Some of the settings changed format, location or mere existence.

We checked, that TLS settings are still state of art.

In use for over a week now. See
https://blog.doenselmann.com/google-floc-auf-eigener-webseite-unterbinden/
for a human readable explanation.

Add pre-/post-hooks to stop/start running coturn server (the coturn server
also listens on port 80).

Also remove deploy hook that is already implemented as local script (and
makes much more sense).

These are files, not directories. 0644 is enough.

We configured turnserver to listen also on port 80.

Reflect coturn server configuration changes.

We want the turnserver to listen also on ports 80 and 5349. Normally,
this setting is ignored, if the server is bound to one single IP (a bug,
which lets the server bind to only the first two ports of four). We
circumvent the problem by also binding to the localhost IP.

cf.
https://andersgood.de/blog/bigbluebutton-auch-hinter-firewalls-nutzen#checkliste-vor-dem-start
for details.

This is only the beginning of a loong story.

According to https://docs.bigbluebutton.org/2.2/setup-turn-server.html.

The soundfiles were produced and provided by Senfcall. They are
published under CC1.0-international and will greatly improve user
experience on this BBB instance :D

The freeswitch STUN server. normally enabled as primary STUN, seems to
experience major problems. We now use only one STUN server, the own one.
For the whole config this means, that we _have_ to provide an own STUN
server, if google STUN is not an option, which it is not.

In local connection mode there is no need to copy over hold music.

No unbound literals in <bean/> clauses.

Created in 2 steps:
1) we create a valid config files from a template and store it in
/etc/bigvluebutton/bbb-conf/
2) we copy this config file over to the final location on apply-config.

This option was first offered with the latest release.

We also forbid recording in the webrtc-sfu settings and lower
expiration time of recordings (in case they happen anayway) down to 2
hrs (before: 14 days).

These vars make things more complicated.

Valid values are ALWAYS_ACCEPT, ALWAYS_DENY, ASK_MODERATOR

We do not use flash.

Do not allow flash.

When a local file 'hold_music.wav' is placed in the local directory it
will be used as background music at beginning of conferences, when there
is only one attendant in the room.

Do not stack attendees on stream numbers.

The new hosts.local inventory file acts as a replacement for the regular
ansible inventory. It is meant to be used on BBB nodes that want to
update local BBB config. With `hosts.local` we can put the local host
into groups.

We would like to deploy ansible instead of simple shell scripts for
configuring local installs. This might improve maintability of changed
configurations after updates and the like. Main improvement is the
idempotency of ansible scripts. Thus we can run configuration updates
multiple times without messing up everything.