this post was submitted on 08 Jun 2026
68 points (100.0% liked)

Selfhosted

60693 readers
328 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Detailed Rules Post

  1. Be civil.

  2. No spam.

  3. Posts are to be related to self-hosting.

  4. Don't duplicate the full text of your blog or readme if you're providing a link.

  5. Submission headline should match the article title.

  6. No trolling.

  7. Promotion posts require active participation, with an account that is at least 30 days old. F/LOSS without a paywall has exceptions, with requirements. See the rules link for details. Tags [CBH] or [AIP] are required, see the links in Rule 8 for details.

  8. AI-related discussions and AI-involved promotional posts have additional requirements for tagging, as noted in Rule 7 and the AI & Promotional Post Expanded Rules post, and find example disclosures here.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago
MODERATORS
 

Hello everyone,

I want to create a Tailscale account to access my Jellyfin server from outside my home, but I’m already stuck at the first step: to create an account, you need either a GAFAM account or OIDC. I don’t have any personal accounts with GAFAM because of Lemmy’s bad influence. My emails are on Tuta. I don’t want to overcomplicate things as I'm a noob, but after spending 30 minutes researching OIDC, I still don’t know where to start… I don’t work in IT (at all).

Is it better to just give up and create a throwaway account with a GAFAM platform, or is there a simple way to do this with OIDC? If so, can anyone point me the way? Is there a free reliable OIDC provider? Will that make things complicated afterward with tail scale?

For more context: I turned my old gaming PC into a media center running Fedora and a Jellyfin server that I access locally. I was surprised by how relatively simple it all was, especially getting Jellyfin to work locally.

Obviously, I wanted to use Tailscale to connect to Jellyfin remotely, but I never had time to look into it. I was told this morning that I’m going to undergo major surgery with a significant recovery period ahead, so suddenly this has become urgent...

you are viewing a single comment's thread
view the rest of the comments
[–] irmadlad@lemmy.world 5 points 1 month ago (1 children)

I've read blogs that talk about video streaming/TOS issues. Personally, I have had no issues. Just figured I'd throw it out there.

"As long as the media is not being distributed publicly or cached on Cloudflare's network, and you are only using Cloudflare to proxy encrypted traffic to your own origin server, this is acceptable use. Community thread quote ~ 2025

Cloudflare distinguishes between protected internal endpoints versus public-facing content delivery. The former is generally acceptable on free tiers when combined with Zero Trust authentication. There have been no updates to the TOS since this was posted:

.....so, my guess is that it's still in effect unless superseded by an update. However, it seems arbitrarily enforced searching reddit for data. Again, just a cautionary comment.

[–] eager_eagle@lemmy.world 5 points 1 month ago* (last edited 1 month ago) (1 children)
[–] irmadlad@lemmy.world 3 points 1 month ago (1 children)

I take back everything I said then. OP, just disregard the old head mumbling on about the past.

[–] Sirius006@sh.itjust.works 2 points 1 month ago (1 children)

Thanks, everyone. That sounds like a viable option. Is it as secure as Tailscale in terms of privacy?

[–] irmadlad@lemmy.world 3 points 1 month ago* (last edited 1 month ago)

It's quite secure. Privacy depends on who you ask. Obviously Cloudflare will be handling your data which is something some selfhosters do not like. Ultimately you have to make that decision as to whether it fits within your threat model. As far as security, you don't need to fiddle with NAT or open/close ports. You will, of course, need to allow ssh in UFW, so you can admin the server itself. All you do is install Cloudflare Tunnels/Zero Trust on the server, and Cloudflare takes care of the rest. If you decide to go the Cloudflare Tunnels/Zero Trust route, I have a set of my notes I would be more than happy to share. They've seemed to have helped a handful of people, and you could use them as a guide.