V3 Plex Oauth Security Alert

Sonarr version (exact version): 3.0.0.256
Mono version (if Sonarr is not running on Windows): 5.14.0.177
OS: Linux
Description of issue:
The new Plex Oauth triggers a security warning. This has something to do with the device being identified by a different IP with how the token is sent I believe as Tautulli was able to resolve the issue. I will try to get additional information on how Tautulli solved the issue.

This will happen when the Sonarr is running from one IP and you connect to it from a different IP (remote Sonarr). Tautulli does things a bit different to avoid that problem, but I’m not sure if that’ll be feasible for Sonarr since it’s a generic approach versus something explicitly for Plex.tv authentication.

Okay thanks for the information.

Actually, looks like it’s doable, it’ll be in the next release.

I have confirmed the error is gone. However, hitting the “authenticate with plex.tv button” without a name set fails with a 400 error but give you no indication as to what the failure was. It just had the exclamation point on the button. It wasn’t until I checked the logs that I saw the name error.

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.