BBB upgrade to 2.2.36: HTML5 client not properly installed?

[MIssac]

Hello all BBB experts,

I have recently become the administrator of a perfectly running BBB server installed around July 2020 (2.2.x but I don't really know the 'x'). It was installed step-by-step (I have a thorough documentation) on an Ubuntu 16.04 LTS, with 

- firewall set with ufw rules, with a special rule: the SSH port is 30 instead of 22

- SSL Let's Encrypt certificate

- greenlight installed

- Grafana monitoring.

Everything fine so far.

I upgraded Ubuntu packages and BBB was updated as well to BBB 2.2.36 (I did not took care, I know, I should have).

I think my configuration is messed up because I can not join a meeting anymore.

To start checking from the beginning, I installed the demo API and followed the step-by-step documentation from https://docs.bigbluebutton.org/2.2/install.html to check and test every step.

I think I have a problem with HTML client. The HTTPS configuration is OK, I can connect to my https://bbb.site.zzz and I see the home page of the demo API.

But I am unable to join a meeting, I see a message "You must have the BigBlueButton HTML5 client installed to use this API demo" and then I get a ERR_INVALID_REDIRECT message (and the site https:// URL seems 'insecure'). 

The firewall is OK

 ufw status

Status: active

To                         Action      From

--                         ------      ----

30/tcp                     ALLOW       Anywhere

1935/tcp                   ALLOW       Anywhere

Nginx Full                 ALLOW       Anywhere

16384:32768/udp            ALLOW       Anywhere

30/tcp (v6)                ALLOW       Anywhere (v6)

1935/tcp (v6)              ALLOW       Anywhere (v6)

Nginx Full (v6)            ALLOW       Anywhere (v6)

16384:32768/udp (v6)       ALLOW       Anywhere (v6)

bbb-conf -- check shows no error

BigBlueButton Server 2.2.36 (2416)

                    Kernel version: 4.19-ovh-xxxx-std-ipv6-64

                      Distribution: Ubuntu 16.04.7 LTS (64-bit)

                            Memory: 32643 MB

                         CPU cores: 16

/usr/share/bbb-web/WEB-INF/classes/bigbluebutton.properties (bbb-web)

       bigbluebutton.web.serverURL: https://bbb.site.zzz

                defaultGuestPolicy: ALWAYS_ACCEPT

                 svgImagesRequired: true

/etc/nginx/sites-available/bigbluebutton (nginx)

                       server_name: ......

                              port: 80, [::]:80

                              port: 443 ssl

/opt/freeswitch/etc/freeswitch/vars.xml (FreeSWITCH)

                       local_ip_v4: my_external_address

                   external_rtp_ip: my_external_address

                   external_sip_ip: my_external_address

/opt/freeswitch/etc/freeswitch/sip_profiles/external.xml (FreeSWITCH)

                        ext-rtp-ip: $${external_rtp_ip}

                        ext-sip-ip: $${external_rtp_ip}

                        ws-binding:  my_external_address:5066

                       wss-binding:  my_external_address:7443

/usr/local/bigbluebutton/core/scripts/bigbluebutton.yml (record and playback)

                     playback_host: bbb.site.zzz

                 playback_protocol: https

                            ffmpeg: 4.2.4-1ubuntu0.1bbb1~16.04.1

/etc/bigbluebutton/nginx/sip.nginx (sip.nginx)

                        proxy_pass: my_external_address  

                          protocol: https

/usr/local/bigbluebutton/bbb-webrtc-sfu/config/default.yml (Kurento SFU)

                        kurento.ip: my_external_address

                       kurento.url: ws://127.0.0.1:8888/kurento

                    kurento.sip_ip: my_external_address

                    localIpAddress: my_external_address

               recordScreenSharing: true

                     recordWebcams: true

                  codec_video_main: VP8

               codec_video_content: VP8

/usr/share/meteor/bundle/programs/server/assets/app/config/settings.yml (HTML5 client)

                             build: 1157

                        kurentoUrl: wss://bbb.site.zzz/bbb-webrtc-sfu

                  enableListenOnly: true

                    sipjsHackViaWs: true

/usr/share/bbb-web/WEB-INF/classes/spring/turn-stun-servers.xml (STUN Server)

                              stun:stun.freeswitch.org

bbb-conf --status shows all active

nginx —————————————————► [✔ - active]

freeswitch ————————————► [✔ - active]

redis-server ——————————► [✔ - active]

bbb-apps-akka —————————► [✔ - active]

bbb-transcode-akka ————► [✔ - active]

bbb-fsesl-akka ————————► [✔ - active]

red5 ——————————————————► [✔ - active]

tomcat7 ———————————————► [✔ - active]

mongod ————————————————► [✔ - active]

bbb-html5 —————————————► [✔ - active]

bbb-webrtc-sfu ————————► [✔ - active]

kurento-media-server ——► [✔ - active]

etherpad ——————————————► [✔ - active]

bbb-web ———————————————► [✔ - active]

I also ran

bbb-conf --setip bbb.site.zzz

I get "(111: Connection refused)" in the nginx error.log. But nginx test passes:

nginx -t

nginx: the configuration file /etc/nginx/nginx.conf syntax is ok

nginx: configuration file /etc/nginx/nginx.conf test is successful

I think the "brute force" package update did not install HTML5 components properly? Following the docs, I only have a /var/www/bigbluebutton/client directory (as before) and no /var/www/bigbluebutton/html5client (should I have one? should it be the default?). Changing instances of /html5client to /client in files bbb-html5.nginx,  bigbluebutton.properties, meteor settings.yml and systemd_start.sh did not solve anything.

I do not have any 'join' or 'guestWait' file.

I do not have any file called systemd_start_frontend.sh in meteor.

So, I am lost :-(((

Is there a way to fix this easily?

Alternately, would it be safe to run bbb-install.sh without damaging my ufw rules (especially SSH port 30), my SSL certificate and my greenlight installation? I was thinking to save the entire greenlight folder to greenlight.bck and try something like 

wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- -a -v xenial-22 -s  bbb.site.zzz  

(would I need '-e mail' argument since I already have a SSL certificate? or would it be safer to regenerate one?)

I could even reinstall greenlight and move greenlight.bck/db to greenlight/ but I think the problem is elsewhere...

I am sorry this message is so long but I tried to provide as many details as possible.

An help would be much much appreciated! this server is used for teaching while schools are closed in my country...

Best regards

Melanie

[Mélanie Issac]

Sorry, I have transferred my email to the bigbluebutton-setup mailing list ☺

Melanie 

--
You received this message because you are subscribed to the Google Groups "bigbluebutton-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bigbluebutton-u...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/bigbluebutton-users/ee89a8ab-48fb-4cec-8fc3-7dc24c87caacn%40googlegroups.com.