issue: Auth0 SLO Integration Not Working Across Multiple Domains #6475

New Issue

Closed

opened 2025-11-11 16:56:21 -06:00 by GiteaMirror · 0 comments

GiteaMirror commented 2025-11-11 16:56:21 -06:00

Owner

Copy Link

Originally created by @sandyyy741821 on GitHub (Sep 23, 2025).

Check Existing Issues

• I have searched for any existing and/or related issues.
• I have searched for any existing and/or related discussions.
• I am using the latest version of Open WebUI.

Installation Method

Docker

Open WebUI Version

image ID: 9c3f80b1b50f

Ollama Version (if applicable)

N/A

Operating System

Ubuntu 22.04

Browser (if applicable)

Chrome 140.0.0.0

Confirmation

• I have read and followed all instructions in README.md.
• I am using the latest version of both Open WebUI and Ollama.
• I have included the browser console logs.
• I have included the Docker container logs.
• I have provided every relevant configuration, setting, and environment variable used in my setup.
• I have clearly listed every relevant configuration, custom setting, environment variable, and command-line option that influences my setup (such as Docker Compose overrides, .env values, browser settings, authentication configurations, etc).
• I have documented step-by-step reproduction instructions that are precise, sequential, and leave nothing to interpretation. My steps:
• Start with the initial platform/version/OS and dependencies used,
• Specify exact install/launch/configure commands,
• List URLs visited, user input (incl. example values/emails/passwords if needed),
• Describe all options and toggles enabled or changed,
• Include any files or environmental changes,
• Identify the expected and actual result at each stage,
• Ensure any reasonably skilled user can follow and hit the same issue.

Expected Behavior

Logging out from any application (React SPA or OpenWebUI) should log the user out from all applications under the same Auth0 tenant.

Actual Behavior

Logging out from React SPA only logs out that app. OpenWebUI session remains active.

Steps to Reproduce

1. Deploy OpenWebUI on EC2 using Docker + Nginx (default setup).

2. Deploy React SPA using @auth0/auth0-react SDK.

3. Configure both apps under the same Auth0 tenant.

4. Log in to React SPA → SSO works; OpenWebUI automatically logs in.

5. Trigger logout from React SPA:

      ``` logout({ logoutParams: { federated: true, returnTo: window.location.origin } })```
   

6. OpenWebUI session remains active; user is not logged out.

Logs & Screenshots

• Attach browser console logs from React SPA logout attempt.

• Attach OpenWebUI Docker logs showing no logout trigger.

Additional Information

• React SPA uses getIdTokenSilently() to check session validity.

• OpenWebUI does not have Auth0 SDK integration; logout relies on standard session handling.

• SSO works perfectly, but RP-initiated logout across different domains is failing.

Originally created by @sandyyy741821 on GitHub (Sep 23, 2025). ### Check Existing Issues - [x] I have searched for any existing and/or related issues. - [x] I have searched for any existing and/or related discussions. - [x] I am using the latest version of Open WebUI. ### Installation Method Docker ### Open WebUI Version image ID: 9c3f80b1b50f ### Ollama Version (if applicable) N/A ### Operating System Ubuntu 22.04 ### Browser (if applicable) Chrome 140.0.0.0 ### Confirmation - [x] I have read and followed all instructions in `README.md`. - [x] I am using the latest version of **both** Open WebUI and Ollama. - [x] I have included the browser console logs. - [x] I have included the Docker container logs. - [x] I have **provided every relevant configuration, setting, and environment variable used in my setup.** - [x] I have clearly **listed every relevant configuration, custom setting, environment variable, and command-line option that influences my setup** (such as Docker Compose overrides, .env values, browser settings, authentication configurations, etc). - [x] I have documented **step-by-step reproduction instructions that are precise, sequential, and leave nothing to interpretation**. My steps: - Start with the initial platform/version/OS and dependencies used, - Specify exact install/launch/configure commands, - List URLs visited, user input (incl. example values/emails/passwords if needed), - Describe all options and toggles enabled or changed, - Include any files or environmental changes, - Identify the expected and actual result at each stage, - Ensure any reasonably skilled user can follow and hit the same issue. ### Expected Behavior Logging out from any application (React SPA or OpenWebUI) should log the user out from all applications under the same Auth0 tenant. ### Actual Behavior Logging out from React SPA only logs out that app. OpenWebUI session remains active. ### Steps to Reproduce 1. Deploy OpenWebUI on EC2 using Docker + Nginx (default setup). 2. Deploy React SPA using @auth0/auth0-react SDK. 3. Configure both apps under the same Auth0 tenant. 4. Log in to React SPA → SSO works; OpenWebUI automatically logs in. 5. Trigger logout from React SPA: ``` logout({ logoutParams: { federated: true, returnTo: window.location.origin } })``` 6. OpenWebUI session remains active; user is not logged out. ### Logs & Screenshots - Attach browser console logs from React SPA logout attempt. - Attach OpenWebUI Docker logs showing no logout trigger. ### Additional Information - React SPA uses getIdTokenSilently() to check session validity. - OpenWebUI does not have Auth0 SDK integration; logout relies on standard session handling. - SSO works perfectly, but RP-initiated logout across different domains is failing.

GiteaMirror added the bug label 2025-11-11 16:56:22 -06:00

GiteaMirror closed this issue 2025-11-11 16:56:22 -06:00

GiteaMirror referenced this issue 2026-04-19 20:45:44 -05:00

[GH-ISSUE #6475] Error 400 Model.bin Not found #14378

GiteaMirror referenced this issue 2026-04-25 04:17:04 -05:00

[GH-ISSUE #6475] Error 400 Model.bin Not found #29906

GiteaMirror referenced this issue 2026-05-05 14:15:29 -05:00

[GH-ISSUE #6475] Error 400 Model.bin Not found #53044

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

dev

v0.9.2

v0.9.1

v0.9.0

v0.8.12

v0.8.11

v0.8.10

v0.8.9

v0.8.8

v0.8.7

v0.8.6

v0.8.5

v0.8.4

v0.8.3

v0.8.2

v0.8.1

v0.8.0

v0.7.2

v0.7.1

v0.7.0

v0.6.43

v0.6.42

v0.6.41

v0.6.40

v0.6.39

v0.6.38

v0.6.37

v0.6.36

v0.6.35

v0.6.34

v0.6.33

v0.6.32

v0.6.31

v0.6.30

v0.6.29

v0.6.28

v0.6.27

v0.6.26

v0.6.25

v0.6.24

v0.6.23

v0.6.22

v0.6.21

v0.6.20

v0.6.19

v0.6.18

v0.6.17

v0.6.16

v0.6.15

v0.6.14

v0.6.13

v0.6.12

v0.6.11

v0.6.10

v0.6.9

v0.6.8

v0.6.7

v0.6.6

v0.6.5

v0.6.4

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.20

v0.5.19

v0.5.18

v0.5.17

v0.5.16

v0.5.15

v0.5.14

v0.5.13

v0.5.12

v0.5.11

v0.5.10

v0.5.9

v0.5.8

v0.5.7

v0.5.6

v0.5.5

v0.5.4

v0.5.3

v0.5.2

v0.5.1

v0.5.0

v0.4.8

v0.4.7

v0.4.6

v0.4.5

v0.4.4

v0.4.3

v0.4.2

v0.4.1

v0.4.0

v0.3.35

v0.3.34

v0.3.33

v0.3.32

v0.3.31

v0.3.30

v0.3.29

v0.3.28

v0.3.27

v0.3.26

v0.3.25

v0.3.24

v0.3.23

v0.3.22

v0.3.21

v0.3.20

v0.3.19

v0.3.18

v0.3.17

v0.3.16

v0.3.15

v0.3.14

v0.3.13

v0.3.12

v0.3.11

v0.3.10

v0.3.9

v0.3.8

v0.3.7

v0.3.6

v0.3.5

v0.3.4

v0.3.3

v0.3.2

v0.3.1

v0.3.0

v0.2.5

v0.2.4

v0.2.3

v0.2.2

v0.2.1

v0.2.0

v0.1.125

v0.1.124

v0.1.123

v0.1.122

v0.1.121

v0.1.120

v0.1.119

v0.1.118

v0.1.117

v0.1.116

v0.1.115

v0.1.114

v0.1.113

v0.1.112

v0.1.111

v0.1.110

v0.1.109

v0.1.108

v0.1.107

v0.1.106

v0.1.105

v0.1.104

v0.1.103

v0.1.102

Labels

Clear labels

bug

confirmed

confirmed issue

core

documentation

enhancement

good first issue

help wanted

non-core

pull-request

Mirrored from GitHub Pull Request

python

question

testing wanted

No Label bug

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/open-webui#6475