[Solved]Anonymousdomain not found issue / BOSH client tried to connect to unknown host:

Hi,

Trying to setup authentication for opening and creatiung conf room and beeing moderator.
All done according to secure domain docs.
Both domain and related configs all set.

1st test passed auth promt coming and I’m able to logon to.

2nd test failed allowing anonymous users join to created conf room, browsers start looping with “You have been disconeccted” popup. Even if moderator wanted to join and create room, no more auth propt only this looping.

anonymosusdomain: guest.myfqdn.domain enabled in meet config

Nothing in prosody log, switched to debug level and here I go:

May 01 13:27:52 mod_bosh debug BOSH body open (sid: )
May 01 13:27:52 mod_bosh debug BOSH client tried to connect to unknown host: guest.myfqdn.domain
May 01 13:27:52 mod_bosh debug Request destroyed: table: 0x561f5ce6d110

guest.myfqdn.domain in hosts file pointig to server ip

Client DNS resoultion goes only to myfqdn.domain not to guest.myfqdn.domain.

thanks
George

Have you configured that in prosody as described in the instructions?

Sure. As I wrote all set, including domain (internal_plain) and guest (anonymous) domain
My guess some version mismatch between Ubuntu latest updated and Jitsi. Known working backup set in restore progress. I’m gonna try retest W/O updates.
BTW Your team declares some date when Java 11 and highest Crome and comedriver becoming supported? I’m ask becuse known vulnerabilities on old versions.

Currently we’re in test phase, sec team have veto rights. This config will fail at sec test procedure.

Anyway I would say it is a brilliant product and hope we can use it. Congrats for all involved fellows

thanks
George

I’m currently working on java 11 to be supported. We are not aware of any security issues, otherwise those would be fixed. Even if you suspect some security report it may be not applicable to the setup.

Yes I know that. Have you ever meet security auditor? Hard to expalin in that situlation why we’re running on a not really “supported by sec” apps. They have power and they’re use it.
Look forward for new build which capable to run on java 11 and latest chrome packages already.
Thanks
George

Update
My guesing was definietly right, that’s version mismatch issue between Ubuntu and Jitsi.
I went one step folder
1

Unfortunatelly facing another issue logon afer I have this

2

prosody log say (info mode): Authenticated then in next line BOSH client disconnected
Jicofo log: 402 Focus request for room: xxxx then nothing has happened

It looks focus issue

Prosody debug log:


May 02 06:28:52 mod_bosh debug BOSH body open (sid: d3f98973-b994-41b5-ace9-9b32d193d0cd)
May 02 06:28:52 mod_bosh debug BOSH stanza received:

May 02 06:28:52 boshd3f98973-b994-41b5-ace9-9b32d193d0cd debug Received[c2s_unbound]:
May 02 06:28:52 rostermanager debug load_roster: asked for: gyorgy.urbanovits@webconf.globolearning.eu
May 02 06:28:52 rostermanager debug load_roster: loading for new user: gyorgy.urbanovits@webconf.globolearning.eu
May 02 06:28:52 boshd3f98973-b994-41b5-ace9-9b32d193d0cd debug Resource bound: gyorgy.urbanovits@webconf.globolearning.eu/bbddbfd9-ed6e-4f56-aec5-f39b085dd72a
May 02 06:28:52 mod_bosh debug We have an open request, so sending on that
May 02 06:28:52 mod_bosh debug Request destroyed: table: 0x55f9d21bd2a0
May 02 06:28:52 boshd3f98973-b994-41b5-ace9-9b32d193d0cd debug BOSH session marked as inactive (for 60s)
May 02 06:28:52 mod_bosh debug Session d3f98973-b994-41b5-ace9-9b32d193d0cd has 0 out of 1 requests open
May 02 06:28:52 mod_bosh debug and there are 0 things in the send_buffer:
May 02 06:28:53 http.server debug Firing event: POST webconf.globolearning.eu/http-bind
May 02 06:28:53 mod_bosh debug Handling new request table: 0x55f9d21c5b40:

May 02 06:28:53 mod_bosh debug BOSH body open (sid: d3f98973-b994-41b5-ace9-9b32d193d0cd)
May 02 06:28:53 mod_bosh debug BOSH stanza received:

May 02 06:28:53 boshd3f98973-b994-41b5-ace9-9b32d193d0cd debug Received[c2s]:
May 02 06:28:53 mod_bosh debug We have an open request, so sending on that
May 02 06:28:53 mod_bosh debug Request destroyed: table: 0x55f9d21c6060
May 02 06:28:53 boshd3f98973-b994-41b5-ace9-9b32d193d0cd debug BOSH session marked as inactive (for 60s)
May 02 06:28:53 mod_bosh debug Session d3f98973-b994-41b5-ace9-9b32d193d0cd has 0 out of 1 requests open
May 02 06:28:53 mod_bosh debug and there are 0 things in the send_buffer:
May 02 06:28:53 http.server debug Firing event: POST webconf.globolearning.eu/http-bind
May 02 06:28:53 mod_bosh debug Handling new request table: 0x55f9d21cd7e0:

May 02 06:28:53 mod_bosh debug BOSH body open (sid: d3f98973-b994-41b5-ace9-9b32d193d0cd)
May 02 06:28:53 mod_bosh debug BOSH stanza received:

May 02 06:28:53 boshd3f98973-b994-41b5-ace9-9b32d193d0cd debug Received[c2s]:
May 02 06:28:53 mod_bosh debug BOSH stanza received:

May 02 06:28:53 boshd3f98973-b994-41b5-ace9-9b32d193d0cd debug Received[c2s]:
May 02 06:28:53 mod_bosh debug We have an open request, so sending on that
May 02 06:28:53 mod_bosh debug Request destroyed: table: 0x55f9d21cdcf0
May 02 06:28:53 boshd3f98973-b994-41b5-ace9-9b32d193d0cd debug BOSH session marked as inactive (for 60s)
May 02 06:28:53 mod_bosh debug Session d3f98973-b994-41b5-ace9-9b32d193d0cd has 0 out of 1 requests open
May 02 06:28:53 mod_bosh debug and there are 0 things in the send_buffer:
May 02 06:28:53 jcp55f9d1f38fe0 debug Received[component]: <iq id=‘698d831c-8975-4150-86f5-f08193df3415:sendIQ’ type=‘error’ to=‘gyorgy.urbanovits@webconf.globolearning.eu/bbddbfd9-ed6e-4f56-aec5-f39b085dd72a’ from=‘focus.webconf.globolearning.eu’>
May 02 06:28:53 http.server debug Firing event: POST webconf.globolearning.eu/http-bind
May 02 06:28:53 mod_bosh debug Handling new request table: 0x55f9d21e0200:

May 02 06:28:53 mod_bosh debug BOSH body open (sid: d3f98973-b994-41b5-ace9-9b32d193d0cd)
May 02 06:28:53 mod_bosh debug We have an open request, so sending on that
May 02 06:28:53 mod_bosh debug Request destroyed: table: 0x55f9d21e06e0
May 02 06:28:53 boshd3f98973-b994-41b5-ace9-9b32d193d0cd debug BOSH session marked as inactive (for 60s)
May 02 06:28:53 mod_bosh debug Session d3f98973-b994-41b5-ace9-9b32d193d0cd has 0 out of 1 requests open
May 02 06:28:53 mod_bosh debug and there are 0 things in the send_buffer:
May 02 06:28:53 http.server debug Firing event: POST webconf.globolearning.eu/http-bind
May 02 06:28:53 mod_bosh debug Handling new request table: 0x55f9d21e5a70:

Do you have the correct jicofo config for the authentication?

My guessing another Ubuntu<=> Jitsi version miscmatch issue, or prosody verion issue.

It would be benefical to have a compatibility matrix documentation, or even better to have a test_script to download. Experienced errors here 90% about that.
FYI. latest U 18.04 update overkill on JIBRI

Better to paste my configs and jicofo log

sip-comm

org.jitsi.jicofo.jibri.BREWERY=JibriBrewery@internal.auth.webconf.globolearning.eu
org.jitsi.jicofo.jibri.PENDING_TIMEOUT=90
org.jitsi.jicofo.auth.URL=XPMPP:webconf.globolearning.eu

config

Jitsi Conference Focus settings

sets the host name of the XMPP server

JICOFO_HOST=localhost

sets the XMPP domain (default: none)

JICOFO_HOSTNAME=webconf.globolearning.eu

sets the secret used to authenticate as an XMPP component

JICOFO_SECRET=xxxxxxxxxx

sets the port to use for the XMPP component connection

JICOFO_PORT=5347

sets the XMPP domain name to use for XMPP user logins

JICOFO_AUTH_DOMAIN=auth.webconf.globolearning.eu

sets the username to use for XMPP user logins

JICOFO_AUTH_USER=focus

sets the password to use for XMPP user logins

JICOFO_AUTH_PASSWORD=ccccccc

extra options to pass to the jicofo daemon

JICOFO_OPTS=""

adds java system props that are passed to jicofo (default are for home and logging config file)

JAVA_SYS_PROPS="-Dnet.java.sip.communicator.SC_HOME_DIR_LOCATION=/etc/jitsi -Dnet.java.sip.communicator.SC_HOME_DIR_NAME=jicofo -Dnet.java.sip.communicator.SC_LOG_DIR_LOCATION=/var/log/jitsi -Djava.util.loggin$

Jicofo log, huge 402 Focus request at connection attempt:

Jicofo 2019-05-02 10:25:30.278 INFO: [19] org.jitsi.jicofo.ComponentsDiscovery.discoverServices().267 New component discovered: focus.webconf.globolearning.eu, null
Jicofo 2019-05-02 10:25:30.300 INFO: [19] org.jitsi.jicofo.ComponentsDiscovery.discoverServices().267 New component discovered: recorder.webconf.globolearning.eu, IQ Stanza (query jabber:iq:version) [to=focus@auth.webconf.globolearning.eu/focus63526255651166,from=recorder.webconf.globolearning.eu,id=p48R6-50,type=result,]
Jicofo 2019-05-02 10:25:30.301 INFO: [19] org.jitsi.jicofo.ComponentsDiscovery.scheduleRediscovery().189 Services re-discovery interval: 30000
Jicofo 2019-05-02 10:25:30.303 INFO: [19] org.jitsi.jicofo.FocusManager.log() XMPP provider reg state: RegistrationState=Registered
Jicofo 2019-05-02 10:25:30.326 INFO: [19] org.jitsi.impl.protocol.xmpp.XmppProtocolProvider.doConnect().309 XMPP provider Jabber:focus@auth.webconf.globolearning.eu/focus63526255651166@localhost connected (JID: focus@auth.webconf.globolearning.eu/focus63526255651166)
Jicofo 2019-05-02 10:25:41.547 INFO: [38] org.jitsi.jicofo.xmpp.BaseBrewery.processInstanceStatusChanged().324 Added brewery instance: jibribrewery@internal.auth.webconf.globolearning.eu/jibri-nickname
Jicofo 2019-05-02 10:25:41.548 INFO: [38] org.jitsi.jicofo.recording.jibri.JibriDetector.onInstanceStatusChanged().136 Received Jibri jibribrewery@internal.auth.webconf.globolearning.eu/jibri-nickname status
Jicofo 2019-05-02 10:25:41.549 INFO: [38] org.jitsi.jicofo.recording.jibri.JibriDetector.notifyJibriStatus().174 Jibri: jibribrewery@internal.auth.webconf.globolearning.eu/jibri-nickname available: true
Jicofo 2019-05-02 10:25:41.551 INFO: [38] org.jitsi.jicofo.recording.jibri.JibriDetector.onInstanceStatusChanged().136 Received Jibri jibribrewery@internal.auth.webconf.globolearning.eu/jibri-nickname status
Jicofo 2019-05-02 10:25:41.551 INFO: [38] org.jitsi.jicofo.recording.jibri.JibriDetector.notifyJibriStatus().174 Jibri: jibribrewery@internal.auth.webconf.globolearning.eu/jibri-nickname available: true
Jicofo 2019-05-02 10:25:52.213 INFO: [56] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:25:57.382 INFO: [58] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:00.361 INFO: [44] org.jitsi.jicofo.ComponentsDiscovery.discoverServices().267 New component discovered: jitsi-videobridge.webconf.globolearning.eu, IQ Stanza (query jabber:iq:version) [to=focus@auth.webconf.globolearning.eu/focus63526255651166,from=jitsi-videobridge.webconf.globolearning.eu,id=p48R6-82,type=result,]
Jicofo 2019-05-02 10:26:00.361 INFO: [44] org.jitsi.jicofo.BridgeSelector.addJvbAddress().215 Added videobridge: jitsi-videobridge.webconf.globolearning.eu v: IQ Stanza (query jabber:iq:version) [to=focus@auth.webconf.globolearning.eu/focus63526255651166,from=jitsi-videobridge.webconf.globolearning.eu,id=p48R6-82,type=result,]
Jicofo 2019-05-02 10:26:00.361 WARNING: [44] org.jitsi.jicofo.BridgeSelector.addJvbAddress().227 No pub-sub node mapped for jitsi-videobridge.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:00.367 INFO: [65] org.jitsi.jicofo.JvbDoctor.log() Scheduled health-check task for: jitsi-videobridge.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:02.473 INFO: [68] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:04.202 INFO: [70] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:07.568 INFO: [72] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:12.640 INFO: [79] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:17.718 INFO: [81] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:22.768 INFO: [50] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:24.182 INFO: [52] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:27.824 INFO: [54] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:32.882 INFO: [62] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:37.935 INFO: [64] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:38.327 INFO: [68] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:42.977 INFO: [74] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:48.016 INFO: [76] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:53.054 INFO: [43] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:26:58.158 INFO: [48] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:27:03.262 INFO: [56] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:27:08.365 INFO: [58] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu
Jicofo 2019-05-02 10:27:13.426 INFO: [64] org.jitsi.jicofo.xmpp.FocusComponent.handleConferenceIq().402 Focus request for room: test@conference.webconf.globolearning.eu

Config looks fine as what I can see, not sure what can be the problem …

What about this prosody MUC change?

Which MUC call implemented in Jitsi? Did not find any plugin path.

MUC commands

Note: This is new in 0.9

muc:room(room)

Fetches the room object. Not very useful by itself, but has some useful methods.

muc:room(room):get_affiliation(jid)

Shows what affiliation jid has in the room.

muc:room(room):set_affiliation(actor, jid, affiliation)

Sets affiliation for jid in the room. Pass true as first argument. Possible values for affiliation are "owner" , "admin" , "member" , "outcast" (banned) and "none" (no affiliation).

muc:room("room@muc.host"):set_affiliation(true, "user@host", "member");

muc:room(room):get_role(nick)

Shows what role the user with nickname nick has in the room.

muc:room(room):destroy()

Kicks everyone from the room and removes it.

:warning: Note: In Prosody 0.10.x and older you need to call :save(true) afterwards in order to purge the room completely.

Since Prosody 0.11.x destroying a room leaves a tombstone, preventing the room from being mistakenly re-created. Calling :destroy another time destroys the tombstone and allows the room to be created again.

What is your question?

Skip that above, I had guess about conf room creation code

Upgraded to unstabe: jitsi-meet is already the newest version (1.0.3711-1) NOthing has changed

Here is the root cause of the problem:

Auth failed becaue authentication request goes to guest.FQDN domain intsead of FQND.

Can you show the first error after you have signed in, the second send to guest is fine, this you can see going to a room without a host, this is the retry till a host arrives.

On your first screenshot it is seen Mu Jabber ID: …@webconf.globolearning.eu… where you had logged.

The question is why after authorising you are disconnected. Those iqs from the second screenshot are normal.

Hi,

Really no idea why this happening.
Anyway last night I made a new install from scratch /Ubuntu-Jitsi/ W/O any updates and this issue gone.
Which pointig out incomatibilty issues what mentioned previously.

That’s why I’m asking you and dev team to publish some comaptibility matrix docs or even script.

Thanks
George

There is no such document and I’m not sure what do you want from such a document.
We had shared not once or twice what we currently use in production.
Prosody 747trunk, 18.04LTS Ubuntu and java8, the rest of the packages you see in the stable repo. We are using jwt tokens as authentication mechanism.
You are welcome as everybody are to join the Community Call and ask questions.