Jump to content

Forgot password not easy for users?

simonmason

By simonmason
in General/Windows

 Share
Go to solution Solved by simonmason,

Recommended Posts

simonmason

simonmason 19

Posted
Posted

I have about 20 family members using my server.  Managing passwords for them has always been a nightmare as they like most people do not know how to use password managers properly.

When they forget their password there is a Forgot Password option on the Emby Login screen.  But after they enter their user name they are told to do this: 

The following file has been created on your server and contains instructions on how to proceed:

/config/passwordreset.txt

 

I must have something configured incorrectly because this clearly doesn't help a user reset their password?

Just for fun I went to my server and looked for this file and found it.  It told me to: 

http://172.17.0.14:8096/web/index.html#!/startup/forgotpasswordpin.html

Enter the following pin code:

2870

The pin code will expire at Saturday, January 11, 2025 12:01 PM

For whatever reason that I haven't looked into yet, this doesn't resolve.  But am I supposed to pick this file up and somehow get it to the user?  Something doesn't seem configured correctly here?

But I return to the first point.  How do I configure this correctly so that a user who cannot remember their password is given a Forgot Password option that actually works?  Thanks.

  • Agree 1
darkassassin07

darkassassin07 652

Posted
Posted

The 'forgot password' option on the login screen is intended for an admin to get back into a server they've locked themselves out of.

 

Regular users are expected to speak with their server administrator to reset their passwords.

 

I created a feature request last year asking for password reset via smtp/email; but like 99% of feature requests, it's gotten little attention.

 

  • Agree 1
simonmason

simonmason 19

Posted
  • Author
Posted (edited)

Following on to this I was playing around with the emby connect forgotten password which I think is the preferred method for a user to handle this?  When going though that process as a test I landed on this screen (below) - which again is showing an internal IP.  Also I am about to shutoff the http port so need to figure out where this is coming from and display my https port.  Have checked through the configuration but haven't gotten to the bottom of this yet.

image.thumb.png.0fe82c82a447575580d66228418cb3c9.png

 

Edited by simonmason
simonmason

simonmason 19

Posted
  • Author
Posted
2 minutes ago, darkassassin07 said:

The 'forgot password' option on the login screen is intended for an admin to get back into a server they've locked themselves out of.

 

Regular users are expected to speak with their server administrator to reset their passwords.

 

I created a feature request last year asking for password reset via smtp/email; but like 99% of feature requests, it's gotten little attention.

 

Thanks - that is kind of what I thought but wanted to confirm.  This is a bit sad.  I was also digging into the ability to communicate with users and that hasn't changed in the years I have been running this.  I guess this all rolls up under user management.

Lessaj

Lessaj 467

Posted
Posted (edited)
1 hour ago, simonmason said:

Following on to this I was playing around with the emby connect forgotten password which I think is the preferred method for a user to handle this?  When going though that process as a test I landed on this screen (below) - which again is showing an internal IP.  Also I am about to shutoff the http port so need to figure out where this is coming from and display my https port.  Have checked through the configuration but haven't gotten to the bottom of this yet.

It looks like you tried to use the HTTPS emby connect and not the HTTP emby connect, so you'll need to finish setting up HTTPS and then you shouldn't see that. Browsers are often redirecting to HTTPS automatically now so even if you started the process on the HTTP page it may have redirected at some point.

Also you should probably remove that screenshot because it has your domain, or an admin can do it for you. :) 

Edited by Lessaj
simonmason

simonmason 19

Posted
  • Author
Posted
16 minutes ago, Lessaj said:

It looks like you tried to use the HTTPS emby connect and not the HTTP emby connect, so you'll need to finish setting up HTTPS and then you shouldn't see that. Browsers are often redirecting to HTTPS automatically now so even if you started the process on the HTTP page it may have redirected at some point.

Also you should probably remove that screenshot because it has your domain, or an admin can do it for you. :) 

Thanks - domain blinded.  Luckily I have followed all of the security recommendations and don't have an admin account and my admin user is well hidden, etc.

I thought I had https setup correctly. I am using NGINX Proxy Manager so I didn't follow the Emby instructions exactly.  My Emby server does work on my external https port.  And I have the emby server Network configuration setup with the correct ports.

Where is app.emby.media getting these links?

Lessaj

Lessaj 467

Posted
Posted (edited)

It gets them from your dashboard so make sure you've set your public ports correctly in the Network tab and set Secure Connection Mode to handled by a reverse proxy. You can continue to use HTTP within your LAN if you want, and even use HTTP from nginx to the emby server, you just need to tell emby what you're going to use as your external port and domain so that it can map it for emby connect.

Edited by Lessaj
  • Like 1
simonmason

simonmason 19

Posted
  • Author
Posted
5 minutes ago, Lessaj said:

It gets them from your dashboard so make sure you've set your public ports correctly in the Network tab and set Secure Connection Mode to handled by a reverse proxy. You can continue to use HTTP within your LAN if you want, and even use HTTP from nginx to the emby server, you just need to tell emby what you're going to use as your external port and domain so that it can map it for emby connect.

Thanks for sticking with this.

When I look at the dashboard I only see an internal external http.  I don't see any reference to https.  When I try to access emby on the local lan with the 8920 response using https I don't get anything.  Does the https server need to be turned on somehow?

Lessaj

Lessaj 467

Posted
Posted

No you shouldn't specifically need to configure https on the emby side for this. I just tried on a test system, I set my public https port to 443 and set my domain and set the connection mode to handled by reverse proxy and the remote access address is now my https domain. I did not set up https on emby.

image.png.b91195cfe0ca580fa8e6a9d1ddbaeb84.png

image.png.a3bbc8af6589e48254b7082f28ad44a6.png

  • Solution
simonmason

simonmason 19

Posted
  • Author
  • Solution
Posted
11 minutes ago, Lessaj said:

No you shouldn't specifically need to configure https on the emby side for this. I just tried on a test system, I set my public https port to 443 and set my domain and set the connection mode to handled by reverse proxy and the remote access address is now my https domain. I did not set up https on emby.

image.png.b91195cfe0ca580fa8e6a9d1ddbaeb84.png

image.png.a3bbc8af6589e48254b7082f28ad44a6.png

Thanks - Secure connection mode was set to preferred and not handled by reverse proxy.  Changing that updated the dashboard to show my correct https external server address and port.

 

 

 

  • Like 1
  • Thanks 1

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...