github-starred/pangolin
2
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2026-05-21 17:20:36 -05:00
Code Issues 959 Packages Projects Releases 74 Wiki Activity

[GH-ISSUE #1081] Infinite redirect after upgrade to 1.7.1 #10514

New Issue
Closed
opened 2026-05-06 13:58:10 -05:00 by GiteaMirror · 20 comments
GiteaMirror commented 2026-05-06 13:58:10 -05:00
Owner
Copy Link

Originally created by @RomRider on GitHub (Jul 18, 2025).
Original GitHub issue: https://github.com/fosrl/pangolin/issues/1081

After updating to 1.7.1, I get an infinite redirect loop between /setup and / after login using OIDC and thus can't connect anymore.

There's nothing in the logs.

Originally created by @RomRider on GitHub (Jul 18, 2025). Original GitHub issue: https://github.com/fosrl/pangolin/issues/1081 After updating to 1.7.1, I get an infinite redirect loop between `/setup` and `/` after login using OIDC and thus can't connect anymore. There's nothing in the logs.
GiteaMirror commented 2026-05-06 13:58:11 -05:00
Author
Owner
Copy Link

@R-Nabil commented on GitHub (Jul 18, 2025):

I have the same exact issue.

Funnily other services routes through pangolin works fine.

<!-- gh-comment-id:3087328780 --> @R-Nabil commented on GitHub (Jul 18, 2025): I have the same exact issue. Funnily other services routes through pangolin works fine.
GiteaMirror commented 2026-05-06 13:58:11 -05:00
Author
Owner
Copy Link

@miloschwartz commented on GitHub (Jul 18, 2025):

Are there any browser logs or server side logs that seem to correspond to this? Will get a patch out asap once I can replicate.

<!-- gh-comment-id:3087367156 --> @miloschwartz commented on GitHub (Jul 18, 2025): Are there any browser logs or server side logs that seem to correspond to this? Will get a patch out asap once I can replicate.
GiteaMirror commented 2026-05-06 13:58:12 -05:00
Author
Owner
Copy Link

@R-Nabil commented on GitHub (Jul 18, 2025):

Are there any browser logs or server side logs that seem to correspond to this? Will get a patch out asap once I can replicate.

Let me know how I can help but as of now I don't see any logs

<!-- gh-comment-id:3088163966 --> @R-Nabil commented on GitHub (Jul 18, 2025): > Are there any browser logs or server side logs that seem to correspond to this? Will get a patch out asap once I can replicate. Let me know how I can help but as of now I don't see any logs
GiteaMirror commented 2026-05-06 13:58:12 -05:00
Author
Owner
Copy Link

@DJKatastrof commented on GitHub (Jul 18, 2025):

I thought something was wrong with my instance lol. But im having the same issue

<!-- gh-comment-id:3088693365 --> @DJKatastrof commented on GitHub (Jul 18, 2025): I thought something was wrong with my instance lol. But im having the same issue
GiteaMirror commented 2026-05-06 13:58:13 -05:00
Author
Owner
Copy Link

@pinionless commented on GitHub (Jul 18, 2025):

I had this issue.
I Removed Pocket ID user (delete) from Pangolin.

Logged in again with Pocket ID to auto create new user and it works now without redirect loop

<!-- gh-comment-id:3089395645 --> @pinionless commented on GitHub (Jul 18, 2025): I had this issue. I Removed Pocket ID user (delete) from Pangolin. Logged in again with Pocket ID to auto create new user and it works now without redirect loop
GiteaMirror commented 2026-05-06 13:58:14 -05:00
Author
Owner
Copy Link

@boomam commented on GitHub (Jul 18, 2025):

Same issue for me, too.
v1.7.2
 
Removing the OIDC user from the system doesnt fix it either.
Instead login drops me back to the login screen despite the validation step returning a green 'connected' tick for a second or so.
 
Checking the user list at org level with the admin user shows the OIDC user getting created though.

<!-- gh-comment-id:3089397234 --> @boomam commented on GitHub (Jul 18, 2025): Same issue for me, too. v1.7.2 &nbsp; Removing the OIDC user from the system doesnt fix it either. Instead login drops me back to the login screen despite the validation step returning a green 'connected' tick for a second or so. &nbsp; Checking the user list at org level with the admin user shows the OIDC user getting created though.
GiteaMirror commented 2026-05-06 13:58:15 -05:00
Author
Owner
Copy Link

@R-Nabil commented on GitHub (Jul 18, 2025):

I had this issue. I Removed Pocket ID user (delete) from Pangolin.

Logged in again with Pocket ID to auto create new user and it works now without redirect loop

May I ask how did you remove the user ?

<!-- gh-comment-id:3089401300 --> @R-Nabil commented on GitHub (Jul 18, 2025): > I had this issue. I Removed Pocket ID user (delete) from Pangolin. > > Logged in again with Pocket ID to auto create new user and it works now without redirect loop May I ask how did you remove the user ?
GiteaMirror commented 2026-05-06 13:58:16 -05:00
Author
Owner
Copy Link

@pinionless commented on GitHub (Jul 18, 2025):

May I ask how did you remove the user ?

Well, Pocket ID account is separate to the admin account defined in the yml: "users: server_admin:"

So I deleted all cookies for my pangolin.domain.com and logged in using the login/password

<!-- gh-comment-id:3089407750 --> @pinionless commented on GitHub (Jul 18, 2025): > May I ask how did you remove the user ? Well, Pocket ID account is separate to the admin account defined in the yml: "users: server_admin:" So I deleted all cookies for my pangolin.domain.com and logged in using the login/password
GiteaMirror commented 2026-05-06 13:58:16 -05:00
Author
Owner
Copy Link

@R-Nabil commented on GitHub (Jul 18, 2025):

ok. for me logging in as the admin also fails with the same infinite loop.
I set up a passkey, which could be why maybe ?

So clearing cookies didn't help, nor can I delete the non-admin user.

<!-- gh-comment-id:3089414027 --> @R-Nabil commented on GitHub (Jul 18, 2025): ok. for me logging in as the admin also fails with the same infinite loop. I set up a passkey, which could be why maybe ? So clearing cookies didn't help, nor can I delete the non-admin user.
GiteaMirror commented 2026-05-06 13:58:18 -05:00
Author
Owner
Copy Link

@pinionless commented on GitHub (Jul 18, 2025):

ok. for me logging in as the admin also fails with the same infinite loop. I set up a passkey, which could be why maybe ?

So clearing cookies didn't help, nor can I delete the non-admin user.

I just added passkey in pangolin and can access the server admin account with both login/password or passkey

I only had the loop issue with a Pocket ID accounts.

also,
I don't see the "users: server_admin:" I have in my config.yml in the documentation. I got some outdated config I quess

<!-- gh-comment-id:3089430187 --> @pinionless commented on GitHub (Jul 18, 2025): > ok. for me logging in as the admin also fails with the same infinite loop. I set up a passkey, which could be why maybe ? > > So clearing cookies didn't help, nor can I delete the non-admin user. I just added passkey in pangolin and can access the server admin account with both login/password or passkey I only had the loop issue with a Pocket ID accounts. also, I don't see the "users: server_admin:" I have in my config.yml in the documentation. I got some outdated config I quess
GiteaMirror commented 2026-05-06 13:58:19 -05:00
Author
Owner
Copy Link

@Goreden commented on GitHub (Jul 18, 2025):

I thought I was the only one whose stuck in an infinite loop.

<!-- gh-comment-id:3089685223 --> @Goreden commented on GitHub (Jul 18, 2025): I thought I was the only one whose stuck in an infinite loop.
GiteaMirror commented 2026-05-06 13:58:20 -05:00
Author
Owner
Copy Link

@LeonvanHeerden commented on GitHub (Jul 18, 2025):

I started having the issue after adding a new resource.

I thought it was as a result of the domain that I entered on the HTTPS Settings section. I entered my main domain with no subdomain. It seems that you are able to enter your primary Pangolin DNS entry for a resource, and it accepts it.
E.g.
Pangolin FQDN: p.example.com
New Resource should be : resource.p.example.com
But I entered: p.example.com

The old screen had a "Subdomain" edit field and you could select a domain you wanted from a drop down. So it was not possible to duplicate your pangolin FQDN on a resource.

I had to restore my backup DB to be able to get back into the system.

<!-- gh-comment-id:3089916834 --> @LeonvanHeerden commented on GitHub (Jul 18, 2025): I started having the issue after adding a new resource. I thought it was as a result of the domain that I entered on the `HTTPS Settings` section. I entered my main domain with no subdomain. It seems that you are able to enter your primary Pangolin DNS entry for a resource, and it accepts it. E.g. Pangolin FQDN: `p.example.com` New Resource should be : `resource.p.example.com` But I entered: `p.example.com` The old screen had a "Subdomain" edit field and you could select a domain you wanted from a drop down. So it was not possible to duplicate your pangolin FQDN on a resource. I had to restore my backup DB to be able to get back into the system.
GiteaMirror commented 2026-05-06 13:58:22 -05:00
Author
Owner
Copy Link

@oschwartz10612 commented on GitHub (Jul 18, 2025):

Looking into it now!

<!-- gh-comment-id:3090231905 --> @oschwartz10612 commented on GitHub (Jul 18, 2025): Looking into it now!
GiteaMirror commented 2026-05-06 13:58:23 -05:00
Author
Owner
Copy Link

@elcajon commented on GitHub (Jul 18, 2025):

I just added passkey in pangolin and can access the server admin account with both login/password or passkey

I only had the loop issue with a Pocket ID accounts.

Exactly what I observed. If I login using my local Pangolin Account everything works fine. Logging in using my OIDC (Pocket ID) I'm looping between my Pangolin domain and the /setup path.

<!-- gh-comment-id:3090443346 --> @elcajon commented on GitHub (Jul 18, 2025): > I just added passkey in pangolin and can access the server admin account with both login/password or passkey > > I only had the loop issue with a Pocket ID accounts. Exactly what I observed. If I login using my local Pangolin Account everything works fine. Logging in using my OIDC (Pocket ID) I'm looping between my Pangolin domain and the /setup path.
GiteaMirror commented 2026-05-06 13:58:25 -05:00
Author
Owner
Copy Link

@miloschwartz commented on GitHub (Jul 18, 2025):

Was able to reproduce and think I found the issue in the code. Doing more tests then will get a fix out asap

<!-- gh-comment-id:3090521094 --> @miloschwartz commented on GitHub (Jul 18, 2025): Was able to reproduce and think I found the issue in the code. Doing more tests then will get a fix out asap
GiteaMirror commented 2026-05-06 13:58:26 -05:00
Author
Owner
Copy Link

@miloschwartz commented on GitHub (Jul 18, 2025):

Should be fixed in latest 1.7.3

<!-- gh-comment-id:3091246000 --> @miloschwartz commented on GitHub (Jul 18, 2025): Should be fixed in latest 1.7.3
GiteaMirror commented 2026-05-06 13:58:28 -05:00
Author
Owner
Copy Link

@R-Nabil commented on GitHub (Jul 18, 2025):

Hey.

For me the redirect loop is fixed. Thank you.

However I still can't login with username/password and passkey. Is there a way I can reset the passkey through CLI or else ?

<!-- gh-comment-id:3091275417 --> @R-Nabil commented on GitHub (Jul 18, 2025): Hey. For me the redirect loop is fixed. Thank you. However I still can't login with username/password and passkey. Is there a way I can reset the passkey through CLI or else ?
GiteaMirror commented 2026-05-06 13:58:30 -05:00
Author
Owner
Copy Link

@Matt-CyberGuy commented on GitHub (Jul 18, 2025):

Unfortunately the new version only corrects the login loop. Within an org after adding a user and then authenticating through OIDC, while logged in my user within the org exists and I can browse whatever I've been given access to, but once I log out, and back in, the user disappears and the user looses access to everything.

<!-- gh-comment-id:3091275983 --> @Matt-CyberGuy commented on GitHub (Jul 18, 2025): Unfortunately the new version only corrects the login loop. Within an org after adding a user and then authenticating through OIDC, while logged in my user within the org exists and I can browse whatever I've been given access to, but once I log out, and back in, the user disappears and the user looses access to everything.
GiteaMirror commented 2026-05-06 13:58:33 -05:00
Author
Owner
Copy Link

@Matt-CyberGuy commented on GitHub (Jul 19, 2025):

Ok... I think I resolved it. for my OIDC set up, I had 'Auto Provision Users' enabled, thinking this was something I wanted for users that I had given access to already in my Authentik directory.

Once I disabled this and removed the user that was auto-created when I logged in, the issue above went away... looks like the option conflicts with the org directory somehow.

<!-- gh-comment-id:3091282134 --> @Matt-CyberGuy commented on GitHub (Jul 19, 2025): Ok... I think I resolved it. for my OIDC set up, I had 'Auto Provision Users' enabled, thinking this was something I wanted for users that I had given access to already in my Authentik directory. Once I disabled this and removed the user that was auto-created when I logged in, the issue above went away... looks like the option conflicts with the org directory somehow.
GiteaMirror commented 2026-05-06 13:58:37 -05:00
Author
Owner
Copy Link

@boomam commented on GitHub (Jul 19, 2025):

Ok... I think I resolved it. for my OIDC set up, I had 'Auto Provision Users' enabled, thinking this was something I wanted for users that I had given access to already in my Authentik directory.

Once I disabled this and removed the user that was auto-created when I logged in, the issue above went away... looks like the option conflicts with the org directory somehow.

It's likely related to #737

<!-- gh-comment-id:3091283926 --> @boomam commented on GitHub (Jul 19, 2025): > Ok... I think I resolved it. for my OIDC set up, I had 'Auto Provision Users' enabled, thinking this was something I wanted for users that I had given access to already in my Authentik directory. > > Once I disabled this and removed the user that was auto-created when I logged in, the issue above went away... looks like the option conflicts with the org directory somehow. It's likely related to #737
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
api
authentication
bug
config
dependencies
docker
documentation
enhancement
good first issue
help wanted
Improvement
Look Into
needs investigating
networking
new feature
non-critical bug
potential bug
pull-request
Mirrored from GitHub Pull Request
 question
reverse proxy
Security
stale
ui
wontfix
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/pangolin#10514
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?