Skip to content

PTS Shield

Jump to bottom Edit New page
PhysK edited this page Jan 22, 2020 · 2 revisions

Table of Contents

  1. PTS YouTube
  2. Intro
  3. Initial Actions
  4. PTS Actions
  5. Conclusion

1. PTS YouTube

NOTE: Watching the Video will provide the deepest insight in deploying PTSShield!

2. Intro

What does it provide you? Protection through Google Authentication by shielding your container/apps from unauthorized users! Unlike PTS's Legacy ApPTSuard, you sign in once and your apps are protected without having to sign in each time... over and over!

PTS Shield utilizes Google's OAuth in conjunction with Traefik and Thomseddon's Authentication Project - PLEASE STAR HIS PROJECT.

*WARNING: Will need to create another GSuite OAuth Key labeled web

3. Initial Actions

A. Prerequisites

Note: If you have sonarr/radarr/etc on a separate server than nzbget/sab/etc, you CANNOT use PTSShield for these apps, it won't work. PTSShield is basically a firewall and requires google authentication. Your apps don't know about and can't handle this "firewall". You have to disable PTSShield for these apps in this case. If your apps are on the same server, use the traefik internal access URL, not your domain!

B. Next Steps

  • Next, visit Google's Credential Console and select WEB Application!
    • This is not the same OAuth Key from PTS Blitz (which was --- other)
    • Selecting the wrong version will have you troubleshooting all day!
  • Name: Call it whatever you like!
  • Authorized Redirects: Make sure it matches as such https://oauth.yourdomain.com/_oauth
    • If you see a red warning about needing to add the domain to the trusted list, click it and do so!
    • Make sure you hit Enter to actually add it before you save!
  • Create: When finished, click the create button.

4. PTS Actions

Just notes until snapshots are taken:

  • Enter your CLIENT ID and SECRET from above
  • Add whitelisted users to access your apps
  • Exempt apps that you do not want to be touched by PTS Shield
  • Deploy!

Lesson Learned

  • If you fail to pay attention, you can end up copying the wrong key from another project and you'll wonder why it's not working. It happened to myself; so please pay attention!

5. Conclusion

PTS Shield is an awesome tool to provide you simple security powered by Google! Ensure to stop by Thomseddon's Authentication Project and give him a STAR if you like it!

Wiki - Wiki

Useful Starter Links

  1. Introduction
  2. G-Suite Signup
  3. Recommended NewsHosts
  4. Change Log

Prior Planning 101

  1. Recommended Pre-Reading
  2. Server - Storage Planning
  3. Usenet or BitTorrent
  4. PTS Editions
  5. PTS Folder Structure
  6. PTS-Repos
  7. Common Issues

Deploy & Config

PTS-Team
  1. SSH Server Access
  2. Install PTS
  3. WatchTower
  4. Remote Path Mappings

Data Transport
  1. PTS Clone
    1. Google OAuth Keys
    2. PTS Move
    3. PTS Blitz
    4. 2nd HD Option

Key Components

  1. Traefik
  2. Port Guard
  3. PTS Shield
  4. PTS Press
  5. Google Cloud - GCE
    1. Automated setup
  6. Hetzner Cloud
  7. PTS Fork
  8. Extra PTS Commands

Blitz App Info

  1. Accessing PTS Apps
  2. App Port Scheme

Tools & Services

Core Apps [Expand]
  1. Emby
  2. Jackett
  3. Jellyfin
  4. LazyLibrarian
  5. Lidarr
  6. Netdata
  7. NZBGet
  8. Ombi
  9. Plex
  10. Portainer
  11. qBittorrent
  12. Radarr
  13. Radarr4k
  14. RadarrHDR
  15. RuTorrent
  16. SABnzbd
  17. Sonarr
  18. Sonarr4k
  19. SonarrHDR
  20. Tautulli
  21. JDownloader2
Community Apps [Expand]
  1. AirSonic
  2. Bazarr
  3. Bitwarden
  4. BookSonic
  5. cAdvisor
  6. Cloud Commander
  7. Deluge
  8. DelugeVPN
  9. Dozzle
  10. Duplicati
  11. Filebrowser
  12. FlexGet
  13. Gazee
  14. Headphones
  15. Heimdall
  16. HomeAssistant
  17. jd2-openvpn
  18. Kitana
  19. Logarr
  20. MakeMKV
  21. MariaDB
  22. McMyadmin
  23. MEDUSA
  24. Mellow
  25. Miniflux
  26. Monitorr
  27. Muximux
  28. Mylar
  29. NextCloud
  30. NowShowing
  31. NZBHydra2
  32. Organizr
  33. plpp
  34. pyLoad
  35. qBittorrent
  36. QBittorrent VPN
  37. radarrsyncarr
  38. Resilio
  39. rflood-openvpn
  40. rutorrent-openvpn
  41. Shoko Anime Server
  42. SpeedTest
  43. SyncLounge
  44. Teamspeak3
  45. The Lounge
  46. Transmission
  47. Trakt.or
  48. Ubooquity
  49. Varken
  50. vnc-xfce
  51. vnstat
  52. ZeroTier

Misc Info & Articles

  1. Change Server Time
  2. Fail2Ban
  3. Custom Containers
  4. Deploying Varken, Influx, Telegraf, Grafana
  5. cloneclean commands
  6. Understanding htop
Scripts
  1. Scripting Area
    1. Auto Upload for Sonarr and Lidarr
    2. Auto Delete Log
    3. Plex Plugin DB Backup
    4. Plex fast BACKUP
    5. Delete All Unmonitored from Radarr
Clone this wiki locally