Self hosted Zitadel v4.2.2 hangs after initial successful login
Use-case: I'm setting up v4 Zitadel from scratch.
Environment: I have a self hosted version running on a VPS.
Version: v4.2.2 (Postgres 17.6)
Stack: Debian 12, Docker, Traefik
What you expected to happen: After successful login the console is displayed....
Can we style the default emails from zitadel or is that set in stone?
Like Reset password, initialize user etc. I haven't been able to find a definitive answer
Is Zitadel CH Region GDPR compliant?
Use-case: Built In House Multi Tenant SaaS app
Environment: Zitadel Cloud
Version: v4.2.2 (latest)
Hi, is the CH Global region GDPR compliant right now? If yes, will it stay compliant in the future also? ...
Unable to register LDAP user
When i succesfully login with an LDAP user i get a form that asks me to review the user (see attached image). When i press "Continue" it just states "Could not register user". The log contains no information apart from this:
...
zitadel-1 | time="2025-09-18T11:44:15Z" level=info msg=activity caller="/home/runner/work/zitadel/zitadel/internal/activity/activity.go:105" domain="https://auth.mray.app" grpcStatus=3 httpStatus=400 instance=334904200339128323 isSystemUser=false method=/zitadel.user.v2.UserService/AddHumanUser org=334904200339193859 path= requestMethod= trigger=resourceAPI user=334904200339783683
zitadel-1 | time="2025-09-18T11:44:15Z" level=info msg=activity caller="/home/runner/work/zitadel/zitadel/internal/activity/activity.go:105" domain="https://auth.mray.app" grpcStatus=3 httpStatus=400 instance=334904200339128323 isSystemUser=false method=/zitadel.user.v2.UserService/AddHumanUser org=334904200339193859 path= requestMethod= trigger=resourceAPI user=334904200339783683
Specifying token id when creating a personal access token (PAT)
Similar to how it was recently added that the user_id and organization_id can be specified when creating a user or organization, respectively, is it possible (or are their plans) to allow a user to specify the token_id when creating a PAT?
Identity provider pricing for cloud
When the cloud pricing mentions 3 identity providers included, does that mean 3 identity provider configurations for the whole instance or per organization?
can't redirect to login page
when call url in browser: http://localhost:8080/ui/console -> redirect to: http://localhost:3000/ui/v2/login/login?authRequest=V2_338270893702643715.
then got:
localhost is currently unable to handle this request. HTTP ERROR 500 ...
localhost is currently unable to handle this request. HTTP ERROR 500 ...
User Agent does not correspond (EVENT-adk13)
After being logged out and needing to reauthenticate on of our users encountered this error upon refreshing the Zitadel login screen. Can this be caused by certain configuration? The user agent was the same as the cookie since user entered a refresh flow, right?
How to access custom attributes within federated attributes / mapping attributes
According to the documentation https://zitadel.com/docs/guides/manage/customize/user-metadata.
Custom attributes are embedded within . If we opt to include the custom attribute / metadata within the id token by checking "User Info inside ID Token" in our application's settings.
How exactly do we access it within an attribute mapping context?...
"urn:zitadel:iam:user:metadata":{}
"urn:zitadel:iam:user:metadata":{}
Cannot revoke and refresh token for aurth provider which supports only auth_methods client_secret_ba
Hi all,
I have auth provider which supports only auth_methods client_secret_basic
I use https://github.com/zitadel/oidc as client library to authorize a device...
Organization actions - Debug logs
Greetings!
I am trying to figure out how to properly use actions set from organization settings "Actions" tab. In particular, I am setting up a post external authentication action to remap SAML response attributes from an external IdP as attributes for user creation/update. I used the example code provided in the zitadel repo:
https://zitadel.com/docs/guides/integrate/identity-providers/mocksaml#optional-add-zitadel-action-to-autofill-userdata...
link coming event to its session id
when i receive events on my webhook, i want to know session id that did that change. if user made login from two different browsers , it has two different sessions. he opened firfox and changed user email. how i know if changes comes from firfox not from chrome.
V2 Actions silently fail and ignore scheme for http targets.
version: 4.1.2, 4.1.4
environment: self hosted
version: 4.1.2, 4.1.4
environment: self hosted
Kubernetes and Login V2
Apologies if this question has been asked already.
I have spun up Zitadel on my kubernetes cluster but im running into an issue when it comes to accessing the console. Any time I try accessing my domain (zitadel.example.com) I get redirected to
/ui/v2/login/login?authRequest=V2_337889696480756170 with only {"code":5, "message":"Not Found"} displaying on the page. The health endpoint returns fine as well as the console logs show no errors.
Any ideas, I've seen that potentially something isn't spinning up, but the documentation for kubernetes is lacking atm....Activate "New Login UI" for whole Organization
Hi,
I want to use the new typescript based UI for all regular users but keep the builtin UI for all admin users. My end users are all in one organization while the admins are in the main project, so it would be a perfect match if it would be possible to activate the new ui for users (or projects) based on the organizsation they belong to. I did not find anything related in the docs - so is this possible somehow?
best regards...
SAML Auth Issue with Slack
nidoes anyone know how to connect zitadel to slack?
like use zitadel as the idp for slack to enable sso...
Thoughts on the best UI/UX using Zitadel
I'd love to hear how you have implemented Zitadel to provide the very best user experience. When I'm taken from one site to another to authenticate, it feels disconnected and for some users, possibly raise concerns. There are pros and cons to every approach.
How have you built the best UX using Zitadel? Do share. We could all learn a lot from different developers implementation approach and processes....
Using Authenticated User Tokens for Zitadel API Calls Best Practices
Hi,
I have a question regarding reusing authenticated user's access token to perform some actions (not Zitadel actions, e.g. listing organization users, updating a user's role, updating a user's own avatar...), instead of relying on a service user, is it possible to use the logged in user's token to make actions?
What is the best practice around this, I had a chat with AI (ChatGPT) for reference: https://chatgpt.com/share/68c3128d-f9bc-8000-b1d4-368d3780dcee...
Authentication flow without WebView/Redirect in the native app.
HI, I was looking through the docs, and failed to find any information. Is it possible to implement an login/registration screen in the native apps without browser redirect or webview in a B2C scenario? When user is not coming from other source like Google/Facebbok account but is directly registered with ZITADEL?