diff --git a/scripts/install b/scripts/install
index 7e62106..ed5e0f5 100644
--- a/scripts/install
+++ b/scripts/install
@@ -214,8 +214,12 @@ then
 	ynh_permission_update --permission="main" --add="visitors"
 fi
 
+# auth_header=false is because Jellyfin expects custom data in the Authorization HTTP header
+# (notably, for Jellyfin Vue)
+ynh_permission_url --permission="main" --auth_header=false
+
 # Only the admin can access the admin panel of the app (if the app has an admin panel)
-ynh_permission_create --permission="admin" --allowed=$admin
+ynh_permission_create --permission="admin" --auth_header=false --allowed=$admin
 
 #=================================================
 # RELOAD NGINX
diff --git a/scripts/upgrade b/scripts/upgrade
index bcb90cd..3451332 100644
--- a/scripts/upgrade
+++ b/scripts/upgrade
@@ -86,9 +86,13 @@ fi
 
 if ! ynh_permission_exists --permission="admin"; then
 	# Create the required permissions
-	ynh_permission_create --permission="admin" --allowed=$admin
+	ynh_permission_create --permission="admin" --auth_header=false --allowed=$admin
 fi
 
+# Update SSO permissions with --auth_header=false (notably, for Jellyfin Vue)
+ynh_permission_url --permission="main" --auth_header=false
+ynh_permission_url --permission="admin" --auth_header=false
+
 # If discovery key does not exist, create it
 if [ -z "$discovery" ]; then
 	discovery=0