2018-09-25 08:25:32 +00:00
#!/bin/bash
2020-04-11 05:08:30 +00:00
# Quick Jibri Installer - *buntu (LTS) based systems.
2020-04-11 09:51:31 +00:00
# SwITNet Ltd © - 2020, https://switnet.net/
2018-09-25 08:25:32 +00:00
# GPLv3 or later.
2020-03-26 00:47:37 +00:00
{
echo " Started at $( date +'%Y-%m-%d %H:%M:%S' ) " >> qj-installer.log
2018-09-25 08:25:32 +00:00
2020-03-25 18:25:50 +00:00
while getopts m: option
do
case " ${ option } "
in
m) MODE = ${ OPTARG } ; ;
\? ) echo "Usage: sudo ./quick_jibri_installer.sh [-m debug]" && exit; ;
esac
done
#DEBUG
if [ " $MODE " = "debug" ] ; then
set -x
fi
2018-09-25 08:25:32 +00:00
# SYSTEM SETUP
2020-05-09 02:46:18 +00:00
JITSI_REPO = $( apt-cache policy | grep http | grep jitsi | grep stable | awk '{print $3}' | head -n 1 | cut -d "/" -f1)
2020-05-03 00:21:53 +00:00
CERTBOT_REPO = $( apt-cache policy | grep http | grep certbot | head -n 1 | awk '{print $2}' | cut -d "/" -f4)
2018-09-25 08:25:32 +00:00
APACHE_2 = $( dpkg-query -W -f= '${Status}' apache2 2>/dev/null | grep -c "ok installed" )
NGINX = $( dpkg-query -W -f= '${Status}' nginx 2>/dev/null | grep -c "ok installed" )
DIST = $( lsb_release -sc)
GOOGL_REPO = "/etc/apt/sources.list.d/dl_google_com_linux_chrome_deb.list"
2020-05-03 00:21:53 +00:00
PROSODY_REPO = $( apt-cache policy | grep http | grep prosody| awk '{print $3}' | head -n 1 | cut -d "/" -f2)
2018-09-25 08:25:32 +00:00
if [ $DIST = flidas ] ; then
DIST = "xenial"
fi
2020-04-11 05:08:30 +00:00
if [ $DIST = etiona ] ; then
DIST = "bionic"
fi
2019-04-01 20:29:03 +00:00
install_ifnot( ) {
if [ " $( dpkg-query -W -f= '${Status}' $1 2>/dev/null | grep -c "ok installed" ) " = = "1" ] ; then
echo " $1 is installed, skipping... "
else
echo -e " \n---- Installing $1 ---- "
2020-04-14 16:49:11 +00:00
apt-get -yq2 install $1
2019-04-01 20:29:03 +00:00
fi
}
2018-09-25 08:25:32 +00:00
check_serv( ) {
2020-04-10 22:34:39 +00:00
if [ " $APACHE_2 " -eq 1 ] ; then
2018-09-25 08:25:32 +00:00
echo "
2020-04-10 22:34:39 +00:00
The recommended setup is using NGINX, exiting...
2018-09-25 08:25:32 +00:00
"
2020-04-10 22:34:39 +00:00
exit
elif [ " $NGINX " -eq 1 ] ; then
2019-03-04 12:31:34 +00:00
2019-04-02 05:15:11 +00:00
echo "
2020-04-10 22:34:39 +00:00
Webserver already installed!
2019-04-02 05:15:11 +00:00
"
2019-03-04 12:31:34 +00:00
2018-09-25 08:25:32 +00:00
else
echo "
2020-04-14 03:24:05 +00:00
Installing nginx webserver!
2018-09-25 08:25:32 +00:00
"
2019-04-02 05:15:11 +00:00
install_ifnot nginx
2018-09-25 08:25:32 +00:00
fi
}
check_snd_driver( ) {
modprobe snd-aloop
echo "snd-aloop" >> /etc/modules
if [ " $( lsmod | grep snd_aloop | head -n 1 | cut -d " " -f1) " = "snd_aloop" ] ; then
2020-04-07 02:08:39 +00:00
echo "
2020-04-28 01:18:33 +00:00
#-----------------------------------------------------------------------
2020-04-11 05:08:30 +00:00
# Audio driver seems - OK.
2020-04-28 01:18:33 +00:00
#-----------------------------------------------------------------------"
2018-09-25 08:25:32 +00:00
else
2020-04-07 02:08:39 +00:00
echo "
2020-04-28 01:18:33 +00:00
#-----------------------------------------------------------------------
# Your audio driver might not be able to load, once the installation
2020-04-29 11:36:51 +00:00
# is complete and server restarted, please run: \`lsmod | grep snd_aloop'
2020-04-28 01:18:33 +00:00
# to make sure it did. If not, any feedback for your setup is welcome.
#-----------------------------------------------------------------------"
2020-04-29 11:36:51 +00:00
read -n 1 -s -r -p "Press any key to continue..." $'\n'
2018-09-25 08:25:32 +00:00
fi
}
update_certbot( ) {
if [ " $CERTBOT_REPO " = "certbot" ] ; then
echo "
Cerbot repository already on the system!
Checking for updates...
"
2020-04-14 16:49:11 +00:00
apt-get -q2 update
apt-get -yq2 dist-upgrade
2018-09-25 08:25:32 +00:00
else
echo "
Adding cerbot ( formerly letsencrypt) PPA repository for latest updates
"
echo " deb http://ppa.launchpad.net/certbot/certbot/ubuntu $DIST main " > /etc/apt/sources.list.d/certbot.list
apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 75BCA694
2020-04-14 16:49:11 +00:00
apt-get -q2 update
apt-get -yq2 dist-upgrade
2018-09-25 08:25:32 +00:00
fi
}
2020-05-09 02:46:18 +00:00
# sed limiters for add-jibri-node.sh variables
var_dlim( ) {
grep -n $1 add-jibri-node.sh| head -n1| cut -d ":" -f1
}
2018-09-25 08:25:32 +00:00
clear
echo '
########################################################################
Welcome to Jitsi/Jibri Installer
########################################################################
by Software, IT & Networks Ltd
2020-04-11 09:51:31 +00:00
Featuring:
2020-04-11 10:20:42 +00:00
- Jibri Recording and YouTube Streaming
2020-04-11 09:51:31 +00:00
- Jibri Recordings Access via Nextcloud
2020-04-30 19:43:37 +00:00
- Jigasi Transcription ( Advanced)
2020-04-11 10:20:42 +00:00
- Customized brandless mode
2020-04-11 09:51:31 +00:00
- Recurring changes updater
2020-04-15 05:27:34 +00:00
Learn more about these at,
Main repository: https://github.com/switnet-ltd/quick-jibri-installer
Wiki and documentation: https://github.com/switnet-ltd/quick-jibri-installer/wiki
2018-09-25 08:25:32 +00:00
'
2020-04-15 05:34:29 +00:00
read -n 1 -s -r -p "Press any key to continue..." $'\n'
2018-09-25 08:25:32 +00:00
2019-08-09 05:45:24 +00:00
#Check if user is root
if ! [ $( id -u) = 0 ] ; then
echo "You need to be root or have sudo privileges!"
exit 0
2018-09-25 08:25:32 +00:00
fi
2020-04-11 11:52:08 +00:00
if [ " $DIST " = "xenial" ] || [ " $DIST " = "bionic" ] ; then
2020-04-07 02:08:39 +00:00
echo " OS: $( lsb_release -sd)
Good, this is a supported platform!"
else
echo " OS: $( lsb_release -sd)
Sorry, this platform is not supported... exiting"
2020-04-11 11:52:08 +00:00
exit
2020-04-07 02:08:39 +00:00
fi
2020-04-11 07:32:45 +00:00
#Suggest 18.04 LTS release over 16.04
2020-04-11 11:52:08 +00:00
if [ " $DIST " = "xenial" ] ; then
2020-04-11 07:32:45 +00:00
echo " $( lsb_release -sc) , even when it's compatible and functional.
We suggest to use the next ( LTS) release, for longer support and security reasons."
2020-04-15 05:34:29 +00:00
read -n 1 -s -r -p "Press any key to continue..." $'\n'
2020-04-11 07:32:45 +00:00
fi
2018-09-25 08:25:32 +00:00
# Jitsi-Meet Repo
echo "Add Jitsi key"
2020-05-09 02:46:18 +00:00
if [ " $JITSI_REPO " = "stable" ] ; then
2020-04-07 02:08:39 +00:00
echo "Jitsi stable repository already installed"
2018-09-25 08:25:32 +00:00
else
2020-05-10 12:34:54 +00:00
echo 'deb http://download.jitsi.org stable/' > /etc/apt/sources.list.d/jitsi-stable.list
2018-09-25 08:25:32 +00:00
wget -qO - https://download.jitsi.org/jitsi-key.gpg.key | apt-key add -
fi
2020-04-30 22:11:35 +00:00
#Default to LE SSL?
while [ [ $LE_SSL != yes && $LE_SSL != no ] ]
do
read -p "> Do you plan to use Let's Encrypt SSL certs?: (yes or no)" $'\n' -r LE_SSL
2020-04-30 22:23:13 +00:00
if [ $LE_SSL = yes ] ; then
2020-04-30 22:11:35 +00:00
echo "We'll defaul to Let's Encrypt SSL cers."
2020-04-30 22:23:13 +00:00
elif [ $LE_SSL = no ] ; then
2020-04-30 22:11:35 +00:00
echo "We'll let you choose later on for it."
fi
done
2018-09-25 08:25:32 +00:00
# Requirements
echo "We'll start by installing system requirements this may take a while please be patient..."
2020-04-14 16:49:11 +00:00
apt-get update -q2
apt-get dist-upgrade -yq2
2020-04-07 02:08:39 +00:00
2020-04-14 16:49:11 +00:00
apt-get -y install \
2018-09-25 08:25:32 +00:00
bmon \
curl \
ffmpeg \
git \
htop \
2019-03-04 12:31:34 +00:00
letsencrypt \
2020-04-07 02:08:39 +00:00
linux-image-generic-hwe-$( lsb_release -r| awk '{print$2}' ) \
2020-06-17 22:07:41 +00:00
linux-modules-extra-virtual-hwe-$( lsb_release -r| awk '{print$2}' ) \
2018-09-25 08:25:32 +00:00
unzip \
wget
2020-04-07 02:08:39 +00:00
2018-09-25 08:25:32 +00:00
check_serv
echo "
2018-10-05 15:00:57 +00:00
#--------------------------------------------------
# Install Jitsi Framework
#--------------------------------------------------
2018-09-25 08:25:32 +00:00
"
2020-04-30 22:11:35 +00:00
if [ " $LE_SSL " = "yes" ] ; then
2020-04-30 19:43:37 +00:00
echo "set jitsi-meet/cert-choice select Generate a new self-signed certificate (You will later get a chance to obtain a Let's encrypt certificate)" | debconf-set-selections
2020-04-30 22:11:35 +00:00
fi
2020-04-14 16:49:11 +00:00
apt-get -y install \
2018-09-25 08:25:32 +00:00
jitsi-meet \
2020-03-26 00:52:44 +00:00
jibri \
openjdk-8-jre-headless
# Fix RAND_load_file error
#https://github.com/openssl/openssl/issues/7754#issuecomment-444063355
sed -i "/RANDFILE/d" /etc/ssl/openssl.cnf
2018-09-25 08:25:32 +00:00
2018-10-05 15:00:57 +00:00
echo "
#--------------------------------------------------
# Install NodeJS
#--------------------------------------------------
"
if [ " $( dpkg-query -W -f= '${Status}' nodejs 2>/dev/null | grep -c "ok" ) " = = "1" ] ; then
echo "Nodejs is installed, skipping..."
else
2019-10-20 16:04:45 +00:00
curl -sL https://deb.nodesource.com/setup_10.x | sudo -E bash -
2020-04-14 16:49:11 +00:00
apt-get install -yq2 nodejs
2019-08-09 05:45:24 +00:00
echo "Installing nodejs esprima package..."
2018-10-05 15:00:57 +00:00
npm install -g esprima
fi
2019-08-09 05:45:24 +00:00
if [ " $( npm list -g esprima 2>/dev/null | grep -c "empty" ) " = = "1" ] ; then
echo "Installing nodejs esprima package..."
npm install -g esprima
elif [ " $( npm list -g esprima 2>/dev/null | grep -c "esprima" ) " = = "1" ] ; then
echo "Good. Esprima package is already installed"
fi
2018-09-25 08:25:32 +00:00
# ALSA - Loopback
echo "snd-aloop" | tee -a /etc/modules
check_snd_driver
2019-02-25 04:10:26 +00:00
CHD_VER = $( curl -sL https://chromedriver.storage.googleapis.com/LATEST_RELEASE)
2020-04-07 02:08:39 +00:00
GCMP_JSON = "/etc/opt/chrome/policies/managed/managed_policies.json"
2018-09-25 08:25:32 +00:00
echo "# Installing Google Chrome / ChromeDriver"
if [ -f $GOOGL_REPO ] ; then
2020-04-11 10:38:36 +00:00
echo "Google repository already set."
2018-09-25 08:25:32 +00:00
else
2020-04-11 10:38:36 +00:00
echo "Installing Google Chrome Stable"
2018-09-25 08:25:32 +00:00
wget -q -O - https://dl.google.com/linux/linux_signing_key.pub | apt-key add -
echo "deb http://dl.google.com/linux/chrome/deb/ stable main" | tee $GOOGL_REPO
fi
2020-04-14 16:49:11 +00:00
apt-get -q2 update
apt-get install -yq2 google-chrome-stable
2018-09-25 08:25:32 +00:00
rm -rf /etc/apt/sources.list.d/dl_google_com_linux_chrome_deb.list
if [ -f /usr/local/bin/chromedriver ] ; then
echo "Chromedriver already installed."
else
echo "Installing Chromedriver"
2020-04-11 16:27:40 +00:00
wget -q https://chromedriver.storage.googleapis.com/$CHD_VER /chromedriver_linux64.zip -O /tmp/chromedriver_linux64.zip
2018-09-25 08:25:32 +00:00
unzip /tmp/chromedriver_linux64.zip -d /usr/local/bin/
chown root:root /usr/local/bin/chromedriver
chmod 0755 /usr/local/bin/chromedriver
rm -rf /tpm/chromedriver_linux64.zip
fi
2019-03-04 12:31:34 +00:00
echo "
Check Google Software Working...
"
2018-09-25 08:25:32 +00:00
/usr/bin/google-chrome --version
2019-03-04 12:31:34 +00:00
/usr/local/bin/chromedriver --version | awk '{print$1,$2}'
2018-09-25 08:25:32 +00:00
2020-04-07 02:08:39 +00:00
echo "
Remove Chrome warning...
"
mkdir -p /etc/opt/chrome/policies/managed
2020-04-15 05:34:29 +00:00
echo '{ "CommandLineFlagSecurityWarningsEnabled": false }' > $GCMP_JSON
2020-04-07 02:08:39 +00:00
2018-09-25 08:25:32 +00:00
echo '
########################################################################
2020-04-11 05:08:30 +00:00
Please Setup Your Instalation
2018-09-25 08:25:32 +00:00
########################################################################
'
# MEET / JIBRI SETUP
2019-07-02 21:00:10 +00:00
DOMAIN = $( ls /etc/prosody/conf.d/ | grep -v localhost | awk -F'.cfg' '{print $1}' | awk '!NF || !seen[$0]++' )
2020-04-11 05:08:30 +00:00
WS_CONF = /etc/nginx/sites-enabled/$DOMAIN .conf
2020-04-07 02:08:39 +00:00
JB_AUTH_PASS = " $( tr -dc "a-zA-Z0-9#*=" < /dev/urandom | fold -w 10 | head -n1) "
JB_REC_PASS = " $( tr -dc "a-zA-Z0-9#*=" < /dev/urandom | fold -w 10 | head -n1) "
2018-09-25 08:25:32 +00:00
PROSODY_FILE = /etc/prosody/conf.d/$DOMAIN .cfg.lua
2020-04-07 02:08:39 +00:00
PROSODY_SYS = /etc/prosody/prosody.cfg.lua
2018-09-25 08:25:32 +00:00
JICOFO_SIP = /etc/jitsi/jicofo/sip-communicator.properties
MEET_CONF = /etc/jitsi/meet/$DOMAIN -config.js
CONF_JSON = /etc/jitsi/jibri/config.json
2020-04-07 02:08:39 +00:00
DIR_RECORD = /var/jbrecord
2018-09-25 08:25:32 +00:00
REC_DIR = /home/jibri/finalize_recording.sh
JB_NAME = "Jibri Sessions"
2019-11-20 06:48:04 +00:00
LE_RENEW_LOG = "/var/log/letsencrypt/renew.log"
2020-04-11 05:08:30 +00:00
MOD_LISTU = "https://prosody.im/files/mod_listusers.lua"
MOD_LIST_FILE = "/usr/lib/prosody/modules/mod_listusers.lua"
2020-04-30 19:43:37 +00:00
ENABLE_SA = "yes"
2020-04-12 16:14:04 +00:00
#Language
2019-08-09 05:45:24 +00:00
echo " ## Setting up Jitsi Meet language ##
2020-04-12 16:14:04 +00:00
You can define the language, for a complete list of the supported languages
2019-08-09 05:45:24 +00:00
2020-04-12 16:14:04 +00:00
See here:
https://github.com/jitsi/jitsi-meet/blob/master/lang/languages.json
Jitsi Meet web interface will be set to use such language.
2019-08-09 05:45:24 +00:00
"
2020-04-14 03:24:05 +00:00
read -p "Please set your language (Press enter to default to 'en'):" $'\n' -r LANG
2020-04-14 04:48:01 +00:00
while [ [ -z $SYSADMIN_EMAIL ] ]
do
read -p "Set sysadmin email (this is a mandatory field):" $'\n' -r SYSADMIN_EMAIL
done
2020-04-11 05:08:30 +00:00
#Drop unsecure TLS
2020-06-03 11:22:16 +00:00
while [ [ " $DROP_TLS1 " != "yes" && " $DROP_TLS1 " != "no" ] ]
2020-04-10 22:34:39 +00:00
do
2020-04-11 19:19:12 +00:00
read -p "> Do you want to drop support for unsecure protocols TLSv1.0/1.1 now: (yes or no)" $'\n' -r DROP_TLS1
2020-06-03 11:22:16 +00:00
if [ " $DROP_TLS1 " = "no" ] ; then
2020-04-10 22:34:39 +00:00
echo "TLSv1.0/1.1 will remain."
2020-06-03 11:22:16 +00:00
elif [ " $DROP_TLS1 " = "yes" ] ; then
2020-04-10 22:34:39 +00:00
echo "TLSv1.0/1.1 will be dropped"
fi
2020-04-11 05:08:30 +00:00
done
#SSL LE
2020-04-30 22:11:35 +00:00
if [ " $LE_SSL " = "yes" ] ; then
ENABLE_SSL = yes
else
2020-06-03 11:22:16 +00:00
while [ [ " $ENABLE_SSL " != "yes" && " $ENABLE_SSL " != "no" ] ]
do
read -p "> Do you want to setup LetsEncrypt with your domain: (yes or no)" $'\n' -r ENABLE_SSL
if [ " $ENABLE_SSL " = "no" ] ; then
echo "Please run letsencrypt.sh manually post-installation."
elif [ " $ENABLE_SSL " = "yes" ] ; then
echo "SSL will be enabled."
2020-06-03 11:36:51 +00:00
fi
done
2018-09-25 08:25:32 +00:00
fi
2020-05-20 18:57:11 +00:00
#Dropbox -- no longer requirement for localrecording
#while [[ $ENABLE_DB != yes && $ENABLE_DB != no ]]
#do
#read -p "> Do you want to setup the Dropbox feature now: (yes or no)"$'\n' -r ENABLE_DB
#if [ $ENABLE_DB = no ]; then
# echo "Dropbox won't be enable"
#elif [ $ENABLE_DB = yes ]; then
# read -p "Please set your Drobbox App key: "$'\n' -r DB_CID
#fi
#done
2020-04-11 09:59:29 +00:00
#Brandless Mode
2020-06-03 11:22:16 +00:00
while [ [ " $ENABLE_BLESSM " != "yes" && " $ENABLE_BLESSM " != "no" ] ]
2020-04-11 09:59:29 +00:00
do
2020-04-11 19:19:12 +00:00
read -p "> Do you want to install customized \"brandless mode\"?: (yes or no)" $'\n' -r ENABLE_BLESSM
2020-06-03 11:22:16 +00:00
if [ " $ENABLE_BLESSM " = "no" ] ; then
2020-04-11 09:59:29 +00:00
echo "Brandless mode won't be set."
2020-06-03 11:22:16 +00:00
elif [ " $ENABLE_BLESSM " = "yes" ] ; then
2020-04-11 09:59:29 +00:00
echo "Brandless mode will be set."
fi
done
2020-04-12 16:14:04 +00:00
echo "We'll take a minute to localize some UI excerpts if you need."
#Participant
echo "> Do you want to translate 'Participant' to your own language?"
2020-04-15 05:34:29 +00:00
read -p "Leave empty to use the default one (English): " $'\n' L10N_PARTICIPANT
2020-04-12 16:14:04 +00:00
#Me
echo " > Do you want to translate 'me' to your own language?
This must be a really small word to present one self.
Some suggestions might be: yo ( Spanish) | je ( French) | ich ( German) "
2020-04-15 05:34:29 +00:00
read -p "Leave empty to use the default one (English): " $'\n' L10N_ME
2020-04-12 16:14:04 +00:00
#Welcome Page
2020-06-03 11:22:16 +00:00
while [ [ " $ENABLE_WELCP " != "yes" && " $ENABLE_WELCP " != "no" ] ]
2019-07-29 09:24:32 +00:00
do
2020-04-12 16:14:04 +00:00
read -p "> Do you want to disable the Welcome page: (yes or no)" $'\n' -r ENABLE_WELCP
2020-06-03 11:22:16 +00:00
if [ " $ENABLE_WELCP " = "yes" ] ; then
2020-04-12 16:14:04 +00:00
echo "Welcome page will be disabled."
2020-06-03 11:22:16 +00:00
elif [ " $ENABLE_WELCP " = "no" ] ; then
2020-04-12 16:14:04 +00:00
echo "Welcome page will be enabled."
2019-07-29 09:24:32 +00:00
fi
done
2020-04-11 05:08:30 +00:00
#Enable static avatar
while [ [ " $ENABLE_SA " != "yes" && " $ENABLE_SA " != "no" ] ]
do
2020-04-11 16:52:10 +00:00
read -p "> Do you want to enable static avatar?: (yes or no)" $'\n' -r ENABLE_SA
2020-04-11 05:08:30 +00:00
if [ " $ENABLE_SA " = "no" ] ; then
2020-04-11 07:19:54 +00:00
echo "Static avatar won't be enabled"
2020-04-11 05:08:30 +00:00
elif [ " $ENABLE_SA " = "yes" ] ; then
2020-04-11 07:19:54 +00:00
echo "Static avatar will be enabled"
fi
done
#Enable local audio recording
while [ [ " $ENABLE_LAR " != "yes" && " $ENABLE_LAR " != "no" ] ]
do
2020-04-11 16:52:10 +00:00
read -p "> Do you want to enable local audio recording option?: (yes or no)" $'\n' -r ENABLE_LAR
2020-04-11 07:19:54 +00:00
if [ " $ENABLE_LAR " = "no" ] ; then
echo "Local audio recording option won't be enabled"
elif [ " $ENABLE_LAR " = "yes" ] ; then
echo "Local audio recording option will be enabled"
2020-04-11 05:08:30 +00:00
fi
done
#Secure room initial user
while [ [ " $ENABLE_SC " != "yes" && " $ENABLE_SC " != "no" ] ]
do
2020-04-11 16:52:10 +00:00
read -p "> Do you want to enable secure rooms?: (yes or no)" $'\n' -r ENABLE_SC
2020-04-11 05:08:30 +00:00
if [ " $ENABLE_SC " = "no" ] ; then
echo "-- Secure rooms won't be enabled."
elif [ " $ENABLE_SC " = "yes" ] ; then
2020-04-11 21:35:50 +00:00
echo "-- Secure rooms will be enabled."
2020-04-11 05:08:30 +00:00
read -p "Set username for secure room moderator: " $'\n' -r SEC_ROOM_USER
2020-04-11 19:19:12 +00:00
read -p "Secure room moderator password: " $'\n' -r SEC_ROOM_PASS
2020-04-11 05:08:30 +00:00
fi
done
2020-04-12 16:14:04 +00:00
#Jibri Records Access (JRA) via Nextcloud
2020-06-03 11:22:16 +00:00
while [ [ " $ENABLE_NC_ACCESS " != "yes" && " $ENABLE_NC_ACCESS " != "no" ] ]
2020-04-11 05:08:30 +00:00
do
2020-04-16 01:38:31 +00:00
read -p " > Do you want to setup Jibri Records Access via Nextcloud: (yes or no)
( Please check requirements at: https://github.com/switnet-ltd/quick-jibri-installer ) " $'\n' -r ENABLE_NC_ACCESS
2020-06-03 11:22:16 +00:00
if [ " $ENABLE_NC_ACCESS " = "no" ] ; then
2020-04-12 16:14:04 +00:00
echo "JRA via Nextcloud won't be enabled."
2020-06-03 11:22:16 +00:00
elif [ " $ENABLE_NC_ACCESS " = "yes" ] ; then
2020-04-12 16:14:04 +00:00
echo "JRA via Nextcloud will be enabled."
fi
done
#Jigasi
2020-06-03 11:22:16 +00:00
while [ [ " $ENABLE_TRANSCRIPT " != "yes" && " $ENABLE_TRANSCRIPT " != "no" ] ]
2020-04-12 16:14:04 +00:00
do
2020-04-16 01:38:31 +00:00
read -p " > Do you want to setup Jigasi Transcription: (yes or no)
( Please check requirements at: https://github.com/switnet-ltd/quick-jibri-installer ) " $'\n' -r ENABLE_TRANSCRIPT
2020-06-03 11:22:16 +00:00
if [ " $ENABLE_TRANSCRIPT " = "no" ] ; then
2020-04-12 16:14:04 +00:00
echo "Jigasi Transcription won't be enabled."
2020-06-03 11:22:16 +00:00
elif [ " $ENABLE_TRANSCRIPT " = "yes" ] ; then
2020-04-12 16:14:04 +00:00
echo "Jigasi Transcription will be enabled."
2020-04-11 05:08:30 +00:00
fi
done
#Start configuration
echo '
########################################################################
Start Jitsi Framework configuration
########################################################################
'
2018-09-25 08:25:32 +00:00
JibriBrewery = JibriBrewery
2020-04-11 09:59:29 +00:00
INT_CONF = "/usr/share/jitsi-meet/interface_config.js"
2018-09-25 08:25:32 +00:00
WAN_IP = $( dig +short myip.opendns.com @resolver1.opendns.com)
2019-03-04 12:31:34 +00:00
ssl_wa( ) {
2020-04-07 21:00:38 +00:00
systemctl stop $1
2019-04-02 05:15:11 +00:00
letsencrypt certonly --standalone --renew-by-default --agree-tos --email $5 -d $6
sed -i " s|/etc/jitsi/meet/ $3 .crt|/etc/letsencrypt/live/ $3 /fullchain.pem| " $4
sed -i " s|/etc/jitsi/meet/ $3 .key|/etc/letsencrypt/live/ $3 /privkey.pem| " $4
2020-04-07 21:00:38 +00:00
systemctl restart $1
2019-03-04 12:31:34 +00:00
#Add cron
2020-04-13 18:39:25 +00:00
crontab -l | { cat; echo " @weekly certbot renew -- ${ 2 } > $LE_RENEW_LOG 2>&1 " ; } | crontab -
2019-03-04 12:31:34 +00:00
crontab -l
}
2018-09-25 08:25:32 +00:00
enable_letsencrypt( ) {
2018-11-05 04:54:08 +00:00
if [ " $ENABLE_SSL " = "yes" ] ; then
2018-09-25 08:25:32 +00:00
echo '
2020-04-11 05:08:30 +00:00
#--------------------------------------------------
# Starting LetsEncrypt configuration
#--------------------------------------------------
2018-09-25 08:25:32 +00:00
'
2019-03-04 12:31:34 +00:00
#Disabled 'til fixed upstream
#bash /usr/share/jitsi-meet/scripts/install-letsencrypt-cert.sh
2018-09-25 08:25:32 +00:00
update_certbot
2019-03-04 12:31:34 +00:00
2018-09-25 08:25:32 +00:00
else
echo "SSL setup will be skipped."
fi
}
check_jibri( ) {
if [ " $( dpkg-query -W -f= '${Status}' "jibri" 2>/dev/null | grep -c "ok installed" ) " = = "1" ]
then
2020-04-07 21:00:38 +00:00
systemctl restart jibri
systemctl restart jibri-icewm
systemctl restart jibri-xorg
2018-09-25 08:25:32 +00:00
else
echo "Jibri service not installed"
fi
}
# Restarting services
restart_services( ) {
2020-04-13 17:46:47 +00:00
systemctl restart jitsi-videobridge2
2020-04-07 21:00:38 +00:00
systemctl restart jicofo
systemctl restart prosody
2019-02-25 04:10:26 +00:00
check_jibri
2018-09-25 08:25:32 +00:00
}
# Configure Jibri
## PROSODY
cat << MUC-JIBRI >> $PROSODY_FILE
-- internal muc component, meant to enable pools of jibri and jigasi clients
Component " internal.auth. $DOMAIN " "muc"
modules_enabled = {
"ping" ;
}
storage = "null"
muc_room_cache_size = 1000
MUC-JIBRI
cat << REC-JIBR I >> $PROSODY_FILE
VirtualHost " recorder. $DOMAIN "
modules_enabled = {
"ping" ;
}
authentication = "internal_plain"
REC-JIBRI
2020-04-07 02:08:39 +00:00
#Fix Jibri conectivity issues
sed -i "s|c2s_require_encryption = .*|c2s_require_encryption = false|" $PROSODY_SYS
sed -i " /c2s_require_encryption = false/a \\
\\
consider_bosh_secure = true" $PROSODY_SYS
2020-04-12 16:14:04 +00:00
if [ ! -z $L10N_PARTICIPANT ] ; then
2020-04-14 04:48:01 +00:00
sed -i " s|PART_USER=.*|PART_USER=\" $L10N_PARTICIPANT \"| " jm-bm.sh
2020-04-12 16:14:04 +00:00
fi
if [ ! -z $L10N_ME ] ; then
2020-04-27 22:24:47 +00:00
sed -i " s|LOCAL_USER=.*|LOCAL_USER=\" $L10N_ME \"| " jm-bm.sh
2020-04-12 16:14:04 +00:00
fi
2020-04-11 05:08:30 +00:00
if [ ! -f $MOD_LIST_FILE ] ; then
2020-04-07 02:08:39 +00:00
echo "
-> Adding external module to list prosody users...
"
2020-04-11 05:08:30 +00:00
curl -s $MOD_LISTU > $MOD_LIST_FILE
2020-04-07 02:08:39 +00:00
echo " Now you can check registered users with:
prosodyctl mod_listusers
"
else
echo " Prosody support for listing users seems to be enabled.
check with: prosodyctl mod_listusers
"
fi
2018-09-25 08:25:32 +00:00
### Prosody users
prosodyctl register jibri auth.$DOMAIN $JB_AUTH_PASS
prosodyctl register recorder recorder.$DOMAIN $JB_REC_PASS
## JICOFO
# /etc/jitsi/jicofo/sip-communicator.properties
cat << BREWERY >> $JICOFO_SIP
2019-04-05 06:14:57 +00:00
#org.jitsi.jicofo.auth.URL=XMPP:$DOMAIN
2018-09-25 08:25:32 +00:00
org.jitsi.jicofo.jibri.BREWERY= $JibriBrewery @internal.auth.$DOMAIN
org.jitsi.jicofo.jibri.PENDING_TIMEOUT= 90
2019-04-01 20:29:03 +00:00
#org.jitsi.jicofo.auth.DISABLE_AUTOLOGIN=true
2018-09-25 08:25:32 +00:00
BREWERY
# Jibri tweaks for /etc/jitsi/meet/$DOMAIN-config.js
2019-02-25 04:10:26 +00:00
sed -i " s|// anonymousdomain: 'guest.example.com'|anonymousdomain: \'guest. $DOMAIN \'| " $MEET_CONF
2018-09-25 08:25:32 +00:00
sed -i " s|conference. $DOMAIN |internal.auth. $DOMAIN | " $MEET_CONF
sed -i "s|// fileRecordingsEnabled: false,|fileRecordingsEnabled: true,| " $MEET_CONF
sed -i " s|// liveStreamingEnabled: false,|liveStreamingEnabled: true,\\
\\
2018-10-05 15:00:57 +00:00
hiddenDomain: \' recorder.$DOMAIN \' ,| " $MEET_CONF
#Dropbox feature
2020-06-03 11:22:16 +00:00
if [ " $ENABLE_DB " = "yes" ] ; then
2018-10-05 15:00:57 +00:00
DB_STR = $( grep -n "dropbox:" $MEET_CONF | cut -d ":" -f1)
2019-04-02 16:33:33 +00:00
DB_END = $(( DB_STR + 10 ))
2018-10-05 15:00:57 +00:00
sed -i " $DB_STR , $DB_END {s|// dropbox: {|dropbox: {|} " $MEET_CONF
sed -i " $DB_STR , $DB_END {s|// appKey: '<APP_KEY>'|appKey: \' $DB_CID \'|} " $MEET_CONF
sed -i " $DB_STR , $DB_END {s|// },|},|} " $MEET_CONF
fi
2018-09-25 08:25:32 +00:00
#LocalRecording
2020-06-03 11:22:16 +00:00
if [ " $ENABLE_LAR " = "yes" ] ; then
2020-03-26 06:10:33 +00:00
echo "# Enabling local recording (audio only)."
2018-10-05 15:00:57 +00:00
LR_STR = $( grep -n "// Local Recording" $MEET_CONF | cut -d ":" -f1)
LR_END = $(( LR_STR + 18 ))
sed -i " $LR_STR , $LR_END {s|// localRecording: {|localRecording: {|} " $MEET_CONF
sed -i " $LR_STR , $LR_END {s|// enabled: true,|enabled: true,|} " $MEET_CONF
sed -i " $LR_STR , $LR_END {s|// format: 'flac'|format: 'flac'|} " $MEET_CONF
sed -i " $LR_STR , $LR_END {s|// }|}|} " $MEET_CONF
2018-09-25 08:25:32 +00:00
sed -i "s|'tileview'|'tileview', 'localrecording'|" $INT_CONF
2020-04-11 07:19:54 +00:00
sed -i "s|LOC_REC=.*|LOC_REC=\"on\"|" jitsi-updater.sh
fi
2018-09-25 08:25:32 +00:00
2019-08-09 05:45:24 +00:00
#Setup main language
if [ -z $LANG ] || [ " $LANG " = "en" ] ; then
echo "Leaving English (en) as default language..."
2019-11-20 07:38:52 +00:00
sed -i "s|// defaultLanguage: 'en',|defaultLanguage: 'en',|" $MEET_CONF
2019-08-09 05:45:24 +00:00
else
echo " Changing default language to: $LANG "
2019-11-20 07:38:52 +00:00
sed -i " s|// defaultLanguage: 'en',|defaultLanguage: \' $LANG \',| " $MEET_CONF
2019-08-09 05:45:24 +00:00
fi
2018-10-05 15:00:57 +00:00
#Check config file
echo "
# Checking $MEET_CONF file for errors
"
CHECKJS = $( esvalidate $MEET_CONF | cut -d ":" -f2)
2018-10-24 10:03:05 +00:00
if [ [ -z " $CHECKJS " ] ] ; then
2018-10-05 15:00:57 +00:00
echo "
# The $MEET_CONF configuration seems correct. =)
"
else
echo "
Watch out!, there seems to be an issue on $MEET_CONF line:
$CHECKJS
Most of the times this is due upstream changes, please report to
https://github.com/switnet-ltd/quick-jibri-installer/issues
"
fi
2018-09-25 08:25:32 +00:00
# Recording directory
2020-04-30 19:43:37 +00:00
if [ ! -d $DIR_RECORD ] ; then
2020-04-07 02:08:39 +00:00
mkdir $DIR_RECORD
2020-04-30 19:43:37 +00:00
fi
2020-04-07 02:08:39 +00:00
chown -R jibri:jibri $DIR_RECORD
2018-09-25 08:25:32 +00:00
cat << REC_DIR > $REC_DIR
#!/bin/bash
2020-04-07 02:08:39 +00:00
RECORDINGS_DIR = $DIR_RECORD
2018-09-25 08:25:32 +00:00
echo "This is a dummy finalize script" > /tmp/finalize.out
echo " The script was invoked with recordings directory $RECORDINGS_DIR . " >> /tmp/finalize.out
echo "You should put any finalize logic (renaming, uploading to a service" >> /tmp/finalize.out
echo "or storage provider, etc.) in this script" >> /tmp/finalize.out
2020-04-07 02:08:39 +00:00
chmod -R 770 \$ RECORDINGS_DIR
2018-09-25 08:25:32 +00:00
exit 0
REC_DIR
2020-04-07 02:08:39 +00:00
chown jibri:jibri $REC_DIR
chmod +x $REC_DIR
2018-09-25 08:25:32 +00:00
## JSON Config
2020-05-10 11:47:38 +00:00
cp $CONF_JSON ${ CONF_JSON } .orig
2018-09-25 08:25:32 +00:00
cat << CONF_JSON > $CONF_JSON
{
"recording_directory" :" $DIR_RECORD " ,
"finalize_recording_script_path" : " $REC_DIR " ,
"xmpp_environments" : [
{
"name" : " $JB_NAME " ,
"xmpp_server_hosts" : [
2020-04-07 02:08:39 +00:00
" $DOMAIN "
2018-09-25 08:25:32 +00:00
] ,
"xmpp_domain" : " $DOMAIN " ,
"control_login" : {
"domain" : " auth. $DOMAIN " ,
"username" : "jibri" ,
"password" : " $JB_AUTH_PASS "
} ,
"control_muc" : {
"domain" : " internal.auth. $DOMAIN " ,
"room_name" : " $JibriBrewery " ,
"nickname" : "Live"
} ,
"call_login" : {
"domain" : " recorder. $DOMAIN " ,
"username" : "recorder" ,
"password" : " $JB_REC_PASS "
} ,
2020-04-07 02:08:39 +00:00
"room_jid_domain_string_to_strip_from_start" : "conference." ,
2018-09-25 08:25:32 +00:00
"usage_timeout" : "0"
}
]
}
CONF_JSON
2020-05-09 02:46:18 +00:00
#Setting varibales for add-jibri-node.sh
sed -i " s|MAIN_SRV_DIST=.*|MAIN_SRV_DIST=\" $DIST \"| " add-jibri-node.sh
sed -i " s|MAIN_SRV_REPO=.*|MAIN_SRV_REPO=\" $JITSI_REPO \"| " add-jibri-node.sh
sed -i " s|MAIN_SRV_DOMAIN=.*|MAIN_SRV_DOMAIN=\" $DOMAIN \"| " add-jibri-node.sh
sed -i " s|JB_NAME=.*|JB_NAME=\" $JB_NAME \"| " add-jibri-node.sh
sed -i " s|JibriBrewery=.*|JibriBrewery=\" $JibriBrewery \"| " add-jibri-node.sh
sed -i " s|JB_AUTH_PASS=.*|JB_AUTH_PASS=\" $JB_AUTH_PASS \"| " add-jibri-node.sh
sed -i " s|JB_REC_PASS=.*|JB_REC_PASS=\" $JB_REC_PASS \"| " add-jibri-node.sh
sed -i " $( var_dlim 0_LAST) , $( var_dlim 1_LAST) {s|LETS: .*|LETS: $( date -R) |} " add-jibri-node.sh
echo " Last file edition at: $( grep "LETS:" add-jibri-node.sh| head -n1| awk -F'LETS:' '{print$2}' ) "
2019-02-25 04:10:26 +00:00
#Tune webserver for Jitsi App control
2020-04-11 05:08:30 +00:00
if [ -f $WS_CONF ] ; then
sed -i "/Anything that didn't match above/i \\\n" $WS_CONF
sed -i "/Anything that didn't match above/i \ \ \ \ location = \/external_api.min.js {" $WS_CONF
sed -i "/Anything that didn't match above/i \ \ \ \ \ \ \ \ alias \/usr\/share\/jitsi-meet\/libs\/external_api.min.js;" $WS_CONF
sed -i "/Anything that didn't match above/i \ \ \ \ }" $WS_CONF
sed -i "/Anything that didn't match above/i \\\n" $WS_CONF
systemctl reload nginx
2018-11-06 04:43:41 +00:00
else
echo " No app configuration done to server file, please report to:
-> https://github.com/switnet-ltd/quick-jibri-installer/issues"
fi
2020-04-11 05:08:30 +00:00
#Static avatar
if [ " $ENABLE_SA " = "yes" ] && [ -f $WS_CONF ] ; then
2020-04-11 07:19:54 +00:00
#wget https://switnet.net/static/avatar.png -O /usr/share/jitsi-meet/images/avatar2.png
cp images/avatar2.png /usr/share/jitsi-meet/images/
2020-04-11 05:08:30 +00:00
sed -i "/location \/external_api.min.js/i \ \ \ \ location \~ \^\/avatar\/\(.\*\)\\\.png {" $WS_CONF
sed -i "/location \/external_api.min.js/i \ \ \ \ \ \ \ \ alias /usr/share/jitsi-meet/images/avatar2.png;" $WS_CONF
sed -i " /location \/external_api.min.js/i \ \ \ \ }\\
2019-02-25 04:10:26 +00:00
\ " $WS_CONF
2019-04-05 06:14:57 +00:00
sed -i " /RANDOM_AVATAR_URL_PREFIX/ s|false|\'https:// $DOMAIN /avatar/\'| " $INT_CONF
2019-02-25 04:10:26 +00:00
sed -i "/RANDOM_AVATAR_URL_SUFFIX/ s|false|\'.png\'|" $INT_CONF
fi
2020-04-11 05:08:30 +00:00
#nginx -tlsv1/1.1
2020-06-03 11:22:16 +00:00
if [ " $DROP_TLS1 " = "yes" ] && [ " $DIST " = "bionic" ] ; then
2020-04-10 22:34:39 +00:00
echo "Dropping TLSv1/1.1 in favor of v1.3"
2020-04-11 05:08:30 +00:00
sed -i "s|TLSv1 TLSv1.1|TLSv1.3|" /etc/nginx/nginx.conf
#sed -i "s|TLSv1 TLSv1.1|TLSv1.3|" $WS_CONF
2020-06-03 11:22:16 +00:00
elif [ " $DROP_TLS1 " = "yes" ] && [ ! " $DIST " = "bionic" ] ; then
2020-04-10 22:34:39 +00:00
echo "Only dropping TLSv1/1.1"
2020-04-11 05:08:30 +00:00
sed -i "s|TLSv1 TLSv1.1||" /etc/nginx/nginx.conf
#sed -i "s|TLSv1 TLSv1.1||" $WS_CONF
else
echo " No TLSv1/1.1 dropping was done. Please report to
https://github.com/switnet-ltd/quick-jibri-installer/issues "
2020-04-10 22:34:39 +00:00
fi
2020-04-11 05:08:30 +00:00
# Disable "Blur my background" until new notice
2019-11-18 08:55:44 +00:00
sed -i "s|'videobackgroundblur', ||" $INT_CONF
2020-04-11 05:08:30 +00:00
#Setup secure rooms
2019-04-05 06:14:57 +00:00
cat << P_SR >> $P ROSODY_FILE
VirtualHost " $DOMAIN "
authentication = "internal_plain"
VirtualHost " guest. $DOMAIN "
authentication = "anonymous"
c2s_require_encryption = false
P_SR
2019-04-01 20:29:03 +00:00
#Secure room initial user
2020-04-11 05:08:30 +00:00
if [ " $ENABLE_SC " = "yes" ] ; then
echo "Secure rooms are being enabled..."
2019-04-01 20:29:03 +00:00
echo " You'll be able to login Secure Room chat with ' ${ SEC_ROOM_USER } ' \
or '${SEC_ROOM_USER}@${DOMAIN}' using the password you just entered.
If you have issues with the password refer to your sysadmin."
2019-04-05 06:14:57 +00:00
sed -i "s|#org.jitsi.jicofo.auth.URL=XMPP:|org.jitsi.jicofo.auth.URL=XMPP:|" $JICOFO_SIP
2019-04-01 20:29:03 +00:00
prosodyctl register $SEC_ROOM_USER $DOMAIN $SEC_ROOM_PASS
2020-04-13 17:46:47 +00:00
sed -i "s|SEC_ROOM=.*|SEC_ROOM=\"on\"|" jm-bm.sh
2019-01-07 08:00:55 +00:00
fi
2019-02-25 04:10:26 +00:00
#Start with video muted by default
sed -i "s|// startWithVideoMuted: false,|startWithVideoMuted: true,|" $MEET_CONF
#Start with audio muted but admin
sed -i "s|// startAudioMuted: 10,|startAudioMuted: 1,|" $MEET_CONF
2019-03-04 12:31:34 +00:00
#Disable/enable welcome page
2020-06-03 11:22:16 +00:00
if [ " $ENABLE_WELCP " = "yes" ] ; then
2020-04-02 20:47:24 +00:00
sed -i "s|.*enableWelcomePage:.*| enableWelcomePage: false,|" $MEET_CONF
2020-06-03 11:22:16 +00:00
elif [ " $ENABLE_WELCP " = "no" ] ; then
2020-04-02 20:47:24 +00:00
sed -i "s|.*enableWelcomePage:.*| enableWelcomePage: true,|" $MEET_CONF
2019-11-20 07:29:46 +00:00
fi
2019-03-04 12:31:34 +00:00
#Set displayname as not required since jibri can't set it up.
sed -i "s|// requireDisplayName: true,|requireDisplayName: false,|" $MEET_CONF
2019-02-25 06:15:25 +00:00
2018-09-25 08:25:32 +00:00
#Enable jibri services
systemctl enable jibri
systemctl enable jibri-xorg
systemctl enable jibri-icewm
restart_services
enable_letsencrypt
2019-04-02 05:15:11 +00:00
#SSL workaround
2020-04-10 22:34:39 +00:00
if [ " $( dpkg-query -W -f= '${Status}' nginx 2>/dev/null | grep -c "ok installed" ) " -eq 1 ] ; then
2019-04-05 06:14:57 +00:00
ssl_wa nginx nginx $DOMAIN $WS_CONF $SYSADMIN_EMAIL $DOMAIN
install_ifnot python3-certbot-nginx
2019-04-02 05:15:11 +00:00
else
2019-04-05 06:14:57 +00:00
echo "No webserver found please report."
2019-04-02 05:15:11 +00:00
fi
2020-04-11 09:59:29 +00:00
#Brandless Mode
2020-06-03 11:22:16 +00:00
if [ " $ENABLE_BLESSM " = "yes" ] ; then
2020-04-11 12:46:24 +00:00
echo "Custom brandless mode will be enabled."
2020-04-11 09:59:29 +00:00
sed -i "s|ENABLE_BLESSM=.*|ENABLE_BLESSM=\"on\"|" jitsi-updater.sh
bash $PWD /jm-bm.sh
fi
2020-04-11 07:19:54 +00:00
#JRA via Nextcloud
2020-06-03 11:22:16 +00:00
if [ " $ENABLE_NC_ACCESS " = "yes" ] ; then
2020-04-11 07:19:54 +00:00
echo "Jigasi Transcription will be enabled."
bash $PWD /jra_nextcloud.sh
fi
2020-06-03 09:52:36 +00:00
} > >( tee -a qj-installer.log) 2> >( tee -a qj-installer.log >& 2)
2020-04-11 07:19:54 +00:00
#Jigasi Transcript
2020-06-03 11:22:16 +00:00
if [ " $ENABLE_TRANSCRIPT " = "yes" ] ; then
2019-07-29 09:24:32 +00:00
echo "Jigasi Transcription will be enabled."
2019-07-29 17:13:41 +00:00
bash $PWD /jigasi.sh
2019-07-29 09:24:32 +00:00
fi
2020-06-03 09:52:36 +00:00
{
2020-04-07 02:08:39 +00:00
#Prevent Jibri conecction issue
sed -i " /127.0.0.1/a \\
127.0.0.1 $DOMAIN " /etc/hosts
2018-09-25 08:25:32 +00:00
echo "
########################################################################
Installation complete!!
2019-01-07 08:07:59 +00:00
for customized support: http://switnet.net
2018-09-25 08:25:32 +00:00
########################################################################
"
2020-04-14 16:49:11 +00:00
apt-get -y autoremove
apt-get autoclean
2018-09-25 08:25:32 +00:00
echo "Rebooting in..."
secs = $(( 15 ))
while [ $secs -gt 0 ] ; do
echo -ne " $secs \033[0K\r "
sleep 1
: $(( secs--))
done
2020-03-26 00:47:37 +00:00
} > >( tee -a qj-installer.log) 2> >( tee -a qj-installer.log >& 2)
2018-09-25 08:25:32 +00:00
reboot