What is Radarr (4K) [Exposed!]?

Radarr (4K) [Exposed!] is an add-on for your existing ElfHosted Radarr (4K) instance that removes Single Sign-On (SSO) protection from the API. With SSO bypassed, external tools and remote clients can authenticate using Radarr (4K)'s native API key — exactly as they would against a self-hosted Radarr (4K) on your own LAN.

Who needs this?

Anyone running a separate 4K Radarr instance who needs external tools to differentiate it from their HD Radarr — Profilarr, Recyclarr, Notifiarr, mobile apps, and unified dashboards that target both quality tiers. If you're only using Radarr (4K) through the ElfHosted dashboard or its built-in web UI, you don't need [Exposed!] — SSO is already protecting you.

Compatible integrations

• 🔌 Profilarr, Recyclarr, Notifiarr, Doplarr, Overseerr (with 4K profiles)
• 🤝 Any third-party tool that authenticates with the Radarr (4K) API key
• 📱 Mobile apps like nzb360, LunaSea, and nzbget that need direct API access

Security requirements

Because [Exposed!] removes ElfHosted's SSO layer, you must reset Radarr (4K)'s default API key before subscribing. The default key is shared across the platform and cannot be used as a public credential. Generate a fresh API key in Radarr (4K)'s settings, then paste it into the subscription form so we can keep dashboard icons working correctly.

Why ElfHosted?

Most hosted *arr setups force a one-size-fits-all auth model — either everything is behind SSO (breaking external integrations) or nothing is (leaving the API wide open). ElfHosted's [Exposed!] add-ons let you opt specific apps into public API access while keeping SSO on everything else. You get the integration flexibility of self-hosting without exposing your entire stack.

FAQ

Does this expose my entire Radarr (4K) instance, or just the API?
The whole Radarr (4K) URL becomes publicly reachable, but Radarr (4K)'s native auth (API key for the API, login form for the UI) is the only thing protecting it. Treat the URL as semi-public.

What happens if I forget to reset the API key?
The default key is well-known and shared — leaving it in place means anyone could control your Radarr (4K). We'll prompt you to set a new key during checkout, but this is your responsibility to keep secret.

Can I revert later?
Yes — cancelling the [Exposed!] subscription restores SSO protection.