Comments (6)
Eschguy
commented on August 29, 2024
1
Yep, that did the trick. Appreciate the help.
from jellyfin-plugin-sso.
9p4
commented on August 29, 2024
Please send me the plugin configuration as well as the reverse proxy configuration.
from jellyfin-plugin-sso.
Eschguy
commented on August 29, 2024
Config
<?xml version="1.0" encoding="utf-8"?>
<PluginConfiguration xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema">
<SamlConfigs />
<OidConfigs>
<item>
<key>
<string>authentik</string>
</key>
<value>
<PluginConfiguration>
<OidEndpoint>https://my.authentik.domain/application/o/jellyfin</OidEndpoint>
<OidClientId>redacted</OidClientId>
<OidSecret>redacted</OidSecret>
<Enabled>true</Enabled>
<EnableAuthorization>true</EnableAuthorization>
<EnableAllFolders>true</EnableAllFolders>
<EnabledFolders />
<AdminRoles>
<string>authentik_admins</string>
</AdminRoles>
<Roles />
<EnableFolderRoles>false</EnableFolderRoles>
<EnableLiveTvRoles>false</EnableLiveTvRoles>
<EnableLiveTv>false</EnableLiveTv>
<EnableLiveTvManagement>false</EnableLiveTvManagement>
<LiveTvRoles />
<LiveTvManagementRoles />
<FolderRoleMappings />
<RoleClaim>groups</RoleClaim>
<OidScopes>
<string>["groups"]</string>
</OidScopes>
<NewPath>true</NewPath>
<CanonicalLinks />
<DefaultUsernameClaim>preferred_username</DefaultUsernameClaim>
<DisableHttps>false</DisableHttps>
<DoNotValidateEndpoints>false</DoNotValidateEndpoints>
<DoNotValidateIssuerName>false</DoNotValidateIssuerName>
</PluginConfiguration>
</value>
</item>
</OidConfigs>
</PluginConfiguration>
Caddyfile entry
jellyfin.my.tld {
tls internal
encode zstd gzip
reverse_proxy 172.16.0.205:8096
}
from jellyfin-plugin-sso.
9p4
commented on August 29, 2024
When logging in, can you open inspect element and take a look at the browser console/network requests? Any requests that fail? Any interesting log lines?
from jellyfin-plugin-sso.
Eschguy
commented on August 29, 2024
Interesting
An iframe which has both allow-scripts and allow-same-origin for its sandbox attribute can remove its sandboxing.
The loading of “https://jellyfin.my.tldweb/index.html” in a frame is denied by “X-Frame-Options“ directive set to “deny“.
This error page has no error code in its security info [aboutNetError.mjs:867:13](chrome://global/content/aboutNetError.mjs)
If I log in via the username/password method it works just fine though.
from jellyfin-plugin-sso.
9p4
commented on August 29, 2024
Please add header X-Frame-Options SAMEORIGIN in your Caddy configuration.
from jellyfin-plugin-sso.
Related Issues (20)
- Error processing request. URL GET /sso/OID/r/authentik. HOT 33
- Improve login buttons (README) HOT 2
- domain name is wrong. HOT 4
- Manually set redirect URL HOT 16
- After installation plugin is in Status:NotSupported HOT 2
- authelia redirect link is wrong HOT 6
- Help with Authelia -- jwks HOT 4
- Authelia redirect link not working HOT 6
- Cannot login with Android app HOT 2
- Failed to Integrate with Active Directory Federation Service (ADFS) SAML HOT 8
- Checkbox to automatically redirect to login/oidc? HOT 1
- Jellyfin 10.9 with SSO stuck on "Logging in..." on android mobile app HOT 12
- Extension marked as "Not Supported" on jellyfin 10.9.2 HOT 1
- Cannot login with LDAP with SSO enabled HOT 1
- Add Zitadel to documentation HOT 2
- Google Auth - Endpoint is on a different host than authority: https://oauth2.googleapis.com/device/code HOT 1
- SSO not working with Jellyfin desktop application HOT 1
- Jellyfin only allows specific characters in username, SSO provider can send special characters HOT 3
- Website port is not used for redirect HOT 10
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from jellyfin-plugin-sso.