OIDC not working with latest "unstable" #2054

New Issue

GiteaMirror · 2026-03-22T13:53:29-05:00

GiteaMirror commented

2026-03-22 13:53:29 -05:00

Originally created by @admin-ideentriebwerk on GitHub (Dec 15, 2024).

Description

I updated from 0.24.5 to the latest unstable and now getting 2024-12-15T19:16:17Z: CRITICAL ▶ 0fa It looks like your openid configuration is in the wrong format. Please check the docs for the correct format.

With 0.24.5 it is working.

This is my config:

auth:
  openid:    
    enabled: true
    redirecturl: "https://vikunja.xxxx.com/auth/openid/"
    providers:     
      - name: authentik
        authurl: "https://authentik.xxxx.com/application/o/vikunja/"
        logouturl: "https://authentik.xxxx.com/application/o/vikunja/end-session/"
        clientid: "xxxx"
        clientsecret: "xxxx"
        scope: openid profile email vikunja_scope

This is my docker-compose:

name: vikunja
services:
  cft-vikunja-xxxxxxxxxx-com:
    container_name: cft-vikunja-xxxxxxxxxx-com
    image: cloudflare/cloudflared:2024.11.1
    restart: always
    environment:
      TUNNEL_TOKEN: $TUNNEL_TOKEN
    command: tunnel --no-autoupdate run
    networks:
      - cft-vikunja-xxxxxxxxxx-com

  vikunja:
    image: vikunja/vikunja:0.24.5
    container_name: vikunja
    environment:
      VIKUNJA_SERVICE_JWTSECRET: $VIKUNJA_SERVICE_JWTSECRET
      VIKUNJA_SERVICE_PUBLICURL: https://vikunja.xxxxxxxxxx.com
      VIKUNJA_SERVICE_ENABLEREGISTRATION: false
      VIKUNJA_SERVICE_TIMEZONE: Europe/Vienna
      VIKUNJA_SERVICE_ENABLEPUBLICTEAMS: false
      VIKUNJA_SERVICE_ENABLEOPENIDTEAMUSERSEARCH: true
      VIKUNJA_DATABASE_HOST: vikunja-db
      VIKUNJA_DATABASE_PASSWORD: $VIKUNJA_DATABASE_PASSWORD
      VIKUNJA_DATABASE_TYPE: postgres
      VIKUNJA_DATABASE_USER: vikunja
      VIKUNJA_DATABASE_DATABASE: vikunja
      VIKUNJA_REDIS_ENABLED: 1
      VIKUNJA_REDIS_HOST: 'vikunja-redis:6379'
      VIKUNJA_CACHE_ENABLED: 1
      VIKUNJA_CACHE_TYPE: redis
      VIKUNJA_MAILER_ENABLED: true
      VIKUNJA_MAILER_HOST: smtp.gmail.com
      VIKUNJA_MAILER_PORT: 465
      VIKUNJA_MAILER_AUTHTYPE: plain
      VIKUNJA_MAILER_USERNAME: it-services@xxxxxxxxxx.com
      VIKUNJA_MAILER_PASSWORD: $VIKUNJA_MAILER_PASSWORD
      VIKUNJA_MAILER_FROMEMAIL: "it-services @ vikunja"
      VIKUNJA_MIGRATION_TRELLO_ENABLE: true
      VIKUNJA_MIGRATION_TRELLO_KEY: $VIKUNJA_MIGRATION_TRELLO_KEY
      VIKUNJA_BACKGROUNDS_PROVIDERS_UNSPLASH_ENABLED: true
      VIKUNJA_BACKGROUNDS_PROVIDERS_UNSPLASH_ACCESSTOKEN: $VIKUNJA_UNSPLASH_ACCESSTOKEN
      VIKUNJA_KEYVALUE_TYPE: redis
      VIKUNJA_AUTH_LOCAL_ENABLED: false
      VIKUNJA_DEFAULTSETTINGS_EMAIL_REMINDERS_ENABLED: true
      VIKUNJA_DEFAULTSETTINGS_DISCOVERABLE_BY_NAME: true
      VIKUNJA_DEFAULTSETTINGS_DISCOVERABLE_BY_EMAIL: true
      VIKUNJA_DEFAULTSETTINGS_OVERDUE_TASKS_REMINDERS_ENABLED: true
      VIKUNJA_DEFAULTSETTINGS_OVERDUE_TASKS_REMINDERS_TIME: "7:00"
      VIKUNJA_DEFAULTSETTINGS_DEFAULT_PROJECT_ID: 0
      VIKUNJA_DEFAULTSETTINGS_WEEK_START: 1
      VIKUNJA_DEFAULTSETTINGS_TIMEZONE: Europe/Vienna
      VIKUNJA_LOG_LEVEL: DEBUG
    volumes:
      - vikunja-files:/app/vikunja/files
      - vikunja-config:/etc/vikunja
    depends_on:
      - vikunja-db
      - vikunja-redis
    restart: always
    networks:
      - vikunja
      - cft-vikunja-xxxxxxxxxx-com

  vikunja-db:
    image: postgres:16.6
    container_name: vikunja-db
    environment:
      POSTGRES_DB: vikunja
      POSTGRES_USER: vikunja
      POSTGRES_PASSWORD: $VIKUNJA_DATABASE_PASSWORD
    volumes:
      - pg-data:/var/lib/postgresql/data
    restart: always
    healthcheck:
      test: ["CMD-SHELL", "pg_isready -h localhost -U $$POSTGRES_USER"]
      interval: 2s    
    networks:
      - vikunja

  vikunja-redis:
    image: redis:7.4.1
    container_name: vikunja-redis
    networks:
      - vikunja

volumes:
  pg-data:
  vikunja-files:
  vikunja-config:

networks:
  vikunja:
    name: vikunja
  cft-vikunja-xxxxxxxxxx-com:
    name: cft-vikunja-xxxxxxxxxx-com

Vikunja Version

unstable

Browser and version

No response

Can you reproduce the bug on the Vikunja demo site?

Please select

Screenshots

No response

Originally created by @admin-ideentriebwerk on GitHub (Dec 15, 2024). ### Description I updated from `0.24.5` to the latest `unstable` and now getting `2024-12-15T19:16:17Z: CRITICAL ▶ 0fa It looks like your openid configuration is in the wrong format. Please check the docs for the correct format.` With `0.24.5` it is working. This is my config: ``` auth: openid: enabled: true redirecturl: "https://vikunja.xxxx.com/auth/openid/" providers: - name: authentik authurl: "https://authentik.xxxx.com/application/o/vikunja/" logouturl: "https://authentik.xxxx.com/application/o/vikunja/end-session/" clientid: "xxxx" clientsecret: "xxxx" scope: openid profile email vikunja_scope ``` This is my `docker-compose`: ``` name: vikunja services: cft-vikunja-xxxxxxxxxx-com: container_name: cft-vikunja-xxxxxxxxxx-com image: cloudflare/cloudflared:2024.11.1 restart: always environment: TUNNEL_TOKEN: $TUNNEL_TOKEN command: tunnel --no-autoupdate run networks: - cft-vikunja-xxxxxxxxxx-com vikunja: image: vikunja/vikunja:0.24.5 container_name: vikunja environment: VIKUNJA_SERVICE_JWTSECRET: $VIKUNJA_SERVICE_JWTSECRET VIKUNJA_SERVICE_PUBLICURL: https://vikunja.xxxxxxxxxx.com VIKUNJA_SERVICE_ENABLEREGISTRATION: false VIKUNJA_SERVICE_TIMEZONE: Europe/Vienna VIKUNJA_SERVICE_ENABLEPUBLICTEAMS: false VIKUNJA_SERVICE_ENABLEOPENIDTEAMUSERSEARCH: true VIKUNJA_DATABASE_HOST: vikunja-db VIKUNJA_DATABASE_PASSWORD: $VIKUNJA_DATABASE_PASSWORD VIKUNJA_DATABASE_TYPE: postgres VIKUNJA_DATABASE_USER: vikunja VIKUNJA_DATABASE_DATABASE: vikunja VIKUNJA_REDIS_ENABLED: 1 VIKUNJA_REDIS_HOST: 'vikunja-redis:6379' VIKUNJA_CACHE_ENABLED: 1 VIKUNJA_CACHE_TYPE: redis VIKUNJA_MAILER_ENABLED: true VIKUNJA_MAILER_HOST: smtp.gmail.com VIKUNJA_MAILER_PORT: 465 VIKUNJA_MAILER_AUTHTYPE: plain VIKUNJA_MAILER_USERNAME: it-services@xxxxxxxxxx.com VIKUNJA_MAILER_PASSWORD: $VIKUNJA_MAILER_PASSWORD VIKUNJA_MAILER_FROMEMAIL: "it-services @ vikunja" VIKUNJA_MIGRATION_TRELLO_ENABLE: true VIKUNJA_MIGRATION_TRELLO_KEY: $VIKUNJA_MIGRATION_TRELLO_KEY VIKUNJA_BACKGROUNDS_PROVIDERS_UNSPLASH_ENABLED: true VIKUNJA_BACKGROUNDS_PROVIDERS_UNSPLASH_ACCESSTOKEN: $VIKUNJA_UNSPLASH_ACCESSTOKEN VIKUNJA_KEYVALUE_TYPE: redis VIKUNJA_AUTH_LOCAL_ENABLED: false VIKUNJA_DEFAULTSETTINGS_EMAIL_REMINDERS_ENABLED: true VIKUNJA_DEFAULTSETTINGS_DISCOVERABLE_BY_NAME: true VIKUNJA_DEFAULTSETTINGS_DISCOVERABLE_BY_EMAIL: true VIKUNJA_DEFAULTSETTINGS_OVERDUE_TASKS_REMINDERS_ENABLED: true VIKUNJA_DEFAULTSETTINGS_OVERDUE_TASKS_REMINDERS_TIME: "7:00" VIKUNJA_DEFAULTSETTINGS_DEFAULT_PROJECT_ID: 0 VIKUNJA_DEFAULTSETTINGS_WEEK_START: 1 VIKUNJA_DEFAULTSETTINGS_TIMEZONE: Europe/Vienna VIKUNJA_LOG_LEVEL: DEBUG volumes: - vikunja-files:/app/vikunja/files - vikunja-config:/etc/vikunja depends_on: - vikunja-db - vikunja-redis restart: always networks: - vikunja - cft-vikunja-xxxxxxxxxx-com vikunja-db: image: postgres:16.6 container_name: vikunja-db environment: POSTGRES_DB: vikunja POSTGRES_USER: vikunja POSTGRES_PASSWORD: $VIKUNJA_DATABASE_PASSWORD volumes: - pg-data:/var/lib/postgresql/data restart: always healthcheck: test: ["CMD-SHELL", "pg_isready -h localhost -U $$POSTGRES_USER"] interval: 2s networks: - vikunja vikunja-redis: image: redis:7.4.1 container_name: vikunja-redis networks: - vikunja volumes: pg-data: vikunja-files: vikunja-config: networks: vikunja: name: vikunja cft-vikunja-xxxxxxxxxx-com: name: cft-vikunja-xxxxxxxxxx-com ``` ### Vikunja Version unstable ### Browser and version _No response_ ### Can you reproduce the bug on the Vikunja demo site? Please select ### Screenshots _No response_

GiteaMirror closed this issue

2026-03-22 13:53:29 -05:00

GiteaMirror commented

2026-03-22 13:53:30 -05:00

@admin-ideentriebwerk commented on GitHub (Dec 15, 2024):

It looks like the config changed. With this config it works:

auth:
  openid:
    enabled: true
    redirecturl: https://vikunja.xxx.com/auth/openid/
    providers:
      authentik:
        name: authentik
        authurl: https://authentik.xxx.com/application/o/vikunja/
        logouturl: https://authentik.xxx.com/application/o/vikunja/end-session/
        clientid: "xxx"
        clientsecret: "xxx"
        scope: openid profile email vikunja_scope

@admin-ideentriebwerk commented on GitHub (Dec 15, 2024): It looks like the config changed. With this config it works: ``` auth: openid: enabled: true redirecturl: https://vikunja.xxx.com/auth/openid/ providers: authentik: name: authentik authurl: https://authentik.xxx.com/application/o/vikunja/ logouturl: https://authentik.xxx.com/application/o/vikunja/end-session/ clientid: "xxx" clientsecret: "xxx" scope: openid profile email vikunja_scope ```

GiteaMirror referenced this issue

2026-03-22 14:56:31 -05:00

[PR #2054] [MERGED] fix(deps): update module github.com/yuin/goldmark to v1.7.16 - autoclosed #3896

GiteaMirror referenced this issue

2026-04-16 13:38:20 -05:00

[PR #2054] [MERGED] fix(deps): update module github.com/yuin/goldmark to v1.7.16 - autoclosed #5437

GiteaMirror referenced this issue

2026-04-20 17:59:25 -05:00

[PR #2054] [MERGED] fix(deps): update module github.com/yuin/goldmark to v1.7.16 - autoclosed #8021

GiteaMirror referenced this issue

2026-04-23 09:11:00 -05:00

[PR #2054] [MERGED] fix(deps): update module github.com/yuin/goldmark to v1.7.16 - autoclosed #9737

Sign in to join this conversation.

Branches Tags

main

renovate/dev-dependencies

fix-list-sort-resets

claude/analyze-beans-project-9VxoS

feat-huma-api-v2-migration

feat-v2-foundation

spike-huma-openapi3

claude/investigate-swagger3-support-nyyUa

feat-list-view-buckets

ci-mysql-8-test

codex/analyze-codebase-for-email-task-feature

feat-project-templates

csv-import-feature

claude/email-reply-comments-wpdcQ

fix-oidc-pkce-support

fix/overview-subtasks-expand

feat/bucket-select-task-detail

feat-soft-delete-projects

claude/review-bot-design-plan-cf5C3

claude/project-scoped-api-tokens-KTqR3

claude/explore-openclaw-integration-KQEzg

claude/project-scoped-api-tokens-yv5KS

fix-duplicate-close-button

feat-list-view-sorting

feat/official-vite-sentry-plugin

feat/highlight-overdue-tasks

feat/add-enter-key-form-submission-handling

feat/TipTap-nits

feat/update-caldavtimetotimestamp-parsing

feat-phosphor-icons

wip-plans

claude/investigate-issue-2173-llKme

fix-description-text-drag

feat-custom-keyboard-shortcuts

pr-1845-ci

codex/fix-drag-and-drop-behavior-inconsistency

copilot/add-clickable-labels-for-filtering

copilot/fix-issue-1786

playwright-migration

fix-kanban-repeating-wip

copilot/fix-1498

feature/replace-axios

codex/upgrade-to-tailwind-4.1.8-using-pnpm

codex/add-cypress-test-for-avatar-types

feature/biome

feature/oxc

codex/update-flexsearch-to-0.8.205

4r6ni9-codex/fix-deprecated-sass-@import-usage

codex/fix-deprecated-sass-@import-usage

codex/add-cypress-test-for-task-list-refresh-fix

codex/fix-quick-add-magic-not-adding-tasks

codex/fix-all-type-errors

codex/fix-mimetype-for-docs.json

feature/caldav-from-scratch

feature/gh-actions-hetzner

fix-ci

feat/new-logger

jyte-better-dev-config

feat/add-team-member-with-enter

fix/button-and-icon-types

fix/notifications-component-name-collision

feature/null-time

renovate/tailwindcss-4.x

feature/unplugin-vue-router

fix/deprecated-import

feature/zod-schema

renovate/golangci-golangci-lint-1.x

fix/tiptap-editor-reactive-destructuring

release/0.24

feat/improve-add-task

fix/saved-filter-search

feat/webp-and-avif-attachment-previews

feature/migrate-back-to-bulma

fix/sass-add-missing-list-import

feature/sticky-demo-bar

fix/gantt-view-switch

feature/typesense-position-join

feature/focus-visible

dependencies/golangci-lint

feature/better-filter-syntax

fix/tiptap-task-list

renovate/github.com-golang-jwt-jwt-v4-5.x

feature/hide-forbidden-related-tasks

renovate/golang-1.x

release/0.20

release/0.17

release/0.16

release/0.15

release/0.14

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/vikunja#2054