add selfhosting tutorials

jitsi/index.md

@@ -0,0 +1,130 @@
+# Jitsi 
+
+Before we start, you will need a Debian 10+ VPS (you can get one on digitalocean for example), if you prefer to use your own self hosted server, make sure that port 80 and 443 are correctly port forwarded so that the public ip points to the server and not the router. Once that's done, go and ssh into your debian 10 server. 
+
+You can use DuckDNS to get a free domain name:
+
+![](0.png)
+    
+    
+    [ 192.168.100.1/24 ] [ /dev/pts/13 ] [~/Nextcloud/blog/Conf]
+    → ssh root@ech4.duckdns.org
+    The authenticity of host 'ech4.duckdns.org (178.128.46.38)' can't be established.
+    ECDSA key fingerprint is SHA256:z2HAncB99pfbAUfj9tJY7vlo8EGUzCIUxWBAnjAflcA.
+    Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
+    Warning: Permanently added 'ech4.duckdns.org,178.128.46.38' (ECDSA) to the list of known hosts.
+    Linux debian-s-1vcpu-1gb-lon1-01 4.19.0-10-cloud-amd64 #1 SMP Debian 4.19.132-1 (2020-07-24) x86_64
+    
+    The programs included with the Debian GNU/Linux system are free software;
+    the exact distribution terms for each program are described in the
+    individual files in /usr/share/doc/*/copyright.
+    
+    Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
+    permitted by applicable law.
+    root@debian-s-1vcpu-1gb-lon1-01:~#
+    
+    
+
+## **1**
+    
+    
+    apt update -y ; apt upgrade -y
+    #hostnamectl set-hostname jitsi.mydoma.in
+    #hostname
+    echo '127.0.0.1 jitsi-test.duckdns.org' >> /etc/hosts
+    
+    apt install gnupg -y
+    wget https://download.jitsi.org/jitsi-key.gpg.key
+    apt-key add jitsi-key.gpg.key
+    rm jitsi-key.gpg.key
+    
+    echo 'deb https://download.jitsi.org stable/' >> /etc/apt/sources.list.d/jitsi-stable.list
+    apt update -y ; apt upgrade -y
+    apt install jitsi-meet -y
+    
+    
+
+![](1.png) ![](2.png)
+    
+    
+    apt install certbot prosody -y
+    /usr/share/jitsi-meet/scripts/install-letsencrypt-cert.sh
+    
+    nano /etc/prosody/conf.avail/jitsi.your_domain.cfg.lua
+    #CTRL+W to authentication =
+    #then edit it as follows to force registration:
+    authentication = "internal_plain"
+    #OR (risky)
+    authentication = "internal_anonymous"
+    
+    echo '
+    VirtualHost "guest.your_domain"
+        authentication = "anonymous"
+    	c2s_require_encryption = false
+    ' >> /etc/prosody/conf.avail/jitsi-test.duckdns.org.cfg.lua
+    #OR
+    echo '
+    VirtualHost "guest.your_domain"
+        authentication = "plain"
+            c2s_require_encryption = false
+    ' >> /etc/prosody/conf.avail/jitsi-test.duckdns.org.cfg.lu
+    
+    
+    nano /etc/jitsi/meet/jitsi-test.duckdns.org-config.js
+    
+    #EDIT THE FOLLOWING LINE IF YOU CHOSE ANONYMOUS
+    #anonymousdomain: 'guest.your_domain',
+    
+    ![](3.png)
+    
+    
+    Then CTRL+S and CTRL+X to exit nano
+    
+    
+    
+    echo 'org.jitsi.jicofo.auth.URL=XMPP:jitsi-test.duckdns.org' >> /etc/jitsi/jicofo/sip-communicator.properties
+    
+    prosodyctl register User your_domain P@SSW0RD
+    
+    systemctl restart prosody.service jicofo.service jitsi-videobridge2.service nginx
+    
+    
+
+![](4.png)
+
+doesn't quite work yet. even through a nginx reverse proxy.
+
+Looks like it needs to be an actual signed certificate !!!
+    
+    
+    apt install socat -y
+    wget -O -  https://get.acme.sh | sh
+    source ~/.bashrc
+    
+    #GET THE CNAME RECORD jitsi-test.duckdns.org pointing to void.yt !!!! or an A RECORD jitsi-test.duckdns.org to the server's IP !!! 
+    systemctl stop nginx
+    acme.sh --issue --standalone -d jitsi-test.duckdns.org -k 4096
+    #then go replace the existing .cer , .key and ca.cer files
+    
+    cd /etc/jitsi/meet/
+    cp /root/.acme.sh/jitsi-test.duckdns.org/jitsi-test.duckdns.org.cer jitsi-test.duckdns.org.crt
+    cp /root/.acme.sh/jitsi-test.duckdns.org/jitsi-test.duckdns.org.key jitsi-test.duckdns.org.key
+    
+    systemctl start nginx
+    
+    
+
+Then simply login :
+
+![](5.png) ![](6.png)
+
+Once you're done, hit "go"
+
+![](7.png)
+
+Once in the conference room you can just invite people and give them the private link:
+
+![](8.png)
+
+For instance, this current instance is the following link : https://jitsi-test.duckdns.org/ExceptionalGroundsGazeSecond 
+