Inicio Explorar Ayuda
Iniciar sesión
github-mirror
/
docker-jitsi-meet
espejo de https://github.com/jitsi/docker-jitsi-meet
2
0
Fork 0
Archivos Incidencias 0 Wiki
Árbol: 94b2d3a6f3
Ramas Etiquetas
docker-jitsi-me...
/
prosody
/
rootfs
/
etc
/
cont-init.d
/
10-config

10-config 6.4 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165 
  1. #!/usr/bin/with-contenv bash
    2. 

  2. 

  3. if [[ ! -f /etc/saslauthd.conf ]] && [[ "$AUTH_TYPE" == "ldap" ]]; then
    4. 

  4.   tpl /defaults/saslauthd.conf > /etc/saslauthd.conf
    5. 

  5.   mkdir -pm777 /var/run/saslauthd
    6. 

  6.   adduser prosody sasl
    7. 

  7.   echo >> /etc/ldap/ldap.conf "TLS_REQCERT allow"
    8. 

  8. fi
    9. 

  9. 

  10. PROSODY_CFG="/config/prosody.cfg.lua"
    11. 

  11. 

  12. if [[ ! -d /config/data ]]; then
    13. 

  13.     mkdir -pm 750 /config/data
    14. 

  14. fi
    15. 

  15. 

  16. if [[ "$(stat -c %U /config)" != "prosody" ]]; then
    17. 

  17.     chown -R prosody /config
    18. 

  18. fi
    19. 

  19. 

  20. if [[ "$(stat -c %U /prosody-plugins)" != "prosody" ]]; then
    21. 

  21.     chown -R prosody /prosody-plugins
    22. 

  22. fi
    23. 

  23. 

  24. if [[ "$(stat -c %U /prosody-plugins-custom)" != "prosody" ]]; then
    25. 

  25.     chown -R prosody /prosody-plugins-custom
    26. 

  26. fi
    27. 

  27. 

  28. if [[ "$(stat -c %U /prosody-plugins-contrib)" != "prosody" ]]; then
    29. 

  29.     chown -R prosody /prosody-plugins-contrib
    30. 

  30. fi
    31. 

  31. 

  32. mkdir /config/certs
    33. 

  33. cp -r /defaults/* /config
    34. 

  34. 

  35. [ -z "$PROSODY_MODE" ] && export PROSODY_MODE="client"
    36. 

  36. 

  37. if [[ "$PROSODY_MODE" == "visitors" ]]; then
    38. 

  38.     echo "Prosody visitor mode, using alternate config"
    39. 

  39.     PROSODY_SITE_CFG="visitors.cfg.lua"
    40. 

  40.     rm /config/conf.d/jitsi-meet.cfg.lua
    41. 

  41.     rm /config/conf.d/brewery.cfg.lua
    42. 

  42. elif [[ "$PROSODY_MODE" == "brewery" ]]; then
    43. 

  43.     echo "Prosody brewery mode, using alternate config"
    44. 

  44.     PROSODY_SITE_CFG="brewery.cfg.lua"
    45. 

  45.     rm /config/conf.d/jitsi-meet.cfg.lua
    46. 

  46.     rm /config/conf.d/visitors.cfg.lua
    47. 

  47.     # force jicofo into auth domain for brewer prosody
    48. 

  48.     [ -z "$JVB_XMPP_AUTH_DOMAIN" ] && JVB_XMPP_AUTH_DOMAIN="auth.meet.jitsi"
    49. 

  49.     # ensure proper certs are generated
    50. 

  50.     export XMPP_AUTH_DOMAIN="$JVB_XMPP_AUTH_DOMAIN"
    51. 

  51.     # brewery mode requires C2S encryption
    52. 

  52.     export PROSODY_C2S_REQUIRE_ENCRYPTION="true"
    53. 

  53. 

  54.     mkdir -p /config/rules.d
    55. 

  55.     tpl /defaults/rules.d/jvb_muc_presence_filter.pfw > /config/rules.d/jvb_muc_presence_filter.pfw
    56. 

  56. else
    57. 

  57.     echo "Prosody normal mode, using default config"
    58. 

  58.     PROSODY_SITE_CFG="jitsi-meet.cfg.lua"
    59. 

  59.     rm /config/conf.d/visitors.cfg.lua
    60. 

  60.     rm /config/conf.d/brewery.cfg.lua
    61. 

  61. fi
    62. 

  62. tpl /defaults/prosody.cfg.lua > $PROSODY_CFG
    63. 

  63. tpl /defaults/conf.d/$PROSODY_SITE_CFG > /config/conf.d/$PROSODY_SITE_CFG
    64. 

  64. 

  65. if [[ -z $JICOFO_AUTH_PASSWORD ]]; then
    66. 

  66.     echo 'FATAL ERROR: Jicofo auth password must be set'
    67. 

  67.     exit 1
    68. 

  68. fi
    69. 

  69. 

  70. # Defaults
    71. 

  71. [ -z "${JIBRI_RECORDER_USER}" ] && export JIBRI_RECORDER_USER=recorder
    72. 

  72. [ -z "${JIBRI_XMPP_USER}" ] && export JIBRI_XMPP_USER=jibri
    73. 

  73. [ -z "${JIGASI_XMPP_USER}" ] && export JIGASI_XMPP_USER=jigasi
    74. 

  74. [ -z "${JVB_AUTH_USER}" ] && export JVB_AUTH_USER=jvb
    75. 

  75. [ -z "${XMPP_DOMAIN}" ] && export XMPP_DOMAIN=meet.jitsi
    76. 

  76. [ -z "${XMPP_AUTH_DOMAIN}" ] && export XMPP_AUTH_DOMAIN=auth.meet.jitsi
    77. 

  77. # maintain backward compatibility with older variable
    78. 

  78. [ -z "${XMPP_HIDDEN_DOMAIN}" ] && export XMPP_HIDDEN_DOMAIN="$XMPP_RECORDER_DOMAIN"
    79. 

  79. [ -z "${XMPP_HIDDEN_DOMAIN}" ] && export XMPP_HIDDEN_DOMAIN=hidden.meet.jitsi
    80. 

  80. 

  81. prosodyctl --config $PROSODY_CFG register focus $XMPP_AUTH_DOMAIN $JICOFO_AUTH_PASSWORD
    82. 

  82. 

  83. # if we are in client mode, we need to subscribe the focus user to the focus component proxy
    84. 

  84. if [[ "$PROSODY_MODE" == "client" ]]; then
    85. 

  85.     prosodyctl --config $PROSODY_CFG mod_roster_command subscribe focus.$XMPP_DOMAIN focus@$XMPP_AUTH_DOMAIN
    86. 

  86. fi
    87. 

  87. 

  88. if [[ -z $JVB_AUTH_PASSWORD ]]; then
    89. 

  89.     echo 'FATAL ERROR: JVB auth password must be set'
    90. 

  90.     exit 1
    91. 

  91. fi
    92. 

  92. 

  93. OLD_JVB_AUTH_PASSWORD=passw0rd
    94. 

  94. if [[ "$JVB_AUTH_PASSWORD" == "$OLD_JVB_AUTH_PASSWORD" ]]; then
    95. 

  95.     echo 'FATAL ERROR: JVB auth password must be changed, check the README'
    96. 

  96.     exit 1
    97. 

  97. fi
    98. 

  98. 

  99. # we see the next register command to hang from time to time, suspect it's a race with mod_roster_command
    100. 

  100. # Once this is released: https://issues.prosody.im/1908 we can remove this sleep and make sure prosody is running
    101. 

  101. # and then use 'prosodyctl shell user create' to add user live and 'prosodyctl shell roster' to modify their roster live.
    102. 

  102. sleep 1
    103. 

  103. 

  104. prosodyctl --config $PROSODY_CFG register $JVB_AUTH_USER $XMPP_AUTH_DOMAIN $JVB_AUTH_PASSWORD
    105. 

  105. 

  106. if [[ ! -z $JIBRI_XMPP_PASSWORD ]]; then
    107. 

  107.     OLD_JIBRI_XMPP_PASSWORD=passw0rd
    108. 

  108.     if [[ "$JIBRI_XMPP_PASSWORD" == "$OLD_JIBRI_XMPP_PASSWORD" ]]; then
    109. 

  109.         echo 'FATAL ERROR: Jibri auth password must be changed, check the README'
    110. 

  110.         exit 1
    111. 

  111.     fi
    112. 

  112.     prosodyctl --config $PROSODY_CFG register $JIBRI_XMPP_USER $XMPP_AUTH_DOMAIN $JIBRI_XMPP_PASSWORD
    113. 

  113. fi
    114. 

  114. 

  115. if [[ "$PROSODY_MODE" == "client" ]]; then
    116. 

  116.     if [[ ! -z $JIBRI_RECORDER_PASSWORD ]]; then
    117. 

  117.         OLD_JIBRI_RECORDER_PASSWORD=passw0rd
    118. 

  118.         if [[ "$JIBRI_RECORDER_PASSWORD" == "$OLD_JIBRI_RECORDER_PASSWORD" ]]; then
    119. 

  119.             echo 'FATAL ERROR: Jibri recorder password must be changed, check the README'
    120. 

  120.             exit 1
    121. 

  121.         fi
    122. 

  122.         prosodyctl --config $PROSODY_CFG register $JIBRI_RECORDER_USER $XMPP_HIDDEN_DOMAIN $JIBRI_RECORDER_PASSWORD
    123. 

  123.     fi
    124. 

  124.     if [[ "$(echo "$ENABLE_TRANSCRIPTIONS" | tr '[:upper:]' '[:lower:]')" == "true" ]] || [[ "$ENABLE_TRANSCRIPTIONS" == "1" ]]; then
    125. 

  125.         if [[ ! -z $JIGASI_TRANSCRIBER_PASSWORD ]]; then
    126. 

  126.             [ -z "$JIGASI_TRANSCRIBER_USER" ] && JIGASI_TRANSCRIBER_USER="transcriber"
    127. 

  127.             prosodyctl --config $PROSODY_CFG register $JIGASI_TRANSCRIBER_USER $XMPP_HIDDEN_DOMAIN $JIGASI_TRANSCRIBER_PASSWORD
    128. 

  128.         fi
    129. 

  129.     fi
    130. 

  130. fi
    131. 

  131. 

  132. if [[ ! -z $JIGASI_XMPP_PASSWORD ]]; then
    133. 

  133.     OLD_JIGASI_XMPP_PASSWORD=passw0rd
    134. 

  134.     if [[ "$JIGASI_XMPP_PASSWORD" == "$OLD_JIGASI_XMPP_PASSWORD" ]]; then
    135. 

  135.         echo 'FATAL ERROR: Jigasi auth password must be changed, check the README'
    136. 

  136.         exit 1
    137. 

  137.     fi
    138. 

  138.     prosodyctl --config $PROSODY_CFG register $JIGASI_XMPP_USER $XMPP_AUTH_DOMAIN $JIGASI_XMPP_PASSWORD
    139. 

  139. fi
    140. 

  140. 

  141. if [[ "$PROSODY_MODE" == "visitors" ]]; then
    142. 

  142.     [ -z "$VISITORS_XMPP_DOMAIN" ] && VISITORS_XMPP_DOMAIN="meet.jitsi"
    143. 

  143.     [ -z "$PROSODY_VISITOR_INDEX" ] && PROSODY_VISITOR_INDEX=0
    144. 

  144.     FULL_VISITORS_XMPP_DOMAIN="v$PROSODY_VISITOR_INDEX.$VISITORS_XMPP_DOMAIN"
    145. 

  145.     if [[ ! -f /config/certs/$FULL_VISITORS_XMPP_DOMAIN.crt ]]; then
    146. 

  146.         # echo for using all default values
    147. 

  147.         echo | prosodyctl --config $PROSODY_CFG cert generate $FULL_VISITORS_XMPP_DOMAIN
    148. 

  148.     fi
    149. 

  149. elif [[ "$PROSODY_MODE" == "brewery" ]]; then
    150. 

  150.     echo "No need to generate certs for main XMPP domain in brewery mode"
    151. 

  151. else
    152. 

  152.     if [[ ! -f /config/certs/$XMPP_DOMAIN.crt ]]; then
    153. 

  153.         # echo for using all default values
    154. 

  154.         echo | prosodyctl --config $PROSODY_CFG cert generate $XMPP_DOMAIN
    155. 

  155.     fi
    156. 

  156. fi
    157. 

  157. 

  158. if [[ ! -f /config/certs/$XMPP_AUTH_DOMAIN.crt ]]; then
    159. 

  159.     # echo for using all default values
    160. 

  160.     echo | prosodyctl --config $PROSODY_CFG cert generate $XMPP_AUTH_DOMAIN
    161. 

  161. fi
    162. 

  162. 

  163. # certs will be created in /config/data
    164. 

  164. mv /config/data/*.{crt,key} /config/certs/ || true
    165. 

  165. rm -f /config/data/*.cnf
    166.