quick-docs/modules/ROOT/pages/_partials/proc_configuring_jitsi_prosody.adoc
2023-06-27 10:21:46 +00:00

75 lines
2.7 KiB
Text

// Module included in the following assemblies:
//
// configuring_jitsi.adoc
[id='configuring_jitsi_prosody']
== Configuring Jitsi Prosody
You can find Prosody configuration for Jitsi in the `/etc/prosody/conf.d/jitsi-meet.cfg.lua` file.
.Procedure
. Generate the SSL/TLS certificate for the Jitsi domain:
+
----
$ prosodyctl cert generate __jitsiFQDN__
----
+
You need to replace `\___jitsiFQDN___` with the actual domain name of your Jitsi installation. The generated certificate secures the Jitsi Meet web interface and enables encrypted communication.
. Generate the SSL/TLS certificate for the auth subdomain:
+
----
$ prosodyctl cert generate auth.__jitsiFQDN__
----
+
The `auth` subdomain is typically used for authentication purposes in Jitsi Meet. Replace `\___jitsiFQDN___` with your Jitsi domain name to generate the certificate for the auth subdomain.
. Add the Jitsi domain certificate as a trusted anchor to ensure that it is recognized as a valid certificate by the system:
+
----
$ trust anchor /var/lib/prosody/__jitsiFQDN__
----
+
The certificate file is typically located at `/var/lib/prosody/\___jitsiFQDN___`. Therefore you need to replace `\___jitsiFQDN___` with the actual domain name to specify the correct file path.
. Add the auth subdomain certificate as a trusted anchor:
+
----
$ trust anchor /var/lib/prosody/auth.__jitsiFQDN__
----
+
The certificate file is expected to be located at `/var/lib/prosody/auth.\___jitsiFQDN___`. Replace `\___jitsiFQDN___` with your Jitsi domain name to provide the accurate file path.
. Register a user with the username `focus` in the Prosody XMPP server:
+
----
$ prosodyctl register focus auth.__jitsiFQDN__ __focusUserSecret__
----
+
The `focus` user is a special user for Jitsi Meet conference management and coordination. It is responsible for example for creating and controlling conferences. The `auth.\___jitsiFQDN___` portion specifies the domain where the user is registered.
+
Replace `\___jitsiFQDN___` with your Jitsi domain name. The `\___focusUserSecret___` is the password or secret associated with the `focus` user. Replace `\___focusUserSecret___` with a strong and secure password.
. Register a user with the username `jvb` in the Prosody XMPP server:
+
----
$ prosodyctl register jvb auth.__jitsiFQDN__ __jvbUserSecret__
----
+
The `jvb` user is used by Jitsi Videobridge component to handle video streams in Jitsi Meet. The `auth.\___jitsiFQDN___` portion specifies the domain where the user is registered.
+
Replace `\___jitsiFQDN___` with your Jitsi domain name. The `\___jvbUserSecret___` is the password or secret associated with the `jvb` user. Replace `\___jvbUserSecret___` with a strong and secure password.
. Enable and start the prosody service:
+
----
$ sudo systemctl enable --now prosody
----