WYGIWYG
It’s been a decade. That should be in JF by now.
Reverse proxy doesn’t fix their unprotected endpoints. It doesn’t give their clients 2fa, it doesn’t make their search work reasonably well or their music client be able to preload the next song.
They’re kind of stuck in a rut and are down to basic maintenance for releases
You can do all that on JF. Apps are def available on most things.
If you really wanted to try to complain about it, you should complain about security, search speed and subtitle support.
That’s all correct, but… we aren’t absolutely in the clear. JF could absolutely be forked, DB changes enacted, security added, but you also need all those client devs to come along.
It’s not quite like most Foss where a couple people could jump in and do a better job, JF has a LOT of moving parts supported by a number of individuals.
Neat idea, they don’t interfere with each other. Run both so that when plex finally fucks us over, we just stop using it.
highly recommend getting a pi or media computer
Been looking at this for years, Fam is absolutely refusing to use a keyboard in the living room. They’ll watch on their phones first. I can’t find a clear, easy solution to run a quality remote on a SFF pc. It’s like the decades old mediacenter hole that never gets filled.
Retailers don’t, but those $300 60" TVs cost manufacturers more than that in parts and shipping. They are 100% making up for it in LTV from your data, that’s why some are trying to make it impossible not to use them when not connected to the internet.
You can’t say their service hasn’t gotten worse though :)
I paid $75 USD, but they took my plugins, (pour one out for youtube on plex for my DanTDM obsessed kid back in the day) made my interface hard to navigate, try constantly to shove their own content down my (and my users) throats. Hey, remember when you used to have that sync feature that kept you up to date with a selection of titles, then you could use the client on your phone to serve to other phones even offline, god that was awesome with kids on vacation.
Just a little infrastructure…
First you’re going to need to run it in Docker, so you can make it RO to your FS, because by running it bare-metal, the first time there’s a hole in security, they’re going to be straight in your NAS, and JF is very lax on security with the stated reason that they don’t want people to rely on their security. (no client 2fa, no open support for fail2ban only their wish.com attempt at it, no closing off endpoints if you’re not logged in)
Then you’re going to need to install traeffik, caddy or npm, setup lets encrypt yourself. that needs a dns provider and a name.
You still have no facilities for device 2FA, Your logged out enpoints are still going to serve content. If any of the packages those endpoints use have a vulnerability, every JF server out there will be immediately vulnerable.
The whole point behind locking every action behind the login is so that you only have to worry about the surface area provided by the login.
Then the DB (and hence the search) is still going to be dog slow, the music app isn’t going to let you pre-load the next song in your client, don’t come at me with your 500 item movie/music collection and tell me it’s fast enough. There are no proper hooks for elasticsearch even if i wanted to do “a little setup of infrastructure”
I run Jellyfin because it’s the moral right thing to do and Plex will eventually enshitify enough for everyone to leave, but other than occasional bug fixes, they’re not in the same class of software.
I even considered rolling up my sleeves to help. I pulled the codebase down, That DB change has been in the hopper for years now, they outright refuse to go 2fa or change logging to support fail2ban. They’re just not willing to greenlight the architectural changes they need and they’re already fixing bugs.
God I hate their last UX change. It’s like they specifically designed the roku client to hide your own content and favor theirs, used to be one click into my library and everything was there.
It certainly doesn’t cost what they’re charging. They have a cache, a relay and an auth service. I’ll grant them some more allowance for an active security team. They’ve wasted manyears on features nobody wants and have eliminated any feature that costs them any amount of money to maintain if they can’t make money off it. (sync, client serve, yada yada)
Ohh, I’ve had PLENTY of CC problems on Roku.
I use CC quite a bit, Every time a video has subtitles on it, and default is set to english, it fucking turns them on even iff they’re set to off. Until a couple of months ago, you had to turn them on then off to get them to stop. I reported it, found the flag that wasn’t being honored, I gave exact steps. They refused to fix it but did make it where i just had to turn them off. Now every movie/tv show i have that has english->default flags turns them on. about 1 in 10
No options to delay subtitles if they’re messed up, no options to pull from opensubs.
I main Jellyfin, but have to keep Plex around because I have a decent number of remote users and don’t feel like dealing with trying to walk through putting them on Tailscale and I can’t trust any company that won’t even put 2fa in their clients to be open to the world.
I fully agree that what they did is openly bad. Just that it’s not for nothing.
They will release Plex-a-rama or Plex 2.0, stop providing security patches for 1.0, proxy routing, tmdb caching, epg caching, and add ads to your experience. They will then require the people connecting to you to have subs.
They were hoping to sell out and buy an island by now. Eventually, it will change hands or go public. Your features will be stripped as necessary to keep making money. Look at what happened to PlayOn’s lifetime subscription.
It’s already lasted WAY longer than anyone expected.
Their centralized login and services offer some pretty good upsides, that is, before the company started enshittifying the hell out of us.
Anyone you want to share your stuff with, they make an account, They see your server and your content. There are no ip’s, no ports, no configuration.
They handle a limited quality proxy, you’re users behind CGNat? They can still watch your content. Don’t want to open your firewall up? It still works for limited quality.
They cache TheMovieDB, being good neighbors.
They cache EPG, making live tvguide data work for people with tuners.
They provide you with a credible SSL. Your traffic is opaque to your ISP and your network.
They provide you with 2FA.
That said:
Even for the larger footprint, I would just use a larger desktop case.
If power is a big enough issue that dual power supplies would help, i’d rather run three small computers or desktops in a k8s setup.
I’ve been doing always on for a while. The biggest problem I’m having are reconnection when moving fast. When I’m doing 60 miles an hour through hilly areas, I’m changing cell phone towers every minute. Every time that ip changes it has to renegotiate. It works well if I’m streaming things. But if I’m actually in a meeting or talking to someone directly over IP, the reconnection causes stutters and glitches pretty bad.
There are more ways to set up a pipeline than there are ways to shuffle a deck of cards.
Everybody seems to like to tie back into online services. People like github workflows, and using NPMs and external DNS and docker Deps and JFrog. By the time you chain all those SLAs together you’ve got a bucket of risk the size of a small bus.
I try to push them as much as possible to use straight up bash scripts, and then call those with automation.
If it were solely up to me, I’d host my own repositories, but at some point, risk and safety end up losing out to some extent to features and feasibility.
which is absolutely true until you wire your CI pipeline through it. Now it’s a critical fucking deploy function for dev/stage/QA and maybe prod now with workflows.
Grimace knows python, I never put him as the computational type …
I would have expected it from the hamburglar…
Ohh! ohh! I have a wishlist!