ElectricVocalist@jlai.lu to Selfhosted@lemmy.worldEnglish · 1か月前Jellyfin critical security update - This is not a jokegithub.comexternal-linkmessage-square235linkfedilinkarrow-up1705arrow-down17
arrow-up1698arrow-down1external-linkJellyfin critical security update - This is not a jokegithub.comElectricVocalist@jlai.lu to Selfhosted@lemmy.worldEnglish · 1か月前message-square235linkfedilink
minus-squarewhimsy@lemmy.ziplinkfedilinkEnglisharrow-up4·1か月前Hmmm, I’m a bit rusty on this but can’t one put an auth gate in front of the application, handled by the reverse proxy?
minus-squareradar@programming.devlinkfedilinkEnglisharrow-up2·1か月前You can, that would actually give you security. Not sure how many people do that. I assumed a straight reverse proxy without any auth
minus-squarePeriodicallyPedantic@lemmy.calinkfedilinkEnglisharrow-up2·1か月前I think that’s one of the major reasons to use pangolin over something like nginx - built in auth and support for oidc. Of course, the native jellyfin apps don’t like the auth layer so idk if it helps if you’re trying to install it on your dad’s tv
Hmmm, I’m a bit rusty on this but can’t one put an auth gate in front of the application, handled by the reverse proxy?
You can, that would actually give you security. Not sure how many people do that. I assumed a straight reverse proxy without any auth
I think that’s one of the major reasons to use pangolin over something like nginx - built in auth and support for oidc.
Of course, the native jellyfin apps don’t like the auth layer so idk if it helps if you’re trying to install it on your dad’s tv