@drumee/setup-infra 1.0.27 → 1.0.29

package/templates/etc/drumee/infrastructure/mfs.conf.tpl

@@ -0,0 +1,16 @@
+# -------------------------------------------------------------
+# ! DO NOT EDIT !
+# Config file automatically generated by <setup-infra>
+# Date : <%= date %>
+# -------------------------------------------------------------
+
+location / {
+  index /-/;
+
+  location ~ (.+)$ {
+    add_header Cache-Control max-age=31536000;
+    fastcgi_hide_header Set-Cookie;
+    add_header Access-Control-Allow-Origin <%= domain %>;
+    rewrite /(.+)$ <%= public_ui_root %>/svc/media.raw?p=/$1&d=inline;
+  }
+}

package/templates/etc/drumee/infrastructure/platform.json.tpl

@@ -0,0 +1,16 @@
+# -------------------------------------------------------------
+# ! DO NOT EDIT !
+# Config file automatically generated by <setup-infra>
+# Date : <%= date %>
+# -------------------------------------------------------------
+
+location / {
+  location ~ (.+)\.(.+)$ {
+    #expires 7d;
+    add_header Cache-Control max-age=31536000;
+    #add_header Vary "Accept-Encoding";
+    fastcgi_hide_header Set-Cookie;
+    add_header Access-Control-Allow-Origin <%= domain %>;
+    rewrite /(.+)$ <%= public_ui_root %>/service/?service=media.raw&p=$1&d=inline;
+  }
+}

package/templates/etc/drumee/infrastructure/routes/main.conf.tpl

@@ -0,0 +1,153 @@
+# -------------------------------------------------------------
+# ! DO NOT EDIT !
+# Config file automatically generated by <setup-infra>
+# Date : <%= date %>
+# -------------------------------------------------------------
+
+
+location <%= location %>app/ {
+  alias <%= drumee_root %>/runtime/ui/<%= endpoint_name %>/app/;
+  add_header Cache-Control max-age=31536000;
+  add_header Access-Control-Allow-Origin <%= domain %>;
+  fastcgi_hide_header Set-Cookie;
+  break;
+}
+
+# Frontend application assets
+location <%= location %>api/ {
+  alias <%= drumee_root %>/runtime/ui/<%= endpoint_name %>/api/;
+  add_header Cache-Control max-age=31536000;
+  add_header Access-Control-Allow-Origin <%= domain %>;
+  fastcgi_hide_header Set-Cookie;
+  break;
+}
+
+# Frontend application assets
+location 
+plugins/ {
+  alias <%= drumee_root %>/runtime/ui/<%= endpoint_name %>/plugins/;
+  add_header Cache-Control max-age=31536000;
+  add_header Access-Control-Allow-Origin <%= domain %>;
+  fastcgi_hide_header Set-Cookie;
+  break;
+}
+
+
+# Frontend application templates
+location <%= location %>bb-templates/ {
+  alias  <%= drumee_root %>/runtime/ui/<%= endpoint_name %>/bb-templates/;
+  add_header Cache-Control max-age=31536000;
+  add_header Access-Control-Allow-Origin *;
+  fastcgi_hide_header Set-Cookie;
+  break;
+}
+
+
+location <%= location %> {
+  fastcgi_hide_header Set-Cookie;
+  add_header Cache-Control max-age=31536000;
+
+  location ~ /(svc|vdo|service)/ {
+    proxy_pass http://127.0.0.1:<%= restPort %>;
+    proxy_http_version 1.1;
+    proxy_set_header Upgrade $http_upgrade;
+    proxy_set_header Connection 'upgrade';
+    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    proxy_set_header X-Real-IP $remote_addr;
+    proxy_set_header X-Connecting-IP $remote_addr;
+    proxy_set_header X-Forwarded-Proto $scheme;
+    proxy_set_header Host $host;
+    proxy_set_header X-Forwarded-Port $server_port;  # The port Nginx is listening on
+    proxy_set_header X-Original-Port $http_host;
+    add_header Vary "Accept-Encoding";
+    fastcgi_hide_header Set-Cookie;
+    break;
+  }
+
+  location ~ /(ws|websocket)/ {
+    proxy_pass http://127.0.0.1:<%= pushPort %>;
+    proxy_http_version 1.1;
+    proxy_set_header Upgrade $http_upgrade;
+    proxy_set_header Connection 'upgrade';
+    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    proxy_set_header X-Real-IP $remote_addr;
+    proxy_set_header X-Connecting-IP $remote_addr;
+    proxy_set_header X-Forwarded-Proto $scheme;
+    proxy_set_header Host $host;
+    proxy_set_header X-Forwarded-Port $server_port;  # The port Nginx is listening on
+    proxy_set_header X-Original-Port $http_host;
+    add_header Vary "Accept-Encoding";
+    fastcgi_hide_header Set-Cookie;
+    break;
+  }
+
+#------------ parts/apis ------------
+  location ~ /file/(.+)/(.*)$ {
+    fastcgi_hide_header Set-Cookie;
+    rewrite /file/(.+)/(.+)/(.+)\.(.*)$ /-/svc/media.$1?nid=$2&hub_id=$3 last;
+    rewrite /file/(.+)/(.+)/(.+)/(.*)$ /-/svc/media.$1?nid=$2&hub_id=$3 last;
+    rewrite /file/(.+)/(.+)/(.+)$ /-/svc/media.$1?nid=$2&hub_id=$3 last;
+    rewrite /file/(.+)/(.+)\.(.+)$ /-/svc/media.$1?nid=$2 last;
+    rewrite /file/(.+)/(.+)$ /-/svc/media.$1?nid=$2 last;
+    break;
+  }
+
+
+  location ~ /doc/(.+)/(.*)$ {
+    add_header Cache-Control max-age=31536000;
+    fastcgi_hide_header Set-Cookie;
+    rewrite /doc/(.+)/(.+)/(.+)\.(.*)$ /-/svc/media.read?page=$1&nid=$2&hub_id=$3 last;
+    rewrite /doc/(.+)/(.+)/(.+)$ /-/svc/media.read?page=$1&nid=$2&hub_id=$3 last;
+    rewrite /doc/(.+)/(.+)\.(.+)$ /-/svc/media.read?page=$1&nid=$2 last;
+    rewrite /doc/(.+)/(.+)$ /-/svc/media.read?page=$1&nid=$2 last;
+    break;
+  }
+
+  location ~ /letc/(.+)$ {
+    add_header Cache-Control max-age=31536000;
+    fastcgi_hide_header Set-Cookie;
+    rewrite /letc/(.+)\@(.+)$ /-/svc/block.content?hashtag=$1&owner=$2 last;
+    rewrite /letc/(.+)/(.+)$ /-/svc/block.content?hashtag=$1&owner=$2 last;
+    rewrite /letc/(.+)$ /-/svc/block.content?hashtag=$1 last;
+    break;
+  }
+
+
+  location ~ /avatar/(.+)$ {
+    add_header Pragma public;
+    add_header Cache-Control max-age=31536000;
+    fastcgi_hide_header Set-Cookie;
+    add_header Access-Control-Allow-Origin <%= domain %>;
+    rewrite /avatar/(.+)$ /-/svc/yp.avatar?id=$1 last;
+    break;
+  }
+
+  location ~ (.+)\.(.+)$ {
+    fastcgi_hide_header Set-Cookie;
+    add_header Cache-Control max-age=31536000;
+    add_header Access-Control-Allow-Origin <%= domain %>;
+    rewrite /<%= endpoint_name %>/(.+)$ /-/svc/media.raw&p=$1&d=inline;
+    break;
+  }
+
+
+#------------ parts/index ------------
+  location ~ (/|)$ {
+    proxy_pass http://127.0.0.1:<%= pushPort %>;
+    proxy_http_version 1.1;
+    proxy_set_header Upgrade $http_upgrade;
+    proxy_set_header Connection 'upgrade';
+    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    proxy_set_header X-Real-IP $remote_addr;
+    proxy_set_header X-Connecting-IP $remote_addr;
+    proxy_set_header Host $host;
+    proxy_set_header X-Forwarded-Port $server_port;  # The port Nginx is listening on
+    proxy_set_header X-Original-Port $http_host;
+    proxy_set_header Referer $http_referer;
+    proxy_set_header X-Forwarded-Proto $scheme;
+    add_header Access-Control-Allow-Credentials true;
+    add_header Vary "Accept-Encoding";
+    fastcgi_hide_header Set-Cookie;
+  }
+
+}

package/templates/etc/drumee/infrastructure/routes/private.conf.tpl

@@ -24,7 +24,7 @@ location <%= location %>api/ {
 
 # Frontend application assets
 location <%= location %>plugins/ {
-  alias <%= ui_location %>/plugins/;
+  alias <%= ui_plugins_home %>/;
   add_header Cache-Control max-age=31536000;
   add_header Access-Control-Allow-Origin <%= private_domain %>;
   fastcgi_hide_header Set-Cookie;

package/templates/etc/drumee/infrastructure/routes/public.conf.tpl

@@ -24,7 +24,7 @@ location <%= location %>api/ {
 
 # Frontend application assets
 location <%= location %>plugins/ {
-  alias <%= ui_location %>/plugins/;
+  alias <%= ui_plugins_home %>/;
   add_header Cache-Control max-age=31536000;
   add_header Access-Control-Allow-Origin <%= public_domain %>;
   fastcgi_hide_header Set-Cookie;

package/templates/etc/jitsi/jicofo/jicofo.conf.tpl

@@ -0,0 +1,46 @@
+jicofo {
+    // Configuration related to jitsi-videobridge
+    bridge {
+      brewery-jid = "jvbbrewery@internal-muc.<%= jitsi_domain %>" 
+    }
+    // Configure the codecs and RTP extensions to be used in the offer sent to clients.
+    codec {
+      video {
+      }
+      audio {
+      }
+    }
+
+    conference {
+    }
+    octo {
+      // Whether or not to use Octo. Note that when enabled, its use will be determined by
+      // $jicofo.bridge.selection-strategy. There's a corresponding flag in the JVB and these
+      // two MUST be in sync (otherwise bridges will crash because they won't know how to
+      // deal with octo channels).
+      enabled = false
+    }
+    sctp {
+      enabled = false
+    }
+    authentication: {
+       enabled: true
+       type: JWT
+       login-url: <%= jitsi_domain %>
+    }
+    xmpp {
+      client {
+        enabled = true
+        hostname = "xmpp.<%= jitsi_domain %>"
+        port = "5222"
+        domain = "auth.<%= jitsi_domain %>"
+        xmpp-domain = "<%= jitsi_domain %>"
+        username = "focus"
+        password = "<%= jicofo_password %>"
+        conference-muc-jid = "muc.<%= jitsi_domain %>"
+        client-proxy = "focus.<%= jitsi_domain %>"
+        disable-certificate-verification = true
+      }
+    }
+}
+

package/templates/etc/jitsi/jicofo/sip-cmmunicator.properties

@@ -0,0 +1,3 @@
+org.jitsi.jicofo.BRIDGE_MUC=JvbBrewery@internal.auth.<%= jitsi_domain %>
+org.jitsi.jicofo.auth.URL=XMPP:<%= jitsi_domain %>
+org.jitsi.jicofo.ALWAYS_TRUST_MODE_ENABLED=true

package/templates/etc/jitsi/meet.conf.tpl

@@ -0,0 +1,132 @@
+server_name _;
+
+charset utf8;
+
+client_max_body_size 0;
+
+# Disable direct access to jitsi UI
+# root /usr/share/jitsi-meet;
+root <%= static_dir %>;
+
+# ssi on with javascript for multidomain variables in config.js
+ssi on;
+ssi_types application/x-javascript application/javascript;
+
+index index.html index.htm;
+error_page 404 /static/404.html;
+
+# Security headers
+add_header X-Content-Type-Options nosniff;
+add_header X-XSS-Protection "1; mode=block";
+
+set $prefix "";
+
+
+# Opt out of FLoC (deprecated)
+add_header Permissions-Policy "interest-cohort=()";
+
+location = /config.js {
+   alias /etc/jitsi/web/config.js;
+}
+
+location = /interface_config.js {
+   alias /etc/jitsi/web/interface_config.js;
+}
+
+location = /external_api.js {
+   alias /usr/share/jitsi-meet/libs/external_api.min.js;
+}
+
+
+
+# ensure all static content can always be found first
+location ~ ^/(libs|css|static|images|fonts|lang|sounds|connection_optimization|.well-known)/(.*)$ {
+   add_header 'Access-Control-Allow-Origin' '*';
+   alias /usr/share/jitsi-meet/$1/$2;
+
+    # cache all versioned files
+   if ($arg_v) {
+       expires 1y;
+   }
+}
+
+
+# colibri (JVB) websockets
+location ~ ^/colibri-ws/([a-zA-Z0-9-\._]+)/(.*) {
+    tcp_nodelay on;
+    proxy_http_version 1.1;
+    proxy_set_header Upgrade $http_upgrade;
+    proxy_set_header Connection $connection_upgrade;
+    proxy_pass http://$1:9090/colibri-ws/$1/$2$is_args$args;
+}
+
+
+# BOSH
+location = /http-bind {
+    proxy_set_header X-Forwarded-For $remote_addr;
+    proxy_set_header Host <%= jitsi_domain %>;
+    proxy_pass http://127.0.0.1:5280/http-bind?prefix=$prefix&$args;
+}
+
+
+# xmpp websockets
+location = /xmpp-websocket {
+    proxy_pass http://localhost:5280/xmpp-websocket;
+    proxy_http_version 1.1;
+    proxy_set_header Connection "upgrade";
+    proxy_set_header Upgrade $http_upgrade;
+    proxy_set_header Host <%= jitsi_domain %>;
+    proxy_set_header X-Forwarded-For $remote_addr;
+    tcp_nodelay on;
+}
+
+
+location ~ ^/([^/?&:'"]+)$ {
+    try_files $uri @root_path;
+}
+
+location @root_path {
+    rewrite ^/(.*)$ / break;
+}
+
+
+# Matches /(TENANT)/pwa-worker.js or /(TENANT)/manifest.json to rewrite to / and look for file
+location ~ ^/([^/?&:'"]+)/(pwa-worker.js|manifest.json)$ {
+    set $subdomain "$1.";
+    set $subdir "$1/";
+    rewrite ^/([^/?&:'"]+)/(pwa-worker.js|manifest.json)$ /$2;
+}
+
+location ~ ^/([^/?&:'"]+)/config.js$ {
+    set $subdomain "$1.";
+    set $subdir "$1/";
+
+    alias /etc/jitsi/web/config.js;
+}
+
+# BOSH for subdomains
+location ~ ^/([^/?&:'"]+)/http-bind {
+    set $subdomain "$1.";
+    set $subdir "$1/";
+    set $prefix "$1";
+
+    rewrite ^/(.*)$ /http-bind;
+}
+
+
+# websockets for subdomains
+location ~ ^/([^/?&:'"]+)/xmpp-websocket {
+    set $subdomain "$1.";
+    set $subdir "$1/";
+    set $prefix "$1";
+
+    rewrite ^/(.*)$ /xmpp-websocket;
+}
+
+
+# Anything that didn't match above, and isn't a real file, assume it's a room name and redirect to /
+location ~ ^/([^/?&:'"]+)/(.*)$ {
+    set $subdomain "$1.";
+    set $subdir "$1/";
+    rewrite ^/([^/?&:'"]+)/(.*)$ /$2;
+}

package/templates/etc/jitsi/ssl.conf.tpl

@@ -0,0 +1,25 @@
+# session settings
+ssl_session_timeout 1d;
+ssl_session_cache shared:MozSSL:10m;  # about 40000 sessions
+ssl_session_tickets off;
+
+# ssl certs
+
+ssl_certificate <%= certs_dir %>/<%= jitsi_domain %>_ecc/fullchain.cer;
+ssl_certificate_key <%= certs_dir %>/<%= jitsi_domain %>_ecc/<%= jitsi_domain %>.key;
+ssl_trusted_certificate <%= certs_dir %>/<%= jitsi_domain %>_ecc/ca.cer;
+
+# protocols
+# Mozilla Guideline v5.6, nginx 1.14.2, OpenSSL 1.1.1d, intermediate configuration, no OCSP
+# https://ssl-config.mozilla.org/#server=nginx&version=1.14.2&config=intermediate&openssl=1.1.1d&ocsp=false&guideline=5.6
+ssl_protocols TLSv1.2 TLSv1.3;
+ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
+ssl_prefer_server_ciphers off;
+
+# Diffie-Hellman parameter for DHE cipher suites
+ssl_dhparam /etc/jitsi/web/defaults/ffdhe2048.txt;
+
+# HSTS (ngx_http_headers_module is required) (63072000 seconds)
+
+add_header Strict-Transport-Security "max-age=63072000" always;
+

package/templates/etc/jitsi/videobridge/jvb.conf

@@ -0,0 +1,67 @@
+videobridge {
+  ice {
+    udp {
+      port = 10000
+    }
+    advertise-private-candidates = true
+  }
+  apis {
+    xmpp-client {
+      configs {
+        shard0 {
+          HOSTNAME = "xmpp.<%= jitsi_domain %>"
+          PORT = "5222"
+          DOMAIN = "auth.<%= jitsi_domain %>"
+          USERNAME = "jvb"
+          PASSWORD = "<%= jvb_password %>"
+          MUC_JIDS = "jvbbrewery@internal-muc.<%= jitsi_domain %>"
+          MUC_NICKNAME = "shard0"
+          DISABLE_CERTIFICATE_VERIFICATION = true
+        }
+      }
+    }
+    rest {
+      enabled = false
+    }
+  }
+  rest {
+    shutdown {
+      enabled = false
+    }
+  }
+  stats {
+    enabled = true
+  }
+  websockets {
+    enabled = true
+    domain = "<%= jitsi_domain %>"
+    tls = true
+    server-id = "<%= local_address %>"
+  }
+  http-servers {
+      private {
+        host = 0.0.0.0
+      }
+      public {
+          host = 0.0.0.0
+          port = 9090
+      }
+  }
+}
+
+ice4j {
+  harvest {
+    mapping {
+      stun {
+        addresses = [ "meet-jit-si-turnrelay.jitsi.net:443" ]
+      }
+      static-mappings = [
+        {
+          local-address = "<%= local_address %>"
+          public-address = ""
+          name = "ip-0"
+        }
+      ]
+    }
+  }
+}

package/templates/etc/jitsi/web/config.js.tpl

@@ -0,0 +1,208 @@
+// Jitsi Meet configuration.
+var config = {};
+
+if (!config.hasOwnProperty('hosts')) config.hosts = {};
+
+config.hosts.domain = '<%= jitsi_domain %>';
+config.focusUserJid = 'focus@auth.<%= jitsi_domain %>';
+
+var subdir = '<!--# echo var="subdir" default="" -->';
+var subdomain = "<!--# echo var="subdomain" default="" -->";
+if (subdir.startsWith('<!--')) {
+    subdir = '';
+}
+if (subdomain) {
+    subdomain = subdomain.substring(0,subdomain.length-1).split('.').join('_').toLowerCase() + '.';
+}
+config.hosts.muc = 'muc.' + subdomain + '<%= jitsi_domain %>';
+config.bosh = '/http-bind';
+
+config.websocket = 'wss://<%= jitsi_domain %>:443/' + subdir + 'xmpp-websocket';
+
+// Video configuration.
+//
+
+if (!config.hasOwnProperty('constraints')) config.constraints = {};
+if (!config.constraints.hasOwnProperty('video')) config.constraints.video = {};
+
+config.resolution = 720;
+config.constraints.video.height = { ideal: 720, max: 720, min: 180 };
+config.constraints.video.width = { ideal: 1280, max: 1280, min: 320};
+config.disableSimulcast = false;
+config.startVideoMuted = 10;
+config.startWithVideoMuted = false;
+
+if (!config.hasOwnProperty('flags')) config.flags = {};
+config.flags.sourceNameSignaling = true;
+config.flags.sendMultipleVideoStreams = true;
+config.flags.receiveMultipleVideoStreams = true;
+
+
+// ScreenShare Configuration.
+//
+
+config.desktopSharingFrameRate = { min: 5, max: 5 };
+
+// Audio configuration.
+//
+
+config.enableNoAudioDetection = true;
+config.enableTalkWhileMuted = false;
+config.disableAP = false;
+
+if (!config.hasOwnProperty('audioQuality')) config.audioQuality = {};
+config.audioQuality.stereo = false;
+
+config.startAudioOnly = false;
+config.startAudioMuted = 10;
+config.startWithAudioMuted = false;
+config.startSilent = false;
+config.enableOpusRed = false;
+config.disableAudioLevels = false;
+config.enableNoisyMicDetection = true;
+
+
+// Peer-to-Peer options.
+//
+
+if (!config.hasOwnProperty('p2p')) config.p2p = {};
+
+config.p2p.enabled = true;
+
+
+// Breakout Rooms
+//
+
+config.hideAddRoomButton = false;
+
+
+// Etherpad
+//
+
+// Recording.
+//
+
+// Local recording configuration.
+if (!config.hasOwnProperty('localRecording')) config.localRecording = {};
+config.localRecording.disable = false;
+config.localRecording.notifyAllParticipants = false;
+config.localRecording.disableSelfRecording = false;
+
+
+// Analytics.
+//
+
+if (!config.hasOwnProperty('analytics')) config.analytics = {};
+
+// Enables callstatsUsername to be reported as statsId and used
+// by callstats as repoted remote id.
+config.enableStatsID = false;
+
+
+// Dial in/out services.
+//
+
+
+// Calendar service integration.
+//
+
+config.enableCalendarIntegration = false;
+
+// Invitation service.
+//
+
+// Miscellaneous.
+//
+
+// Prejoin page.
+if (!config.hasOwnProperty('prejoinConfig')) config.prejoinConfig = {};
+config.prejoinConfig.enabled = true;
+
+// Hides the participant name editing field in the prejoin screen.
+config.prejoinConfig.hideDisplayName = false;
+
+// List of buttons to hide from the extra join options dropdown on prejoin screen.
+// Welcome page.
+config.enableWelcomePage = true;
+
+// Close page.
+config.enableClosePage = false;
+
+// Default language.
+// Require users to always specify a display name.
+config.requireDisplayName = false;
+
+// Chrome extension banner.
+// Disables profile and the edit of all fields from the profile settings (display name and email)
+config.disableProfile = false;
+
+// Room password (false for anything, number for max digits)
+config.roomPasswordNumberOfDigits = false;
+// Advanced.
+//
+
+// Lipsync hack in jicofo, may not be safe.
+config.enableLipSync = false;
+
+config.enableRemb = true;
+config.enableTcc = true;
+
+// Enable IPv6 support.
+config.useIPv6 = true;
+
+// Transcriptions (subtitles and buttons can be configured in interface_config)
+config.transcription = { enabled: false };
+config.transcription.translationLanguages = [];
+config.transcription.translationLanguagesHead = ['en'];
+config.transcription.useAppLanguage = true;
+config.transcription.preferredLanguage = 'en-US';
+config.transcription.disableStartForAll = false;
+config.transcription.autoCaptionOnRecord = false;
+
+// Deployment information.
+//
+
+if (!config.hasOwnProperty('deploymentInfo')) config.deploymentInfo = {};
+
+// Testing
+//
+
+if (!config.hasOwnProperty('testing')) config.testing = {};
+if (!config.testing.hasOwnProperty('octo')) config.testing.octo = {};
+
+config.testing.capScreenshareBitrate = 1;
+config.testing.octo.probability = 0;
+
+// Deep Linking
+config.disableDeepLinking = false;
+
+// P2P preferred codec
+// Enable preferred video Codec
+if (!config.hasOwnProperty('videoQuality')) config.videoQuality = {};
+config.videoQuality.enforcePreferredCodec = false;
+
+if (!config.videoQuality.hasOwnProperty('maxBitratesVideo')) config.videoQuality.maxBitratesVideo = null;
+// Reactions
+config.disableReactions = false;
+
+// Polls
+config.disablePolls = false;
+
+// Configure toolbar buttons
+// Hides the buttons at pre-join screen
+// Configure remote participant video menu
+if (!config.hasOwnProperty('remoteVideoMenu')) config.remoteVideoMenu = {};
+config.remoteVideoMenu.disabled = false;
+config.remoteVideoMenu.disableKick = false;
+config.remoteVideoMenu.disableGrantModerator = false;
+config.remoteVideoMenu.disablePrivateChat = false;
+
+// Configure e2eping
+if (!config.hasOwnProperty('e2eping')) config.e2eping = {};
+config.e2eping.enabled = false;
+
+
+// Settings for the Excalidraw whiteboard integration.
+if (!config.hasOwnProperty('whiteboard')) config.whiteboard = {};
+config.whiteboard.enabled = false;
+config.whiteboard.collabServerBaseUrl = '';