From 5c19c6bf07d5dde5f956851dc686856432411029 Mon Sep 17 00:00:00 2001
From: Harvey Tindall <harveyltindall@gmail.com>
Date: Sat, 5 Dec 2020 18:16:00 +0000
Subject: [PATCH] Created Password Resets outside local network (markdown)

---
 Password-Resets-outside-local-network.md | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)
 create mode 100644 Password-Resets-outside-local-network.md

diff --git a/Password-Resets-outside-local-network.md b/Password-Resets-outside-local-network.md
new file mode 100644
index 0000000..6c55eae
--- /dev/null
+++ b/Password-Resets-outside-local-network.md
@@ -0,0 +1,18 @@
+If you have Jellyfin set up to recognize connections from the LAN network, it will complain when a user tries to do a password reset remotely. If you're using a reverse proxy, Jellyfin knows the real IP of a user through the `X-Real-IP` HTTP header, which the reverse proxy should be adding automatically. If you want to allow password resets for remote users, you can selectively not add this header to the specific routes necessary, which are `http://<jellyfin address>/Users/ForgotPassword` and `http://<jellyfin address>/Users/ForgotPassword/Pin`. This way Jellyfin will see the IP of the reverse proxy, which should be on your local network.
+
+***Example NGINX config***
+```
+    # add to your \`server {\` section
+    location /Users/ForgotPassword {
+        proxy_pass http://<jellyfin address>/Users/ForgotPassword;
+        # note in 
+        proxy_set_header Host $host;
+    }
+
+    location /Users/ForgotPassword/Pin {
+        proxy_pass http://<jellyfin address>/Users/ForgotPassword/Pin;
+        proxy_set_header Host $host;
+    }
+```
+
+I use nginx personally so don't have experience with other proxies like caddy or apache. Feel free to create an issue or contact me if you want to add an example.
\ No newline at end of file