I’m trying to understand how to correctly and securely setup Talk with TURN. Let’s say, I have two organizations, example1.com and example2.com both running Nextcloud at public IP addresses, with Talk installed. Let’s also assume that each organization runs their own TURN server with a shared secret that’s specific to their respective organization. And members of those organizations, who use their browsers behind two different corporate firewalls, want to chat with each other. Just what needs to happen here to establish a call?
- Does anybody in example2.com need to know the location, shared secret etc. of example1.com’s TURN server?
- It’s called a “shared secret” – just who is that secret being shared with, and who not?
- How is being decided which of the two TURN servers is being used?