Necessary endpoints to allow only the android app (and not the web ui)

[greenhorn 1]

Hi there,

I have an emby docker setup with traefik and authelia. I only want to give access for android end devices though.

I was hoping I could achieve that by whitelisting something like "/api". In the emby log I've seen that emby uses quite a lot endpoints, also when using the app (/emby/sync /emby/users /emby/shows /emby/items). Wierdly enough, I did not specify an "/emby" prefix. But I guess that is by default.

Is there some kind of documentation for the endpoints?

 

This is an example for what I'm looking for:

access_control:
  default_policy: deny
    # whitelist only android endpoints/methods
    - domain: emby.mydomain.de
      methods:
      - GET
      - POST
      resources:
      - '^/api.*'
      policy: bypass

(https://www.authelia.com/docs/configuration/access-control.html)

[ebr 16184]

Hi.  There is no such thing as "Android end points".  All the apps use the same API.

You might be able to get somewhere by filtering on the contents of the user-agent string though.

[greenhorn 1]

1 hour ago, ebr said:

Hi.  There is no such thing as "Android end points".  All the apps use the same API.

You might be able to get somewhere by filtering on the contents of the user-agent string though.

Ok, thank you for the information!

True, I can filter by the user-agent, any user could fake that though.

Anyway, if there is no dedicated endpoint, it makes no sense to filter anything here.