Extend FileBot or FileBot-Node into full API

All your suggestions, requests and ideas for future development
devster
Posts: 417
Joined: 06 Jun 2017, 22:56

Re: Extend FileBot or FileBot-Node into full API

Post by devster »

Solution 2 is certainly feasible, it's also fairly insecure.
Containers usually (e.g. docker does it by default), run as root on the host machine and provide a root user inside the container.
Breaking these boundaries is one of the major points of attack and allowing code execution within a container (possibly on a machine exposed to the web), is subject to vulnerabilities.

I'm currently using option 1, but it's unfortunately not as smooth as I'd like.

The most comprehensive solution would probably be to have a FileBot daemon with an API that can accept commands sent by filebot CLI. This would be a big change, the only example that comes to mind is FlexGet, which now provides both a cron-based script to including a daemon (as far as I remember since v2).
I would however point out that despite the usefulness of docker for home users, the intended use is probably enterprise with much larger and distributed infrastructure.
I only work in black and sometimes very, very dark grey. (Batman)
User avatar
rednoah
The Source
Posts: 22923
Joined: 16 Nov 2011, 08:59
Location: Taipei
Contact:

Re: Extend FileBot or FileBot-Node into full API

Post by rednoah »

A notable problem is that if you can run any filebot command, then you can pass in any -exec option, which means you can effectively run any command via filebot post-process commands.

Also, since you can do that with FileBot Node WebUI too, the FileBot Node service should never ever be connectable to anyone but yourself, especially if you're running it without authentication.
:idea: Please read the FAQ and How to Request Help.
devster
Posts: 417
Joined: 06 Jun 2017, 22:56

Re: Extend FileBot or FileBot-Node into full API

Post by devster »

In my view, that argument works in favour of a daemonized FileBot with an API and without an -exec bit, pure renaming service with additional tasks left to the user.
I only work in black and sometimes very, very dark grey. (Batman)
Post Reply