Is your feature request related to a problem? Please describe. <p

Hello <a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-ur

OK, sorry <a class="user-mention notranslate" data-hovercard-type="user" data-hovercar

<a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-url="/us

hello <a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-ur

Hi <a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-url="

Update install tool PR: <a class="issue-link js-issue-link" data-error-text="Failed to

Improve documentation about jitsi-admin HOT 7 CLOSED

h2-invent commented on June 11, 2024

Improve documentation

from jitsi-admin.

Comments (7)

AlexanderGabriel commented on June 11, 2024 1

This is closed but i have some information for you:
install tool got updated in open-event-manager. if i have time the next days, i will look if i can use the patch from here for jitsi admin open-event-manager/open-event-manager#13
When doing this i can add a hint for keycloak-url. i was not so happy with the install tool aswell ;)

no idea how to easily check installed php modules from command line but working on a ansible playbook to install dependencies for open-event-manager and jitsi-admin because in run in errors every time, too.

i think it is good, not to change ownership of files to www-data by install.sh. if you use some software like plesk oder iscpconfig to manager your server of use AssignUserID in apache to permission-seperate different websites, the user is not www-data any more and you will run in erros. other software does not check this, too and the installing person has to look for this. annoying. i know.

from jitsi-admin.

holema commented on June 11, 2024

Hello @klepptor
what exactly is the problem you are facing?
you just have to run the install.sh and enter all the informations which are asked there.

To connect the Jitsi Admin to the keycloak you only need to set the keycloak URL into the env, the client ID and the client Secret. Then this connection should work without problems.

You can just contact us via aour contactform so we can help you via telephone
https://h2-invent.com/kontakt

from jitsi-admin.

klepptor commented on June 11, 2024

OK, sorry @holema for being quite unprecisly. After opening this issue I had to fight Jira and Confluence problems. 😄

I will try again next week with the latest version using Ubuntu 20.04 and have a deeper look into Keycloak as well.

from jitsi-admin.

klepptor commented on June 11, 2024

@holema Thx for your patience!

Today I tried again but I'm stuck at configuring Keycloak or the Keycloak settings in Jitsi Admin correctly.

I used a fresh Ubuntu 20.04 VM to test the setup.

So at first I had to install Apache and PHP with the necessary modules. The docs here don't tell anything about the details, so I had to guess from the error messages from install.sh

After answering all questions of the script I got this env.local:

==================================

DATABASE_URL=mysql://jitsiadmin:[email protected]:3306/jitsiadmin
DATABSE_SERVER=<mariadb-10.4.6>

###> symfony/framework-bundle ###
APP_ENV=prod
APP_DEBUG=0
APP_SECRET=<app_secret>

###> symfony/swift_mailer ###
MAILER_HOST=mymailserver.de
MAILER_PORT=25
MAILER_PASSWORD=A3sdfsdfdsf
MAILER_USERNAME=username
MAILER_ENCRYPTION=none
MAILER_TRANSPORT=smtp

###ODC Parameters###
imprint=
dataPrivacy=
helpUrl=

###Cron Parameters###
CRON_TOKEN=
CRON_IPADRESS=127.0.0.1

###Emails###
registerEmailName=datenschutz.domain.com
DEV_EMAIL=[email protected]
DEFAULT_EMAIL=[email protected]

TRUSTED_PROXIES=127.0.0.1

###> hwi/oauth-bundle ###
OAUTH_KEYCLOAK_CLIENT_ID=jitsiadmin
OAUTH_KEYCLOAK_CLIENT_SECRET=6c21c201-b940-4c40-b1fa-9e701fa46b47
OAUTH_KEYCLOAK_SERVER=keycloak.myserver.de/auth
OAUTH_KEYCLOAK_REALM=myrealm
###< hwi/oauth-bundle ###

###> demo ###
demo_installation=prod
###< demo ###

###> matomo ###
matomo_enable=false
matomo_id=1
matomo_url=analytics.local.com
###< matomo ###

###> LaF ###
laF_bbb=0
laF_startpage=false
laF_onlyRegisteredParticipents=0
laF_version=2.0.0-dev
laF_pexel_api_key=#EnterAPIKeyHere
laF_pexel_refresh_time=1200
laF_baseUrl=jitsiadmin.myserver.de
laF_emailTextLogin=1
laf_CreateServerOpenToEveryone=1
laf_keycloakGroupToCreateServer=/user
laf_administratorEmail=[email protected]
laf_notificationUrl=""
laf_bbb_Url=""
laf_max_repeat=56
###< LaF ###

###> Default Jitsi Server ###
default_jitsi_server_id=0
###< Default Jitsi Server ###

Enterprise Settings

enterprise_noExternal=0
######

==================================

I'm using this Apache Config:

==================================
<VirtualHost *:80>

ServerAdmin [email protected]

ServerName jitsiadmin.myserver.de

'# Redirect permanent / https://jitsiadmin.myserver.de

ServerName jitsiadmin.myserver.de

Protocols h2 http/1.1

SSLEngine on
SSLCertificateFile "/etc/ssl/private/cert.crt"
SSLCertificateKeyFile "/etc/ssl/private/cert.key"

DocumentRoot /var/www/jitsi-admin/public/

<Directory /var/www/jitsi-admin/public>
        Options FollowSymLinks
        AllowOverride All
        Order Allow,Deny
        Allow from All
</Directory>

ErrorLog ${APACHE_LOG_DIR}/error_jitsi-admin.log
CustomLog ${APACHE_LOG_DIR}/access_jitsi-admin.log combined

==================================

Keycloak Client looks like this (here I'm quit unsure about the settings):

And that's the result when opening the server address...

The Apache error log is empty

from jitsi-admin.

holema commented on June 11, 2024

hello @klepptor,
can you post the log file from Symfony? this can be found at /var/log/prog.log. With this I can look whats wrong.

from jitsi-admin.

klepptor commented on June 11, 2024

Hi @holema

with your hint to the logs I got it working, at least most of the functionality.

But I noticed several ways to mess up the installation using install.sh.

it's quite unclear how to write the address of the Keycloak Server (with/without http(s)), an example in install.sh would be nice
if using https it throwing a sed error and not changing to the given url, changing it in .env.local manually works fine
swift mailer config cannot be used without encryption although the docs here tell to use the "null" encryption (I think install.sh asks about "none" encryption!?), both config options lead to ("null" or "none":
install.sh doesn't check the correct file/dir permission, I noticed while looking for prod.log, which had the ownership of the user I used to clone the repo, not www-data. Is BranchPipeline.sh needed here? Didn't work...

All these item are single issues from my point of view that should be solved and/or documented for your wonderful tool to become more easily installable on premises! I think the best way would be a docker image with all dependencies exporting only an unencrypted http port, so you can easily use it with a (existing) reverse proxy, updating would be even more easy and no more trouble like I had at all (except the mailer).

At least my problems about getting startet at all are solved now. Next I will try to setup the permissions for the users in Keycloak about setting up server etc using your existing docs.

from jitsi-admin.

AlexanderGabriel commented on June 11, 2024

Update install tool PR: #210

from jitsi-admin.

Improve documentation about jitsi-admin HOT 7 CLOSED

Comments (7)

Enterprise Settings

Related Issues (20)

Recommend Projects

React

Vue.js

Typescript

TensorFlow

Django

Laravel

D3

Recommend Topics

javascript

web

server

Machine learning

Visualization

Game

Recommend Org

Facebook

Microsoft

Google

Alibaba

D3

Tencent