@keyez

keyez@lemmy.world · 3 days ago

Generally representing freedoms to express any and every religion and not just one.

keyez@lemmy.world · 7 days ago

To then never have her words be seen by those that don’t look outside their own bubble? And also probably hear she got removed for her speech and be like ‘hell yeah no wonder’ without researching why or what was said.

keyez@lemmy.world · 3 months ago

Them missing out on a dozen sales because of that isn’t going to change their ways either.

keyez@lemmy.world · edit-2 3 months ago

I have been trying to use jellyfin locally but subtitles have issues some times depending on the show or format. Also recently my wife watched 2 episodes more than me so we needed to go back 2 episodes and only way to do that from the Up Next or Resume screens was to start a new search of the show and click into the season and then find the episode. In Plex that takes 2extra clicks to get to the season and find the episode. I get supporting open source but for my jellyfin only has 70% of the features I use weekly on Plex. Definitely supporting it and trying to use it but it’s not feature parity for me

keyez@lemmy.world · 3 months ago

The highest capacity blu ray disc can hold 128GB

keyez@lemmy.world · 3 months ago

Totally agree though would say it’s more along the lines of needing premium gas and newer performance air filters and tires when you’re thinking it should be capable out of the box

keyez@lemmy.world · 3 months ago

Just did that, honestly didn’t know lifetime was always available, thought it was only during sales or certain times, should have gotten it years ago

keyez@lemmy.world · 3 months ago

I just upgraded to lifetime and also use jellyfin but right now it only does 80% of what Plex does in my workflow so gonna use it until I can’t anymore.

keyez@lemmy.world · 3 months ago

I’ve been testing out jellyfin for the last couple months but it doesn’t really fill the void of this specific feature that’s being locked behind a pay wall. If anyone has good recommendations for securely and reliably hosting jellyfin behind SSL and auth with email password resets where I don’t have to worry about it as much as Plex.

I use jellyfin locally but for a handful of remote clients I have I may well block off their access they’re not going to be able to figure out my hand spun services and wall of text.

keyez@lemmy.world · 3 months ago

Heres what I’m running:

authentication_backend:
  file:
    path: '/config/users_database.yml'
    watch: false
    search:
      email: false
      case_insensitive: false
    password:
      algorithm: 'sha2crypt'

access_control:
  ## Default policy can either be 'bypass', 'one_factor', 'two_factor' or 'deny'. It is the policy applied to any
  ## resource if there is no policy to be applied to the user.
  default_policy: 'deny'

  networks:
    - name: 'internal'
      networks:
        # - '10.10.0.0/16'
        - '192.168.1.0/24'
    - name: 'VPN'
      networks: '10.0.1.0/24'

  rules:
    ## Rules applied to everyone
    - domain: '*.mydomain.com'
      policy: 'one_factor'

session:
  ## The secret to encrypt the session data. This is only used with Redis / Redis Sentinel.
  ## Secret can also be set using a secret: https://www.authelia.com/c/secrets
  secret: 'insecure_session_secret'

  ## Cookies configures the list of allowed cookie domains for sessions to be created on.
  ## Undefined values will default to the values below.
  cookies:
  #   -
      ## The name of the session cookie.
    - name: 'authelia_session'

      ## The domain to protect.
      ## Note: the Authelia portal must also be in that domain.
      domain: 'mydomain.com'

      ## Required. The fully qualified URI of the portal to redirect users to on proxies that support redirections.
      ## Rules:
      ##   - MUST use the secure scheme 'https://'
      ##   - The above 'domain' option MUST either:
      ##      - Match the host portion of this URI.
      ##      - Match the suffix of the host portion when prefixed with '.'.
      authelia_url: 'https://auth.mydomain.com/'
storage:
  postgres:
    ....

identity_providers:
  oidc:
    ## Cross-Origin Resource Sharing (CORS) settings.
    cors:
      ## List of endpoints in addition to the metadata endpoints to permit cross-origin requests on.
      endpoints:
         - 'authorization'
         - 'token'
         - 'revocation'
         - 'introspection'
        #  - 'pushed-authorization-request'
        #  - 'userinfo'

      ## List of allowed origins.
      ## Any origin with https is permitted unless this option is configured or the
      ## allowed_origins_from_client_redirect_uris option is enabled.
      allowed_origins:
        - 'https://mydomain.com/'
        - 'https://grafana.mydomain.com/'
        - 'https://wiki.mydomain.com/'
        - 'https://foodz.mydomain.com/'

      ## Automatically adds the origin portion of all redirect URI's on all clients to the list of allowed_origins,
      ## provided they have the scheme http or https and do not have the hostname of localhost.
      allowed_origins_from_client_redirect_uris: true
    ## Clients is a list of known clients and their configuration.
    clients:
      - client_id: 'grafana'
        client_name: 'Grafana'
        client_secret: 'XXXXXX'
        public: false
        consent_mode: 'pre-configured'
        authorization_policy: 'one_factor'
        require_pkce: true
        pkce_challenge_method: 'S256'
        redirect_uris:
          - 'https://grafana.mydomain.com/login/generic_oauth'
        scopes:
          - 'openid'
          - 'profile'
          - 'groups'
          - 'email'
        userinfo_signed_response_alg: 'none'
        token_endpoint_auth_method: 'client_secret_basic'
      - client_id: 'wiki'
        client_name: 'Wiki'
        client_secret: 'XXXX'
        consent_mode: 'pre-configured'
        public: false
        authorization_policy: 'one_factor'
        require_pkce: true
        pkce_challenge_method: 'S256'
        redirect_uris:
          - 'https://wiki.mydomain.com/oidc/callback'
        scopes:
          - 'openid'
          - 'profile'
          - 'groups'
          - 'email'
        userinfo_signed_response_alg: 'none'
        token_endpoint_auth_method: 'client_secret_basic'
      ....

Then my users_database.yml looks like:

users:
  authelia:
    disabled: false
    displayname: "Test User"
    password: ""
    email: authelia@authelia.com
    groups:
      - admins
      - dev
  user001:
    disabled: false
    displayname: 'User 001'
    password: "$6$rounds=50000$XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
    email: test@gmail.com
    groups:
      - admins
      - users

keyez@lemmy.world · 4 months ago

Certainly, I’ll post it tomorrow

keyez@lemmy.world · 4 months ago

I used to run key cloak backed by LDAP. Few months ago moved to Authelia and after many hours of tinkering and setting up sites I haven’t had to touch it except to add a new URL or user.

I slightly disagree with the other commenter I didn’t find it easy or straightforward but once I finally found what worked for my setup its been great.

Imagine Authelia is the caddy of SSO. Powerful, intimidating but very efficient. Also all configs are in like 3 files and things aren’t going to change without FS access which only I the admin have.

keyez@lemmy.world · 4 months ago

Finally gonna pull the trigger on the dead space remake.

Also waiting for The Last of Us Part 1, Horizon Forbidden West and God of War Raganarok to go below $25 because I still have a handful of other games to finish and start.

keyez@lemmy.world · 4 months ago

Almost like were telling the same story that’s been around for hundreds of years with the latest technology available. I’m sure in 40 years you can tell your grandkids how lame avatar is because the new generation of the same story is out

keyez@lemmy.world · 4 months ago

As I seem to have to say in all of these threads about avatar since hating on them has become some kind of personality.

Hi yeah I really enjoyed the both movies and looking forward to the third one. I have watched both in theaters and own physical copies of both and probably the third.

14 year olds in 2010 were pointing out its Pocahontas, it’s not wrong but it’s not rocket science to know the point and budget of these movies is the tech used to build and render the world which sets the standard for movies for years to come.

Would love to hear any original thoughts if you have any

keyez@lemmy.world · 4 months ago

Left out her largest most recent role in The White Lotus. She’s not amazing but not bad. But with all of those mentions above I guess I’ve only seen like 3 things she’s been in because none of them are those movies.

keyez@lemmy.world · 4 months ago

Caddy can do the same and there is a steep learning curve but I switched about a year ago and only need to touch the config file when I add a host. Can even bring that config to a new server and it will stand up once it starts and picks up the config.

keyez@lemmy.world · edit-2 4 months ago

Ah I think Thor Ragnarok was what I meant, the Taika Waititi directed movie

keyez@lemmy.world · edit-2 4 months ago

Giving creative control to specific directors to let their vision shine through the project: Iron Man, Guardians of the Galaxy, Thor Love and Thunder, etc.

Edit meant Thor Ragnarok the Taika Waititi directed movie.

keyez@lemmy.world · 5 months ago

Where do you usually go to find the DRM free books? Sometimes for new books I am unable to purchase a copy without any sort of DRM