I'm confused after signing up for a cloud account with github?
I sign up with github for a free cloud account. After questions I get 5 steps. I complete 1. Create your first Instance, 2. Sign in your first instance, then I get to 3, Create your first project, which opens in a new browser window. I go though those steps which I have to create yet another account in which I add 2FA.
BUT, now Step 3 remains with an active button "Create Your Project"
HOW do I get past this step?...
help
Hello im new to zitadel i made an account for zitadel but when i log in i veriefied everything i get an error but i made my own orginization so whats wrong ? or what am i doing wrong?
User not found after Postgres migration
Hi there, I was initially unable to migrate to Zitadel v3 due to no SSL on my database. I now tried to apply this workaround here: https://github.com/zitadel/zitadel/issues/9120#issuecomment-2888582544 – using a v3 Zitadel to migrate to Postgres. This first returned an error because some assets relation did not exist. However i remembered a --replace flag from different issues being mentioned, which mostly ran without errors (it had a problem with smtp settings and returned some weird
message \"PasswordChange.Footer\" not found in language \"en\" errors but otherwise ran through.
However now my user is not found and \dt gives no relations, but the DB is over 200M in size.
In my log i see some warnings like: level=warning msg="asset in login could not be served" .. error="download failed: ID=DATAB-pCP8P Message=Errors.Assets.Object.NotFound Parent=(sql: no rows in result set)...Roles are in an array of objects instead of an object
follwed the basic tutorial of react and i am getting roles in an array. This is breaking my code
unexpected profile
Trying for more visibility on this discussion: https://github.com/zitadel/zitadel/discussions/10038
tl;dr - I'm exploring Zitadel and the GO SDK am surprised the profile endpoint emits the Zitadel admin user by default.
Any pointers would be appreciated!...
How do I saml assert a key value pair to AWS IAM Identity Center
Hello
I am following the steps outlined here.
https://zitadel.com/docs/guides/integrate/services/aws-saml...
V2 Users API not working
Iam trying to use the V2 Users API as shown here:
https://zitadel.com/docs/apis/resources/user_service_v2/user-service-create-user
But i always get "Method not allowed"
What am i doing wrong?...
Search organizations by metadata
Hello! We're integrating Zitadel into our application and one question has risen: is it possible to store some metadata in a Zitadel organization, and then search organizations by that metadata?
Our usecase is that we already have a "companies" entity in our application, so we'd like to store
company_id as a metadata attribute in the Zitadel organization - which would allow us to find the "Zitadel organization" linked to this "company"
If that's not possible, is there a suggested workaround (that doesn't involve storing the "zitadel id" in our application's database)?...How to find which organisations use an Idp
Is there a way to see where idp are used ? If we have many organisations on an instance, it's impossible to check them 1 by 1 to know which one is using an idp slot.
Login with phone number feature
We intend to enable phone number login in our application using ZITADEL. Currently, it seems that only Twilio is supported as the SMS provider. We would like to explore options to integrate other, more cost-effective SMS providers instead of Twilio.
So I locked myself out with IDP
I had created an organisation, with an IDP (oidc). Only allowed IDP logins.
Now I renewed the secret on my IDP and I cannot go into my instance to change the secret.
I went into the db to change the login policies, so now I can use username and password again.
But I still get the following error, is it cached somewhere?
...
How do I get Single V1 Session Termination working?
I have enabled OIDC Single V1 Session Termination in the features list, but whenever I log out of an OIDC session it completely logs me out. The request does include the id_token_hint query param and the id_token does include an sid claim.
My use case is using Zitadel as an SSO provider
I do see this note of
Note that currently all sessions from the same user agent (browser) are terminated in the login UI but I am assuming that this is the old way then with this feature enabled it shouldn't work like that....Access the authorize request in the Complement Token flow (Actions V1)
Hello Zitadel crew 👋
We have a need to pass arbitrary parameters in the
/authorize request and then run some API request inside an action using those parameters, to finally complement the token claims. E.g.:
1- User attempts to login and the frontend passes the arbitrary company_id=42 query parameter in the /authorize request
2- On an action inside Zitadel, we read that arbitrary parameter and use that to make an internal request to our backend API (to e.g.: check if user really has access to company_id=42...Issue signing up to zitadel cloud
Hi guys, the signup form appears to be broken on the website. I can enter an email address, then a name and password but the button spins for a moment then does nothing. My browser console shows a 500 response from the email endpoint. Any ideas? Thanks
Scope Zitadel API by Org
I'm struggling to identify the the best way to interact with the zitadel API scoped by a single org/tenant.
In this scenario, a humans is granted an auth_token after logging in, is validated on the backend, and now the Zitadel API needs to be used to search users that are in the same org as the
The general approach I'm taking is along the lines of:...
Splunk SAML authentication performs a second redirect back to Zitadel before login succeeds
Hello everyone,
Environment
Zitadel version : v3.2.2
Load Balancer: F5...
Automate Technical Advisory 10016
Hi there folks,
I was wondering if Zitadel is looking to automate some of the migration fixes, like in https://zitadel.com/docs/support/advisory/a10016. Seems this is something that should be fixed out of the box, no?...
How to update SAMLv2 certificate at "$ZIT_URL/saml/v2/certificate" when acting as IDP
Hello Zitadel community,
I'm currently developing a proof of concept implementing Zitadel at my organization and have encountered a challenge that I couldn't resolve through the documentation.
Specifically, I need to update the certificate provided by the endpoint "$ZIT_URL/saml/v2/certificate" when Zitadel is acting as an Identity Provider. While I've found documentation on updating external IdP SAML certificates, I haven't been able to locate information about updating Zitadel's own certificate when it serves as the IdP....
pre-authentication action
Hello,
according to the documentation a "just-in-time" migration is possible by setting up a "pre-authentication" action (see https://zitadel.com/docs/guides/migrate/introduction#just-in-time-migration). However it is not possible to set up such an action. There is also no further documentation available about this action.
Can you please elaborate how this "pre-authentication" setup is supposed to work?
...
Only getting 404 from /v2beta/projects/search in v3.2.2?
Following the docs at https://zitadel.com/docs/apis/resources/project_service_v2/project-service-list-projects
The query is simply a POST to
/v2beta/projects/search with a Bearer token.
Grabbed from the docs. What am I missing?...