Just did that, honestly didn't know lifetime was always available, thought it was only during sales or certain times, should have gotten it years ago

I just upgraded to lifetime and also use jellyfin but right now it only does 80% of what Plex does in my workflow so gonna use it until I can't anymore.

Fair, though $7 doesn't go far anymore it's only half a burrito at most places. I usually don't get popcorn and other stuff so for a family I understand that is still pricey. At my local Alamo I'd combine the ticket as dinner so it was a pricey dinner and drink or two with a full experience.

Most theaters nowadays have discount days. $7 Tuesdays in several cities I've visited this year.

I've been testing out jellyfin for the last couple months but it doesn't really fill the void of this specific feature that's being locked behind a pay wall. If anyone has good recommendations for securely and reliably hosting jellyfin behind SSL and auth with email password resets where I don't have to worry about it as much as Plex.

I use jellyfin locally but for a handful of remote clients I have I may well block off their access they're not going to be able to figure out my hand spun services and wall of text.

Heres what I'm running:

authentication_backend:
  file:
    path: '/config/users_database.yml'
    watch: false
    search:
      email: false
      case_insensitive: false
    password:
      algorithm: 'sha2crypt'

access_control:
  ## Default policy can either be 'bypass', 'one_factor', 'two_factor' or 'deny'. It is the policy applied to any
  ## resource if there is no policy to be applied to the user.
  default_policy: 'deny'

  networks:
    - name: 'internal'
      networks:
        # - '10.10.0.0/16'
        - '192.168.1.0/24'
    - name: 'VPN'
      networks: '10.0.1.0/24'

  rules:
    ## Rules applied to everyone
    - domain: '*.mydomain.com'
      policy: 'one_factor'

session:
  ## The secret to encrypt the session data. This is only used with Redis / Redis Sentinel.
  ## Secret can also be set using a secret: https://www.authelia.com/c/secrets
  secret: 'insecure_session_secret'

  ## Cookies configures the list of allowed cookie domains for sessions to be created on.
  ## Undefined values will default to the values below.
  cookies:
  #   -
      ## The name of the session cookie.
    - name: 'authelia_session'

      ## The domain to protect.
      ## Note: the Authelia portal must also be in that domain.
      domain: 'mydomain.com'

      ## Required. The fully qualified URI of the portal to redirect users to on proxies that support redirections.
      ## Rules:
      ##   - MUST use the secure scheme 'https://'
      ##   - The above 'domain' option MUST either:
      ##      - Match the host portion of this URI.
      ##      - Match the suffix of the host portion when prefixed with '.'.
      authelia_url: 'https://auth.mydomain.com/'
storage:
  postgres:
    ....

identity_providers:
  oidc:
    ## Cross-Origin Resource Sharing (CORS) settings.
    cors:
      ## List of endpoints in addition to the metadata endpoints to permit cross-origin requests on.
      endpoints:
         - 'authorization'
         - 'token'
         - 'revocation'
         - 'introspection'
        #  - 'pushed-authorization-request'
        #  - 'userinfo'

      ## List of allowed origins.
      ## Any origin with https is permitted unless this option is configured or the
      ## allowed_origins_from_client_redirect_uris option is enabled.
      allowed_origins:
        - 'https://mydomain.com/'
        - 'https://grafana.mydomain.com/'
        - 'https://wiki.mydomain.com/'
        - 'https://foodz.mydomain.com/'

      ## Automatically adds the origin portion of all redirect URI's on all clients to the list of allowed_origins,
      ## provided they have the scheme http or https and do not have the hostname of localhost.
      allowed_origins_from_client_redirect_uris: true
    ## Clients is a list of known clients and their configuration.
    clients:
      - client_id: 'grafana'
        client_name: 'Grafana'
        client_secret: 'XXXXXX'
        public: false
        consent_mode: 'pre-configured'
        authorization_policy: 'one_factor'
        require_pkce: true
        pkce_challenge_method: 'S256'
        redirect_uris:
          - 'https://grafana.mydomain.com/login/generic_oauth'
        scopes:
          - 'openid'
          - 'profile'
          - 'groups'
          - 'email'
        userinfo_signed_response_alg: 'none'
        token_endpoint_auth_method: 'client_secret_basic'
      - client_id: 'wiki'
        client_name: 'Wiki'
        client_secret: 'XXXX'
        consent_mode: 'pre-configured'
        public: false
        authorization_policy: 'one_factor'
        require_pkce: true
        pkce_challenge_method: 'S256'
        redirect_uris:
          - 'https://wiki.mydomain.com/oidc/callback'
        scopes:
          - 'openid'
          - 'profile'
          - 'groups'
          - 'email'
        userinfo_signed_response_alg: 'none'
        token_endpoint_auth_method: 'client_secret_basic'
      ....

Then my users_database.yml looks like:

users:
  authelia:
    disabled: false
    displayname: "Test User"
    password: ""
    email: [email protected]
    groups:
      - admins
      - dev
  user001:
    disabled: false
    displayname: 'User 001'
    password: "$6$rounds=50000$XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
    email: [email protected]
    groups:
      - admins
      - users

I'm excited to see refreshes of pebble hardware. I had a Fossil Hybrid HR in between my last pebble time and it's connection and app are starting to have issues so was looking for other eink watches.

Gonna snag the duo for sure and thinking about the higher up one but $225 is quite the chunk of change though it makes sense.

Certainly, I'll post it tomorrow

I used to run key cloak backed by LDAP. Few months ago moved to Authelia and after many hours of tinkering and setting up sites I haven't had to touch it except to add a new URL or user.

I slightly disagree with the other commenter I didn't find it easy or straightforward but once I finally found what worked for my setup its been great.

Imagine Authelia is the caddy of SSO. Powerful, intimidating but very efficient. Also all configs are in like 3 files and things aren't going to change without FS access which only I the admin have.

My LG TV was similar and I had to go digging in the settings to mess with brightness, backlight and black detail. Anything that was dark on HDR was just black and I had to go in and up the black detail and brightness/contrast settings

maybe I missed something but who has 5 messenger apps installed??

I stopped listening because a few of the doctors or scientists he has had on before. Rogan hadn't read their book, didn't know anything about them nor could be keep any sort of useful conversation going and I found other podcasts of actual smart people who can converse and have discourse with intellectuals and I can learn something. Jordan Harbinger is the best example of this.

I like the differences from swiping on the right or left though I hope you can customize the size of those areas like LineageOS for easier one handed use, that's how I had my previous phone setup essentially. Not a fan of getting rid of pages personally but like they're bringing the full customizability to the toggles like NothingOS15 has currently.

Finally gonna pull the trigger on the dead space remake.

Also waiting for The Last of Us Part 1, Horizon Forbidden West and God of War Raganarok to go below $25 because I still have a handful of other games to finish and start.

That's not an adaptation and worked out better for everyone in the end.

I believe all 4K blu ray players are region free. I have a Samsung from 6 years ago and it plays 3 regions of 4k discs I have just fine. I want to upgrade to a Panasonic DPUB820K and that seems like it will be the same.

Though maybe it's 4k blu rays aren't region locked?

Finish is insane, made the space himself and so casually just lifts it all across the box and above the keeper. So much composure

Should watch the Secret Life of Walter Mitty if you haven't! It's very good. Directed and acted by stiller.

Absolutely, Society of the Snow certainly deserved at least one award.

Ooo thanks for the link may have to pick that up plus finally somewhere that has Barbarian 2021 physical copy!