this post was submitted on 31 Mar 2025
214 points (98.2% liked)

Selfhosted

60320 readers
467 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Detailed Rules Post

  1. Be civil.

  2. No spam.

  3. Posts are to be related to self-hosting.

  4. Don't duplicate the full text of your blog or readme if you're providing a link.

  5. Submission headline should match the article title.

  6. No trolling.

  7. Promotion posts require active participation, with an account that is at least 30 days old. F/LOSS without a paywall has exceptions, with requirements. See the rules link for details.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago
MODERATORS
 

I already host multiple services via caddy as my reverse proxy. Jellyfin, I am worried about authentication. How do you secure it?

you are viewing a single comment's thread
view the rest of the comments
[–] ocean@lemmy.selfhostcat.com 4 points 1 year ago (1 children)

You could put authentik in front of it too

[–] exu@feditown.com 11 points 1 year ago (2 children)

I think that breaks most clients

[–] ocean@lemmy.selfhostcat.com 2 points 1 year ago (1 children)

? How does putting something before it break it? It most certainly doesn’t.

[–] lambda@programming.dev 5 points 1 year ago (1 children)

Clients are built to speak directly to the Jellyfin API. if you put an auth service in front it won't even ask you to try and authenticate with that.

[–] ocean@lemmy.selfhostcat.com 1 points 1 year ago

Sorry, when out of the house I only use web not clients.

[–] Svinhufvud@sopuli.xyz 2 points 1 year ago

Yes, it breaks native login, but you can authenticate with Authentik on your phone for example, and use Quick connect to authorize non-browser sessions with it.