BigBlueButton/bigbluebutton-Github
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
810deb907b
bigbluebutton-Github/build/packages-template/bbb-html5/after-install.sh
Pedro Beschorner Marin 810deb907b refactor(etherpad): access control et al. 
Move all Etherpad's access control from Meteor to a separated [Node application](https://github.com/bigbluebutton/bbb-pads).
This new app uses [Etherpad's API](https://etherpad.org/doc/v1.8.4/#index_overview)
to create groups and manage session tokens for users to access them. Each group
represents one distinct pad at the html5 client.

- Removed locked users' access to pads: replaced readOnly pad's access with a new pad's content sharing routine
- Pad's access is now controlled by [Etherpad's API](https://etherpad.org/doc/v1.8.4/#index_overview)
- Closed captions edited content now reflects at it's live feedback
- Improved closed caption's dictation mode live feedback
- Moved all Etherpad's API control from Meteor to a separated [app](https://github.com/bigbluebutton/bbb-pads)
- Included access control both in akka-apps and bbb-pads
2022-01-21 16:56:01 -03:00

118 lines
4.3 KiB
Bash
Raw Blame History

#!/bin/bash -e
HOST=$(cat $SERVLET_DIR/WEB-INF/classes/bigbluebutton.properties | grep -v '#' | sed -n '/^bigbluebutton.web.serverURL/{s/.*\///;p}')
if [ ! -L /etc/nginx/sites-enabled/bigbluebutton ]; then
ln -s /etc/nginx/sites-available/bigbluebutton /etc/nginx/sites-enabled/bigbluebutton
fi
cd /usr/share/meteor
# meteor code should be owned by root, config file by meteor user
meteor_owner=$(stat -c %U:%G /usr/share/meteor)
if [[ $meteor_owner != "root:root" ]] ; then
chown -R root:root /usr/share/meteor
fi
SOURCE=/tmp/settings.yml
TARGET=/usr/share/meteor/bundle/programs/server/assets/app/config/settings.yml
if [ -f $SOURCE ]; then
WSURL=$(yq r $SOURCE public.kurento.wsUrl)
ENABLESCREENSHARING=$(yq r $SOURCE public.kurento.enableScreensharing)
ENABLEVIDEO=$(yq r $SOURCE public.kurento.enableVideo)
yq w -i $TARGET public.kurento.wsUrl "$WSURL"
yq w -i $TARGET public.kurento.enableScreensharing "$ENABLESCREENSHARING"
yq w -i $TARGET public.kurento.enableVideo "$ENABLEVIDEO"
yq w -i $TARGET public.pads.url "$PROTOCOL://$HOST/pad"
yq w -i $TARGET public.app.listenOnlyMode "true"
mv -f $SOURCE "${SOURCE}_"
else
# New Setup
WSURL=$(cat $SERVLET_DIR/WEB-INF/classes/bigbluebutton.properties | grep -v '#' | sed -n '/^bigbluebutton.web.serverURL/{s/.*=//;p}' | sed 's/https/wss/g' | sed s'/http/ws/g')
yq w -i $TARGET public.kurento.wsUrl "$WSURL/bbb-webrtc-sfu"
yq w -i $TARGET public.kurento.enableScreensharing "true"
yq w -i $TARGET public.kurento.enableVideo "true"
yq w -i $TARGET public.app.listenOnlyMode "true"
yq w -i $TARGET public.pads.url "$PROTOCOL://$HOST/pad"
sed -i "s/proxy_pass .*/proxy_pass http:\/\/$IP:5066;/g" /etc/bigbluebutton/nginx/sip.nginx
sed -i "s/server_name .*/server_name $IP;/g" /etc/nginx/sites-available/bigbluebutton
fi
chmod 600 $TARGET
chown meteor:meteor $TARGET
if [ ! -f /.dockerenv ]; then
systemctl enable disable-transparent-huge-pages.service
systemctl daemon-reload
fi
# Remove old overrides
if [ -f /etc/systemd/system/mongod.service.d/override-mongo.conf ] \
|| [ -f /etc/systemd/system/mongod.service.d/override.conf ] \
|| [ -f /usr/lib/systemd/system/mongod.service.d/mongod-service-override.conf ] ; then
rm -f /etc/systemd/system/mongod.service.d/override-mongo.conf
rm -f /etc/systemd/system/mongod.service.d/override.conf
rm -f /usr/lib/systemd/system/mongod.service.d/mongod-service-override.conf
systemctl daemon-reload
fi
# Setup specific version of node
source /etc/lsb-release
if [ "$DISTRIB_RELEASE" == "18.04" ]; then
node_version="14.18.1"
if [[ ! -d /usr/share/node-v${node_version}-linux-x64 ]]; then
cd /usr/share
tar xfz "node-v${node_version}-linux-x64.tar.gz"
fi
node_owner=$(stat -c %U:%G "/usr/share/node-v${node_version}-linux-x64")
if [[ $node_owner != root:root ]] ; then
chown -R root:root "/usr/share/node-v${node_version}-linux-x64"
fi
fi
# Enable Listen Only support in FreeSWITCH
if [ -f /opt/freeswitch/etc/freeswitch/sip_profiles/external.xml ]; then
sed -i 's/<!--<param name="enable-3pcc" value="true"\/>-->/<param name="enable-3pcc" value="proxy"\/>/g' /opt/freeswitch/etc/freeswitch/sip_profiles/external.xml
fi
if [ -f /tmp/sip.nginx ]; then
IP_SIP=$(cat /tmp/sip.nginx | grep -v '#' | sed -n '/proxy_pass/{s/.*\/\///;s/:.*//;p}')
IP_PORT=$(cat /tmp/sip.nginx | grep -v '#' | sed -n '/proxy_pass/{s/[^:]*.*[^:]*://;s/;.*//;p}')
if grep proxy_pass /tmp/sip.nginx | grep -q https; then
sed -i "s/proxy_pass http.*/proxy_pass https:\/\/$IP_SIP:$IP_PORT;/g" \
/etc/bigbluebutton/nginx/sip.nginx
else
sed -i "s/proxy_pass http.*/proxy_pass http:\/\/$IP_SIP:$IP_PORT;/g" \
/etc/bigbluebutton/nginx/sip.nginx
fi
fi
if ! grep -q auth_request /etc/bigbluebutton/nginx/sip.nginx; then
sed -i 's#}#\n auth_request /bigbluebutton/connection/checkAuthorization;\n auth_request_set $auth_status $upstream_status;\n}#g' \
/etc/bigbluebutton/nginx/sip.nginx
fi
chown root:root /usr/lib/systemd/system
chown root:root /usr/lib/systemd/system/bbb-html5.service
chown root:root /usr/lib/systemd/system/disable-transparent-huge-pages.service
startService bbb-html5 || echo "bbb-html5 service could not be registered or started"
Reference in New Issue View Git Blame Copy Permalink