Tokens or other auth method configurations


#1

Hi,
I’m testing jitsi, and I’m confused on authentication and roles.

I installed it following https://github.com/jitsi/jitsi-meet/blob/master/doc/quick-install.md

What I would like to achieve is that users can join conferences from my website using a link like “https://example.com/room1?jwt_or_other_auth=somevalue” and they are always admins.
Other people instead join using “https://example.com/room1” and they are never granted admin permissions.

Am I correct about using jwt tokens? Or is this configurable in other ways?

Also, I tryed to change enableUserRolesBasedOnToken to true, but when I do that dialout breaks.


here’s the log from the developer console in chrome:

app.bundle.min.js?v=2942:sourcemap:2 [react/features/invite/functions.js] <>: Error searching directory: SyntaxError: Unexpected token < in JSON at position 0
app.bundle.min.js?v=2942:sourcemap:2 [react/features/base/react/components/web/MultiSelectAutocomplete.js] <>: MultiSelectAutocomplete error in query SyntaxError: Unexpected token < in JSON at position 0

Thanks all…


#2

Currently jwt cannot control moderator role. You can have the first to join to be moderator or enabling a module, all participants to be moderators, the same way meet.jit.si is configured.
If you enable secure domain https://github.com/jitsi/jicofo#secure-domain, the first to join in a conference will be asked for username and password and after the authenticated user joins, guests can enter the room without authentication. If a guests try entering before the authenticated user, the guest will need to wait till the authenticated enters and will be automatically connected.


#3

Thanks, but I have a further question now:
secure domain:
It is possible to allow only authenticated users for creating new conference rooms
this is done by setting authentication = “internal_plain”

If I enable secure domain and have this scenario:
authenticated user creates a room, he is the moderator
guests join
authenticated user leaves
who is the moderator now?

Also, can I use secure domain with authentication = “token”?


#4

If this was the only moderator in the room, there will be no more a moderator and only guests.

No.


#5

Thanks,
Maybe I’m starting to understand.
Between these options I would like to enable moderator rights for all users (if everyone is a moderator, no one is a moderator).
How do I install https://github.com/jitsi/jitsi-meet/blob/master/resources/prosody-plugins/mod_muc_allowners.lua

This file is included in jitsi-meet-tokens, but If I enable the official repo for prosody and install jitsi-meet-tokens I get a whole new set of issues.
Is there a more straightforward documentation to install muc_allowners on top of the basic installation described in the quick-install document?
Thanks


#6

You need to put that file in a folder and uncomment and add that folder like this:


Make sure the prosody user can read it.

Then under you need to enable it like:

Component "conference.your.domain.com" "muc"
....
modules_enabled = { "muc_allowners" }