February 28Feb 28 I made significant progress. TLDR:Used Claude to help to create authentication between Matrix Synapse and Jitsi. I'm attaching a document of all the changes that were made for documentation purposes. The one consequence is the Jitsi Widget inside Element will not popout because that HTML code (Widget HTML comes from docker image and needs to get overwritten) the reason Tokens/Authentication wasn't properly passed. The good news is meet domain is useless and calls don't work for anonymous users. Sadly Meet Domain will only work with token authentication. Accounts in Jitsi do not work, but thats ok, because this was meant to work with only Element. The next steps, like you suggested, is to close as many ports as possible. That is the next step. End goal is to have all communication by nginx reverse proxy. matrix-uvsI had to add this to the stack, it required for tokens to get created for Matrix Synapse and Jitsi to authenticate.Again so thankful for this project. matrix-jitsi-auth-docs-SHARE.odt
March 2Mar 2 On 2/28/2026 at 11:24 AM, unraidrocks said:I made significant progress. TLDR:Used Claude to help to create authentication between Matrix Synapse and Jitsi. I'm attaching a document of all the changes that were made for documentation purposes.The one consequence is the Jitsi Widget inside Element will not popout because that HTML code (Widget HTML comes from docker image and needs to get overwritten) the reason Tokens/Authentication wasn't properly passed.The good news is meet domain is useless and calls don't work for anonymous users.Sadly Meet Domain will only work with token authentication. Accounts in Jitsi do not work, but thats ok, because this was meant to work with only Element.The next steps, like you suggested, is to close as many ports as possible. That is the next step. End goal is to have all communication by nginx reverse proxy.matrix-uvsI had to add this to the stack, it required for tokens to get created for Matrix Synapse and Jitsi to authenticate.Again so thankful for this project.matrix-jitsi-auth-docs-SHARE.odtmy issue if my group of friends and thoes that have had this runign have it installed as a vm / lxc...and its more geting configs udpated and transiononed for unraid in the docker space.Curenlty I have a working LXC chat taht a few friends of mine have been testing to a dns name and we just securied meet and coturn using nginx stream so only nginx 443 adn port 80 are needed... my issues is geting docekrs to beahve in the same manor.I'm wokring on a few updated setup and will share when they have been tested working.Glad you were able to figure something out.Given the age I do recomend using free ai platforms like calude to assit here... I run a in house ai via local AI and unradid and also a side project working with freinds builingd a LLM router so while I do use AI its more to help with grammar and typos with some minro config updates.so from my end/point of view a LXC install and shimepnt may be better then trying to futz with mutiple dockers.*having worked with ich777 and ran a unfi lxc for a while it wound't be too hard to re implement but I rather get teh docker side working first... or setup in a more secure fassion.But I can atelaset atest to it working turn key with the ports int he read me open and confirm that it is possble to only allow 443 and 80 to niginx to run the stack...its more quesitons of once i got jitsui working to why not use jitsue why combine the 2 at all. and they wer more combine orgainly due to issues with teh element new webrtc not wanting to use livekit nor coturn for vidoe/voice...jitsu in and of itself is a full platform... same can be said with outher porjects like mubble...otherwise its stable for wher tis out and I might move on form the project and may workin on a unriad lxc tempalte... with a setup scrip[t and options internaly... IDK yet... More needing time betwwen my free time where i can sit down and comit to program debung and tstng with my friends aviable to do the 2 way cal video and 3 way cal video...All I can do is confirm and corect things... until i put the documention and in practice with this type of config and setting. as its 10 dockers atm and may need to look into adding 3 others.. thisn like elmsets web rtc, synapse hookscript and other adons... but that future raod map. the goal atm was get somehting working that is realibel which is done now it time to edit configure and fine tune it to be more secure..
March 5Mar 5 Thought I give a side update... as I pushed the edits and scripting as far as I could...I kinda gave up on the docker compose setup side of it due to issues configuring and geting the RP to play nice...so I went the other direction... LXC Since I run PVE I tired my hands at a semi pre built LXC...Using that for inspiration after geting the LXC fully Functional... I copleted thishttps://github.com/bmartino1/unraid-lxc-matrixand made a ich777 lxc template.and spent more of my time building the admin helper interface...I've compelted this as far as I'm willing to go as iit only requireees port 443 and port 80 pointed to teh lxc IP for a functiinoal matrix, cotrun, element, jitsuii setup.*you can edit the nginx cofg and secure it further then I did. while only needing 2 ports. meet.domain_name is still exposed. On my PVE i was able to configure it to public 403 blocked but lgoined in users Private full access to jitsu...given the run around and documentations that go over reverse proxies. and workign with another whos been runnign matrix for many years with there assistnce we are happy to present matrix synapse the unraid LXC... Edited March 6Mar 6 by bmartino1 Its Alive
March 6Mar 6 I've completed the lxc version for better contorl full env setup and ease of access.https://github.com/bmartino1/unraid-lxc-matrixthis project requires ich777 lxc plugin installed.enable anc configure the volume pathThis is akin to the appdata folder where the sytem lives...this is akin to a VM but closer to a docker given the continer setup and enviroment....Unraid InstallationStep 1 --- Download the LXC TemplateOpen a terminal on your Unraid server and run:wget -O /tmp/lxc_container_template.xml \ https://raw.githubusercontent.com/bmartino1/unraid-lxc-matrix/main/lxc_container_template.xmlStep 2 --- Import the Template/LXCAddTemplate Open the Unraid LXC template page:http://<Your_UnRAID_IP>/LXCAddTemplate Example:http://192.168.1.10/LXCAddTemplate Unraid will automatically detect the downloaded template.Give the continer a name example matrix.Click create and wait for the done button.Then open the terminalthen run the scirpts in this order/root/scripts/set-static-ip.shYou MUST SET A STATIC IP!⚠️ After setting the static IP, fully stop and start the LXC (do not just restart). The new IP will not take effect until a full stop/start cycle.stop the lxc start the lxc* You may need to scroll down for the menu to apear...If you do't stop start you willhave the dhcp ip and static ip and script will not run coreclty.../root/scripts/set-static-ip.shYou MUST SET A STATIC IP!open prot forwarding to 443 and 80 for nginx to teh static ip then set dns record to the bulic ip this will be your domain.*I was able to use free affraid dns https://freedns.afraid.org/free teer all 5 sub domains...then run the setup script./root/setup.sh --domain chat.yourPublicdomain.com --admin-pass ChangeMethen 2 side scirpts to have admin script work #Some admin script require teh admin token to do things,,, /root/scripts/get-admin-token.sh #adds token to matrix.env for scritps... #Patch Nginx TO secure jitsu meet public so all things behind nginx RP cd /root/ && wget https://raw.githubusercontent.com/bmartino1/unraid-lxc-matrix/refs/heads/main/patch.sh chmod +x /root/patch.sh /root/patch.shsee WIP admin scritpt testinghttps://github.com/bmartino1/unraid-lxc-matrix/blob/main/WIP-Notes-Updates.txtThen run the admin scirpt admin consle to make users enable site registration and enjoy.../root/scripts/admin.shMany Thanks To @ich777 with ich777 for ther OG assistance on a LXC templte in the past...and Many thanks to Adam for ther intal script to get the project started and functional!I also Can't stress on readiing the documentation!Synapse (Matrix homeserver): https://matrix-org.github.io/synapse/latest/Element Web config: https://github.com/element-hq/element-web/blob/develop/docs/config.mdJitsi Self-Hosting: https://jitsi.github.io/handbook/docs/devops-guide/devops-guide-dockerCoturn: https://github.com/coturn/coturn/wiki/turnserverMatrix federation tester: https://federationtester.matrix.org/
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.