Skip to content

Inch-high/plexgeo

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits
.github/workflows
.github/workflows
 
 
app
app
 
 
unraid
unraid
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

PlexGeo — Stream Intelligence Dashboard

Self-hosted Docker app that monitors your Plex server, logs every user stream by IP and country, graphs trends over time, and raises anomaly alerts when a user streams from an unusual location (e.g. normally UK, now AUS).

Disclaimer: This application is vibe coded and has not been audited for security. Do not expose it to the internet — it is intended for local network use only.

Features

  • Live world map — choropleth + glowing dots for active streams
  • Stream log — full history table with IP, country, media, platform
  • Per-user drill-down — country distribution doughnut, timeline chart, session history
  • Anomaly alerts — sidebar panel flags location outliers with one-click acknowledge
  • Auto-refresh — polls Plex every 30 s; dashboard updates every 30 s
  • GeoIP — uses ip-api.com (free, no key needed, results cached in SQLite)
  • Persistent SQLite database mounted as a Docker volume

Quick Start

1. Get your Plex token

Open Plex Web → any media item → ··· → Get Info → View XML. The URL will contain X-Plex-Token=XXXX — copy that value.

Or follow: https://support.plex.tv/articles/204059436-finding-an-authentication-token-x-plex-token/

2. Generate an encryption key

openssl rand -base64 32

Save the output — you'll need it for the ENCRYPTION_KEY variable below.

3. Run

docker run -d \
  --name plexgeo \
  --restart unless-stopped \
  -p 7842:7842 \
  -v plexgeo_data:/data \
  -e PLEX_URL=http://your-plex-ip:32400 \
  -e PLEX_TOKEN=your-plex-token \
  -e ENCRYPTION_KEY=your-generated-key \
  ghcr.io/inch-high/plexgeo:latest

Dashboard will be at http://localhost:7842

Alternatively, using Docker Compose:

cp .env.example .env
# Edit .env with your PLEX_URL, PLEX_TOKEN, and ENCRYPTION_KEY
docker compose up -d

Configuration

Variable Default Description
PLEX_URL URL of your Plex server, e.g. http://192.168.1.50:32400
PLEX_TOKEN Your Plex authentication token
ENCRYPTION_KEY Key for encrypting sensitive settings at rest (see above)
PORT 7842 Host port for the dashboard
POLL_INTERVAL 30 Seconds between Plex polls
OUTLIER_THRESHOLD 0.10 A country must account for <10% of sessions to be flagged
OUTLIER_MIN_SESSIONS 5 Minimum sessions before outlier detection kicks in

If ENCRYPTION_KEY is not set, a temporary key is generated in memory. Encrypted settings (e.g. your Plex token stored via the UI) will be lost on container restart.

You can set a dashboard password in Settings to protect the UI. The password is stored encrypted in the database.

Docker Image

Pre-built images are published to GHCR on every push to main:

docker pull ghcr.io/inch-high/plexgeo:latest

Available for linux/amd64 and linux/arm64.

Unraid

Using the template (recommended)

  1. Copy unraid/my-plexgeo.xml to /boot/config/plugins/dockerMan/templates-user/ on your Unraid server
  2. In the Docker tab, click Add Container and select plexgeo from the template dropdown
  3. Fill in your Plex URL, token, and encryption key — sensitive fields are masked
  4. Click Apply

Manual setup

  1. In the Unraid Docker tab, click Add Container
  2. Set Repository to ghcr.io/inch-high/plexgeo:latest
  3. Add a Port mapping: host 7842 → container 7842
  4. Add a Path mapping: host /mnt/user/appdata/plexgeo → container /data
  5. Add Variables:
    • PLEX_URL = your Plex server URL
    • PLEX_TOKEN = your Plex token
    • ENCRYPTION_KEY = your generated key
  6. Click Apply
  7. Set a dashboard password in Settings after first login (optional)

Troubleshooting

Streams not showing up? If your Plex server uses a self-signed certificate (common on LAN setups with HTTPS), PlexGeo won't be able to connect by default. Go to Settings (top-right) and set SSL Verification to Disabled, then save.

Outlier Detection Logic

For each new session:

  1. Look up the user's country distribution over the last 90 days
  2. If the user has ≥ OUTLIER_MIN_SESSIONS sessions and the current country accounts for < OUTLIER_THRESHOLD (10%) of their history → create an alert
  3. Deduplication: only one alert per user+country per 24 hours
  4. Alerts appear in the sidebar and can be acknowledged with one click

Example: alice has 50 sessions, 48 from GB (96%) and 2 from US (4%). A new session from AU triggers an alert — AU = 0% of history, well below the 10% threshold.

Data & Privacy

  • All data stored locally in a Docker volume (plexgeo_data)
  • IP addresses are sent to ip-api.com for geolocation, then cached in SQLite (subsequent lookups don't re-query)
  • Local/private IPs (192.168.x.x etc.) are detected and never sent externally — labelled "Local Network"
  • Sensitive settings (Plex token) are encrypted at rest using Fernet symmetric encryption
  • No external telemetry

Project Structure

plexgeo/
├── docker-compose.yml
├── Dockerfile
├── requirements.txt
├── .env.example
└── app/
    ├── main.py          # FastAPI app + scheduler
    ├── config.py        # Settings management + encryption
    ├── crypto.py        # Fernet encryption (key from ENCRYPTION_KEY env)
    ├── database.py      # SQLite schema + queries
    ├── plex_poller.py   # Plex session polling
    ├── geo.py           # ip-api.com geolocation + cache
    ├── alerts.py        # Outlier detection
    └── static/
        └── index.html   # Dashboard (D3 map + Chart.js)

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages