search

blindsidenetworks / scalelite

Scalable load balancer for BigBlueButton.
GNU Affero General Public License v3.0
472 stars 248 forks source link

bigbluebuttonbn/You did not pass the checksum security check #101

Closed maikong closed 4 years ago

maikong commented 4 years ago

Hello All,

We are trying setup Moodle with Scalelite. When a user tries to join the session the error "You did not pass the checksum security check" is displayed. I reviewed all the documentation and couldn't find the problem.

If I point the Moodle directly to the BBB server everything works.

As it's just a test, the environment is all http

What am I doing wrong?

Thanks!

2020-03-26 10_29_09-Error

2020-03-26 10_51_13-newsite_ Administration_ Plugins_ Activity modules_ BigBlueButtonBN

$ docker logs scalelite-nginx
x.x.x.x - - [26/Mar/2020:12:55:28 +0000] "GET /bigbluebutton/api/?&checksum=7d0a1a392334d2169d51c0593c1dfe8ec98b23db HTTP/1.1" 200 138 "-" "MoodleBot/3.8 (+http://x.x.x.x)" "-"
x.x.x.x - - [26/Mar/2020:12:55:43 +0000] "GET /bigbluebutton/api/?&checksum=7d0a1a392334d2169d51c0593c1dfe8ec98b23db HTTP/1.1" 200 138 "-" "MoodleBot/3.8 (+http://x.x.x.x)" "-"
x.x.x.x - - [26/Mar/2020:12:55:56 +0000] "GET /bigbluebutton/api/?&checksum=7d0a1a392334d2169d51c0593c1dfe8ec98b23db HTTP/1.1" 200 138 "-" "MoodleBot/3.8 (+http://x.x.x.x)" "-"
x.x.x.x - - [26/Mar/2020:12:55:57 +0000] "GET /bigbluebutton/api/?&checksum=7d0a1a392334d2169d51c0593c1dfe8ec98b23db HTTP/1.1" 200 138 "-" "MoodleBot/3.8 (+http://x.x.x.x)" "-"
x.x.x.x - - [26/Mar/2020:12:55:58 +0000] "GET /bigbluebutton/api/getMeetingInfo?&meetingID=c90923f478ed9fac24fcb1334896e4560885d8d7-2-4&checksum=8dd4a393b580c573de632198cec5315dfc2e537d HTTP/1.1" 200 197 "-" "MoodleBot/3.8 (+http://x.x.x.x)" "-"
x.x.x.x - - [26/Mar/2020:12:56:07 +0000] "GET /bigbluebutton/api/create?&meetingID=c90923f478ed9fac24fcb1334896e4560885d8d7-2-4&name=Test&attendeePW=Uo3.H%3F6%25tvV7&moderatorPW=VzL%26S%2AIQU%3Bx_&logoutURL=http%3A%2F%2Fx.x.x.x%2Fmod%2Fbigbluebuttonbn%2Fbbb_view.php%3Faction%3Dlogout%26id%3D5%26bn%3D4&record=true&welcome=%3Cbr%3EWelcome+to+%3Cb%3E%25%25CONFNAME%25%25%3C%2Fb%3E%21%3Cbr%3E%3Cbr%3EFor+help+on+using+BigBlueButton+see+these+%28short%29++%3Ca+href%3D%22event%3Ahttp%3A%2F%2Fwww.bigbluebutton.org%2Fcontent%2Fvideos%22%3E%3Cu%3Etutorial+videos%3C%2Fu%3E%3C%2Fa%3E.%3Cbr%3E%3Cbr%3ETo+join+the+audio+bridge+click+the+phone+icon+%28top+center%29.+%3Cb%3EPlease+use+a+headset+to+avoid+causing+background+noise+for+others.%3C%2Fb%3E%3Cbr%3E%3Cbr%3EThis+session+may+be+recorded.&meta_bbb-origin=Moodle&meta_bbb-origin-version=3.8.2+%28Build%3A+20200309%29&meta_bbb-origin-server-name=x.x.x.x&meta_bbb-origin-server-common-name=&meta_bbb-origin-tag=moodle-mod_bigbluebuttonbn+%282019042008%29&meta_bbb-context=teste&meta_bbb-recording-name=Test&meta_bbb-recording-description=&meta_bbb-recording-tags=&checksum=a5c706c00e567f773d49c5608a83c19fe21e925f HTTP/1.1" 200 197 "-" "MoodleBot/3.8 (+http://x.x.x.x)" "-"
x.x.x.x - - [26/Mar/2020:12:56:22 +0000] "GET /bigbluebutton/api/getMeetingInfo?&meetingID=c90923f478ed9fac24fcb1334896e4560885d8d7-2-4&checksum=8dd4a393b580c573de632198cec5315dfc2e537d HTTP/1.1" 200 197 "-" "MoodleBot/3.8 (+http://x.x.x.x)" "-"

$ docker logs scalelite-api
I, [2020-03-26T12:56:07.291090 #6]  INFO -- : [51786ebf-642a-43fc-ae63-50b2a8aa1313] Started GET "/bigbluebutton/api/create?&meetingID=c90923f478ed9fac24fcb1334896e4560885d8d7-2-4&name=Test&attendeePW=Uo3.H%3F6%25tvV7&moderatorPW=VzL%26S%2AIQU%3Bx_&logoutURL=http%3A%2F%2Fx.x.x.x%2Fmod%2Fbigbluebuttonbn%2Fbbb_view.php%3Faction%3Dlogout%26id%3D5%26bn%3D4&record=true&welcome=%3Cbr%3EWelcome+to+%3Cb%3E%25%25CONFNAME%25%25%3C%2Fb%3E%21%3Cbr%3E%3Cbr%3EFor+help+on+using+BigBlueButton+see+these+%28short%29++%3Ca+href%3D%22event%3Ahttp%3A%2F%2Fwww.bigbluebutton.org%2Fcontent%2Fvideos%22%3E%3Cu%3Etutorial+videos%3C%2Fu%3E%3C%2Fa%3E.%3Cbr%3E%3Cbr%3ETo+join+the+audio+bridge+click+the+phone+icon+%28top+center%29.+%3Cb%3EPlease+use+a+headset+to+avoid+causing+background+noise+for+others.%3C%2Fb%3E%3Cbr%3E%3Cbr%3EThis+session+may+be+recorded.&meta_bbb-origin=Moodle&meta_bbb-origin-version=3.8.2+%28Build%3A+20200309%29&meta_bbb-origin-server-name=x.x.x.x&meta_bbb-origin-server-common-name=&meta_bbb-origin-tag=moodle-mod_bigbluebuttonbn+%282019042008%29&meta_bbb-context=teste&meta_bbb-recording-name=Test&meta_bbb-recording-description=&meta_bbb-recording-tags=&checksum=a5c706c00e567f773d49c5608a83c19fe21e925f" for x.x.x.x at 2020-03-26 12:56:07 +0000
I, [2020-03-26T12:56:07.292213 #6]  INFO -- : [51786ebf-642a-43fc-ae63-50b2a8aa1313] Processing by BigBlueButtonApiController#create as XML
I, [2020-03-26T12:56:07.292300 #6]  INFO -- : [51786ebf-642a-43fc-ae63-50b2a8aa1313]   Parameters: {"meetingID"=>"c90923f478ed9fac24fcb1334896e4560885d8d7-2-4", "name"=>"Test", "attendeePW"=>"Uo3.H?6%tvV7", "moderatorPW"=>"VzL&S*IQU;x_", "logoutURL"=>"http://x.x.x.x/mod/bigbluebuttonbn/bbb_view.php?action=logout&id=5&bn=4", "record"=>"true", "welcome"=>"<br>Welcome to <b>%%CONFNAME%%</b>!<br><br>For help on using BigBlueButton see these (short)  <a href=\"event:http://www.bigbluebutton.org/content/videos\"><u>tutorial videos</u></a>.<br><br>To join the audio bridge click the phone icon (top center). <b>Please use a headset to avoid causing background noise for others.</b><br><br>This session may be recorded.", "meta_bbb-origin"=>"Moodle", "meta_bbb-origin-version"=>"3.8.2 (Build: 20200309)", "meta_bbb-origin-server-name"=>"x.x.x.x", "meta_bbb-origin-server-common-name"=>"", "meta_bbb-origin-tag"=>"moodle-mod_bigbluebuttonbn (2019042008)", "meta_bbb-context"=>"teste", "meta_bbb-recording-name"=>"Test", "meta_bbb-recording-description"=>"", "meta_bbb-recording-tags"=>"", "checksum"=>"a5c706c00e567f773d49c5608a83c19fe21e925f"}
I, [2020-03-26T12:56:07.292951 #6]  INFO -- : [51786ebf-642a-43fc-ae63-50b2a8aa1313] Completed 200 OK in 1ms (Views: 0.1ms | Allocations: 249)
I, [2020-03-26T12:56:22.306403 #6]  INFO -- : [59017035-49a8-4530-b9cf-1331734bcb1f] Started GET "/bigbluebutton/api/getMeetingInfo?&meetingID=c90923f478ed9fac24fcb1334896e4560885d8d7-2-4&checksum=8dd4a393b580c573de632198cec5315dfc2e537d" for x.x.x.x at 2020-03-26 12:56:22 +0000
I, [2020-03-26T12:56:22.307084 #6]  INFO -- : [59017035-49a8-4530-b9cf-1331734bcb1f] Processing by BigBlueButtonApiController#get_meeting_info as XML
I, [2020-03-26T12:56:22.307168 #6]  INFO -- : [59017035-49a8-4530-b9cf-1331734bcb1f]   Parameters: {"meetingID"=>"c90923f478ed9fac24fcb1334896e4560885d8d7-2-4", "checksum"=>"8dd4a393b580c573de632198cec5315dfc2e537d"}
I, [2020-03-26T12:56:22.307946 #6]  INFO -- : [59017035-49a8-4530-b9cf-1331734bcb1f] Completed 200 OK in 1ms (Views: 0.2ms | Allocations: 254)

~ $ ./bin/rake servers
id: 89e7e74b-01c1-4c8a-910b-72fc8fa96b88
        url: http://x.x.x.x/bigbluebutton/api
        secret: secret
        enabled
        load: 0.0
        online
rabser commented 4 years ago

I don't remember if this is written somewhere in the scalelite documentation, but in my setup (which works fine with moodle) i have the LOADBALANCER_SECRET equal to the bbb-conf --secret of all of my BBB servers. one secret for all, bbb servers and scalelite.

maikong commented 4 years ago

I put the same secret for all and it worked. Thanks Sergio.