
modules_enabled = {
    "bosh";
    "pubsub";
    "ping";
    "presence_identity";
    "token_moderation";
}
c2s_require_encryption = false

VirtualHost “auth.meet.jitsi”
ssl = {
key = “/config/certs/auth.meet.jitsi.key”;
certificate = “/config/certs/auth.meet.jitsi.crt”;
}
authentication = “internal_plain”

VirtualHost “recorder.meet.jitsi”
modules_enabled = {
“ping”;
}
authentication = “internal_plain”

Component “internal-muc.meet.jitsi” “muc”
modules_enabled = {
“ping”;
}
storage = “memory”
muc_room_cache_size = 1000

Component “muc.meet.jitsi” “muc”
storage = “memory”
modules_enabled = {
“token_moderation”;
“token_verification”;
}
restrict_room_creation = true

Component “focus.meet.jitsi”
component_secret = “secret”

And in config.js I enable enableUserRolesBasedOnToken
enableUserRolesBasedOnToken: true,

But if guest enter link https://domain.com/room Room will be created.
enableUserRolesBasedOnToken not work or I don’t understand how it need works.

Thank you for help.

Take a look at: https://github.com/jitsi/jicofo#secure-domain

Works for me with JWTs

Doesn’t this need to be false?

Then add something like:

VirtualHost “guest.jitsi.meet”
authentication = “anonymous”
c2s_require_encryption = false

Thats how I have it setup and only people can start rooms. People who randomly create a room are presented with a prompt asking if they are the moderator and if not, the host hasn’t started the meeting yet.

allow_empty_token=true is the “guest access” for JWT-Auth authentication="token" afaik

Hi, has anyone solved this? I would like to prevent a guest from creating a room when he is not logged in. i managed to disable guests from joining an empty room but I couldn’t prevent them from creating new rooms.