Zitadel - Facing issue while changing the logo
Hi, I am trying to change the zitadel logo in branding settings, but i have faced the error like "Http failure response for https://demoauth.inhlth.app/assets/v1/org/policy/label/logo/dark: 401 OK" Can anyone advice me why this error is happening
Zitadel IDs
How does Zitadel generate IDs? Is there a specific formula or something? In our Infrastructure we use 2 Zitadel Instances one for dev and the other for production.
Goal is to mirror the production db into dev db server where zitadel dev is hosted
In the app, zitadel ids are saved to keep track of the users, question is: are ids the same, generated the same because same Microsoft account was used?...
How to programmatically activate a user through the API
I am struggling with a problem currently, which is the following:
I have the option to create a user with emailVerified and password to set him as Activated.
But
If I don't create a user already as activated...I find no way to programmatically Activate a user and set his/her password from the API....
Pre-verify arbitrary strings sent as PATs
Hi there. We currently use JWKs based JWT validation in each of our microservices which works perfectly fine. Now, to ease development and maybe provide "API key" style access later (as soon as PATs may be available for normal users), we also think about adding PATs support to our validation process. The big main concern right now is that PATs seem to defenitely require a call to the introspection endpoint without the possibilty to pre-verify that they are indeed Zitadel PATs that can be introsp...
Zitadel login as admin returns An internal error occurred
I am trying to log in to my Zitadel instance with the correct email and password but I'm getting An internal error occurred and there are no logs.
Add trusted domains via UI or Terraform
Hi everyone, anyway to add a trusted domain via UI or Terraform instead of calling the API?
Custom OIDC Endpoints Not Working
Custom oidc endpoints were configured using environment variables, zitadel changed the URLs of those endpoints, we can see that in the first print, however when acess zitadel i receive a not found error on those endpoints
Upgrade from 2.70.x to 2.71.x fails with migration errors
When upgrading from 2.70.7 to 2.71.5 running in docker from the official GHCR image, I get this error, and the container fails:
...
time="2025-03-28T17:41:50Z" level=info msg="starting migration" caller="/home/runner/work/zitadel/zitadel/internal/migration/migration.go:66" name=52_idp_templates6_ldap2
time="2025-03-28T17:41:50Z" level=error msg="migration failed" caller="/home/runner/work/zitadel/zitadel/internal/migration/migration.go:68" error="ERROR: relation \"idp_templates6_ldap2\" already exists (SQLSTATE 42P07)" name=52_idp_templates6_ldap2
time="2025-03-28T17:41:50Z" level=fatal msg="migration failed" caller="/home/runner/work/zitadel/zitadel/cmd/setup/setup.go:304" code=42P07 detail= error="ERROR: relation \"idp_templates6_ldap2\" already exists (SQLSTATE 42P07)" hint= message="relation \"idp_templates6_ldap2\" already exists" name=52_idp_templates6_ldap2 severity=ERROR
time="2025-03-28T17:41:50Z" level=info msg="starting migration" caller="/home/runner/work/zitadel/zitadel/internal/migration/migration.go:66" name=52_idp_templates6_ldap2
time="2025-03-28T17:41:50Z" level=error msg="migration failed" caller="/home/runner/work/zitadel/zitadel/internal/migration/migration.go:68" error="ERROR: relation \"idp_templates6_ldap2\" already exists (SQLSTATE 42P07)" name=52_idp_templates6_ldap2
time="2025-03-28T17:41:50Z" level=fatal msg="migration failed" caller="/home/runner/work/zitadel/zitadel/cmd/setup/setup.go:304" code=42P07 detail= error="ERROR: relation \"idp_templates6_ldap2\" already exists (SQLSTATE 42P07)" hint= message="relation \"idp_templates6_ldap2\" already exists" name=52_idp_templates6_ldap2 severity=ERROR
Automating Zitadel Configuration Without Manual UI Interaction or API Calls
Hi, we are setting up our dev environment using docker, and need to configure some Zitadel settings without any manual interaction through the UI. Specifically, we need to set up pre-access token creation, Google and GitHub IdPs, and other configurations.
What approach are you using? We want to automate these tasks but prefer not to rely on code to call the APIs....
Document updating process of Zitadel
Hey everyone,
I just had a chat with @Raccine for evaluating the onboarding process of Zitadel. I remembered that I could find any mention about some conventions regarding migrations and updating Zitadel.
Specifically, when upgrading from X.Y.Z to X.Y+W.Z+K, what’s the recommended approach?
...
Org Owner cannot see all users
Hello,
I have a problem since I migrate from 2.71.2 to 2.71.4 last week. My user is the IAM Owner and Org Owner of all organizations we have, and I can only see my user in the Users tab of my org, I cannot see others users. I can see them in the Authorizations tab and see users' profiles from there, I can authorize them in projects and give them a role.
Rollback to 2.71.2 doesn't change anything.
It's the same for all Org Owners and if I grant a new user Org Owner.
Is there a permission, a table/schema that changed recently ?...
"UNABLE_TO_VERIFY_LEAF_SIGNATURE" Error 403 Forbidden
Hello i added a external microsoft identity provider into my Zitadel. Now i got a problem because in my Local Test Zitadel everything works fine with the External identity but on production i get a certificate error. What could the problem be? it normally gets the token and keys but when i do the api call it failes. on my local test zitadel it works.
Best Practices for Managing Public Domains in a B2B Organization Model
Hello 👋
I'm building a B2B solution where each client gets their own organization based on their domain (e.g., client.com). The idea is to automatically create a new organization for each detected domain.
Problem:...
Zitadel TypeScript login: Issues Enabling HTTP/2 for gRPC with Zitadel in K8S (ALB Ingress)
Hi everyone,
We’re onboarding the Zitadel TypeScript project in our Kubernetes setup (
zitadel-typescript-login), but we’ve run into an issue with enabling HTTP/2 support while keeping compatibility with other services.
Our Setup...panic: runtime error: invalid memory address or nil pointer dereference
Good morning. I'm setting up zitadel on GCP, and I encounter this error regurally. Do you have any idea what might cause it?
```
panic: runtime error: invalid memory address or nil pointer dereference...
Revoking Active Sessions and Tokens
I have recently updated a user's email address and would like to revoke all active sessions and tokens associated with their account. Could you please confirm if there is an API endpoint available for this purpose using a service user token?
Looking for Help Setting Up Zitadel
Ok, finally we got a solution with hosting, backup etc. which is managable for our budget.
But now for the next steps we still need help. The goal is to have a universal login page for our NGO to authenticate users across two different services. We have a managed self-hosted Zitadel instance running and now need help with setting everything up the right way.
- Setting up and customizing the login page ...
Handling of deleted users
Hi, I have a question regarding user deletion - I can see that if you delete the user via console, you can create a new user with the exact same email, but a different user id
Documentation states, that deletion sets the user's state to deleted, and the UI has a filter for user.state=DELETED, but it does not seem to return anything, and neither does the v2/users/{:userId} handle.
So, my question is - what actually happens to the user's data (I'm also curios about it in the context of GDPR compliance)? Is there a way to access it via API?...
Access / refresh tokens
Currently im writting frontend with zitadel. And i faced with problem that i dont know how works tokens (access and refresh). I need make frontend that i login/signup and after that get tokens, write it in the cookies and use access when i gotta make a request. And use refresh when i gotta revalidate access. But i dont know how to get these pair of tokens and how it works. Could you explain me how it work plz
Fetch a List of users in a WebApp
Hello Zitadel Team! 👋
I am using a Self-Hosted instance of Zitadel and I was wondering If I could possibly fetch a list of all available users in the Organization so a possible function like: Dropdown to choose a user responsible for something or whatever.
I am trying this: ...