Página Principal Explorar Ajuda
Iniciar Sessão
github-mirror
/
docker-jitsi-meet
mirror de https://github.com/jitsi/docker-jitsi-meet
2
0
Fork 0
Ficheiros Problemas 0 Wiki
Árvore: stable-101
Ramos Etiquetas
docker-jitsi-me...
/
prosody
/
rootfs
/
etc
/
cont-init.d
/
10-config

10-config 6.6 KB
Link permanente Histórico Em bruto

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168 
  1. #!/usr/bin/with-contenv bash
    2. 

  2. 

  3. if [[ ! -f /etc/saslauthd.conf ]] && [[ "$AUTH_TYPE" == "ldap" ]]; then
    4. 

  4.   tpl /defaults/saslauthd.conf > /etc/saslauthd.conf
    5. 

  5.   mkdir -pm777 /var/run/saslauthd
    6. 

  6.   adduser prosody sasl
    7. 

  7.   echo >> /etc/ldap/ldap.conf "TLS_REQCERT allow"
    8. 

  8. fi
    9. 

  9. 

  10. PROSODY_CFG="/config/prosody.cfg.lua"
    11. 

  11. 

  12. if [[ ! -d /config/data ]]; then
    13. 

  13.     mkdir -pm 750 /config/data
    14. 

  14. fi
    15. 

  15. 

  16. if [[ "$(stat -c %U /config)" != "prosody" ]]; then
    17. 

  17.     chown -R prosody /config
    18. 

  18. fi
    19. 

  19. 

  20. if [[ "$(stat -c %U /prosody-plugins)" != "prosody" ]]; then
    21. 

  21.     chown -R prosody /prosody-plugins
    22. 

  22. fi
    23. 

  23. 

  24. if [[ "$(stat -c %U /prosody-plugins-custom)" != "prosody" ]]; then
    25. 

  25.     chown -R prosody /prosody-plugins-custom
    26. 

  26. fi
    27. 

  27. 

  28. if [[ "$(stat -c %U /prosody-plugins-contrib)" != "prosody" ]]; then
    29. 

  29.     chown -R prosody /prosody-plugins-contrib
    30. 

  30. fi
    31. 

  31. 

  32. mkdir /config/certs
    33. 

  33. cp -r /defaults/* /config
    34. 

  34. 

  35. [ -z "$PROSODY_MODE" ] && export PROSODY_MODE="client"
    36. 

  36. 

  37. if [[ "$PROSODY_MODE" == "visitors" ]]; then
    38. 

  38.     echo "Prosody visitor mode, using alternate config"
    39. 

  39.     PROSODY_SITE_CFG="visitors.cfg.lua"
    40. 

  40.     rm /config/conf.d/jitsi-meet.cfg.lua
    41. 

  41.     rm /config/conf.d/brewery.cfg.lua
    42. 

  42.     # force jicofo into auth domain for visitor-mode prosody
    43. 

  43.     [ -z "$XMPP_AUTH_DOMAIN" ] && XMPP_AUTH_DOMAIN="auth.meet.jitsi"
    44. 

  44.     export PROSODY_ADMINS="focus@$XMPP_AUTH_DOMAIN"
    45. 

  45. elif [[ "$PROSODY_MODE" == "brewery" ]]; then
    46. 

  46.     echo "Prosody brewery mode, using alternate config"
    47. 

  47.     PROSODY_SITE_CFG="brewery.cfg.lua"
    48. 

  48.     rm /config/conf.d/jitsi-meet.cfg.lua
    49. 

  49.     rm /config/conf.d/visitors.cfg.lua
    50. 

  50.     # force jicofo into auth domain for brewer prosody
    51. 

  51.     [ -z "$JVB_XMPP_AUTH_DOMAIN" ] && JVB_XMPP_AUTH_DOMAIN="auth.meet.jitsi"
    52. 

  52.     # ensure proper certs are generated
    53. 

  53.     export XMPP_AUTH_DOMAIN="$JVB_XMPP_AUTH_DOMAIN"
    54. 

  54.     # brewery mode requires C2S encryption
    55. 

  55.     export PROSODY_C2S_REQUIRE_ENCRYPTION="true"
    56. 

  56. 

  57.     mkdir -p /config/rules.d
    58. 

  58.     tpl /defaults/rules.d/jvb_muc_presence_filter.pfw > /config/rules.d/jvb_muc_presence_filter.pfw
    59. 

  59. else
    60. 

  60.     echo "Prosody normal mode, using default config"
    61. 

  61.     PROSODY_SITE_CFG="jitsi-meet.cfg.lua"
    62. 

  62.     rm /config/conf.d/visitors.cfg.lua
    63. 

  63.     rm /config/conf.d/brewery.cfg.lua
    64. 

  64. fi
    65. 

  65. tpl /defaults/prosody.cfg.lua > $PROSODY_CFG
    66. 

  66. tpl /defaults/conf.d/$PROSODY_SITE_CFG > /config/conf.d/$PROSODY_SITE_CFG
    67. 

  67. 

  68. if [[ -z $JICOFO_AUTH_PASSWORD ]]; then
    69. 

  69.     echo 'FATAL ERROR: Jicofo auth password must be set'
    70. 

  70.     exit 1
    71. 

  71. fi
    72. 

  72. 

  73. # Defaults
    74. 

  74. [ -z "${JIBRI_RECORDER_USER}" ] && export JIBRI_RECORDER_USER=recorder
    75. 

  75. [ -z "${JIBRI_XMPP_USER}" ] && export JIBRI_XMPP_USER=jibri
    76. 

  76. [ -z "${JIGASI_XMPP_USER}" ] && export JIGASI_XMPP_USER=jigasi
    77. 

  77. [ -z "${JVB_AUTH_USER}" ] && export JVB_AUTH_USER=jvb
    78. 

  78. [ -z "${XMPP_DOMAIN}" ] && export XMPP_DOMAIN=meet.jitsi
    79. 

  79. [ -z "${XMPP_AUTH_DOMAIN}" ] && export XMPP_AUTH_DOMAIN=auth.meet.jitsi
    80. 

  80. # maintain backward compatibility with older variable
    81. 

  81. [ -z "${XMPP_HIDDEN_DOMAIN}" ] && export XMPP_HIDDEN_DOMAIN="$XMPP_RECORDER_DOMAIN"
    82. 

  82. [ -z "${XMPP_HIDDEN_DOMAIN}" ] && export XMPP_HIDDEN_DOMAIN=hidden.meet.jitsi
    83. 

  83. 

  84. prosodyctl --config $PROSODY_CFG register focus $XMPP_AUTH_DOMAIN $JICOFO_AUTH_PASSWORD
    85. 

  85. 

  86. # if we are in client mode, we need to subscribe the focus user to the focus component proxy
    87. 

  87. if [[ "$PROSODY_MODE" == "client" ]]; then
    88. 

  88.     prosodyctl --config $PROSODY_CFG mod_roster_command subscribe focus.$XMPP_DOMAIN focus@$XMPP_AUTH_DOMAIN
    89. 

  89. fi
    90. 

  90. 

  91. if [[ -z $JVB_AUTH_PASSWORD ]]; then
    92. 

  92.     echo 'FATAL ERROR: JVB auth password must be set'
    93. 

  93.     exit 1
    94. 

  94. fi
    95. 

  95. 

  96. OLD_JVB_AUTH_PASSWORD=passw0rd
    97. 

  97. if [[ "$JVB_AUTH_PASSWORD" == "$OLD_JVB_AUTH_PASSWORD" ]]; then
    98. 

  98.     echo 'FATAL ERROR: JVB auth password must be changed, check the README'
    99. 

  99.     exit 1
    100. 

  100. fi
    101. 

  101. 

  102. # we see the next register command to hang from time to time, suspect it's a race with mod_roster_command
    103. 

  103. # Once this is released: https://issues.prosody.im/1908 we can remove this sleep and make sure prosody is running
    104. 

  104. # and then use 'prosodyctl shell user create' to add user live and 'prosodyctl shell roster' to modify their roster live.
    105. 

  105. sleep 1
    106. 

  106. 

  107. prosodyctl --config $PROSODY_CFG register $JVB_AUTH_USER $XMPP_AUTH_DOMAIN $JVB_AUTH_PASSWORD
    108. 

  108. 

  109. if [[ ! -z $JIBRI_XMPP_PASSWORD ]]; then
    110. 

  110.     OLD_JIBRI_XMPP_PASSWORD=passw0rd
    111. 

  111.     if [[ "$JIBRI_XMPP_PASSWORD" == "$OLD_JIBRI_XMPP_PASSWORD" ]]; then
    112. 

  112.         echo 'FATAL ERROR: Jibri auth password must be changed, check the README'
    113. 

  113.         exit 1
    114. 

  114.     fi
    115. 

  115.     prosodyctl --config $PROSODY_CFG register $JIBRI_XMPP_USER $XMPP_AUTH_DOMAIN $JIBRI_XMPP_PASSWORD
    116. 

  116. fi
    117. 

  117. 

  118. if [[ "$PROSODY_MODE" == "client" ]]; then
    119. 

  119.     if [[ ! -z $JIBRI_RECORDER_PASSWORD ]]; then
    120. 

  120.         OLD_JIBRI_RECORDER_PASSWORD=passw0rd
    121. 

  121.         if [[ "$JIBRI_RECORDER_PASSWORD" == "$OLD_JIBRI_RECORDER_PASSWORD" ]]; then
    122. 

  122.             echo 'FATAL ERROR: Jibri recorder password must be changed, check the README'
    123. 

  123.             exit 1
    124. 

  124.         fi
    125. 

  125.         prosodyctl --config $PROSODY_CFG register $JIBRI_RECORDER_USER $XMPP_HIDDEN_DOMAIN $JIBRI_RECORDER_PASSWORD
    126. 

  126.     fi
    127. 

  127.     if [[ "$(echo "$ENABLE_TRANSCRIPTIONS" | tr '[:upper:]' '[:lower:]')" == "true" ]] || [[ "$ENABLE_TRANSCRIPTIONS" == "1" ]]; then
    128. 

  128.         if [[ ! -z $JIGASI_TRANSCRIBER_PASSWORD ]]; then
    129. 

  129.             [ -z "$JIGASI_TRANSCRIBER_USER" ] && JIGASI_TRANSCRIBER_USER="transcriber"
    130. 

  130.             prosodyctl --config $PROSODY_CFG register $JIGASI_TRANSCRIBER_USER $XMPP_HIDDEN_DOMAIN $JIGASI_TRANSCRIBER_PASSWORD
    131. 

  131.         fi
    132. 

  132.     fi
    133. 

  133. fi
    134. 

  134. 

  135. if [[ ! -z $JIGASI_XMPP_PASSWORD ]]; then
    136. 

  136.     OLD_JIGASI_XMPP_PASSWORD=passw0rd
    137. 

  137.     if [[ "$JIGASI_XMPP_PASSWORD" == "$OLD_JIGASI_XMPP_PASSWORD" ]]; then
    138. 

  138.         echo 'FATAL ERROR: Jigasi auth password must be changed, check the README'
    139. 

  139.         exit 1
    140. 

  140.     fi
    141. 

  141.     prosodyctl --config $PROSODY_CFG register $JIGASI_XMPP_USER $XMPP_AUTH_DOMAIN $JIGASI_XMPP_PASSWORD
    142. 

  142. fi
    143. 

  143. 

  144. if [[ "$PROSODY_MODE" == "visitors" ]]; then
    145. 

  145.     [ -z "$VISITORS_XMPP_DOMAIN" ] && VISITORS_XMPP_DOMAIN="meet.jitsi"
    146. 

  146.     [ -z "$PROSODY_VISITOR_INDEX" ] && PROSODY_VISITOR_INDEX=0
    147. 

  147.     FULL_VISITORS_XMPP_DOMAIN="v$PROSODY_VISITOR_INDEX.$VISITORS_XMPP_DOMAIN"
    148. 

  148.     if [[ ! -f /config/certs/$FULL_VISITORS_XMPP_DOMAIN.crt ]]; then
    149. 

  149.         # echo for using all default values
    150. 

  150.         echo | prosodyctl --config $PROSODY_CFG cert generate $FULL_VISITORS_XMPP_DOMAIN
    151. 

  151.     fi
    152. 

  152. elif [[ "$PROSODY_MODE" == "brewery" ]]; then
    153. 

  153.     echo "No need to generate certs for main XMPP domain in brewery mode"
    154. 

  154. else
    155. 

  155.     if [[ ! -f /config/certs/$XMPP_DOMAIN.crt ]]; then
    156. 

  156.         # echo for using all default values
    157. 

  157.         echo | prosodyctl --config $PROSODY_CFG cert generate $XMPP_DOMAIN
    158. 

  158.     fi
    159. 

  159. fi
    160. 

  160. 

  161. if [[ ! -f /config/certs/$XMPP_AUTH_DOMAIN.crt ]]; then
    162. 

  162.     # echo for using all default values
    163. 

  163.     echo | prosodyctl --config $PROSODY_CFG cert generate $XMPP_AUTH_DOMAIN
    164. 

  164. fi
    165. 

  165. 

  166. # certs will be created in /config/data
    167. 

  167. mv /config/data/*.{crt,key} /config/certs/ || true
    168. 

  168. rm -f /config/data/*.cnf
    169.