sydlexius 262 Posted October 26, 2022 Posted October 26, 2022 I've seen guides for end users to setup secure access to Emby, however this might be more readily adopted if Emby could automatically handle the certificate installation. I found Kestrel/.NET implementation called LettuceEncrypt that might be a good basis to start with. 1
sydlexius 262 Posted October 26, 2022 Author Posted October 26, 2022 This capability would have similar requirements that have been stated in some of the guides about setting up your own cert...namely that you need to tie the certificate to a domain. Users could bring their own custom domain; another possibility would be to setup a Dynamic DNS service for premium subscribers (say, something like <uniquehostname>.selfhosted.emby.media).
Meeko 34 Posted October 27, 2022 Posted October 27, 2022 I have this and it works very well: best regards 1
sydlexius 262 Posted October 27, 2022 Author Posted October 27, 2022 6 hours ago, Soldize said: I have this and it works very well: best regards Among the tools I use is the Linuxserver Swag container to automate my wildcard Let's Encrypt cert updates. My reason for proposing a tool within Emby is to hopefully offer a single, simpler solution to all the disparate configurations out there.
rbjtech 4886 Posted October 27, 2022 Posted October 27, 2022 30 minutes ago, sydlexius said: Among the tools I use is the Linuxserver Swag container to automate my wildcard Let's Encrypt cert updates. My reason for proposing a tool within Emby is to hopefully offer a single, simpler solution to all the disparate configurations out there. Unlike Plex, the end user can use whatever they like for the HTTPS provider - so I would expect to see implementation and support on their 'own' implementation only. Offering a solution for all configurations would be, imho, an impossible task. ie - use our solution, we will fully support you - use your own, then you are on your own (with community support only).
sydlexius 262 Posted October 27, 2022 Author Posted October 27, 2022 4 minutes ago, rbjtech said: Unlike Plex, the end user can use whatever they like for the HTTPS provider - so I would expect to see implementation and support on their 'own' implementation only. Offering a solution for all configurations would be, imho, an impossible task. ie - use our solution, we will fully support you - use your own, then you are on your own (with community support only). I wasn't aware that my request would take away an administrator's options for how to securely access their server remotely. Right now there is great concern over the lack of encrypted connectivity for remote sessions. I suspect that lowering the barrier to entry (while still adhering to solid practices) is a potential win for everyone in these forums. The current options require sticking to a meticulous deployment plan, of which an error at any step will leave that user in a lurch. 1
rbjtech 4886 Posted October 27, 2022 Posted October 27, 2022 9 minutes ago, sydlexius said: I wasn't aware that my request would take away an administrator's options for how to securely access their server remotely. Right now there is great concern over the lack of encrypted connectivity for remote sessions. I suspect that lowering the barrier to entry (while still adhering to solid practices) is a potential win for everyone in these forums. The current options require sticking to a meticulous deployment plan, of which an error at any step will leave that user in a lurch. Apologies @sydlexius - I actually misread your proposal above and read it that you would want emby to support all configurations out there .. We are on the same page with the end goal.
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now