• 0 Posts
  • 38 Comments
Joined 1 year ago
Cake day: June 9th, 2023
  • Lem453@lemmy.catoSelfhosted@lemmy.worldVaultwarden has such a steep learning curveEnglish
    231·
    8 days ago

    Vaultwarden itself is actually one of the easiest docker apps to deploy…if you already have the foundation of your home lab setup correctly.

    The foundation has a steep learning curve.

    Domain name, dynamic DNS update, port forwarding, reverse proxy. Not easy to get all this working perfectly but once it does you can use the same foundation to install any app. If you already had the foundation working, additional apps take only a few minutes.

    Want ebooks? Calibre takes 10 mins. Want link archiving? Linkwarden takes 10 mins

    And on and on

    The foundation of your server makes a huge difference. Well worth getting it right at the start and then building on it.

    I use this setup: https://youtu.be/liV3c9m_OX8

    Local only websites that use https (Vaultwarden) and then external websites that also use https (jellyfin).

  • Lem453@lemmy.catoTechnology@lemmy.worldA social app for creatives, Cara grew from 40k to 650k users in a week because artists are fed up with Meta’s AI policies | TechCrunchEnglish
    0·
    3 months ago

    This right here. I tried to join Mastodon today.

    Download the most recommended app, Moshidon

    Open app and get asked which instance i want to join. There are no suggestions.

    Do a search for instances and pick one, go to the website and register with email and password. Requires email confirmation. Still waiting on the email confirmation link, 4 hrs later and 2 resends.

    Literally haven’t been able to sign up yet.

    Even if it had worked, the workflow would have been to change back to the app, type out the instance then re-login.

    I’m not sure how anyone expects anyone other than the most hardcore to sign up for these services. Maybe that’s the point but if the point is to grow the user sign up process to significant overall

  • Lem453@lemmy.catoSelfhosted@lemmy.worldLinkwarden - An open-source collaborative bookmark manager to collect, organize and preserve webpagesEnglish
    1·
    8 months ago

    The general principle is called single sign on (sso).

    The idea is that instead of each all keeping track of users itself, there is another app (sometimes called an identity provider) that does this. Then when you try to log into an app, it takes to the to login of your identity provider instead. When the IP says you are the correct user, it sends a token to the app saying to let you access your account.

    The huge benefits are if you are already logged into the IP on a browser for example, the other apps will login automatically without having to put in your password again.

    Also for me the biggest benefit is not having to manage passwords for a large number of apps so family that uses my server have 1 account which gives them access to jellyfin, seafile, immich, freshrss etc. If they change that password it changes it for everything. You can enforce minimum password requirements. You can also add 2FA to any app now immediately.

    I use Authentik as my identity provider: https://goauthentik.io/https://goauthentik.io/

    There’s good guides to settings it up with traefik so that you get let encrypt certificates and can use traefik for proxy authentication on web based apps like sonarr. There are many different authentication methods an app can choose to use and Authentik essentially supports everything.

    https://youtu.be/CPURnYaW3Zk

    SSO should really be the standard for self hosted apps because this way they don’t have to worry about ensuring they have the latest security for user management etc. The app just allows a dedicated identity provider to worry about user management security so the app devs can focus on just the app.

  • Lem453@lemmy.catoTechnology@lemmy.worldPlex Users Fear New Feature Will Leak Porn Habits to Their Friends and FamilyEnglish
    8·
    10 months ago

    It’s can be exactly this with jellyfin as well. The minimal setup with no https is just that, run app, open port on router and port forward. If you want https it requires messing with certs manually or using a reverse proxy.

    Plex can take care of the login for you by using their own servers to log you in. Non technical users will of course find this easier to use but now Plex has data on all your users and logins and possibly viewing habits as well. Proponents of self hosting and open source don’t like that aspect of Plex.

    I personally think Plex will continue to add features that make it more attractive for someone like Netflix to buy. Those features are generally the opposite of what self hosted users actually want.

    Plex has been around for a long time and has a decent amount of funding so they have better client apps. Jellyfin is catching up fast.

    I’ve used my setup with web browsers, Android, iOS and it’s been very solid.

  • Lem453@lemmy.catoSelfhosted@lemmy.worldSlow sab tips?English
    1·
    10 months ago

    The article your linked is citing a paper from 2014. Seems hard the believe the network stack hasn’t been significantly reworked in 10 years. That being said I don’t have anything to refute this.

    Does the above still apply if using a glutun VPN docker with other containers connecting directly to glutun?