ZITADEL

ZITADEL - Identity infrastructure, simplified for you.

Join

ZITADEL

ZITADEL - Identity infrastructure, simplified for you.

Join

questions-help-bugs

product-feedback-requests

Kanimozhi

9/8/2025

"Data Migration: CockroachDB (Zitadel v2.60.0) → PostgreSQL (Newer Zitadel Version, Separate Instanc

Hi Team, We currently have a ZITADEL instance running on v2.60.0 with CockroachDB, and we’ve deployed a separate new ZITADEL instance on a newer version using PostgreSQL. We want to migrate all data (orgs, users, projects, policies, etc.) from the old CockroachDB-based instance to the new PostgreSQL-based instance on the newer version. ...

Jari

9/5/2025

How to redirect users back to our site after Password Reset?

I'm trying to have users be redirected back to our page instead of the Zitadel Console after performing a password reset. We have already set the redirect URI in the org but that only seems to work on Login, not on Password Reset using the link in the email. Is there a way to do this without implementing a complete custom reset flow?...

wlinna

9/5/2025

Zitadel immediately redirects to Google when trying to log in, how to stop?

For some reason when I try to open Zitadel login screen from our app, Zitadel redirects me to Google login without asking how I actually want to login or giving me any opportunity to create a new user etc. Google login is literally the first thing I see. How can I stop this? I am using Zitadel v2.71.6...

Valle

9/5/2025

Return groups header

Hi, I have zitadel running behind oauth2-proxy which sits behind the nginx auth_request (see image). Its running the Auth Code Flow. My resource server is only reachable through nginx protected through auth request, so I assume I can trust the headers that I receive. ...

Perditus

9/4/2025

Upgrade Zitadel from v2.37.3 to latest

Hey So I'm trying to upgrade zitadel from v2.37.3 to the latest version. Unfortunately Zitadel hasn't been upgraded regularly so we are gonna need this jump. ...

Valle

9/4/2025

docker postgres: password authentication failed for user "postgres"

Hi, I am setting up a fresh Zitadel instance using the docker-compose guide: https://zitadel.com/docs/self-hosting/deploy/compose#docker-compose docker compose up works, however the database container shows the following error repeatedly: ...

wlinna

9/4/2025

Multiple errors when importing data from v2.71.6 to v4.1.0

I have tried following this guide https://zitadel.com/docs/guides/migrate/sources/zitadel multiple times, I have recreated my new Zitadel instance multiple times. However, the result is this (from a test org): ```json {...

Tibin

9/4/2025

self host zitadel v4 on AKS with ingress, getting error, Instance not found

Ingress object is directly unable to set instance using origin &{zitadel-v4-np-01.mydomain.com https} (ExternalDomain is zitadel-v4-np-01.mydomain.com): ID=QUERY-1kIjX Message=Instance not found. Make sure you got the domain right. Check out https://zitadel.com/docs/apis/introduction#domains ``` zitadel:...

stephanb

9/4/2025

V1 Actions failing for v4.1.2 upon user authentication on Zitadel Cloud

Hi there, since yesterday, we receive a lot of issue from our first time users that complain about not being able to login to our production app. The error for every user always is: "Login not possible. The user is required to have at least one grant on the application. Please contact your administrator. " We have actions running on internal and external authentication which will set default roles for each user. We haven't changed anything since weeks on Zitadel config and this starts popping up now out of nowhere. Any chance we missed something (there is a warning about v2 Actions but it reads that the current are still working) or that something is broken on Zitadel's side? Cheers,...

Him

9/4/2025

zitadel setup timeout

I have try to connect cockroachlab by using zitadel version 2.35 k8s and has open debug log. zitadel-init status complete but zitadel-setup failed timeout with no log occur time="2025-09-04T04:47:25Z" level=info msg="setup started" caller="/zitadel/cmd/setup/setup.go:63"

wlinna

9/3/2025

How to clean up Zitadel after botched import

This issues pretty much explains what I tried to do: https://github.com/zitadel/zitadel/issues/10417 0. I exported data from old Zitadel. 1. I tried importing but because the preferred language contained en-u-rg-uszzzz , the import failed 2. After replacing all en-u-rg-uszzzz with en, I tried importing again...

feliwir

9/3/2025

Callback URL for Microsoft IDP

Hey, when registering a Microsoft IDP the Zitadel Console shows me a callback url i should enter (see screenshot 1): https://<BASE_URL>/ui/login/login/externalidp/callback However apparently Microsoft claims the passed callback is formed like this (screenshot 2): https://<BASE_URL>/idps/callback ...

Joebeurg

9/2/2025

Go SDK Methods Rollback

Hi, I am exploring self-hosted Zitadel with Go SDK and PSQL, and have a concern if the SDK has rollback In case of error? Additionally as an example is it possible to rollback an organisation/user creation via the SDK if an error happened inside a complex function that also calls the Zitadel methods?...

Shengael

9/2/2025

Questions about login methods (password + external IdP)

Hello,
I have a couple of questions regarding the configuration of login methods in Zitadel:
1️⃣ User with password and external IdP enabled ...

boblack_zocker

9/2/2025

Invite User first login without password

Hello, i wanted to ask if its possible to invite users and in the invite email send a link where the user can verify his email adress and set a password. For now i have to set a temporary password and the user has to log in with that password to then change the password. i wanna get rid of the temporary password and he should directly set a password over the link. ai bot gave me this link: https://github.com/zitadel/zitadel/issues/8310 is this working? and how can i use because on c# rest api i could not do it...

JoseSzycho

9/1/2025

Configuring Zitadel and Custom Auth UI on the Same Domain: Best Practices?

Are there any special configurations (e.g., subdomains, CORS, cookies) required when hosting both Zitadel and a custom Auth UI on the same domain? Specifically, are there any considerations to ensure proper integration and secure handling of authentication flows?

Slakish

9/1/2025

How do I start Zitadel integrated with Traefik?

I configured my current setup according to the following instructions: https://zitadel.com/docs/self-hosting/manage/reverseproxy/traefik , but unfortunately the zitadel-zitadel-enabled-tls-1 container crashes. I have adjusted the domain and the custom request header. What exactly do I need to adjust in the Docker Compose files?...

hypebeast18

8/28/2025

Refresh token - 400 code error

I've noticed that zitadel started to give 400 error code when refresh token is expired, is it true or mistake ? Because in common practice is using 401 when your tokens are expired

Kanimozhi

8/28/2025

Password Expiration Warning

Hi all, I have configured the password expiration feature in Zitadel under Organization Settings → Password Expiry. I set Maximum validity in days to 2 and Expiration warning after days to 1. The maximum validity setting works as expected — after 2 days, the system requires me to set a new password....

arunmg007

8/27/2025

Initial Human login fails with 'Could not verify password' - Docker Deployment

Tried with default and custom username and password using steps.yaml with overriding initial creds. But still fails with the same error Could not verify password appreciate any help to resolve this. Including a screenshot of the first login message....

Previous Next