Skip to main content

emby-premiere-4.5.4.0-lifetime

· One min read

Create a self-signed certificate for mb3admin.com and deploy with nginx server. Install that certificate as trusted on both server and client system. Redirect http request for mb3admin.com to your nginx server. Configure nginx server as follows.

server {
listen 80;
listen [::]:80;
server_name mb3admin.com;

return 301 https://mb3admin.com$request_uri;
}

server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name mb3admin.com;

ssl_certificate /path/to/crt/file;
ssl_certificate_key /path/to/key/file;
ssl_session_timeout 1d;
ssl_session_cache shared:SSL:10m; # about 40000 sessions
ssl_session_tickets off;

# curl https://ssl-config.mozilla.org/ffdhe2048.txt > /path/to/dhparam.pem
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem;

# intermediate configuration
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
ssl_prefer_server_ciphers off;

location /admin/service/registration/validateDevice{
default_type application/json;
return 200 '{"cacheExpirationDays":3650,"message":"Device Valid (limit not checked)","resultCode":"GOOD"}';
}

location /admin/service/registration/validate {
default_type application/json;
return 200 '{"featId":"","registered":true,"expDate":"2099-01-01","key":""}';
}

location /admin/service/registration/getStatus {
default_type application/json;
return 200 '{"planType":"Lifetime","deviceStatus":0,"subscriptions":[]}';
}

location /admin/service/appstore/register {
default_type application/json;
return 200 '{"featId":"","registered":true,"expDate":"2099-01-01","key":""}';
}

location /emby/Plugins/SecurityInfo {
default_type application/json;
return 200 '{SupporterKey:"", IsMBSupporter:true}';
}
add_header Access-Control-Allow-Origin * always;
add_header Access-Control-Allow-Headers * always;
add_header Access-Control-Allow-Method * always;
add_header Access-Control-Allow-Credentials true always;
}