Skip to content

znibb/docker-servarr

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

32 Commits
files
files
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 
init.sh
init.sh
 
 

Repository files navigation

docker-servarr

Media management stack based on the *arr suite

Role Application
Indexer Prowlarr
Movies Radarr
Series Sonarr
Subtitles Bazarr
Downloader Transmission
Streaming Jellyfin
Requests Jellyseerr

Table of Contents

1. Server setup

  1. Run init.sh: ./init.sh (only required at first setup, initializes some files)
  2. Input personal data into .env (can use cat /etc/timezone and id for timezone and UID information respectively)
  3. Create a transmission password and put it in ./secrets/transmission_password.secret
  4. Make sure that Docker network traefik exists: docker network ls
  5. Run docker compose up and check logs

2. Application setup

Services are set up to use Authentik for authentication, if that's not preferable simply comment out the middleware lables from each service

Recent versions require that you use authentication. If you don't care for authentication when accessing the services locally you can no longer skip authentication. You can however setup authentication initially and then enter the respective containers with docker exec -it <service> bash and open the config file with vi /config/config.xml. Change the AuthenticationMethod tag to External and restart the container.

2.1. Prowlarr

  1. Log into prowlarr (Set up user//pass if first time logging in, use Forms)
  2. Settings->Indexers, add FlareSolverr
    1. Tags: flaresolverr
    2. Host: http://flaresolverr:8191
  3. Indexers->Add Indexer, select your indexers of choice but make sure to add flaresolverr tag to them

2.2. Sonarr

  1. Log into Sonarr (Set up user//pass if first time logging in, use Forms)
  2. Settings->General, copy API Key
  3. Back to Prowlarr
  4. Settings->Apps, Add Application->Sonarr

2.3. Radarr

  1. Log into Radarr (Set up user//pass if first time logging in, use Forms)
  2. Settings->General, copy API Key
  3. Back to Prowlarr
  4. Settings->Apps, Add Application->Sonarr

2.4. Readarr

  1. Open Readarr
  2. Settings->General
    • Authentication: Basic (Browser Popup)
    • Username//Password, set according to personal preference
    • API Key, copy
  3. Back to Prowlarr
  4. Settings->Apps, Add Application->Readarr

2.5. Bazarr

  1. Open Bazarr
  2. Settings->General
    • Authentication: Basic
    • Username//Password, set according to personal preference
  3. Settings->Sonarr
    1. Enabled: On
    2. Address: sonarr
    3. API Key: Get from Sonarr Settings->General
    4. Click Test, should reply with version
    5. SAVE
  4. Settings->Radarr
    1. Enabled: On
    2. Address: radarr
    3. API Key: Get from Radarr Settings->General
    4. Click Test, should reply with version
    5. SAVE
  5. Settings->Languages, follow guide
  6. Settings->Providers, add choice providers

2.6. Transmission

  1. Open Transmission (user//pass as set in .env and ./secrets/transmission_password.secret)
  2. Hamburger menu->Edit preferences->Network, check that Peer listening port shows "Port is Open"
  3. Back to Prowlarr
  4. Settings->Download Clients, Add Download Client->Transmission
    1. Host: transmission
    2. Username//Password, same as used to log into web UI above

2.7 Jellyfin

2.7.1 Authentik Setup

  1. Open the Authentik Admin Interface
  2. Go to Applications->Providers and click Create
  3. Select OAuth2/OpenID Provider and click Next
  4. Enter the following:
    • Name: Jellyfin Provider
    • Authorization flow: implicit-consent
    • Client type: Confidential
    • Redirect URIs/Origins (RegEx): https://jellyfin.DOMAIN.COM/sso/OID/redirect/authentik
    • Subject mode: Based on the User's username
  5. Take note of your Client ID and Client Secret, you will need these in the SSO plugin setup in Jellyfin
  6. Click Finish
  7. Go to Applications->Applications and click Create
  8. Enter the following:
    • Name: Jellyfin
    • Slug: jellyfin
    • Provider: Jellyfin Provider
  9. (Optional) If you want to suppress Jellyfin being listed in the Authentik User Interface set Launch URL to blank://blank
  10. Click Create

2.7.2 Jellyfin Setup

  1. Go to your Jellyfin web UI and set up your initial/admin account
  2. Log in with said account, click on the hamburger menu in the top-left corner and click on Administration->Dashboard
  3. In the left-side menu click on Plugins->Catalog and then on the cog icon at the top
  4. Click on the plus icon at the top and enter:
    • Repository Name: SSO AUthentication
    • Repository URL: https://raw.githubusercontent.com/9p4/jellyfin-plugin-sso/manifest-release/manifest.json
  5. Click on Save
  6. Go back to the Catalog view and under the Authentiation Provider section you should find SSO Authentication, click on it and install/enable the plugin
  7. Restart you jellyfin container with docker compose restart jellyfin
  8. Go back to Plugins->My Plugins and click on SSO-Auth
  9. Create a provider and enter the following:
    • Name: authentik (CASE IMPORTANT)
    • OID Endpoint: https://auth.DOMAIN.COM/application/o/jellyfin/.well-known/openid-configuration
    • OpenID Client ID: Client ID as per the Authentik Setup
    • OID Secret: Client Secret as per the Authentik Setup
    • Enabled: ON
    • Enable Authorization by Plugin: ON
    • Scheme Override: https
  10. Scroll to the bottom and click Save
  11. Go to General in the left-side menu and scroll down to Branding
  12. Input the following under Login disclaimer: 
    <form action="https://jellyfin.DOMAIN.COM/sso/OID/start/authentik">
    <button class="raised block emby-button button-submit">
        Sign in with SSO
    </button>
</form>
  13. Input the following under Custom CSS code: 
    a.raised.emby-button {
    padding:0.9em 1em;
    color: inherit !important;
}

.disclaimerContainer{
    display: block;
}
  14. If you want to be able to use Quick Connect to connect to e.g. TVs etc make sure that Enable Quick Connect on this server is enabled
  15. Click Save

When signing in to Jellyfin there should now be a button at the bottom for Sign in with SSO

2.8 Jellyseerr

Jellyseerr needs to connect to the Jellyfin server with an account that has admin rights, use the Jellyfin admin user you set up earlier.

2.8.1 Authentik

  1. Open the Authentik Admin Interface
  2. Go to Applications->Providers and click Create
  3. Select OAuth2/OpenID Provider and click Next
  4. Enter the following:
    • Name: Jellyseerr Provider
    • Authorization flow: implicit-consent
    • Client type: Confidential
    • Redirect URIs/Origins (RegEx): ^https://jellyseerr\.DOMAIN\.COM/login\?provider=authentik&callback=true.*
    • Subject mode: Based on the User's username
  5. Take note of your Client ID and Client Secret, you will need these in the SSO plugin setup in Jellyfin
  6. Click Finish
  7. Go to Applications->Applications and click Create
  8. Enter the following:
    • Name: Jellyseerr
    • Slug: jellyseerr
    • Provider: Jellyseerr Provider
  9. (Optional) If you want to suppress Jellyfin being listed in the Authentik User Interface set Launch URL to blank://blank
  10. Click Create

2.8.2 Jellyseerr

  1. When you first load the page you're met with the setup wizard, click Configure Jellyfin
  2. Enter:
    • Jellyfin URL: http://jellyfin:8096
    • Base URL: Leave blank
    • Email: Not related to Jellyfin, use whatever
    • Username: admin
    • Password: The password you set up for the Jellyfin admin user previously
  3. Click Sign in at the bottom
  4. Click Sync Libraries and toggle them on, click Continue at the bottom
  5. Radarr Settings:
    • Default Server: Check
    • Server Name: Radarr
    • Hostname: radarr
    • Port: 7878
    • API Key: Get from Radarr Settings->General
    • Click Test at the bottom
    • Quality Profile: Any
    • Root Folder: /data/movies
    • Enable Scan: Check
    • Tag Requests: Check
  6. Click Add Server at the bottom
  7. Sonarr Settings:
    • Default Server: Check
    • Server Name: Sonarr
    • Hostname: sonarr
    • Port: 8989
    • API Key: Get from Sonarr Settings->General
    • Click Test at the bottom
    • Quality Profile: Any
    • Root Folder: /data/tv
    • Season Folders: Check
    • Tag Requests: Check
  8. Click Finish Setup at the bottom
  9. Go to Settings->Users
  10. Uncheck Enable Local Sign-In and check Enable OpenID Connect Sign-In
  11. In the popup that appears click Add OpenID Connect Provider and fill out:
    • Provider Name: Authentik
    • Logo: https://cdn.jsdelivr.net/gh/selfhst/icons/svg/authentik.svg
    • Issuer URL: https://auth.DOMAIN.COM/application/o/jellyseerr
    • Client ID: Get from Authentik Provider
    • Client Secret: Get from Authentik Provider
    • Provider Slug: authentik
    • Scopes: email openid profile (it says Comma-separated but use spaces)
    • Allow New Users: Check
  12. Click Save Changes at the bottom, then close the Configure OpenID Connect window by clicking Close
  13. Finally go to the bottom and click Save Changes

About

Media management stack based on the *arr suite

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages