github-starred/open-webui
2
0
Fork 0
mirror of https://github.com/open-webui/open-webui.git synced 2026-05-06 10:58:17 -05:00
Code Issues 1.3k Packages Projects Releases 126 Wiki Activity

[GH-ISSUE #15544] issue: OIDC provider not activating despite correct config, env vars, and successful network connectivity #17595

New Issue
Closed
opened 2026-04-19 23:23:48 -05:00 by GiteaMirror · 2 comments
GiteaMirror commented 2026-04-19 23:23:48 -05:00
Owner
Copy Link

Originally created by @nguyendev on GitHub (Jul 6, 2025).
Original GitHub issue: https://github.com/open-webui/open-webui/issues/15544

Check Existing Issues

  • I have searched the existing issues and discussions.
  • I am using the latest version of Open WebUI.

Installation Method

Git Clone

Open WebUI Version

0.6.15

Ollama Version (if applicable)

No response

Operating System

Windows Server 2024

Browser (if applicable)

No response

Confirmation

  • I have read and followed all instructions in README.md.
  • I am using the latest version of both Open WebUI and Ollama.
  • I have included the browser console logs.
  • I have included the Docker container logs.
  • I have provided every relevant configuration, setting, and environment variable used in my setup.
  • I have clearly listed every relevant configuration, custom setting, environment variable, and command-line option that influences my setup (such as Docker Compose overrides, .env values, browser settings, authentication configurations, etc).
  • I have documented step-by-step reproduction instructions that are precise, sequential, and leave nothing to interpretation. My steps:
  • Start with the initial platform/version/OS and dependencies used,
  • Specify exact install/launch/configure commands,
  • List URLs visited, user input (incl. example values/emails/passwords if needed),
  • Describe all options and toggles enabled or changed,
  • Include any files or environmental changes,
  • Identify the expected and actual result at each stage,
  • Ensure any reasonably skilled user can follow and hit the same issue.

Expected Behavior

Describe the bug

The OIDC login button does not appear on the login page, and the /api/config endpoint returns an empty oauth.providers object, even when all environment variables are correctly loaded and network connectivity from within the container to the OIDC provider is successful.

Have you read the Contributing Guidelines on issues?

Yes

File: .env

OAUTH_CONFIG=[{"oidc_enabled":true,"display_name":"Login with Solann ID","client_id":"open-webui-client","client_secret":"XXX","well_known_url":"https://X/.well-known/openid-configuration","scopes":"openid profile email roles"}]

OPENAI_API_BASE_URL=https://api.XXX/api/ai-proxy/v1
OPENAI_API_KEY=DUMMY_KEY

File: docker-compose.yml

version: '3.8'

services:
open-webui:
image: ghcr.io/open-webui/open-webui:v0.6.15
container_name: solann-ai-webui-final
ports:
- "8080:8080"

# Nạp các biến từ file .env
env_file:
  - ./.env
  
volumes:
  - open-webui-data-final:/app/backend/data
restart: unless-stopped

volumes:
open-webui-data-final:

Actual Behavior

To Reproduce

  1. Set up Open WebUI using the docker-compose.yml and .env files below on Docker Desktop for Windows Server.
  2. Start the container using docker-compose up -d.
  3. Access the Web UI. The OIDC login button is missing.
  4. The /api/config endpoint shows {"oauth": {"providers": {}}}.

Steps to Reproduce

Expected behavior

The OIDC login button should appear on the login page, and the /api/config endpoint should reflect the OIDC provider configuration.

Logs & Screenshots

Screenshots

Result of /api/config:

{
    "status": true,
    "name": "Open WebUI",
    "version": "0.6.15",
    "oauth": {
        "providers": {}
    },
    "features": {
        "auth": true,
        "enable_login_form": true
    }
}

### Additional Information

_No response_
Originally created by @nguyendev on GitHub (Jul 6, 2025). Original GitHub issue: https://github.com/open-webui/open-webui/issues/15544 ### Check Existing Issues - [x] I have searched the existing issues and discussions. - [x] I am using the latest version of Open WebUI. ### Installation Method Git Clone ### Open WebUI Version 0.6.15 ### Ollama Version (if applicable) _No response_ ### Operating System Windows Server 2024 ### Browser (if applicable) _No response_ ### Confirmation - [x] I have read and followed all instructions in `README.md`. - [x] I am using the latest version of **both** Open WebUI and Ollama. - [x] I have included the browser console logs. - [x] I have included the Docker container logs. - [x] I have **provided every relevant configuration, setting, and environment variable used in my setup.** - [x] I have clearly **listed every relevant configuration, custom setting, environment variable, and command-line option that influences my setup** (such as Docker Compose overrides, .env values, browser settings, authentication configurations, etc). - [x] I have documented **step-by-step reproduction instructions that are precise, sequential, and leave nothing to interpretation**. My steps: - Start with the initial platform/version/OS and dependencies used, - Specify exact install/launch/configure commands, - List URLs visited, user input (incl. example values/emails/passwords if needed), - Describe all options and toggles enabled or changed, - Include any files or environmental changes, - Identify the expected and actual result at each stage, - Ensure any reasonably skilled user can follow and hit the same issue. ### Expected Behavior ### Describe the bug The OIDC login button does not appear on the login page, and the `/api/config` endpoint returns an empty `oauth.providers` object, even when all environment variables are correctly loaded and network connectivity from within the container to the OIDC provider is successful. ### Have you read the [Contributing Guidelines on issues](httpshttps://github.com/open-webui/open-webui/blob/main/CONTRIBUTING.md#reporting-bugs)? Yes # File: .env OAUTH_CONFIG=[{"oidc_enabled":true,"display_name":"Login with Solann ID","client_id":"open-webui-client","client_secret":"XXX","well_known_url":"https://X/.well-known/openid-configuration","scopes":"openid profile email roles"}] OPENAI_API_BASE_URL=https://api.XXX/api/ai-proxy/v1 OPENAI_API_KEY=DUMMY_KEY # File: docker-compose.yml version: '3.8' services: open-webui: image: ghcr.io/open-webui/open-webui:v0.6.15 container_name: solann-ai-webui-final ports: - "8080:8080" # Nạp các biến từ file .env env_file: - ./.env volumes: - open-webui-data-final:/app/backend/data restart: unless-stopped volumes: open-webui-data-final: ### Actual Behavior ### To Reproduce 1. Set up Open WebUI using the `docker-compose.yml` and `.env` files below on Docker Desktop for Windows Server. 2. Start the container using `docker-compose up -d`. 3. Access the Web UI. The OIDC login button is missing. 4. The `/api/config` endpoint shows `{"oauth": {"providers": {}}}`. ### Steps to Reproduce ### Expected behavior The OIDC login button should appear on the login page, and the `/api/config` endpoint should reflect the OIDC provider configuration. ### Logs & Screenshots ### Screenshots *Result of `/api/config`:* ```json { "status": true, "name": "Open WebUI", "version": "0.6.15", "oauth": { "providers": {} }, "features": { "auth": true, "enable_login_form": true } } ### Additional Information _No response_
GiteaMirror added the bug label 2026-04-19 23:23:48 -05:00
GiteaMirror commented 2026-04-19 23:23:51 -05:00
Author
Owner
Copy Link

@Classic298 commented on GitHub (Jul 6, 2025):

where is your config? I dont see you set all the required environment variables for proper OIDC / OAUTH as per the docs?

<!-- gh-comment-id:3041251672 --> @Classic298 commented on GitHub (Jul 6, 2025): where is your config? I dont see you set all the required environment variables for proper OIDC / OAUTH as per the docs?
GiteaMirror commented 2026-04-19 23:23:51 -05:00
Author
Owner
Copy Link

@nguyendev commented on GitHub (Jul 6, 2025):

Hi, thank you for looking into this.

I apologize if the configuration wasn't clear in the initial report. Here are the complete configuration files and a summary of the debugging steps we've already taken.

Configuration Files

This setup uses the newer OAUTH_CONFIG environment variable, as discussed in other community threads, instead of the deprecated individual OIDC_* variables.

My docker-compose.yml:

version: '3.8'

services:
  open-webui:
    image: ghcr.io/open-webui/open-webui:v0.6.15
    container_name: my-webui
    ports:
      - "8080:8080"
    env_file:
      - ./.env
    volumes:
      - open-webui-data:/app/backend/data
    restart: unless-stopped

volumes:
  open-webui-data:

My .env file:
OAUTH_CONFIG=[{"oidc_enabled":true,"display_name":"Login with Solann ID","client_id":"open-webui-client","client_secret":"**********","well_known_url":"[https://solannsoftware.com/.well-known/openid-configuration](https://solannsoftware.com/.well-known/openid-configuration)","scopes":"openid profile email roles"}]

Summary of Debugging Steps
We have already performed extensive debugging and can confirm this is not a simple configuration or network issue.

✅ Environment Variables are Loaded Correctly: I have run docker exec my-webui env and confirmed that the OAUTH_CONFIG JSON string is present and correct inside the running container.

✅ Network Connectivity is Successful: I have run curl -v https://solannsoftware.com/.well-known/openid-configuration from inside the container (docker exec -it my-webui /bin/sh). The command returns HTTP/2 200 OK and SSL certificate verify ok.. This proves the container has full, successful network and SSL/TLS connectivity to the OIDC provider.

🔴 The Problem Persists: Despite the two points above, the application's /api/config endpoint still returns {"oauth": {"providers": {}}} and the OIDC login button does not appear.

The Core Question
Given that the container receives the correct configuration and can successfully communicate with the OIDC provider, could there be any internal logic, dependency, or bug in version v0.6.15 that would cause it to silently fail to parse or activate the OAUTH_CONFIG variable?

Please let me know what other information or logs I can provide to help diagnose this further. Thank you!


Note: I am using ABP.io
<!-- gh-comment-id:3041376952 --> @nguyendev commented on GitHub (Jul 6, 2025): Hi, thank you for looking into this. I apologize if the configuration wasn't clear in the initial report. Here are the complete configuration files and a summary of the debugging steps we've already taken. ### Configuration Files This setup uses the newer `OAUTH_CONFIG` environment variable, as discussed in other community threads, instead of the deprecated individual `OIDC_*` variables. **My `docker-compose.yml`:** ```yaml version: '3.8' services: open-webui: image: ghcr.io/open-webui/open-webui:v0.6.15 container_name: my-webui ports: - "8080:8080" env_file: - ./.env volumes: - open-webui-data:/app/backend/data restart: unless-stopped volumes: open-webui-data: My .env file: OAUTH_CONFIG=[{"oidc_enabled":true,"display_name":"Login with Solann ID","client_id":"open-webui-client","client_secret":"**********","well_known_url":"[https://solannsoftware.com/.well-known/openid-configuration](https://solannsoftware.com/.well-known/openid-configuration)","scopes":"openid profile email roles"}] Summary of Debugging Steps We have already performed extensive debugging and can confirm this is not a simple configuration or network issue. ✅ Environment Variables are Loaded Correctly: I have run docker exec my-webui env and confirmed that the OAUTH_CONFIG JSON string is present and correct inside the running container. ✅ Network Connectivity is Successful: I have run curl -v https://solannsoftware.com/.well-known/openid-configuration from inside the container (docker exec -it my-webui /bin/sh). The command returns HTTP/2 200 OK and SSL certificate verify ok.. This proves the container has full, successful network and SSL/TLS connectivity to the OIDC provider. 🔴 The Problem Persists: Despite the two points above, the application's /api/config endpoint still returns {"oauth": {"providers": {}}} and the OIDC login button does not appear. The Core Question Given that the container receives the correct configuration and can successfully communicate with the OIDC provider, could there be any internal logic, dependency, or bug in version v0.6.15 that would cause it to silently fail to parse or activate the OAUTH_CONFIG variable? Please let me know what other information or logs I can provide to help diagnose this further. Thank you! Note: I am using ABP.io
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
bug
confirmed
confirmed issue
core
documentation
enhancement
good first issue
help wanted
non-core
pull-request
Mirrored from GitHub Pull Request
 python
question
testing wanted
No Label bug
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/open-webui#17595
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?