Thank you so much! This valuable info needs to be signal boosted for sure

That’s not really even close to what I asked.

Just gonna repost my comment from the thread on the Technology community yesterday for suggestions and discussion: https://lemmy.dbzer0.com/comment/21273053

I used Navidrome and Symfonium with Picard for metadata and relied on a combination of Bandcamp, Rutracker and yt-dlp with a YTM free trial, along with the Spotify data export and manual python scripting elbow grease to fetch, tag all the music from my Spotify and recreate every playlist as m3u8 to be imported inside the Docker, then more elbow grease to actually make the playlist semi-accurate.

Despite Symfonium constantly losing its silly always online DRM license check and locking me out of both my cached and remote (via PiVPN to Nginx on home server to Navidrome) songs due to me having multiple Google accounts on my phone and the app freaking out because it would check the wrong account, forcing me to log out of all accounts and reset the app - losing all my customization and my credit card access for payments until I signed into the right Google account again, I had a fairly functional setup, even with playlist cover art and everything on Symfonium (despite it not being a feature in Navidrome itself).

My playlists were just as they were on Spotify down to each specific song title, album cover and most importantly of course metadata correctness and song order (I have never used shuffle in my life).

Unfortunately I went back to Spotify in the end because most music i listen to is niche and fairly Indie and thus either a pain in the ass to pirate or simply outright unavailable externally anywhere, and to maintain consistent proper metadata for what is there was like a full-time job even with some automation through Picard. I still did this for half a year. Mostly because I just did it while WFH.

I eventually simply gave up downloading more music and listened to the same few thousand songs in my transferred playlists on repeat which for me led to a feeling of stagnancy and eventually depression in life, after I begrudgingly came back to Spotify I immediately discovered several hundred new songs and created multiple new playlists just during my walks to and from the grocery store alone.

My ultimate problem is that on Spotify if I look something up I can just listen to it right away and immediately add it to my library or to a playlist of my choosing.

In contrast, when self-hosting I would have to first look up the music on Google, go to YouTube to listen to it in dogshit quality, look up album/artist on Rutracker, pray that it’s there when a lot of the time it is not, filter out albums/songs I don’t want from the discography torrent and add it to my qbittorrent-nox on server, mount the NFS share on my main windows PC with my music staging folder, add metadata with musicbrainz Picard and have it move to the finalized folder, then rescan on Navidrome webui, rescan on Symfonium local cache, then add to a playlist, then listen.

This is like, 2-3 hours of conscious effort just for me to skip to the middle of the song, listen for 30 seconds, decide I don’t like the song and delete it from the playlist, never to be heard again.

It’s way too much.

The unfortunate truth is that despite feeling good about whatever miniscule amount of effect I might have on stopping this wealth transfer from artists and listeners to Spotify and our corporate overlords while those same overlords win elections and take away my human rights while I can’t even easily get a fitting new song in decent quality to listen to when attempting to find some peace in that mess, the alternatives just aren’t worth it for me.

Yes I could just accept to have less, to just make do with the music I have, but that requires motivation that’s frankly hard to maintain if you look around and see how the rest of society behaves, eagerly falling for whatever corposlop becomes available.

Felt like I’m cutting off my nose to spite my face tbqh.

I would love for it to work as it does with Jellyfin and Immich, I have replaced GDrive, Netflix, Google Photos and damn near everything, Spotify is my only subscription left, but it just hasn’t worked for me to move off of it long-term. I’d love suggestions on how this problem can be fixed though.

Some ideas of mine:

1. Musicbrainz metadata is awful. Half the time the cover art is someone’s photo of some shitty Japanese vinyl with stickers. Pull covers off YT or Spotify. In fact - pull all metadata off Spotify via scraping, with Musicbrainz volunteer metadata serving only as intermediary to connect the audio to the musicbrainz id which should connect to a Spotify option and potentially a fallback option if somehow the music isn’t on Spotify.

2. There should be an intelligent playlist creator of some sort where I can give it my Spotify account export data and it can go off song titles and albums in the playlists within to create playlists in navidrome by finding matches in my library and automatically downloading missing ones and it should be at least 99% accurate (most “Spotify playlist downloader” type websites are 99% inaccurate for instance).

3. Navidrome or one of it’s clients should have a plugin to get suggestions at the bottom of playlists like Spotify via last.fm and play music instantly directly from Spotify/YTM, with a button to add a song to your playlist, when you do so, it automatically downloads it, copies metadata off Spotify, and adds it to whatever playlist you added it to.

All that should hopefully ease the pain and make it so you can discover, listen and add to your library without so many barriers.

Actual answer.

Honestly I’m not sure I’d know Immich used Postgres if it didn’t outright say so

Bump. Would also like to know

Is the container exposed to the internet?

If yes, do not.

If no, I think it will be ok so long as it’s actually not exposed to the internet, e.g. ideally behind NAT with no port forwards and all ipv6 traffic turned off or some other deny all inbound firewall outside the system itself that sits between it and the system on which the container runs.

In the worst case scenario: you’ve given someone a file share on your root partition, but if it’s not exposed to the internet, then the chance of it happening is extremely remote.

Yeah it does, I didn’t say it doesn’t, just like it makes sense for other bourgeoisie like the tech billionaires to defend low taxes and low regulations, it’s class war where classes act in their material self-interest, as they should.

I agree.

Even more broadly, politically - copyleft in general is very unpopular with people, even amongst leftists and self-identified communists who you’d think would be all about that since y’know, good of the commons and the fact that communist states literally didn’t give a fuck about copyright and the literature seeing it transparently as another government method of enforcing corporate power, especially apparent today when it comes to pharmaceuticals snd the fact that capitalism needs this intellectual property monopoly as an added incentive for R&D is an issue with capitalism’s broken incentive structures, not cost of it.

Few people seem to understand the power of intellectual property, and various critics of corporate technology either omit mentioning or openly defend intellectual property, despite corporations having monopolies being the reason enshittification is such a phenomenon in the first place.

It seems like a lot of arguments about the role of technology in society instead boil down to more-stuffism vs. less-stuffism, usually based on emotionally charged preference for modern aesthetics or how much they believe the noble savage/appeal to nature fallacies.

When it comes to AI for instance, anyone reasonable can see that if it’s open sourced for everyone to use then it’s just a simple common good like a public library, use it (responsibly) and there’s no issue.

Closed source private models in use by corporations suck up the environment (which belongs to everyone) and use the capital they steal from wage workers who actually produce the things they sell to give themselves leverage over said consumers/workers and other corporations, and this is not fair to the 99%.

Picture a world where AI is good enough to where it actually provides value to use it in a good chunk of jobs, and the best AI is corporate and closed source, and they just enshittified it and jacked up the prices, but if you want to get a job, you better know how to use it well. It would mean that corpo has an enormous power over your life now and you got little choice but to pony up, and they can raise prices whenever they want and snowball that capital into more and more.

I think the reason in this instance is that a lot of artists are bourgeoisie themselves and they understand that. They may be progressive as a personality strait/gimmick/style and talk about “empathy” but they understand the material reality of things.

They had the opportunities and the room for failure necessary to go into such a high risk field, and their ultimate form of commercial success is essentially using that privilege to create intellectual property they could make money from, hence the “concerns” over “style theft” and moralist fearmongering over vaguely defined concepts like “soulless”, which is usually as arbitrary as “white” for racists (not implying equivalence here).

I find generally that a lot of the anti-AI viewpoints are simple self-serving veils of bourgeoisie who’s capital is threatened, no different from the culture war fearmongering about vaping, a dying grasp of the tobacco companies of old threatened by shenzen gadget slop factories.

The material reality is that digital goods are effectively infinite, copying an image isn’t a crime nevermind copying a style or some such, it is transparently absurd to imply otherwise.

Oh god the lemmings are optimizing posts for engagement. We are approaching peak content

Truly awesome that this hobby is getting coverage! I’m very very lazy when it comes to self-hosting, by far my largest project was moving off Spotify and archiving all my playlists.

Rotating 3 API keys for spotdl and a YTP free trial for that sweet sweet 256kbps AAC then Musicbrainz Picard to label correctly all the music (automatic was nearly almost always wrong), then automating rebuilding the m3u8 playlists followed by the insane work of correcting all the little imperfections. Must’ve taken me like 2-3 weeks of just working on it most of the day.

But the result? A proper offline music library with all my main playlists with each song at the proper position and order in my playlists with the correct (Spotify) metadata using correct versions of the songs in at least 256kbps AAC (and many cases FLAC and where available non-vinyl hi-res).

Tossed on an old dell workstation I got for £50. Hosting navidrome where my JF, Qbittorrent-nox and Immich live. Using symfonium on my phone. Can access remotely via OpenVPN. Couldn’t be happier.

Bot? What’s with the image?

Unauthenticated endpoints aren’t one as far as you can tell.

Download file from Google Drive link

Download OpenVPN app

Pick file in OpenVPN app

Enter password

Share WiFi from phone to TV

Done

Honestly it’s news to me but having read through those most of them are not an issue.

setup a VPN. Pray you don’t have a user on a device that doesn’t have a VPN app that you can work with.

Dafuck kind of a nitpick is this? In what world does OpenVPN not have an application for every device and OS combo out there fully supported? You tryna watch it on a VCR or smth?

What is this?

Cron job that evals some base64 encoded string which is actually downloading a script from a personal GitHub repo of an IT guy who left…

Go lick the boot more. There’s more to the world than some fucking computers. Go download yourself some grass and touch it.

I will in fact, fuck the GPL, I will make sweet passionate love to GNU GENERAL PUBLIC LICENSE Version 3, 29 June 2007 Copyright © 2007 Free Software Foundation, Inc. https://fsf.org/.

If you’re running externally, use a cloudflare tunnel.

No ports exposed = no attack surface. This is 99% of security.

HTTPS is provided by CF although only secures comms between your devices to CF, not CF to your Pi, meaning CF can see clear text technically.

If that’s not good enough then use a VPN server like PiVPN and put it on your pi and OpenVPN on your devices. *This has nothing to do with paid VPN Client subscriptions like Tunnelbear or Proton or whatever. *

You will be running a VPN server on your pi to which you will connect from your devices on which you want to watch JF by downloading a device profile to your devices and opening it in the OpenVPN app.

You do not need to pay for anything at all anywhere ever (other than something for DDNS and a domain name), use a strong password and make sure your JF is updated if there’s any CVE. Expose nothing else to the internet.

You don’t even need HTTPS at that point or any certs, a VPN will encrypt your traffic anyway. The only cleartext you’ll have is between your VPN and your JF, and if both are on the pi then the only MITM vector is literally inside your Pi which is unlikely to have any issues.

My life is on a bunch of HDDs dug out of failed laptops with SMART errors some of which have already failed in the past, they are duct taped together and shoved inside a drive cage they don’t fit in.