mirror of
https://github.com/nextcloud/all-in-one.git
synced 2025-01-01 11:32:27 +08:00
0239788c78
Signed-off-by: Simon L <szaimen@e.mail.de>
91 lines
2.4 KiB
Bash
91 lines
2.4 KiB
Bash
#!/bin/bash
|
|
|
|
# Variables
|
|
if [ -z "$NC_DOMAIN" ]; then
|
|
echo "You need to provide the NC_DOMAIN."
|
|
exit 1
|
|
elif [ -z "$TURN_SECRET" ]; then
|
|
echo "You need to provide the TURN_SECRET."
|
|
exit 1
|
|
elif [ -z "$JANUS_API_KEY" ]; then
|
|
echo "You need to provide the JANUS_API_KEY."
|
|
exit 1
|
|
elif [ -z "$SIGNALING_SECRET" ]; then
|
|
echo "You need to provide the SIGNALING_SECRET."
|
|
exit 1
|
|
fi
|
|
|
|
# Turn: https://github.com/coturn/coturn/blob/master/examples/etc/turnserver.conf
|
|
cat << TURN_CONF > "/etc/turnserver.conf"
|
|
listening-port=$TALK_PORT
|
|
fingerprint
|
|
lt-cred-mech
|
|
use-auth-secret
|
|
static-auth-secret=$TURN_SECRET
|
|
realm=$NC_DOMAIN
|
|
total-quota=0
|
|
bps-capacity=0
|
|
stale-nonce
|
|
no-multicast-peers
|
|
simple-log
|
|
pidfile=/var/tmp/turnserver.pid
|
|
no-tls
|
|
no-dtls
|
|
userdb=/var/lib/turn/turndb
|
|
TURN_CONF
|
|
|
|
# Janus
|
|
set -x
|
|
sed -i "s|#turn_rest_api_key.*|turn_rest_api_key = \"$JANUS_API_KEY\"|" /etc/janus/janus.jcfg
|
|
sed -i "s|#full_trickle.*|full_trickle = true|g" /etc/janus/janus.jcfg
|
|
sed -i 's|#stun_server.*|stun_server = "127.0.0.1"|g' /etc/janus/janus.jcfg
|
|
sed -i "s|#stun_port.*|stun_port = $TALK_PORT|g" /etc/janus/janus.jcfg
|
|
sed -i "s|#turn_port.*|turn_port = $TALK_PORT|g" /etc/janus/janus.jcfg
|
|
sed -i 's|#turn_server.*|turn_server = "127.0.0.1"|g' /etc/janus/janus.jcfg
|
|
sed -i 's|#turn_type .*|turn_type = "udp"|g' /etc/janus/janus.jcfg
|
|
sed -i 's|#ice_ignore_list .*|ice_ignore_list = "udp"|g' /etc/janus/janus.jcfg
|
|
sed -i 's|#interface.*|interface = "lo"|g' /etc/janus/janus.transport.websockets.jcfg
|
|
sed -i 's|#ws_interface.*|ws_interface = "lo"|g' /etc/janus/janus.transport.websockets.jcfg
|
|
sed -i 's|certfile =|#certfile =|g' /etc/janus/janus.transport.mqtt.jcfg
|
|
sed -i 's|keyfile =|#keyfile =|g' /etc/janus/janus.transport.mqtt.jcfg
|
|
set +x
|
|
|
|
# Signling
|
|
cat << SIGNALING_CONF > "/etc/signaling/server.conf"
|
|
[http]
|
|
listen = 0.0.0.0:8081
|
|
|
|
[app]
|
|
debug = false
|
|
|
|
[sessions]
|
|
hashkey = $(openssl rand -hex 16)
|
|
blockkey = $(openssl rand -hex 16)
|
|
|
|
[clients]
|
|
internalsecret = $(openssl rand -hex 16)
|
|
|
|
[backend]
|
|
backends = backend-1
|
|
allowall = false
|
|
timeout = 10
|
|
connectionsperhost = 8
|
|
|
|
[backend-1]
|
|
url = https://${NC_DOMAIN}
|
|
secret = ${SIGNALING_SECRET}
|
|
|
|
[nats]
|
|
url = nats://127.0.0.1:4222
|
|
|
|
[mcu]
|
|
type = janus
|
|
url = ws://127.0.0.1:8188
|
|
|
|
[turn]
|
|
apikey = ${JANUS_API_KEY}
|
|
secret = ${TURN_SECRET}
|
|
servers = turn:$NC_DOMAIN:$TALK_PORT?transport=tcp,turn:$NC_DOMAIN:$TALK_PORT?transport=udp
|
|
SIGNALING_CONF
|
|
|
|
exec "$@"
|