[GH-ISSUE #1081] Infinite redirect after upgrade to 1.7.1 #16733

New Issue

GiteaMirror · 2026-05-18T16:56:38-05:00

GiteaMirror commented

2026-05-18 16:56:38 -05:00

Originally created by @RomRider on GitHub (Jul 18, 2025).
Original GitHub issue: https://github.com/fosrl/pangolin/issues/1081

After updating to 1.7.1, I get an infinite redirect loop between /setup and / after login using OIDC and thus can't connect anymore.

There's nothing in the logs.

Originally created by @RomRider on GitHub (Jul 18, 2025). Original GitHub issue: https://github.com/fosrl/pangolin/issues/1081 After updating to 1.7.1, I get an infinite redirect loop between `/setup` and `/` after login using OIDC and thus can't connect anymore. There's nothing in the logs.

GiteaMirror closed this issue

2026-05-18 16:56:39 -05:00

GiteaMirror commented

2026-05-18 16:56:39 -05:00

@R-Nabil commented on GitHub (Jul 18, 2025):

I have the same exact issue.

Funnily other services routes through pangolin works fine.

@R-Nabil commented on GitHub (Jul 18, 2025): I have the same exact issue. Funnily other services routes through pangolin works fine.

GiteaMirror commented

2026-05-18 16:56:40 -05:00

@miloschwartz commented on GitHub (Jul 18, 2025):

Are there any browser logs or server side logs that seem to correspond to this? Will get a patch out asap once I can replicate.

@miloschwartz commented on GitHub (Jul 18, 2025): Are there any browser logs or server side logs that seem to correspond to this? Will get a patch out asap once I can replicate.

GiteaMirror commented

2026-05-18 16:56:40 -05:00

@R-Nabil commented on GitHub (Jul 18, 2025):

Are there any browser logs or server side logs that seem to correspond to this? Will get a patch out asap once I can replicate.

Let me know how I can help but as of now I don't see any logs

@R-Nabil commented on GitHub (Jul 18, 2025): > Are there any browser logs or server side logs that seem to correspond to this? Will get a patch out asap once I can replicate. Let me know how I can help but as of now I don't see any logs

GiteaMirror commented

2026-05-18 16:56:41 -05:00

@DJKatastrof commented on GitHub (Jul 18, 2025):

I thought something was wrong with my instance lol. But im having the same issue

@DJKatastrof commented on GitHub (Jul 18, 2025): I thought something was wrong with my instance lol. But im having the same issue

GiteaMirror commented

2026-05-18 16:56:41 -05:00

@pinionless commented on GitHub (Jul 18, 2025):

I had this issue.
I Removed Pocket ID user (delete) from Pangolin.

Logged in again with Pocket ID to auto create new user and it works now without redirect loop

@pinionless commented on GitHub (Jul 18, 2025): I had this issue. I Removed Pocket ID user (delete) from Pangolin. Logged in again with Pocket ID to auto create new user and it works now without redirect loop

GiteaMirror commented

2026-05-18 16:56:41 -05:00

@boomam commented on GitHub (Jul 18, 2025):

Same issue for me, too.
v1.7.2

Removing the OIDC user from the system doesnt fix it either.
Instead login drops me back to the login screen despite the validation step returning a green 'connected' tick for a second or so.

Checking the user list at org level with the admin user shows the OIDC user getting created though.

@boomam commented on GitHub (Jul 18, 2025): Same issue for me, too. v1.7.2   Removing the OIDC user from the system doesnt fix it either. Instead login drops me back to the login screen despite the validation step returning a green 'connected' tick for a second or so.   Checking the user list at org level with the admin user shows the OIDC user getting created though.

GiteaMirror commented

2026-05-18 16:56:42 -05:00

@R-Nabil commented on GitHub (Jul 18, 2025):

I had this issue. I Removed Pocket ID user (delete) from Pangolin.

Logged in again with Pocket ID to auto create new user and it works now without redirect loop

May I ask how did you remove the user ?

@R-Nabil commented on GitHub (Jul 18, 2025): > I had this issue. I Removed Pocket ID user (delete) from Pangolin. > > Logged in again with Pocket ID to auto create new user and it works now without redirect loop May I ask how did you remove the user ?

GiteaMirror commented

2026-05-18 16:56:42 -05:00

@pinionless commented on GitHub (Jul 18, 2025):

May I ask how did you remove the user ?

Well, Pocket ID account is separate to the admin account defined in the yml: "users: server_admin:"

So I deleted all cookies for my pangolin.domain.com and logged in using the login/password

@pinionless commented on GitHub (Jul 18, 2025): > May I ask how did you remove the user ? Well, Pocket ID account is separate to the admin account defined in the yml: "users: server_admin:" So I deleted all cookies for my pangolin.domain.com and logged in using the login/password

GiteaMirror commented

2026-05-18 16:56:42 -05:00

@R-Nabil commented on GitHub (Jul 18, 2025):

ok. for me logging in as the admin also fails with the same infinite loop.
I set up a passkey, which could be why maybe ?

So clearing cookies didn't help, nor can I delete the non-admin user.

@R-Nabil commented on GitHub (Jul 18, 2025): ok. for me logging in as the admin also fails with the same infinite loop. I set up a passkey, which could be why maybe ? So clearing cookies didn't help, nor can I delete the non-admin user.

GiteaMirror commented

2026-05-18 16:56:43 -05:00

@pinionless commented on GitHub (Jul 18, 2025):

ok. for me logging in as the admin also fails with the same infinite loop. I set up a passkey, which could be why maybe ?

So clearing cookies didn't help, nor can I delete the non-admin user.

I just added passkey in pangolin and can access the server admin account with both login/password or passkey

I only had the loop issue with a Pocket ID accounts.

also,
I don't see the "users: server_admin:" I have in my config.yml in the documentation. I got some outdated config I quess

@pinionless commented on GitHub (Jul 18, 2025): > ok. for me logging in as the admin also fails with the same infinite loop. I set up a passkey, which could be why maybe ? > > So clearing cookies didn't help, nor can I delete the non-admin user. I just added passkey in pangolin and can access the server admin account with both login/password or passkey I only had the loop issue with a Pocket ID accounts. also, I don't see the "users: server_admin:" I have in my config.yml in the documentation. I got some outdated config I quess

GiteaMirror commented

2026-05-18 16:56:43 -05:00

@Goreden commented on GitHub (Jul 18, 2025):

I thought I was the only one whose stuck in an infinite loop.

@Goreden commented on GitHub (Jul 18, 2025): I thought I was the only one whose stuck in an infinite loop.

GiteaMirror commented

2026-05-18 16:56:43 -05:00

@LeonvanHeerden commented on GitHub (Jul 18, 2025):

I started having the issue after adding a new resource.

I thought it was as a result of the domain that I entered on the HTTPS Settings section. I entered my main domain with no subdomain. It seems that you are able to enter your primary Pangolin DNS entry for a resource, and it accepts it.
E.g.
Pangolin FQDN: p.example.com
New Resource should be : resource.p.example.com
But I entered: p.example.com

The old screen had a "Subdomain" edit field and you could select a domain you wanted from a drop down. So it was not possible to duplicate your pangolin FQDN on a resource.

I had to restore my backup DB to be able to get back into the system.

@LeonvanHeerden commented on GitHub (Jul 18, 2025): I started having the issue after adding a new resource. I thought it was as a result of the domain that I entered on the `HTTPS Settings` section. I entered my main domain with no subdomain. It seems that you are able to enter your primary Pangolin DNS entry for a resource, and it accepts it. E.g. Pangolin FQDN: `p.example.com` New Resource should be : `resource.p.example.com` But I entered: `p.example.com` The old screen had a "Subdomain" edit field and you could select a domain you wanted from a drop down. So it was not possible to duplicate your pangolin FQDN on a resource. I had to restore my backup DB to be able to get back into the system.

GiteaMirror commented

2026-05-18 16:56:44 -05:00

@oschwartz10612 commented on GitHub (Jul 18, 2025):

Looking into it now!

@oschwartz10612 commented on GitHub (Jul 18, 2025): Looking into it now!

GiteaMirror commented

2026-05-18 16:56:44 -05:00

@elcajon commented on GitHub (Jul 18, 2025):

I just added passkey in pangolin and can access the server admin account with both login/password or passkey

I only had the loop issue with a Pocket ID accounts.

Exactly what I observed. If I login using my local Pangolin Account everything works fine. Logging in using my OIDC (Pocket ID) I'm looping between my Pangolin domain and the /setup path.

@elcajon commented on GitHub (Jul 18, 2025): > I just added passkey in pangolin and can access the server admin account with both login/password or passkey > > I only had the loop issue with a Pocket ID accounts. Exactly what I observed. If I login using my local Pangolin Account everything works fine. Logging in using my OIDC (Pocket ID) I'm looping between my Pangolin domain and the /setup path.

GiteaMirror commented

2026-05-18 16:56:45 -05:00

@miloschwartz commented on GitHub (Jul 18, 2025):

Was able to reproduce and think I found the issue in the code. Doing more tests then will get a fix out asap

@miloschwartz commented on GitHub (Jul 18, 2025): Was able to reproduce and think I found the issue in the code. Doing more tests then will get a fix out asap

GiteaMirror commented

2026-05-18 16:56:45 -05:00

@miloschwartz commented on GitHub (Jul 18, 2025):

Should be fixed in latest 1.7.3

@miloschwartz commented on GitHub (Jul 18, 2025): Should be fixed in latest 1.7.3

GiteaMirror commented

2026-05-18 16:56:46 -05:00

@R-Nabil commented on GitHub (Jul 18, 2025):

Hey.

For me the redirect loop is fixed. Thank you.

However I still can't login with username/password and passkey. Is there a way I can reset the passkey through CLI or else ?

@R-Nabil commented on GitHub (Jul 18, 2025): Hey. For me the redirect loop is fixed. Thank you. However I still can't login with username/password and passkey. Is there a way I can reset the passkey through CLI or else ?

GiteaMirror commented

2026-05-18 16:56:46 -05:00

@Matt-CyberGuy commented on GitHub (Jul 18, 2025):

Unfortunately the new version only corrects the login loop. Within an org after adding a user and then authenticating through OIDC, while logged in my user within the org exists and I can browse whatever I've been given access to, but once I log out, and back in, the user disappears and the user looses access to everything.

@Matt-CyberGuy commented on GitHub (Jul 18, 2025): Unfortunately the new version only corrects the login loop. Within an org after adding a user and then authenticating through OIDC, while logged in my user within the org exists and I can browse whatever I've been given access to, but once I log out, and back in, the user disappears and the user looses access to everything.

GiteaMirror commented

2026-05-18 16:56:47 -05:00

@Matt-CyberGuy commented on GitHub (Jul 19, 2025):

Ok... I think I resolved it. for my OIDC set up, I had 'Auto Provision Users' enabled, thinking this was something I wanted for users that I had given access to already in my Authentik directory.

Once I disabled this and removed the user that was auto-created when I logged in, the issue above went away... looks like the option conflicts with the org directory somehow.

@Matt-CyberGuy commented on GitHub (Jul 19, 2025): Ok... I think I resolved it. for my OIDC set up, I had 'Auto Provision Users' enabled, thinking this was something I wanted for users that I had given access to already in my Authentik directory. Once I disabled this and removed the user that was auto-created when I logged in, the issue above went away... looks like the option conflicts with the org directory somehow.

GiteaMirror commented

2026-05-18 16:56:47 -05:00

@boomam commented on GitHub (Jul 19, 2025):

Ok... I think I resolved it. for my OIDC set up, I had 'Auto Provision Users' enabled, thinking this was something I wanted for users that I had given access to already in my Authentik directory.

Once I disabled this and removed the user that was auto-created when I logged in, the issue above went away... looks like the option conflicts with the org directory somehow.

It's likely related to #737

@boomam commented on GitHub (Jul 19, 2025): > Ok... I think I resolved it. for my OIDC set up, I had 'Auto Provision Users' enabled, thinking this was something I wanted for users that I had given access to already in my Authentik directory. > > Once I disabled this and removed the user that was auto-created when I logged in, the issue above went away... looks like the option conflicts with the org directory somehow. It's likely related to #737

Sign in to join this conversation.

Branches Tags

main

dev

auto-update

fix-site-delete

dependabot/npm_and_yarn/prod-patch-updates-94425a55d0

dependabot/npm_and_yarn/dev-minor-updates-4aaf4dbce4

dependabot/go_modules/install/minor-updates-a249525a56

fix-3104

exit-node-reconnect

fix-logoUrl

button-to-rebuild-association

crowdin_dev

rdp-ssh

dependabot/npm_and_yarn/brace-expansion-5.0.6

copilot/fix-documentation-input-output-types

dependabot/github_actions/sigstore/cosign-installer-4.1.2

redis

resource-policies

dependabot/npm_and_yarn/next-15.5.18

dependabot/npm_and_yarn/fast-uri-3.1.2

s3

dependabot/npm_and_yarn/fast-xml-builder-1.2.0

dependabot/npm_and_yarn/axios-1.15.2

dependabot/npm_and_yarn/next-intl-4.9.2

dependabot/docker/node-26-alpine

dependabot/docker/docker/library/node-26-slim

dependabot/npm_and_yarn/multi-7bdfbe8666

dependabot/npm_and_yarn/multi-d2fd79378c

dependabot/npm_and_yarn/uuid-14.0.0

dependabot/npm_and_yarn/postcss-8.5.10

dependabot/github_actions/actions/setup-node-6.4.0

dependabot/npm_and_yarn/next-16.2.1

dependabot/npm_and_yarn/recharts-3.8.1

cross-org-idp

breakout-sites-tables

ssh

delete-account

msg-delivery

org-only-idp

cicd

patch

site-targets-auto-login

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/pangolin#16733