UGH This issue just cost me hours today. New to Truenas, new to kubernets or however you spell it, i'm a linux newb but i can rm -rf my root like the best of the newbs. Was liking how almost everything 'just worked' at my level setting Truenas up the past week (migrating from WS 2019 bare metal), except the official plex app just wouldn't load after i configure my folder pass throughs. I struggled to find logs as to why; since the "app logs" were blank.
Yes, there are newbs out there that want a SMB share of our movies folder and also pass the same folder to plex to scan, and we want it to just work.
Sorry, i know this is just a vent post, i'm hoping it adds to the pressure to resolve this "bug". Also impressed the "suggested topics" on this forum correctly pointed me here based off a few words in my 'would be' help me post. But we do live in the age of chatGPT don't we.
unless I made an error, I don't see a path forward with TrueNAS.
most people will want an SMB share to their media files. How will they give plex/tdarr/ access to it?
NFS share... even windows can mount NFS shares, and it's noticeably faster than SMB...MacOS too, only use for smb shares for me would be android phone access, but i'm pretty sure there is an app for that too, jut didn't look for it yet...
The workaround that's been proposed (i.e., use one or more subdirectories of the shared directory as the host path) relies, IMO, on a bug in the validation--if the dataset uses ACLs, any of its subdirectories will as well, so the same risk is present. IOW, the validation should kick this back the same as it does when you try to mount the share itself as a host path. But it doesn't right now, so at least for now, the workaround works.
This is being discussed all over the place now of course, but your main options at this time are:
1) Use TrueCharts apps exclusively for your charts that also need their data network shared and mount the the data in to the container via NFS
2) Disable Host Path validation globally (not recommended)
3) Wait Until Cobia comes out later this year where they are working to make the service check (i.e. SMB, etc) portion of Host Path validation able to be disabled on a per app basis, which is much less severe of a measure to take.
I could be missing some new solution. But, from what I've read, you have to mount the share via CLI after changing the registry to reflect the user and group ID you want to log in with.
I would put that in the "barely supported" category...
2) Disable Host Path validation globally (not recommended)
3) Wait Until Cobia comes out later this year where they are working to make the service check (i.e. SMB, etc) portion of Host Path validation able to be disabled on a per app basis, which is much less severe of a measure to take.
Than that is the way it has to be, I'll just disable host path validation for now and worry about it again when Cobia comes around. All other solutions are hacky at best.
And most of my apps require access to a SMB share anyway. So disabling it globally or per app doesn't make that much of a difference in my case.
I switched my apps to NFS. It was relatively painless since you can just copy/paste the paths from the old hostpath location.
After that it all works, including the SMB accesss via windows.
One wrinkle I ran into in case it might help someone: the validation affects all paths used in the config. Not just added data or config folders. So, for example, if you use VPN and have written in a path to OpenVPN config files, the app will not work if those files are within an SMB share.
So i have a read this entire thread and understand most of it.
disabled the "Enable Host Path Safety Checks" box and now my Plex app works.
But... even with the Host Path set to the correct data sets AND SMB disabled/enabled for the sake of tests, Plex itself sees no data in those folders.
Permissions is set up so everything and every group has all permissions because #I'mBasic.
Thoughts anyone? I have already asked the plex groups similar questions that lead me to this thread which answered some of my questions but GOOD LORD this is making me pull my hair out.
Thoughts anyone? I have already asked the plex groups similar questions that lead me to this thread which answered some of my questions but GOOD LORD this is making me pull my hair out.
So i have a read this entire thread and understand most of it.
disabled the "Enable Host Path Safety Checks" box and now my Plex app works.
But... even with the Host Path set to the correct data sets AND SMB disabled/enabled for the sake of tests, Plex itself sees no data in those folders.
Permissions is set up so everything and every group has all permissions because #I'mBasic.
Thoughts anyone? I have already asked the plex groups similar questions that lead me to this thread which answered some of my questions but GOOD LORD this is making me pull my hair out.
Are you using Official or TrueCharts Plex? TC offers support on their Discord. When you ask these types of questions, giving more config information will help. What is the dataset structure / permissions you are trying to use with Plex? What are their permissions? How do you have them passed to the App in its config?
Are you using Official or TrueCharts Plex? TC offers support on their Discord. When you ask these types of questions, giving more config information will help. What is the dataset structure / permissions you are trying to use with Plex? What are their permissions? How do you have them passed to the App in its config?
I appreciate you mentioning this because it saved my life. the guys over on discord got me squared up and boy oh boy was it a permissions nightmare! i seriously hate permissions...
trying to see how to "bleed" some now and get this fixed for longer term.
I do have 2 requirements, ye need TrueCharts for other use cases, so disabling HPV is not really a option long term.
Need Plex working, be that the official or the TC version.
Need qbittorrent (TC) to work,
I need external access to the Plex data located and the qbittorrent location move data from b to a.
I see allot of "work arounds" all over this thread, but haven't seen how either/both/together iX and TC is stating how to accomplish this with both of them being happy how it was done.
Problem is, with the head buddd of iX and their app usage of SMB and then TC with their NFS. the iX systems don't allow for specifying NFS as storage location, and TC don't allow for HP/SMB.
I've had no problems with apps using nfs and my windows machine using smb on the same Datasets. I've been using it since Truecharts released their nfs guide after Hostpath validation was implemented.
I'm also wondering how big performance penalty is making Apps access (lots of small) files via SMB or NFS? Or is it irrelevant because there's already a layer of abstraction in the Kubernetes / Docker volume?
I could be missing some new solution. But, from what I've read, you have to mount the share via CLI after changing the registry to reflect the user and group ID you want to log in with.
I would put that in the "barely supported" category...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.
