I've learned to live with having WireGuard/Tailscale on all the time on my own d... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		th0rgall 4 months ago \| parent \| context \| favorite \| on: My Self-Hosting Setup I've learned to live with having WireGuard/Tailscale on all the time on my own devices. But for giving (extended) family & friends access to shared albums with Immich, it's too impractical to configure and explain widely. I've been using a Cloudflare Tunnel for this situation with their "Zero Trust" email-based authentication. It probably won't work with the Immich mobile app though, since I doubt that client can handle Cloudflare's interstitial login screen.

sylens 4 months ago [–]

You can setup Google oauth authentication on Cloudflare zero trust and pass that right through to Immich’s support for Oauth for a pretty seamless experience

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact