42e4e50f5b
This extends the collection with support for seamless authentication at the Jitsi server using Matrix OpenID. 1. New role for installing the [Matrix User Verification Service](https://github.com/matrix-org/matrix-user-verification-service) 2. Changes to Jitsi role: Installing Jitsi Prosody Mods and configuring Jitsi Auth 3. Changes to Jitsi and nginx-proxy roles: Serving .well-known/element/jitsi from jitsi.DOMAIN 4. We updated the Jitsi documentation on authentication and added documentation for the user verification service.
71 lines
3.0 KiB
Django/Jinja
71 lines
3.0 KiB
Django/Jinja
AUTH_TYPE={{ matrix_jitsi_auth_type }}
|
|
DISABLE_POLLS
|
|
ENABLE_AUTH={{ 1 if matrix_jitsi_enable_auth else 0 }}
|
|
ENABLE_AV_MODERATION={{1 if matrix_jitsi_enable_av_moderation else 0}}
|
|
ENABLE_BREAKOUT_ROOMS={{1 if matrix_jitsi_enable_breakout_rooms else 0}}
|
|
ENABLE_GUESTS={{ 1 if matrix_jitsi_enable_guests else 0 }}
|
|
ENABLE_LOBBY={{ 1 if matrix_jitsi_enable_lobby else 0 }}
|
|
ENABLE_XMPP_WEBSOCKET
|
|
GLOBAL_CONFIG
|
|
GLOBAL_MODULES
|
|
JIBRI_RECORDER_USER={{ matrix_jitsi_jibri_recorder_user }}
|
|
JIBRI_RECORDER_PASSWORD={{ matrix_jitsi_jibri_recorder_password }}
|
|
JIBRI_XMPP_USER={{ matrix_jitsi_jibri_xmpp_user }}
|
|
JIBRI_XMPP_PASSWORD={{ matrix_jitsi_jibri_xmpp_password }}
|
|
JICOFO_AUTH_USER={{ matrix_jitsi_jicofo_auth_user }}
|
|
JICOFO_AUTH_PASSWORD={{ matrix_jitsi_jicofo_auth_password }}
|
|
JICOFO_COMPONENT_SECRET
|
|
JIGASI_XMPP_USER=
|
|
JIGASI_XMPP_PASSWORD=
|
|
JVB_AUTH_USER={{ matrix_jitsi_jvb_auth_user }}
|
|
JVB_AUTH_PASSWORD={{ matrix_jitsi_jvb_auth_password }}
|
|
JWT_APP_ID
|
|
JWT_APP_SECRET
|
|
JWT_ACCEPTED_ISSUERS
|
|
JWT_ACCEPTED_AUDIENCES
|
|
JWT_ASAP_KEYSERVER
|
|
JWT_ALLOW_EMPTY
|
|
JWT_AUTH_TYPE
|
|
JWT_TOKEN_AUTH_MODULE
|
|
LOG_LEVEL
|
|
LDAP_AUTH_METHOD={{ matrix_jitsi_ldap_auth_method }}
|
|
LDAP_BASE={{ matrix_jitsi_ldap_base }}
|
|
LDAP_BINDDN={{ matrix_jitsi_ldap_binddn }}
|
|
LDAP_BINDPW={{ matrix_jitsi_ldap_bindpw }}
|
|
LDAP_FILTER={{ matrix_jitsi_ldap_filter }}
|
|
LDAP_VERSION={{ matrix_jitsi_ldap_version }}
|
|
LDAP_TLS_CIPHERS={{ matrix_jitsi_ldap_tls_ciphers }}
|
|
LDAP_TLS_CHECK_PEER={{ 1 if matrix_jitsi_ldap_tls_check_peer else 0 }}
|
|
LDAP_TLS_CACERT_FILE={{ matrix_jitsi_ldap_tls_cacert_file }}
|
|
LDAP_TLS_CACERT_DIR={{ matrix_jitsi_ldap_tls_cacert_dir }}
|
|
LDAP_START_TLS={{ 1 if matrix_jitsi_ldap_start_tls else 0 }}
|
|
LDAP_URL={{ matrix_jitsi_ldap_url }}
|
|
LDAP_USE_TLS={{ 1 if matrix_jitsi_ldap_use_tls else 0 }}
|
|
MATRIX_UVS_ISSUER={{ matrix_jitsi_prosody_auth_matrix_jwt_app_id }}
|
|
MATRIX_UVS_URL={{ matrix_jitsi_prosody_auth_matrix_uvs_location }}
|
|
{% if matrix_jitsi_prosody_auth_matrix_uvs_auth_token is defined %}
|
|
MATRIX_UVS_AUTH_TOKEN={{ matrix_jitsi_prosody_auth_matrix_uvs_auth_token }}
|
|
{% endif %}
|
|
MATRIX_UVS_SYNC_POWER_LEVELS={{ 'true' if matrix_jitsi_prosody_auth_matrix_uvs_sync_power_levels else 'false' }}
|
|
PUBLIC_URL={{ matrix_jitsi_web_public_url }}
|
|
TURN_CREDENTIALS={{ matrix_jitsi_turn_credentials }}
|
|
TURN_HOST={{ matrix_jitsi_turn_host }}
|
|
TURNS_HOST={{ matrix_jitsi_turns_host }}
|
|
TURN_PORT={{ matrix_jitsi_turn_port }}
|
|
TURNS_PORT={{ matrix_jitsi_turns_port }}
|
|
TURN_TRANSPORT={{ matrix_jitsi_turn_transport }}
|
|
TZ={{ matrix_jitsi_timezone }}
|
|
XMPP_DOMAIN={{ matrix_jitsi_xmpp_domain }}
|
|
XMPP_AUTH_DOMAIN={{ matrix_jitsi_xmpp_auth_domain }}
|
|
XMPP_GUEST_DOMAIN={{ matrix_jitsi_xmpp_guest_domain }}
|
|
XMPP_MUC_DOMAIN={{ matrix_jitsi_xmpp_muc_domain }}
|
|
XMPP_INTERNAL_MUC_DOMAIN={{ matrix_jitsi_xmpp_internal_muc_domain }}
|
|
XMPP_MODULES={{ matrix_jitsi_xmpp_modules }}
|
|
XMPP_MUC_MODULES={{ matrix_jitsi_muc_modules | join(',') }}
|
|
XMPP_INTERNAL_MUC_MODULES=
|
|
XMPP_RECORDER_DOMAIN={{ matrix_jitsi_recorder_domain }}
|
|
XMPP_CROSS_DOMAIN=true
|
|
{% if matrix_prosody_jitsi_max_participants is number %}
|
|
MAX_PARTICIPANTS={{ matrix_prosody_jitsi_max_participants }}
|
|
{% endif %}
|