ZITADEL

Z

ZITADEL

ZITADEL - Identity infrastructure, simplified for you.

Join

questions-help-bugs

product-feedback-requests

ALhanouf
ALhanouf
View on Discord
8/1/2025

Auth error Configuration locally (Next-Auth v5) (Docker)

I have error When i press on login button is not redirect to zitadel login In the images you will find the details about the error and my setup in docker...
No description
Twenty7
Twenty7
View on Discord
8/1/2025

duplicate key value violates unique constraint "unique_constraints_pkey"

Use-case: SSO for clients using our company applications. Environment: Self Hosting Version: v3.1.0 / v3.3.2...
No description
Ty
Ty
View on Discord
8/1/2025

Cloud rollout for v4 timeline

I see that v4 was released yesterday. šŸŽ‰ , when can we expect that to be rolled out to cloud instances?
nidkil
nidkil
View on Discord
8/1/2025

SSO does not work with Zitadel UI

I have Zitadel up and running and working correctly. I'm running a self-hosted version of Zitadel (v2.68.1). I have a number of applications behind Zitadel, that have no knowledge of Zitadel. My setup is: Traefik > Traefik OIDC plugin (github.com/sevensolutions/traefik-oidc-auth) > Zitadel > Applications....
Blemming
Blemming
View on Discord
7/31/2025

Microsoft Provider callback issue

When following the documentation to use Microsoft Provider we got the following error: Request Id: df84388e-b0a0-4e6e-ba56-c9e02a9f4400 Correlation Id: 961f6dfe-be9d-470e-a33b-06beb8553901 Timestamp: 2025-07-31T12:32:09Z...
No description
fireblazeršŸ”„
fireblazeršŸ”„
View on Discord
7/31/2025

This is regarding cockroachdb Migration to Postgres,

My setup is done with helmcharts with database cockraochdb, i am using zitadel mirror to migrate to cockroachdb to postgres, i have using secure cockraochdb deployed with helmcharts, its done aks environment I am doing like this , i have port-forward cockraochdb and postgresl both, ...
No description
ALhanouf
ALhanouf
View on Discord
7/31/2025

User invalid email (local host) (docker-compose)

I try to setup zitadel locally with docker and next-auth v5 But its every time i run the container the zitadel is failed run because of user email This is the error...
No description
bernard li
bernard li
View on Discord
7/31/2025

ListUserMetadata

Here is my codeļ¼š const userService: Client<typeof UserService> = await createServiceForHost( UserService, serviceUrl, );...
Gaia
Gaia
View on Discord
7/30/2025

How to troubleshoot issues regarding not finding user record on external authentication?

Currently we are using Zitadel v2.41.14. We have configured successfully EntraID SAML provider using this documentation https://zitadel.com/docs/guides/integrate/identity-providers/azure-ad-saml . On first login, it works fine, as the user gets created automatically. However, when the user logs in again, it seems it doesn't find the matching identity provider record, so it tries to create it again automatically, but it fails because the record already exists. What could be wrong in my config? Or, is there a way or an specific log I can try to find to understand what is the root cause of this issue?...
No description
Blemming
Blemming
View on Discord
7/29/2025

Entra ID AADSTS50011

Following step by step the steps here: https://zitadel.com/docs/guides/integrate/identity-providers/azure-ad-saml#configure-basic-saml-configuration I am getting an error from microsoft: ``` Request Id: 2b7ddaae-f4f4-42b5-8024-778566a40800 Correlation Id: 27cd7246-2d6d-4ca9-a4ad-7ca6ee704bd5...
misterlowe
misterlowe
View on Discord
7/29/2025

"Signature validation failed" issue on first log in of the day (.NET)

I am using Zitadel as basic Oidc provider in a .net Core 8 app. Sometimes - usually on first login of the day, I get the error below. Subsequent logins will work fine after that: ----------- SecurityTokenSignatureKeyNotFoundException: IDX10503: Signature validation failed. The token's kid is: '331015965120704997', but did not match any keys in TokenValidationParameters or Configuration. Keys tried: 'Microsoft.IdentityModel.Tokens.RsaSecurityKey, KeyId: '330867128917864933', InternalId: 'eEY5cloHV5xw41nhCphXeR0cak5ePU8YYMXQzfSHtUc'. , KeyId: 330867128917864933...
Vamsi Krishna CH
Vamsi Krishna CH
View on Discord
7/29/2025

**Subject: Issue Retrieving and Assigning Custom Project Roles via API**

ZITADEL distinguishes between: Project Roles: These are the custom roles you define within a specific project (like "ADMIN1", "SUPPORT"). They are keys that represent a set of permissions relevant to your application's logic. You create these at management/v1/projects/{projectId}/roles. Project Members / User Grants: This is where you assign a specific user (from your organization or a granted organization) one or more of these defined Project Roles for a given project. When a user is assigned a role in a project, it's essentially a "user grant."...
No description
Ozzzkar
Ozzzkar
View on Discord
7/29/2025

Post auth log example not working

Hi, I tried to use the post auth log example here with Zitadel v4.0.0-rc.2 https://github.com/zitadel/actions/blob/main/examples/post_auth_log.js however nothing shows up in the logs. Tried with both text format and json, and enabled the debug level logging. ``` Log:...
arobs
arobs
View on Discord
7/28/2025

Migrations stuck projections.users14 when upgrading to 2.70.*

Hi, I have recently attempted to upgrade from v2.61.0 to either v2.70.14 or v2.71.13 to get the fix for "permission checks on session API (17f033f)". Unfortunately, I am having some troubles: - level=info msg="projection is prefilling" caller="/home/runner/work/zitadel/zitadel/internal/eventstore/handler/v2/handler.go:83" projection=projections.users14 and then...
migregal
migregal
View on Discord
7/28/2025

How you are dealing with growing evenstore size?

I'm currently working with self-hosted Zitadel at one of the projects. As for now we are running v2 major release and have some issues with eventstore size - it'd reached 300 GiB and growing. Currently we start to cleanup some of old events we're not interested at (access and refresh token issue, for example) by smth like cron job, but this seems to be dirty hack and not the actual solution. More over, size of eventstore starts to affect Zitadel performance on long reads for soma APIs AFAIK there is no docs or guides how to deal with eventstore size when it reaches out, so it'll be nice to have one as official solution after we discuss it here...
Ty
Ty
View on Discord
7/28/2025

Slowdowns using Login V2

We have been attempting to migrate to the new Login V2. We built a nextjs app based off of https://github.com/zitadel/typescript and have heavily customized it and self hosted it for our own purposes. The problem is, whenever we turn it on our hosted zitadel instances start to experience major slowdowns. I know it is the zitadel instance and not the nextjs login portal because going to the zitadel dashboard itself is extremly slow during these moments as well. We are on v3.3.2 according to the dashboard the last time we experienced this. We only see it on our production instance with it's much higher traffic. In our staging instance things seem to work fine for the most part. I can give you timestamps of when the slowdowns happened to us last Thursday if that helps. The only thing I can think of is that when using LoginV2 we end up hitting the management API far more than otherwise. Any help would be much appriciated. Thank you....
Ty
Ty
View on Discord
7/28/2025

Will OpenAPI swagger docs continue to be maintained?

We have recently started migrating to using a typescript axios client to communicate with the zitadel backend that is generated off of the Swagger docs hosted here https://zitadel.cloud/openapi/v2/swagger/v2/zitadel/zitadel/. But I just noticed in the release notes for v4 the following: 
GRPC APIs with ConnectRPC
All new v2 APIs will exclusively leverage gRPC with ConnectRPC, discontinuing support for OpenAPI 2.0 for new endpoints. This ensures a robust, high-performance, and future-proof integration experience.
GRPC APIs with ConnectRPC
All new v2 APIs will exclusively leverage gRPC with ConnectRPC, discontinuing support for OpenAPI 2.0 for new endpoints. This ensures a robust, high-performance, and future-proof integration experience.
...
maksim.khardin
maksim.khardin
View on Discord
7/28/2025

Integrating zitadel into a gitlab ci pipline, problem with admin login for setup

Hi, I'm tying to integrate zitadel into a gitlab's ci pipeline to be used in tests, and I'm hitting a problem of "admin login for the initial setup" For local development everything is fine, since I can do PAT/Machinekey generation and access it with mounted volumes. But for gitlab that strategy doesn't work - I can not access the fs of the service. I thought that I could use the username/password of the firstinstance user, but Zitadel does not support Resource Owner Password Credentials....
Nadine
Nadine
View on Discord
7/28/2025

Microsoft IdP Login Fails: Missing given_name Causes Validation Error

Hello, I'm setting up Microsoft as an Identity Provider for my app using Zitadel. I followed all the documentation, and login is successful, but right after that, I run into this error: [invalid_argument] invalid AddHumanUserRequest.Profile: embedded message failed validation | caused by: invalid SetHumanProfile.GivenName: value length must be between 1 and 200 runes, inclusive Even though I have added given_name as a claim in the token configuration of my Azure App Registration, It seems like it might be missing or empty in the token being returned. Can anyone help me identify why this might be happening or suggest a workaround? maybe creating an action to map name to given_name can fix this (not sure if possible)?...
No description
sarsha
sarsha
View on Discord
7/27/2025

I've setup Google login and disabled user\password. How to login to admin account?

Hey all, I am self hosting Zitadel\Netbird and I have setup google login successfully. I also disabled local login to the Netbird org This combination won't allow to login using the admin account (user\pass is disabled)...
PreviousNext