Sortarr Setup

Step 1 Media info source Needs setup Choose your media info source

Start by choosing what Sortarr should use for media info. The setup will focus on that path first, and you can add other providers later if you need them.

Choose a media source to see how Sortarr will use it here.

Media source intent

What should Sortarr use as your media source?

Sonarr and Radarr connections

Use these fields when Sonarr and Radarr are your main media source, or add them as extras if you still want them available.

Sonarr Instance 1

Instance name Sonarr URL Sonarr API key

Advanced Sonarr instance 1 options

Sonarr API URL (optional) Sonarr External URL (optional) Path map

Sonarr Instance 2 (optional)

Instance name Sonarr URL Sonarr API URL (optional) Sonarr External URL (optional) Sonarr API key Path map

Radarr Instance 1

Instance name Radarr URL Radarr API key

Advanced Radarr instance 1 options

Radarr API URL (optional) Radarr External URL (optional) Path map

Radarr Instance 2 (optional)

Instance name Radarr URL Radarr API URL (optional) Radarr External URL (optional) Radarr API key Path map

Step 4 Protect access Needs setup Choose authentication and save a secret key

Choose how users authenticate, set the proxy mode, and save a persistent session secret key before continuing into the app.

Security

Authentication Method

Pick who handles login. Use Basic when Sortarr should prompt for credentials directly. Use Basic + local bypass only for trusted direct local-network installs with Proxy mode set to Direct. Use External only when a trusted reverse proxy already handles login and sends the upstream auth header below.

Basic auth username Basic auth password Remove saved password

Leave blank and keep this unchecked to keep the current password. Enter a new password to replace it. Check this only if you intentionally want to remove the saved password.

Credentials are stored via the configured secret backend. Protect your config directory and credential store.

Connection test buttons stay disabled until authentication is configured and security setup is complete. Saving settings still validates configured connections.

Proxy mode

Choose the proxy chain in front of Sortarr. Basic + local bypass is only supported with Direct. External authentication requires Single, Double, or Custom. Use Custom only if you need per-header hop overrides.

Session secret key

Used for session and CSRF signing. Keep this stable, and use the same value on every replica. Leave it blank to let Sortarr generate and persist one when you save, or enter your own value now if you want to control it.

Sortarr generated a temporary session secret at startup. Saving this form will persist a stable secret automatically unless you enter or generate one here first.

Step 5 Advanced network and performance Default No advanced overrides

Use this section for secret-storage details, proxy trust, CSRF diagnostics, and performance overrides. Most setups should be able to save successfully without changing anything here.

Advanced settings in use: None

Secret storage

Storage backend: Secret files

This install stores secrets as files under your config directory and keeps only `*_FILE` references in the env file.

Secret files directory: /app/secrets

Advanced settings

Network & CSRF

CSRF trusted origins (optional) Waitress trusted proxy (optional)

Set this to the immediate proxy IP/host in front of Sortarr when known. Changes apply after restart because Waitress trust is a startup setting. Leave blank only if wildcard proxy trust is intentional, and do not treat that wildcard state as a supported External-auth deployment for `0.9.0`.

What to do if diagnostics report a mismatch:

1) Set Proxy mode to the suggested value and save.

2) Ensure your proxy sends `X-Forwarded-Proto` and `X-Forwarded-Host`.

3) Refresh Setup and run diagnostics again.

Recovery mode (unsafe): allow startup without a persistent Session secret key

Use recovery mode only if you are locked out. This weakens session/CSRF reliability and should be turned off after you save a persistent Session secret key.

Arr performance

Sonarr timeout seconds Sonarr episode file workers Radarr timeout seconds Radarr wanted workers Radarr instance workers

Leave fields blank for defaults. Timeout seconds accept 0 to disable. Radarr wanted workers are capped at 4.

Tautulli performance

Tautulli timeout seconds Tautulli fetch seconds Tautulli metadata workers

Metadata lookups are enforced as unlimited for accuracy. Leave fields blank for defaults; seconds fields accept 0 for no time limit.

Streamystats performance

Streamystats timeout seconds Streamystats search limit Streamystats workers

These values control Streamystats search and detail requests during history matching. Leave fields blank for defaults.

Plex settings

Plex client identifier (optional) Plex history page size

History page size controls how many Plex history rows are fetched per request. Leave blank for defaults.

Step 2 History source Not set Choose your history source

Choose which system should provide watch history and matching data. Enrichment connections live in the next step so they can stay separate from your primary history choice.

Choose a history source to see how Sortarr will use it here.

History source intent

What should Sortarr use for watch history data?

Tracearr

Tracearr URL Tracearr public API key

Tracearr matching notes

Sortarr uses Tracearr's public API. When public library/items fields are available, Sortarr can prefer stable-ID matching; otherwise it falls back to title/year matching from grouped public history data.

Jellystat

Jellystat URL Jellystat API key Jellystat library IDs (Sonarr) Jellystat library IDs (Radarr)

Leave library IDs blank to auto-detect by library type.

Streamystats

Streamystats URL Streamystats API key Streamystats server ID (optional) Jellyfin username for Streamystats (optional) Jellyfin password for Streamystats (optional)

Sortarr uses the Streamystats API key plus a Jellyfin user login to search and load item details. Leave server ID blank to auto-detect when only one server is configured.

Tautulli

Tautulli URL Tautulli API key

Step 3 Enrichment providers Not set No enrichment providers connected

Add Plex, Emby, or Jellyfin here when you want extra enrichment, mismatch tools, and insights, even if history comes from somewhere else.

Choose an enrichment provider to see how Sortarr will use it here.

Enrichment providers

Preferred enrichment provider

Plex

Plex URL Plex Token Plex section IDs (optional)

Leave section IDs blank to scan all libraries.

Emby

Emby URL Emby API key Emby user ID (optional) Emby library IDs (eg. Shows) Emby library IDs (eg. Movies)

Leave section IDs blank to scan all libraries.

Jellyfin

Jellyfin URL Jellyfin API key Jellyfin username (optional) Jellyfin password (optional) Jellyfin user ID (optional) Jellyfin library IDs (Sonarr) Jellyfin library IDs (Radarr)

Leave library IDs blank to auto-detect by library type.