[GH-ISSUE #5535] Microsoft OAuth: The email or password provided is incorrect #52688

New Issue

Closed

opened 2026-05-05 13:46:49 -05:00 by GiteaMirror · 0 comments

GiteaMirror commented 2026-05-05 13:46:49 -05:00

Owner

Copy Link

Originally created by @dmitryzykov on GitHub (Sep 19, 2024).
Original GitHub issue: https://github.com/open-webui/open-webui/issues/5535

Bug Report

Installation Method

helm open-webui-3.1.16

Environment

• Open WebUI Version: 0.3.21

Confirmation:

• I have read and followed all the instructions provided in the README.md.
• I am on the latest version of both Open WebUI and Ollama.
• I have included the browser console logs.
• I have included the Docker container logs.
• I have provided the exact steps to reproduce the bug in the "Steps to Reproduce" section below.

Expected Behavior:

login should work

Actual Behavior:

After successful auth in Microsoft I get this error in browser:
{"detail":"The email or password provided is incorrect. Please check for typos and try logging in again."}

Description

We use Microsoft OAuth and configured it as per documentation:

MICROSOFT_CLIENT_ID: [REMOVED]
MICROSOFT_CLIENT_SECRET: [REMOVED]
MICROSOFT_CLIENT_TENANT_ID: [REMOVED]
ENABLE_OAUTH_SIGNUP: True

After successful auth in Microsoft I get this error in browser:
{"detail":"The email or password provided is incorrect. Please check for typos and try logging in again."}

In the openwebui logs:

[open_webui.main] OAuth callback error: mismatching_state: CSRF Warning! State not equal in request and response.
INFO:     172.70.210.42:0 - "
GET /oauth/microsoft/callback?code=[REMOVED]&session_state=30a04c3a-7925-4878-a11a-ac161478462a HTTP/1.1
" 400 Bad Request

In Microsoft settings we have this: OIDC-based Sign-on > OIDC-based Sign-on › Attributes & Claims ›

we tried with different values combinations for OAUTH_EMAIL_CLAIM: email, username, preferred_username but error is the same

Originally created by @dmitryzykov on GitHub (Sep 19, 2024). Original GitHub issue: https://github.com/open-webui/open-webui/issues/5535 # Bug Report ## Installation Method helm open-webui-3.1.16 ## Environment - **Open WebUI Version:** 0.3.21 **Confirmation:** - [x] I have read and followed all the instructions provided in the README.md. - [x] I am on the latest version of both Open WebUI and Ollama. - [x] I have included the browser console logs. - [x] I have included the Docker container logs. - [x] I have provided the exact steps to reproduce the bug in the "Steps to Reproduce" section below. ## Expected Behavior: login should work ## Actual Behavior: After successful auth in Microsoft I get this error in browser: `{"detail":"The email or password provided is incorrect. Please check for typos and try logging in again."}` ## Description We use Microsoft OAuth and configured it as per documentation: ``` MICROSOFT_CLIENT_ID: [REMOVED] MICROSOFT_CLIENT_SECRET: [REMOVED] MICROSOFT_CLIENT_TENANT_ID: [REMOVED] ENABLE_OAUTH_SIGNUP: True ``` After successful auth in Microsoft I get this error in browser: `{"detail":"The email or password provided is incorrect. Please check for typos and try logging in again."}` In the openwebui logs: ``` [open_webui.main] OAuth callback error: mismatching_state: CSRF Warning! State not equal in request and response. INFO: 172.70.210.42:0 - " GET /oauth/microsoft/callback?code=[REMOVED]&session_state=30a04c3a-7925-4878-a11a-ac161478462a HTTP/1.1 " 400 Bad Request ``` In Microsoft settings we have this: OIDC-based Sign-on > OIDC-based Sign-on › Attributes & Claims › <img width="796" alt="image" src="https://github.com/user-attachments/assets/e80051bc-0af9-4fb1-a1e6-af59bafdfb64"> we tried with different values combinations for `OAUTH_EMAIL_CLAIM`: `email`, `username`, `preferred_username` but error is the same

GiteaMirror closed this issue 2026-05-05 13:46:50 -05:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

dev

v0.9.2

v0.9.1

v0.9.0

v0.8.12

v0.8.11

v0.8.10

v0.8.9

v0.8.8

v0.8.7

v0.8.6

v0.8.5

v0.8.4

v0.8.3

v0.8.2

v0.8.1

v0.8.0

v0.7.2

v0.7.1

v0.7.0

v0.6.43

v0.6.42

v0.6.41

v0.6.40

v0.6.39

v0.6.38

v0.6.37

v0.6.36

v0.6.35

v0.6.34

v0.6.33

v0.6.32

v0.6.31

v0.6.30

v0.6.29

v0.6.28

v0.6.27

v0.6.26

v0.6.25

v0.6.24

v0.6.23

v0.6.22

v0.6.21

v0.6.20

v0.6.19

v0.6.18

v0.6.17

v0.6.16

v0.6.15

v0.6.14

v0.6.13

v0.6.12

v0.6.11

v0.6.10

v0.6.9

v0.6.8

v0.6.7

v0.6.6

v0.6.5

v0.6.4

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.20

v0.5.19

v0.5.18

v0.5.17

v0.5.16

v0.5.15

v0.5.14

v0.5.13

v0.5.12

v0.5.11

v0.5.10

v0.5.9

v0.5.8

v0.5.7

v0.5.6

v0.5.5

v0.5.4

v0.5.3

v0.5.2

v0.5.1

v0.5.0

v0.4.8

v0.4.7

v0.4.6

v0.4.5

v0.4.4

v0.4.3

v0.4.2

v0.4.1

v0.4.0

v0.3.35

v0.3.34

v0.3.33

v0.3.32

v0.3.31

v0.3.30

v0.3.29

v0.3.28

v0.3.27

v0.3.26

v0.3.25

v0.3.24

v0.3.23

v0.3.22

v0.3.21

v0.3.20

v0.3.19

v0.3.18

v0.3.17

v0.3.16

v0.3.15

v0.3.14

v0.3.13

v0.3.12

v0.3.11

v0.3.10

v0.3.9

v0.3.8

v0.3.7

v0.3.6

v0.3.5

v0.3.4

v0.3.3

v0.3.2

v0.3.1

v0.3.0

v0.2.5

v0.2.4

v0.2.3

v0.2.2

v0.2.1

v0.2.0

v0.1.125

v0.1.124

v0.1.123

v0.1.122

v0.1.121

v0.1.120

v0.1.119

v0.1.118

v0.1.117

v0.1.116

v0.1.115

v0.1.114

v0.1.113

v0.1.112

v0.1.111

v0.1.110

v0.1.109

v0.1.108

v0.1.107

v0.1.106

v0.1.105

v0.1.104

v0.1.103

v0.1.102

Labels

Clear labels

bug

confirmed

confirmed issue

core

documentation

enhancement

good first issue

help wanted

non-core

pull-request

Mirrored from GitHub Pull Request

python

question

testing wanted

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/open-webui#52688