Jitsi Meet Authentication
May 1st 2020
Authentication is the most important part of a Video Conferencing System. Jitsi Meet Provides plenty of authentication mechanisms.
Jitsi Meet provides 4 way to manage your meeting room
1. JWT Authentication 2. Secure domain 3. Reservation API 4. Authenticate from third party API
This is a token-based authentication mechanism. Jitsi has given instructions on how to set up a JWT token authentication system in jitsi meet [https://github.com/jitsi/lib-jitsi-meet/blob/master/doc/tokens.md]. If anyone wants to join the meeting he/she has to have a url with a token. When users join with the token everyone gets moderator permission. There is a special case where we can allow some users to join without a token. They will join as guests.
This is a username password based authentication mechanism. Here are the Jitsi’s instructions to configure secure domain [https://github.com/jitsi/jicofo#secure-domain]. All participants have to wait for the host of the meeting. Once the host enters his username and password all others are allowed into the meeting., Host will get the moderator permissions.
This is not an authentication mechanism. This is like a reservation system. We have to store room details in another system. Here is the instruction on how to setup reservation API [https://github.com/jitsi/jicofo/blob/master/doc/reservation.md]. Before creating a conference, jicofo call room validation REST endpoint which you provide. If a room is reserved, jicofo allows you to create a room.
Authenticate from third party api
You can provide an external API to authenticate users with username and password. You have to configure the prosdy module [https://modules.prosody.im/modauthcustom_http.html] to achieve this.
Those are the current room authentication mechanisms which are provided by Jitsi Meet.