[GH-ISSUE #1381] Cant delete user from pangolin that was created using OIDC via Authentik #1884

New Issue

Closed

opened 2026-04-16 08:44:33 -05:00 by GiteaMirror · 11 comments

GiteaMirror commented 2026-04-16 08:44:33 -05:00

Owner

Copy Link

Originally created by @sudoicezen on GitHub (Aug 29, 2025).
Original GitHub issue: https://github.com/fosrl/pangolin/issues/1381

I'm toying around with setting up OIDC and have been able to get authentik to work to some extent but have not been able to get auto provision users to work just yet.

Several times ive logged in using authentik and several times ive had to delete the user so that I could try again.

The situation now is when I go delete the user it asks me to type in that users "name" which in this case is a long string of alpha numeric characters and it keeps stating that its incorrect.

Shy of redeploying im not sure what to do here.

Originally created by @sudoicezen on GitHub (Aug 29, 2025). Original GitHub issue: https://github.com/fosrl/pangolin/issues/1381 I'm toying around with setting up OIDC and have been able to get authentik to work to some extent but have not been able to get auto provision users to work just yet. Several times ive logged in using authentik and several times ive had to delete the user so that I could try again. The situation now is when I go delete the user it asks me to type in that users "name" which in this case is a long string of alpha numeric characters and it keeps stating that its incorrect. Shy of redeploying im not sure what to do here.

GiteaMirror added the stale label 2026-04-16 08:44:33 -05:00

GiteaMirror closed this issue 2026-04-16 08:44:34 -05:00

GiteaMirror commented 2026-04-16 08:44:35 -05:00

Author

Owner

Copy Link

@MarlosChida commented on GitHub (Aug 29, 2025):

I am using Entra ID set using OIDC and It just works fine. When I want to delete a user, I can just type the user's e-mail and It works.

I also have Group Role Mapping from the OIDC provider and It works perfect.

Can you post your settings?

<!-- gh-comment-id:3238140926 --> @MarlosChida commented on GitHub (Aug 29, 2025): I am using Entra ID set using OIDC and It just works fine. When I want to delete a user, I can just type the user's e-mail and It works. I also have Group Role Mapping from the OIDC provider and It works perfect. Can you post your settings? <img width="1549" height="734" alt="Image" src="https://github.com/user-attachments/assets/5647c67c-44c4-4951-84c5-98b978ed1493" /> <img width="1654" height="791" alt="Image" src="https://github.com/user-attachments/assets/e81bce2e-beb5-4b8f-ab99-16e9e9ca11ae" />

GiteaMirror commented 2026-04-16 08:44:35 -05:00

Author

Owner

Copy Link

@miloschwartz commented on GitHub (Sep 27, 2025):

Not able to reproduce. You should be able to copy the name in the modal into the input box as confirmation. Is this in the server admin UI or the org users UI?

<!-- gh-comment-id:3342104781 --> @miloschwartz commented on GitHub (Sep 27, 2025): Not able to reproduce. You should be able to copy the name in the modal into the input box as confirmation. Is this in the server admin UI or the org users UI?

GiteaMirror commented 2026-04-16 08:44:36 -05:00

Author

Owner

Copy Link

@RJDavison commented on GitHub (Oct 2, 2025):

I'm getting the same problem trying to delete an Autoprovisioned user through Authentik. The username string cant be used to delete the user.

The user in question wasnt given a name by pangolin so I added the user again and it worked but now im left with this entity that I cant delete

If I dete the user with the allocated name, the unamed one still remains.

<!-- gh-comment-id:3360521418 --> @RJDavison commented on GitHub (Oct 2, 2025): I'm getting the same problem trying to delete an Autoprovisioned user through Authentik. The username string cant be used to delete the user. <img width="521" height="432" alt="Image" src="https://github.com/user-attachments/assets/0d9107d1-47bc-433a-a597-a95d382c7eb7" /> The user in question wasnt given a name by pangolin so I added the user again and it worked but now im left with this entity that I cant delete <img width="1390" height="163" alt="Image" src="https://github.com/user-attachments/assets/ebc8e6f7-a185-4108-95e2-5b27f1020efc" /> If I dete the user with the allocated name, the unamed one still remains.

GiteaMirror commented 2026-04-16 08:44:37 -05:00

Author

Owner

Copy Link

@sudoicezen commented on GitHub (Oct 2, 2025):

I'm getting the same problem trying to delete an Autoprovisioned user through Authentik. The username string cant be used to delete the user.

The user in question wasnt given a name by pangolin so I added the user again and it worked but now im left with this entity that I cant delete If I dete the user with the allocated name, the unamed one still remains.

This was my exact issue. I gave up on this config for a couple of reasons though. For starters I couldn't get users to auto prevision. The other is I really didn't need any other users to access sites where I had pangolin set to require authentication via pangolin so it would be a waste of time for my use case.

<!-- gh-comment-id:3360574830 --> @sudoicezen commented on GitHub (Oct 2, 2025): > I'm getting the same problem trying to delete an Autoprovisioned user through Authentik. The username string cant be used to delete the user. > > <img alt="Image" width="521" height="432" src="https://private-user-images.githubusercontent.com/1660611/496605027-0d9107d1-47bc-433a-a597-a95d382c7eb7.png?jwt=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3NTk0MDMwMjcsIm5iZiI6MTc1OTQwMjcyNywicGF0aCI6Ii8xNjYwNjExLzQ5NjYwNTAyNy0wZDkxMDdkMS00N2JjLTQzM2EtYTU5Ny1hOTVkMzgyYzdlYjcucG5nP1gtQW16LUFsZ29yaXRobT1BV1M0LUhNQUMtU0hBMjU2JlgtQW16LUNyZWRlbnRpYWw9QUtJQVZDT0RZTFNBNTNQUUs0WkElMkYyMDI1MTAwMiUyRnVzLWVhc3QtMSUyRnMzJTJGYXdzNF9yZXF1ZXN0JlgtQW16LURhdGU9MjAyNTEwMDJUMTA1ODQ3WiZYLUFtei1FeHBpcmVzPTMwMCZYLUFtei1TaWduYXR1cmU9NmEzNGFiZTdkYTlhZjU2ZTU0MWUwYTdiMGZmYzJjZjExZTc3MjQ1NTY0YTQ4NDljOTBlYzE1ZTM0ZjI1NjA3YSZYLUFtei1TaWduZWRIZWFkZXJzPWhvc3QifQ.4TBo-dsWoNW4r4WyrDDRkxGziGI9l03wEdOBfCR-JKc"> > The user in question wasnt given a name by pangolin so I added the user again and it worked but now im left with this entity that I cant delete > > <img alt="Image" width="1390" height="163" src="https://private-user-images.githubusercontent.com/1660611/496606376-ebc8e6f7-a185-4108-95e2-5b27f1020efc.png?jwt=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.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.t1XaMvu6eoazctIaAoAgW3wl1t0AC-vHTr3QFkj14Xs"> > If I dete the user with the allocated name, the unamed one still remains. This was my exact issue. I gave up on this config for a couple of reasons though. For starters I couldn't get users to auto prevision. The other is I really didn't need any other users to access sites where I had pangolin set to require authentication via pangolin so it would be a waste of time for my use case.

GiteaMirror commented 2026-04-16 08:44:37 -05:00

Author

Owner

Copy Link

@RJDavison commented on GitHub (Oct 2, 2025):

I feel your frustration. I'm not sure if this feature is broken as the only way I can get Authentik autoprovisioned users added (through lots of trial and error) was to copy the user string for the autoprovisioned user from Server Admin =>> users into the Org users. It would then allow me to log in using Authentik. If I didnt do this then the autoprovisioned users were not being added to an org and logging in with their credentials would lead to a continious boot loop. There is a similar bug open where this loop is occuring.

Great software but it seems a very convoluted way of adding users if this is the intended action!

<!-- gh-comment-id:3360626115 --> @RJDavison commented on GitHub (Oct 2, 2025): I feel your frustration. I'm not sure if this feature is broken as the only way I can get Authentik autoprovisioned users added (through lots of trial and error) was to copy the user string for the autoprovisioned user from Server Admin =>> users into the Org users. It would then allow me to log in using Authentik. If I didnt do this then the autoprovisioned users were not being added to an org and logging in with their credentials would lead to a continious boot loop. There is a similar bug open where this loop is occuring. Great software but it seems a very convoluted way of adding users if this is the intended action!

GiteaMirror commented 2026-04-16 08:44:38 -05:00

Author

Owner

Copy Link

@github-actions[bot] commented on GitHub (Oct 17, 2025):

This issue has been automatically marked as stale due to 14 days of inactivity. It will be closed in 14 days if no further activity occurs.

<!-- gh-comment-id:3413339366 --> @github-actions[bot] commented on GitHub (Oct 17, 2025): This issue has been automatically marked as stale due to 14 days of inactivity. It will be closed in 14 days if no further activity occurs.

GiteaMirror commented 2026-04-16 08:44:38 -05:00

Author

Owner

Copy Link

@RJDavison commented on GitHub (Oct 17, 2025):

So ive just upgraded to 1.11.0 in a hope that autoprovisioning with Authentik works - but alas no.

I add an authentik user to pangolin and then try and log in with that user through Authentik and then it gives me this....

<!-- gh-comment-id:3415586884 --> @RJDavison commented on GitHub (Oct 17, 2025): So ive just upgraded to 1.11.0 in a hope that autoprovisioning with Authentik works - but alas no. I add an authentik user to pangolin and then try and log in with that user through Authentik and then it gives me this.... <img width="514" height="283" alt="Image" src="https://github.com/user-attachments/assets/c7c399d2-334b-498a-ba99-8ca1b496842e" />

GiteaMirror commented 2026-04-16 08:44:39 -05:00

Author

Owner

Copy Link

@miloschwartz commented on GitHub (Oct 17, 2025):

@RJDavison Do you have a policy created in the IDP settings? When you enable auto provision, you still need to set a policy to ensure the user gets mapped to the correct organization / roles.

<!-- gh-comment-id:3416670168 --> @miloschwartz commented on GitHub (Oct 17, 2025): @RJDavison Do you have a policy created in the IDP settings? When you enable auto provision, you still need to set a policy to ensure the user gets mapped to the correct organization / roles.

GiteaMirror commented 2026-04-16 08:44:39 -05:00

Author

Owner

Copy Link

@RJDavison commented on GitHub (Oct 17, 2025):

@miloschwartz My bad. Apologies. I had some syntax errors in the IDP policy. Now sorted and working. Thank you.

<!-- gh-comment-id:3417179535 --> @RJDavison commented on GitHub (Oct 17, 2025): @miloschwartz My bad. Apologies. I had some syntax errors in the IDP policy. Now sorted and working. Thank you.

GiteaMirror commented 2026-04-16 08:44:40 -05:00

Author

Owner

Copy Link

@github-actions[bot] commented on GitHub (Nov 1, 2025):

This issue has been automatically marked as stale due to 14 days of inactivity. It will be closed in 14 days if no further activity occurs.

<!-- gh-comment-id:3475296519 --> @github-actions[bot] commented on GitHub (Nov 1, 2025): This issue has been automatically marked as stale due to 14 days of inactivity. It will be closed in 14 days if no further activity occurs.

GiteaMirror commented 2026-04-16 08:44:40 -05:00

Author

Owner

Copy Link

@github-actions[bot] commented on GitHub (Nov 16, 2025):

This issue has been automatically closed due to inactivity. If you believe this is still relevant, please open a new issue with up-to-date information.

<!-- gh-comment-id:3537180237 --> @github-actions[bot] commented on GitHub (Nov 16, 2025): This issue has been automatically closed due to inactivity. If you believe this is still relevant, please open a new issue with up-to-date information.

GiteaMirror referenced this issue 2026-04-16 09:34:59 -05:00

[PR #1884] [MERGED] Bump Traefik to v3.6 due to Docker 29.X.X compatibility #2747

GiteaMirror referenced this issue 2026-04-20 09:02:23 -05:00

[PR #1884] [MERGED] Bump Traefik to v3.6 due to Docker 29.X.X compatibility #4690

GiteaMirror referenced this issue 2026-04-23 02:41:31 -05:00

[PR #1884] [MERGED] Bump Traefik to v3.6 due to Docker 29.X.X compatibility #5634

GiteaMirror referenced this issue 2026-04-25 16:17:45 -05:00

[PR #1884] [MERGED] Bump Traefik to v3.6 due to Docker 29.X.X compatibility #7549

GiteaMirror referenced this issue 2026-04-30 05:44:04 -05:00

[PR #1884] [MERGED] Bump Traefik to v3.6 due to Docker 29.X.X compatibility #9528

GiteaMirror referenced this issue 2026-05-06 16:13:51 -05:00

[PR #1884] [MERGED] Bump Traefik to v3.6 due to Docker 29.X.X compatibility #11547

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

resource-policies

copilot/fix-create-alert-visibility

dev

dependabot/npm_and_yarn/prod-patch-updates-64dd675a88

dependabot/npm_and_yarn/dev-minor-updates-10ef4f0f15

redis

crowdin_dev

newt-install-commands

dependabot/npm_and_yarn/multi-d2fd79378c

dependabot/npm_and_yarn/uuid-14.0.0

dependabot/npm_and_yarn/postcss-8.5.10

miloschwartz-patch-2

dependabot/github_actions/actions/setup-node-6.4.0

dependabot/npm_and_yarn/next-16.2.1

dependabot/npm_and_yarn/recharts-3.8.1

dependabot/npm_and_yarn/next-intl-4.9.1

cross-org-idp

update-readme

miloschwartz-patch-1

breakout-sites-tables

revert-2766-feature/systemd-install-instructions

dependabot/docker/docker/library/node-25-slim

ssh

delete-account

msg-delivery

org-only-idp

cicd

patch

site-targets-auto-login

1.18.2-s.5

1.18.2-s.4

1.18.2-s.3

1.18.2-s.2

1.18.2-s.1

1.18.2

1.18.2-s.0

1.18.1-s.7

1.18.1-s.6

1.18.1-s.5

1.18.1-s.4

1.18.1-s.3

1.18.1-s.2

1.18.1

1.18.1-s.1

1.18.1-s.0

1.18.0-s.2

1.18.0-s.1

1.18.0

1.18.0-s.0

1.17.1-s.7

1.17.1-s.6

1.18.0-rc.0

1.17.1-s.5

1.17.1-s.4

1.17.1-s.3

1.17.1

1.17.1-s.2

1.17.1-s.1

1.17.1-s.0

1.17.0-s.4

1.17.0

1.17.0-s.3

1.17.0-s.2

1.17.0-s.1

1.17.0-s.0

1.17.0-rc.0

1.16.2-s.22

1.16.2-s.21

1.16.2-s.20

1.16.2-s.19

1.16.2-s.18

1.16.2-s.17

1.16.2-s.16

1.16.2-s.15

1.16.2-s.14

1.16.2-s.13

1.16.2-s.12

1.16.2-s.11

1.16.2-s.10

1.16.2-s.9

1.16.2-s.8

1.16.2-s.7

1.16.2-s.6

1.16.2-s.5

1.16.2-s.4

1.16.2-s.3

1.16.2-s.2

1.16.2-s.1

1.16.2

1.16.2-s.0

1.16.1-s.1

1.16.1

1.16.1-s.0

1.16.0

1.16.0-s.1

1.16.0-s.0

1.16.0-rc.0

1.15.4-s.10

1.15.4-s.9

1.15.4-s.8

1.15.4-s.7

1.15.4-s.6

1.15.4-s.5

1.15.4-s.4

1.15.4-s.3

1.15.4-s.2

1.15.4-s.1

1.15.4

1.15.4-s.0

1.15.3

1.15.3-s.1

1.15.3-s.0

1.15.2

1.15.1-s.1

1.15.1-s.0

1.15.1

1.15.0-s.5

1.15.0

1.15.0-s.4

1.15.0-s.3

1.15.0-s.2

1.15.0-s.1

1.15.0-s.0

1.15.0-rc.0

1.14.1-s.3

1.14.1-s.2

1.14.1-s.1

1.14.1-s.0

1.14.1

1.14.0-s.2

1.14.0

1.14.0-rc.0

1.13.1

1.13.1-s.0

1.13.0

1.13.0.s.0

1.13.0-rc.0

1.12.2-s.5

1.12.3

1.12.2-s.4

1.12.2-s.3

1.12.2-s.2

1.12.2-s.1

1.12.2

1.12.2-s.0

1.12.1

1.12.0

1.12.0-s.0

1.12.0-rc.0

1.11.1

1.11.1-s.0

1.11.0-s.5

1.11.0

1.11.0-s.4

1.11.0-s.3

1.11.0-s.2

1.11.0-s.1

1.11.0-s.0

1.10.3

1.10.2

1.10.1

1.10.0

1.9.4

1.9.3

1.9.2

1.9.1

1.9.0

1.8.0

1.7.3

1.7.2

1.7.1

1.7.0

1.6.2

1.6.1

1.6.0

1.5.1

1.5.0

1.4.0

1.3.2

1.3.1

1.3.0

1.2.0

1.1.0

1.0.1

1.0.0

1.0.0-beta.15

1.0.0-beta.14

1.0.0-beta.13

1.0.0-beta.12

1.0.0-beta.11

1.0.0-beta.10

1.0.0-beta.9

1.0.0-beta.8

1.0.0-beta.7

1.0.0-beta.6

1.0.0-beta.5

1.0.0-beta.4

1.0.0-beta.3

1.0.0-beta.2

1.0.0-beta.1

Labels

Clear labels

api

authentication

bug

config

dependencies

docker

documentation

enhancement

good first issue

help wanted

Improvement

Look Into

needs investigating

networking

new feature

non-critical bug

potential bug

pull-request

Mirrored from GitHub Pull Request

question

reverse proxy

Security

stale

ui

wontfix

No Label stale

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/pangolin#1884