github-starred/open-webui
2
0
Fork 0
mirror of https://github.com/open-webui/open-webui.git synced 2026-05-07 03:18:23 -05:00
Code Issues 1.3k Packages Projects Releases 126 Wiki Activity

[GH-ISSUE #19131] issue: client_id parameter is not passed in authorize access token request with OIDC provider #18782

New Issue
Closed
opened 2026-04-20 00:59:40 -05:00 by GiteaMirror · 0 comments
GiteaMirror commented 2026-04-20 00:59:40 -05:00
Owner
Copy Link

Originally created by @Oleg52 on GitHub (Nov 12, 2025).
Original GitHub issue: https://github.com/open-webui/open-webui/issues/19131

Check Existing Issues

  • I have searched for any existing and/or related issues.
  • I have searched for any existing and/or related discussions.
  • I have also searched in the CLOSED issues AND CLOSED discussions and found no related items (your issue might already be addressed on the development branch!).
  • I am using the latest version of Open WebUI.

Installation Method

Docker

Open WebUI Version

v0.6.36

Ollama Version (if applicable)

No response

Operating System

Windows 11

Browser (if applicable)

No response

Confirmation

  • I have read and followed all instructions in README.md.
  • I am using the latest version of both Open WebUI and Ollama.
  • I have included the browser console logs.
  • I have included the Docker container logs.
  • I have provided every relevant configuration, setting, and environment variable used in my setup.
  • I have clearly listed every relevant configuration, custom setting, environment variable, and command-line option that influences my setup (such as Docker Compose overrides, .env values, browser settings, authentication configurations, etc).
  • I have documented step-by-step reproduction instructions that are precise, sequential, and leave nothing to interpretation. My steps:
  • Start with the initial platform/version/OS and dependencies used,
  • Specify exact install/launch/configure commands,
  • List URLs visited, user input (incl. example values/emails/passwords if needed),
  • Describe all options and toggles enabled or changed,
  • Include any files or environmental changes,
  • Identify the expected and actual result at each stage,
  • Ensure any reasonably skilled user can follow and hit the same issue.

Expected Behavior

I except client_id parameter to exist in /token request when i sign up using OIDC provider. My OIDC provider requires client_id to be set, otherwise request fails.

Actual Behavior

In /token request i receive only 4 parameters: code, redirect_uri, code_verifier and grant_type.

Steps to Reproduce

  1. Run Open WebUI using following docker-compose file with configured OIDC provider:
version: "3.9"

services:
  openwebui:
    image: ghcr.io/open-webui/open-webui:latest
    container_name: openwebui
    restart: unless-stopped
    ports:
      - "3000:8080"
    environment:

      WEBUI_URL: http://localhost:3000   
      PORT: 8080
      ENABLE_PERSISTENT_CONFIG: "true"
      DATA_DIR: /data

      WEBUI_AUTH: "true"      
      ENABLE_SIGNUP: "false"   
      ENABLE_LOGIN_FORM: "false"   
      ENABLE_OAUTH_SIGNUP: "true" 
      ENABLE_OAUTH_PERSISTENT_CONFIG: "false" 
      
      OAUTH_CLIENT_ID: my-client-id
      OAUTH_CLIENT_SECRET: my-client-secret
      OAUTH_SCOPES: openid email profile
      OPENID_PROVIDER_URL: https://my-provider/.well-known/openid-configuration
      OPENID_REDIRECT_URI: http://localhost:3000/oauth/oidc/callback
      
      DEFAULT_USER_ROLE: admin

      OFFLINE_MODE: "false"
      SAFE_MODE: "false"
      RESET_CONFIG_ON_START: "false"

    volumes:
      - ./data:/data
  1. Go to http://localhost:3000 and sign up using OIDC provider.
  2. Check form parameters that were sent to the provider's /token endpoint.

Logs & Screenshots

None

Additional Information

I will create PR to fix it.

Originally created by @Oleg52 on GitHub (Nov 12, 2025). Original GitHub issue: https://github.com/open-webui/open-webui/issues/19131 ### Check Existing Issues - [x] I have searched for any existing and/or related issues. - [x] I have searched for any existing and/or related discussions. - [x] I have also searched in the CLOSED issues AND CLOSED discussions and found no related items (your issue might already be addressed on the development branch!). - [x] I am using the latest version of Open WebUI. ### Installation Method Docker ### Open WebUI Version v0.6.36 ### Ollama Version (if applicable) _No response_ ### Operating System Windows 11 ### Browser (if applicable) _No response_ ### Confirmation - [x] I have read and followed all instructions in `README.md`. - [x] I am using the latest version of **both** Open WebUI and Ollama. - [x] I have included the browser console logs. - [x] I have included the Docker container logs. - [x] I have **provided every relevant configuration, setting, and environment variable used in my setup.** - [x] I have clearly **listed every relevant configuration, custom setting, environment variable, and command-line option that influences my setup** (such as Docker Compose overrides, .env values, browser settings, authentication configurations, etc). - [x] I have documented **step-by-step reproduction instructions that are precise, sequential, and leave nothing to interpretation**. My steps: - Start with the initial platform/version/OS and dependencies used, - Specify exact install/launch/configure commands, - List URLs visited, user input (incl. example values/emails/passwords if needed), - Describe all options and toggles enabled or changed, - Include any files or environmental changes, - Identify the expected and actual result at each stage, - Ensure any reasonably skilled user can follow and hit the same issue. ### Expected Behavior I except `client_id` parameter to exist in `/token` request when i sign up using OIDC provider. My OIDC provider requires `client_id` to be set, otherwise request fails. ### Actual Behavior In `/token` request i receive only 4 parameters: `code`, `redirect_uri`, `code_verifier` and `grant_type`. ### Steps to Reproduce 1. Run Open WebUI using following docker-compose file with configured OIDC provider: ``` version: "3.9" services: openwebui: image: ghcr.io/open-webui/open-webui:latest container_name: openwebui restart: unless-stopped ports: - "3000:8080" environment: WEBUI_URL: http://localhost:3000 PORT: 8080 ENABLE_PERSISTENT_CONFIG: "true" DATA_DIR: /data WEBUI_AUTH: "true" ENABLE_SIGNUP: "false" ENABLE_LOGIN_FORM: "false" ENABLE_OAUTH_SIGNUP: "true" ENABLE_OAUTH_PERSISTENT_CONFIG: "false" OAUTH_CLIENT_ID: my-client-id OAUTH_CLIENT_SECRET: my-client-secret OAUTH_SCOPES: openid email profile OPENID_PROVIDER_URL: https://my-provider/.well-known/openid-configuration OPENID_REDIRECT_URI: http://localhost:3000/oauth/oidc/callback DEFAULT_USER_ROLE: admin OFFLINE_MODE: "false" SAFE_MODE: "false" RESET_CONFIG_ON_START: "false" volumes: - ./data:/data ``` 2. Go to `http://localhost:3000` and sign up using OIDC provider. 3. Check form parameters that were sent to the provider's `/token` endpoint. ### Logs & Screenshots None ### Additional Information I will create PR to fix it.
GiteaMirror added the bug label 2026-04-20 00:59:40 -05:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
bug
confirmed
confirmed issue
core
documentation
enhancement
good first issue
help wanted
non-core
pull-request
Mirrored from GitHub Pull Request
 python
question
testing wanted
No Label bug
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/open-webui#18782
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?