Comments (7)
mlynchdev
commented on August 23, 2024
1
@xceejay and @mlynchdev Hi! Just a question, What exactly did you config from that medium post?
I followed this doc but I didn't finish success, I had this error from jicofo
tail -f -n 350 /var/log/jitsi/jicofo.log Jicofo 2020-05-14 01:26:18.100 SEVERE: [35] org.jitsi.xmpp.component.ComponentBase.log() Failed to send ping java.lang.NullPointerException at org.xmpp.component.AbstractComponent.send(AbstractComponent.java:925) at org.jitsi.xmpp.component.ComponentBase.access$400(ComponentBase.java:36) at org.jitsi.xmpp.component.ComponentBase$PingTask.run(ComponentBase.java:577) at java.util.TimerThread.mainLoop(Timer.java:555) at java.util.TimerThread.run(Timer.java:505) Jicofo 2020-05-14 01:26:18.229 SEVERE: [36] org.jitsi.meet.ComponentMain.log() java.net.ConnectException: Connection refused (Connection refused), host:room.thundertix.ga, port:5347 org.xmpp.component.ComponentException: java.net.ConnectException: Connection refused (Connection refused) at org.jivesoftware.whack.ExternalComponent.connect(ExternalComponent.java:296) at org.jivesoftware.whack.ExternalComponentManager.addComponent(ExternalComponentManager.java:242) at org.jivesoftware.whack.ExternalComponentManager.addComponent(ExternalComponentManager.java:222) at org.jitsi.meet.ComponentMain.lambda$getConnectCallable$0(ComponentMain.java:285) at org.jitsi.retry.RetryStrategy$TaskRunner.run(RetryStrategy.java:193) at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511) at java.util.concurrent.FutureTask.run(FutureTask.java:266) at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.access$201(ScheduledThreadPoolExecutor.java:180) at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.run(ScheduledThreadPoolExecutor.java:293) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624) at java.lang.Thread.run(Thread.java:748) Caused by: java.net.ConnectException: Connection refused (Connection refused) at java.net.PlainSocketImpl.socketConnect(Native Method) at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:350) at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:206) at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:188) at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392) at java.net.Socket.connect(Socket.java:607) at org.jivesoftware.whack.ExternalComponent.connect(ExternalComponent.java:174) ... 11 moreThank you!
I had some configs in the Virtual Host instead of "conference.blahblahblah" "muc" was specifically something I did wrong through setup.
Also I somehow didn't realize when I set the configs for issuer and audience that those corresponded directly to "iss" + "aud" in the JWT token.
from docs.
mlynchdev
commented on August 23, 2024
I'm failing JWT auth as well, here are my prosody logs:
tail -f -n 350 /var/log/prosody/prosody.log May 06 18:20:57 startup info Hello and welcome to Prosody version 0.11.5 May 06 18:20:57 startup info Prosody is using the select backend for connection handling May 06 18:20:57 portmanager info Activated service 's2s' on [*]:5269, [::]:5269 May 06 18:20:57 portmanager info Activated service 'c2s' on [*]:5222, [::]:5222 May 06 18:20:57 portmanager info Activated service 'legacy_ssl' on no ports May 06 18:20:57 certmanager error SSL/TLS: Failed to load '/etc/prosody/certs/localhost.key': Check that the permissions allow Prosody to read this file. (for localhost) May 06 18:20:57 localhost:tls error Error creating context for c2s: error loading private key (Permission denied) May 06 18:20:57 certmanager error SSL/TLS: Failed to load '/etc/prosody/certs/localhost.key': Previous error (see logs), or other system error. (for localhost) May 06 18:20:57 localhost:tls error Error creating contexts for s2sout: error loading private key (system lib) May 06 18:20:57 certmanager error SSL/TLS: Failed to load '/etc/prosody/certs/localhost.key': Previous error (see logs), or other system error. (for localhost) May 06 18:20:57 localhost:tls error Error creating contexts for s2sin: error loading private key (system lib) May 06 18:21:02 mod_posix warn Received SIGTERM May 06 18:21:02 startup info Shutting down: Received SIGTERM May 06 18:21:02 general info Shutting down... May 06 18:21:02 general info Shutdown status: Cleaning up May 06 18:21:02 general info Shutdown complete May 06 18:21:17 startup info Hello and welcome to Prosody version 0.11.5 May 06 18:21:18 startup info Prosody is using the select backend for connection handling May 06 18:21:18 portmanager info Activated service 's2s' on [::]:5269, [*]:5269 May 06 18:21:18 portmanager info Activated service 'c2s' on [::]:5222, [*]:5222 May 06 18:21:18 portmanager info Activated service 'legacy_ssl' on no ports May 06 18:23:02 c2s55f53faf3850 info Client connected May 06 18:23:02 c2s55f53faf3850 info Client disconnected: connection closed May 06 18:23:07 mod_posix warn Received SIGTERM May 06 18:23:07 startup info Shutting down: Received SIGTERM May 06 18:23:07 general info Shutting down... May 06 18:23:07 general info Shutdown status: Cleaning up May 06 18:23:07 general info Shutdown complete May 06 18:23:07 startup info Hello and welcome to Prosody version 0.11.5 May 06 18:23:07 startup info Prosody is using the select backend for connection handling May 06 18:23:07 general info Starting speakerstats for conference.jwt.nobronca.com May 06 18:23:07 speakerstats.jwt.nobronca.com:speakerstats_component info No muc component found, will listen for it: conference.jwt.nobronca.com May 06 18:23:07 portmanager info Activated service 's2s' on [::]:5269, [*]:5269 May 06 18:23:07 portmanager info Activated service 'c2s' on [::]:5222, [*]:5222 May 06 18:23:07 portmanager info Activated service 'legacy_ssl' on no ports May 06 18:23:08 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host localhost! May 06 18:23:08 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host speakerstats.jwt.nobronca.com! May 06 18:23:08 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host conference.jwt.nobronca.com! May 06 18:23:08 speakerstats.jwt.nobronca.com:speakerstats_component info Hook to muc events on conference.jwt.nobronca.com May 06 18:23:08 general info Starting conference duration timer for conference.jwt.nobronca.com May 06 18:23:08 conferenceduration.jwt.nobronca.com:conference_duration_component info Hook to muc events on conference.jwt.nobronca.com May 06 18:23:08 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host conferenceduration.jwt.nobronca.com! May 06 18:23:08 portmanager info Activated service 'component' on [127.0.0.1]:5347, [::1]:5347 May 06 18:23:08 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host focus.jwt.nobronca.com! May 06 18:23:08 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host auth.jwt.nobronca.com! May 06 18:23:08 portmanager info Activated service 'http' on [::]:5280, [*]:5280 May 06 18:23:08 portmanager error Error binding encrypted port for https: No certificate present in SSL/TLS configuration for https port 5281 May 06 18:23:08 portmanager error Error binding encrypted port for https: No certificate present in SSL/TLS configuration for https port 5281 May 06 18:23:08 portmanager info Activated service 'https' on no ports May 06 18:23:08 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host jwt.nobronca.com! May 06 18:23:08 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host internal.auth.jwt.nobronca.com! May 06 18:23:12 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 18:23:12 c2s558ab1306510 info Client connected May 06 18:23:16 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 18:23:16 c2s558ab12950b0 info Client connected May 06 18:23:17 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 18:23:17 c2s558ab142e3b0 info Client connected May 06 18:23:17 c2s558ab142e3b0 info Client disconnected: connection closed May 06 18:23:21 c2s558ab12950b0 info Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384) May 06 18:23:21 c2s558ab12950b0 info Authenticated as [email protected] May 06 18:23:22 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 18:23:22 c2s558ab127cf60 info Client connected May 06 18:23:23 focus.jwt.nobronca.com:component warn Component not connected, bouncing error for: <iq from='[email protected]/focus129165241238' type='get' id='v14AR-35' to='focus.jwt.nobronca.com'> May 06 18:23:27 jcp558ab14be070 info Incoming Jabber component connection May 06 18:23:27 focus.jwt.nobronca.com:component info External component successfully authenticated May 06 18:23:27 c2s558ab127cf60 info Client disconnected: closed May 06 18:23:31 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 18:23:31 c2s558ab1404d40 info Client connected May 06 18:23:32 c2s558ab1404d40 info Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384) May 06 18:23:32 c2s558ab1404d40 info Authenticated as [email protected] May 06 18:24:08 c2s558ab1306510 info Client disconnected: closed May 06 20:29:01 mod_posix warn Received SIGTERM May 06 20:29:01 startup info Shutting down: Received SIGTERM May 06 20:29:01 c2s558ab1404d40 info Client disconnected: connection closed May 06 20:29:01 c2s558ab12950b0 info Client disconnected: connection closed May 06 20:29:01 jcp558ab14be070 info component disconnected: focus.jwt.nobronca.com (false) May 06 20:29:01 general info Shutting down... May 06 20:29:01 general info Shutdown status: Cleaning up May 06 20:29:01 general info Shutdown complete May 06 20:29:01 startup info Hello and welcome to Prosody version 0.11.5 May 06 20:29:02 startup info Prosody is using the select backend for connection handling May 06 20:29:02 portmanager info Activated service 'c2s' on [*]:5222, [::]:5222 May 06 20:29:02 portmanager info Activated service 'legacy_ssl' on no ports May 06 20:29:02 portmanager info Activated service 's2s' on [*]:5269, [::]:5269 May 06 20:29:02 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host conference.jwt.nobronca.com! May 06 20:29:02 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host auth.jwt.nobronca.com! May 06 20:29:02 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host internal.auth.jwt.nobronca.com! May 06 20:29:02 general info Starting speakerstats for conference.jwt.nobronca.com May 06 20:29:02 speakerstats.jwt.nobronca.com:speakerstats_component info Hook to muc events on conference.jwt.nobronca.com May 06 20:29:02 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host speakerstats.jwt.nobronca.com! May 06 20:29:02 general info Starting conference duration timer for conference.jwt.nobronca.com May 06 20:29:02 conferenceduration.jwt.nobronca.com:conference_duration_component info Hook to muc events on conference.jwt.nobronca.com May 06 20:29:02 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host conferenceduration.jwt.nobronca.com! May 06 20:29:02 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host localhost! May 06 20:29:02 portmanager info Activated service 'component' on [0.0.0.0]:5347 May 06 20:29:02 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host focus.jwt.nobronca.com! May 06 20:29:02 portmanager info Activated service 'http' on [*]:5280, [::]:5280 May 06 20:29:02 portmanager error Error binding encrypted port for https: No certificate present in SSL/TLS configuration for https port 5281 May 06 20:29:02 portmanager error Error binding encrypted port for https: No certificate present in SSL/TLS configuration for https port 5281 May 06 20:29:02 portmanager info Activated service 'https' on no ports May 06 20:29:02 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host jwt.nobronca.com! May 06 20:29:02 guest.jitmeet.example.com:auth_token warn WARNING - empty tokens allowed May 06 20:29:02 guest.jitmeet.example.com:tls error Error creating context for c2s: No certificate present in SSL/TLS configuration for guest.jitmeet.example.com May 06 20:29:02 guest.jitmeet.example.com:tls error Error creating contexts for s2sin: No certificate present in SSL/TLS configuration for guest.jitmeet.example.com May 06 20:29:02 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host guest.jitmeet.example.com! May 06 20:29:06 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:29:06 c2s5628ec9cbbc0 info Client connected May 06 20:29:07 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:29:07 c2s5628ec7d59b0 info Client connected May 06 20:29:08 c2s5628ec9cbbc0 info Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384) May 06 20:29:08 c2s5628ec7d59b0 info Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384) May 06 20:29:08 c2s5628ec9cbbc0 info Authenticated as [email protected] May 06 20:29:09 c2s5628ec7d59b0 info Authenticated as [email protected] May 06 20:29:09 focus.jwt.nobronca.com:component warn Component not connected, bouncing error for: <iq from='[email protected]/focus7680501198727' to='focus.jwt.nobronca.com' type='get' id='vQNnw-35'> May 06 20:29:11 jcp5628ec899770 info Incoming Jabber component connection May 06 20:29:11 focus.jwt.nobronca.com:component info External component successfully authenticated May 06 20:29:20 mod_posix warn Received SIGTERM May 06 20:29:20 startup info Shutting down: Received SIGTERM May 06 20:29:20 c2s5628ec9cbbc0 info Client disconnected: connection closed May 06 20:29:20 c2s5628ec7d59b0 info Client disconnected: connection closed May 06 20:29:20 jcp5628ec899770 info component disconnected: focus.jwt.nobronca.com (false) May 06 20:29:20 general info Shutting down... May 06 20:29:20 general info Shutdown status: Cleaning up May 06 20:29:20 general info Shutdown complete May 06 20:29:21 startup info Hello and welcome to Prosody version 0.11.5 May 06 20:29:21 startup info Prosody is using the select backend for connection handling May 06 20:29:21 portmanager info Activated service 's2s' on [::]:5269, [*]:5269 May 06 20:29:21 general info Starting conference duration timer for conference.jwt.nobronca.com May 06 20:29:21 conferenceduration.jwt.nobronca.com:conference_duration_component info No muc component found, will listen for it: conference.jwt.nobronca.com May 06 20:29:21 general info Starting speakerstats for conference.jwt.nobronca.com May 06 20:29:21 speakerstats.jwt.nobronca.com:speakerstats_component info No muc component found, will listen for it: conference.jwt.nobronca.com May 06 20:29:21 portmanager info Activated service 'c2s' on [::]:5222, [*]:5222 May 06 20:29:21 portmanager info Activated service 'legacy_ssl' on no ports May 06 20:29:21 portmanager info Activated service 'http' on [::]:5280, [*]:5280 May 06 20:29:21 portmanager error Error binding encrypted port for https: No certificate present in SSL/TLS configuration for https port 5281 May 06 20:29:21 portmanager error Error binding encrypted port for https: No certificate present in SSL/TLS configuration for https port 5281 May 06 20:29:21 portmanager info Activated service 'https' on no ports May 06 20:29:21 guest.jitmeet.example.com:auth_token warn WARNING - empty tokens allowed May 06 20:29:21 guest.jitmeet.example.com:tls error Error creating context for c2s: No certificate present in SSL/TLS configuration for guest.jitmeet.example.com May 06 20:29:21 guest.jitmeet.example.com:tls error Error creating contexts for s2sin: No certificate present in SSL/TLS configuration for guest.jitmeet.example.com May 06 20:29:21 portmanager info Activated service 'component' on [0.0.0.0]:5347 May 06 20:29:21 conferenceduration.jwt.nobronca.com:conference_duration_component info Hook to muc events on conference.jwt.nobronca.com May 06 20:29:21 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host internal.auth.jwt.nobronca.com! May 06 20:29:21 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host conference.jwt.nobronca.com! May 06 20:29:21 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host localhost! May 06 20:29:21 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host jwt.nobronca.com! May 06 20:29:21 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host guest.jitmeet.example.com! May 06 20:29:21 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host conferenceduration.jwt.nobronca.com! May 06 20:29:21 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host focus.jwt.nobronca.com! May 06 20:29:21 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host auth.jwt.nobronca.com! May 06 20:29:21 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host speakerstats.jwt.nobronca.com! May 06 20:29:21 speakerstats.jwt.nobronca.com:speakerstats_component info Hook to muc events on conference.jwt.nobronca.com May 06 20:29:24 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:29:24 c2s5556a4fe8c10 info Client connected May 06 20:29:25 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:29:25 c2s5556a51ed2d0 info Client connected May 06 20:29:26 c2s5556a4fe8c10 info Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384) May 06 20:29:27 c2s5556a51ed2d0 info Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384) May 06 20:29:27 c2s5556a4fe8c10 info Authenticated as [email protected] May 06 20:29:27 c2s5556a51ed2d0 info Authenticated as [email protected] May 06 20:29:27 focus.jwt.nobronca.com:component warn Component not connected, bouncing error for: <iq to='focus.jwt.nobronca.com' id='D817n-37' type='get' from='[email protected]/focus7699104168558'> May 06 20:29:29 jcp5556a52de960 info Incoming Jabber component connection May 06 20:29:29 focus.jwt.nobronca.com:component info External component successfully authenticated May 06 20:29:38 mod_posix warn Received SIGTERM May 06 20:29:38 startup info Shutting down: Received SIGTERM May 06 20:29:38 c2s5556a4fe8c10 info Client disconnected: connection closed May 06 20:29:38 c2s5556a51ed2d0 info Client disconnected: connection closed May 06 20:29:38 jcp5556a52de960 info component disconnected: focus.jwt.nobronca.com (false) May 06 20:29:38 general info Shutting down... May 06 20:29:38 general info Shutdown status: Cleaning up May 06 20:29:38 general info Shutdown complete May 06 20:29:39 startup info Hello and welcome to Prosody version 0.11.5 May 06 20:29:39 startup info Prosody is using the select backend for connection handling May 06 20:29:39 portmanager info Activated service 's2s' on [*]:5269, [::]:5269 May 06 20:29:39 portmanager info Activated service 'c2s' on [*]:5222, [::]:5222 May 06 20:29:39 portmanager info Activated service 'legacy_ssl' on no ports May 06 20:29:39 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host localhost! May 06 20:29:39 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host conference.jwt.nobronca.com! May 06 20:29:39 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host internal.auth.jwt.nobronca.com! May 06 20:29:39 general info Starting conference duration timer for conference.jwt.nobronca.com May 06 20:29:39 conferenceduration.jwt.nobronca.com:conference_duration_component info Hook to muc events on conference.jwt.nobronca.com May 06 20:29:39 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host conferenceduration.jwt.nobronca.com! May 06 20:29:39 general info Starting speakerstats for conference.jwt.nobronca.com May 06 20:29:39 speakerstats.jwt.nobronca.com:speakerstats_component info Hook to muc events on conference.jwt.nobronca.com May 06 20:29:39 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host speakerstats.jwt.nobronca.com! May 06 20:29:39 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host auth.jwt.nobronca.com! May 06 20:29:39 portmanager info Activated service 'http' on [*]:5280, [::]:5280 May 06 20:29:39 portmanager error Error binding encrypted port for https: No certificate present in SSL/TLS configuration for https port 5281 May 06 20:29:39 portmanager error Error binding encrypted port for https: No certificate present in SSL/TLS configuration for https port 5281 May 06 20:29:39 portmanager info Activated service 'https' on no ports May 06 20:29:39 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host jwt.nobronca.com! May 06 20:29:39 portmanager info Activated service 'component' on [0.0.0.0]:5347 May 06 20:29:39 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host focus.jwt.nobronca.com! May 06 20:29:39 guest.jitmeet.example.com:auth_token warn WARNING - empty tokens allowed May 06 20:29:39 guest.jitmeet.example.com:tls error Error creating context for c2s: No certificate present in SSL/TLS configuration for guest.jitmeet.example.com May 06 20:29:39 guest.jitmeet.example.com:tls error Error creating contexts for s2sin: No certificate present in SSL/TLS configuration for guest.jitmeet.example.com May 06 20:29:39 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host guest.jitmeet.example.com! May 06 20:29:42 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:29:42 c2s56038cfcf750 info Client connected May 06 20:29:44 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:29:44 c2s56038ce53f40 info Client connected May 06 20:29:45 c2s56038cfcf750 info Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384) May 06 20:29:46 c2s56038ce53f40 info Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384) May 06 20:29:46 c2s56038cfcf750 info Authenticated as [email protected] May 06 20:29:46 c2s56038ce53f40 info Authenticated as [email protected] May 06 20:29:46 focus.jwt.nobronca.com:component warn Component not connected, bouncing error for: <iq to='focus.jwt.nobronca.com' id='xR84g-37' from='[email protected]/focus7717334991640' type='get'> May 06 20:29:48 jcp56038d1eb020 info Incoming Jabber component connection May 06 20:29:48 focus.jwt.nobronca.com:component info External component successfully authenticated May 06 20:30:09 mod_posix warn Received SIGTERM May 06 20:30:09 startup info Shutting down: Received SIGTERM May 06 20:30:09 c2s56038cfcf750 info Client disconnected: connection closed May 06 20:30:09 c2s56038ce53f40 info Client disconnected: connection closed May 06 20:30:09 jcp56038d1eb020 info component disconnected: focus.jwt.nobronca.com (false) May 06 20:30:09 general info Shutting down... May 06 20:30:09 general info Shutdown status: Cleaning up May 06 20:30:09 general info Shutdown complete May 06 20:30:09 startup info Hello and welcome to Prosody version 0.11.5 May 06 20:30:09 startup info Prosody is using the select backend for connection handling May 06 20:30:09 general info Starting speakerstats for conference.jwt.nobronca.com May 06 20:30:09 speakerstats.jwt.nobronca.com:speakerstats_component info No muc component found, will listen for it: conference.jwt.nobronca.com May 06 20:30:09 portmanager info Activated service 's2s' on [::]:5269, [*]:5269 May 06 20:30:09 portmanager info Activated service 'c2s' on [::]:5222, [*]:5222 May 06 20:30:09 portmanager info Activated service 'legacy_ssl' on no ports May 06 20:30:09 portmanager info Activated service 'http' on [::]:5280, [*]:5280 May 06 20:30:09 portmanager error Error binding encrypted port for https: No certificate present in SSL/TLS configuration for https port 5281 May 06 20:30:09 portmanager error Error binding encrypted port for https: No certificate present in SSL/TLS configuration for https port 5281 May 06 20:30:09 portmanager info Activated service 'https' on no ports May 06 20:30:09 speakerstats.jwt.nobronca.com:speakerstats_component info Hook to muc events on conference.jwt.nobronca.com May 06 20:30:09 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host speakerstats.jwt.nobronca.com! May 06 20:30:09 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host auth.jwt.nobronca.com! May 06 20:30:09 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host internal.auth.jwt.nobronca.com! May 06 20:30:09 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host jwt.nobronca.com! May 06 20:30:09 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host conference.jwt.nobronca.com! May 06 20:30:09 guest.jitmeet.example.com:auth_token warn WARNING - empty tokens allowed May 06 20:30:09 guest.jitmeet.example.com:tls error Error creating context for c2s: No certificate present in SSL/TLS configuration for guest.jitmeet.example.com May 06 20:30:09 guest.jitmeet.example.com:tls error Error creating contexts for s2sin: No certificate present in SSL/TLS configuration for guest.jitmeet.example.com May 06 20:30:09 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host guest.jitmeet.example.com! May 06 20:30:10 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host localhost! May 06 20:30:10 general info Starting conference duration timer for conference.jwt.nobronca.com May 06 20:30:10 conferenceduration.jwt.nobronca.com:conference_duration_component info Hook to muc events on conference.jwt.nobronca.com May 06 20:30:10 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host conferenceduration.jwt.nobronca.com! May 06 20:30:10 portmanager info Activated service 'component' on [0.0.0.0]:5347 May 06 20:30:10 conference.jwt.nobronca.com:muc_domain_mapper info Loading mod_muc_domain_mapper for host focus.jwt.nobronca.com! May 06 20:30:13 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:30:13 c2s563031ca7040 info Client connected May 06 20:30:14 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:30:14 c2s563031cbc8b0 info Client connected May 06 20:30:15 c2s563031ca7040 info Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384) May 06 20:30:15 c2s563031ca7040 info Authenticated as [email protected] May 06 20:30:16 c2s563031cbc8b0 info Stream encrypted (TLSv1.2 with ECDHE-RSA-AES256-GCM-SHA384) May 06 20:30:16 c2s563031cbc8b0 info Authenticated as [email protected] May 06 20:30:16 focus.jwt.nobronca.com:component warn Component not connected, bouncing error for: <iq type='get' to='focus.jwt.nobronca.com' from='[email protected]/focus7747436502561' id='YNw1D-35'> May 06 20:30:18 jcp563031daf540 info Incoming Jabber component connection May 06 20:30:18 focus.jwt.nobronca.com:component info External component successfully authenticated May 06 20:36:13 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:36:13 mod_bosh info New BOSH session, assigned it sid '22f24480-29fc-4ec3-98a2-230f36e42036' May 06 20:41:53 bosh22f24480-29fc-4ec3-98a2-230f36e42036 info BOSH client disconnected: session close May 06 20:41:55 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:41:55 mod_bosh info New BOSH session, assigned it sid 'e9898abb-bbfd-4f11-ad2b-bed00d9c71b8' May 06 20:41:55 general warn Error verifying token err:not-allowed, reason:Invalid issuer ('iss' claim) May 06 20:44:22 mod_bosh info Client tried to use sid 'e9898abb-bbfd-4f11-ad2b-bed00d9c71b8' which we don't know about May 06 20:44:24 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:44:24 mod_bosh info New BOSH session, assigned it sid '35b961ff-c71d-4fc7-b05a-398e3b6906cc' May 06 20:44:24 general warn Error verifying token err:not-allowed, reason:Invalid issuer ('iss' claim) May 06 20:51:29 mod_bosh info Client tried to use sid '35b961ff-c71d-4fc7-b05a-398e3b6906cc' which we don't know about May 06 20:51:31 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:51:31 mod_bosh info New BOSH session, assigned it sid '87324e75-f448-4ee0-8119-1b1fef4327cf' May 06 20:51:31 general warn Error verifying token err:not-allowed, reason:Invalid issuer ('iss' claim) May 06 20:53:34 mod_bosh info Client tried to use sid '87324e75-f448-4ee0-8119-1b1fef4327cf' which we don't know about May 06 20:53:36 conference.jwt.nobronca.com:muc_domain_mapper warn Session filters applied May 06 20:53:36 mod_bosh info New BOSH session, assigned it sid 'f43dc45f-d6fe-4353-94ac-4cac8f51b51f' May 06 20:53:36 general warn Error verifying token err:not-allowed, reason:Invalid issuer ('iss' claim)
My assumption is the following has issues:
/etc/prosody/conf.avail/jwt.nobronca.com.cfg.lua
asap_accepted_issuers = { "jitsi", "smash" }
asap_accepted_audiences = { "jitsi", "smash" }
or :
I have a problem with my token creation:
{ "context": { "user": { "avatar": "", "name": "mark", "email": "[email protected]", "id": "id-1" }, "group": "g-1" }, "aud": "jwt", "iss": "xxxxxx", "sub": "nobronca.com", "room": "*", "exp": 1959084646376 }
from docs.
xceejay
commented on August 23, 2024
Hello I found a solution, use this tutorial https://medium.com/@szewong/rocket-chat-part-3-installing-jitsi-with-jwt-for-secure-video-conferencing-b6f909e7f92c
from docs.
mlynchdev
commented on August 23, 2024
Hello I found a solution, use this tutorial https://medium.com/@szewong/rocket-chat-part-3-installing-jitsi-with-jwt-for-secure-video-conferencing-b6f909e7f92c
Thanks! That helped me fix a problem I was having. Great help
from docs.
JuanVqz
commented on August 23, 2024
@xceejay and @mlynchdev Hi! Just a question, What exactly did you config from that medium post?
I followed this doc but I didn't finish success, I had this error from jicofo
tail -f -n 350 /var/log/jitsi/jicofo.log
Jicofo 2020-05-14 01:26:18.100 SEVERE: [35] org.jitsi.xmpp.component.ComponentBase.log() Failed to send ping
java.lang.NullPointerException
at org.xmpp.component.AbstractComponent.send(AbstractComponent.java:925)
at org.jitsi.xmpp.component.ComponentBase.access$400(ComponentBase.java:36)
at org.jitsi.xmpp.component.ComponentBase$PingTask.run(ComponentBase.java:577)
at java.util.TimerThread.mainLoop(Timer.java:555)
at java.util.TimerThread.run(Timer.java:505)
Jicofo 2020-05-14 01:26:18.229 SEVERE: [36] org.jitsi.meet.ComponentMain.log() java.net.ConnectException: Connection refused (Connection refused), host:room.thundertix.ga, port:5347
org.xmpp.component.ComponentException: java.net.ConnectException: Connection refused (Connection refused)
at org.jivesoftware.whack.ExternalComponent.connect(ExternalComponent.java:296)
at org.jivesoftware.whack.ExternalComponentManager.addComponent(ExternalComponentManager.java:242)
at org.jivesoftware.whack.ExternalComponentManager.addComponent(ExternalComponentManager.java:222)
at org.jitsi.meet.ComponentMain.lambda$getConnectCallable$0(ComponentMain.java:285)
at org.jitsi.retry.RetryStrategy$TaskRunner.run(RetryStrategy.java:193)
at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511)
at java.util.concurrent.FutureTask.run(FutureTask.java:266)
at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.access$201(ScheduledThreadPoolExecutor.java:180)
at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.run(ScheduledThreadPoolExecutor.java:293)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at java.lang.Thread.run(Thread.java:748)
Caused by: java.net.ConnectException: Connection refused (Connection refused)
at java.net.PlainSocketImpl.socketConnect(Native Method)
at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:350)
at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:206)
at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:188)
at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392)
at java.net.Socket.connect(Socket.java:607)
at org.jivesoftware.whack.ExternalComponent.connect(ExternalComponent.java:174)
... 11 more
Thank you!
from docs.
JuanVqz
commented on August 23, 2024
@xceejay and @mlynchdev Hi! Just a question, What exactly did you config from that medium post?
I followed this doc but I didn't finish success, I had this error from jicofotail -f -n 350 /var/log/jitsi/jicofo.log Jicofo 2020-05-14 01:26:18.100 SEVERE: [35] org.jitsi.xmpp.component.ComponentBase.log() Failed to send ping java.lang.NullPointerException at org.xmpp.component.AbstractComponent.send(AbstractComponent.java:925) at org.jitsi.xmpp.component.ComponentBase.access$400(ComponentBase.java:36) at org.jitsi.xmpp.component.ComponentBase$PingTask.run(ComponentBase.java:577) at java.util.TimerThread.mainLoop(Timer.java:555) at java.util.TimerThread.run(Timer.java:505) Jicofo 2020-05-14 01:26:18.229 SEVERE: [36] org.jitsi.meet.ComponentMain.log() java.net.ConnectException: Connection refused (Connection refused), host:room.thundertix.ga, port:5347 org.xmpp.component.ComponentException: java.net.ConnectException: Connection refused (Connection refused) at org.jivesoftware.whack.ExternalComponent.connect(ExternalComponent.java:296) at org.jivesoftware.whack.ExternalComponentManager.addComponent(ExternalComponentManager.java:242) at org.jivesoftware.whack.ExternalComponentManager.addComponent(ExternalComponentManager.java:222) at org.jitsi.meet.ComponentMain.lambda$getConnectCallable$0(ComponentMain.java:285) at org.jitsi.retry.RetryStrategy$TaskRunner.run(RetryStrategy.java:193) at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511) at java.util.concurrent.FutureTask.run(FutureTask.java:266) at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.access$201(ScheduledThreadPoolExecutor.java:180) at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.run(ScheduledThreadPoolExecutor.java:293) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624) at java.lang.Thread.run(Thread.java:748) Caused by: java.net.ConnectException: Connection refused (Connection refused) at java.net.PlainSocketImpl.socketConnect(Native Method) at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:350) at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:206) at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:188) at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392) at java.net.Socket.connect(Socket.java:607) at org.jivesoftware.whack.ExternalComponent.connect(ExternalComponent.java:174) ... 11 moreThank you!
I had some configs in the Virtual Host instead of "conference.blahblahblah" "muc" was specifically something I did wrong through setup.
Also I somehow didn't realize when I set the configs for issuer and audience that those corresponded directly to "iss" + "aud" in the JWT token.
Thank you! I'll try it
from docs.
JuanVqz
commented on August 23, 2024
I switched to docker repository and it works like a charm ❤️
I made a video https://youtu.be/XVZ0PNQHsdo
from docs.
Related Issues (12)
- Prosody.err logs HOT 9
- do we need to open port 5280 HOT 2
- enable_domain_verification is disabled by default
- JWT + User Auth
- jicofo err HOT 1
- Error with Luacrypto HOT 4
- JWT Error
- jitsi meet installation guide not working! HOT 3
- Jitsi JWT patch not working on Ubuntu 20.04
- Difference between issuers and audiences HOT 1
- Meeting Reset In A Room
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from docs.