(NEW!) Typescript Login - Beta Feature
We've developed a new TypeScript-based login system to streamline the authentication process. This solution offers a flexible, customizable, and self-hostable login experience. By providing a ready-to-use login solution, we aim to reduce development time and effort.
Our immediate goal is to enable customers to self-host the login system. In the future, we plan to fully integrate this new login system into our cloud offering.
The new TypeScript login system offers several key improvements:
- Leverages Modern Technology: By utilizing our newly developed session APIs, we've significantly enhanced the security and performance of the authentication process.
- Enhanced Features: The system introduces new features such as user invitation flows and passkey-only authentication, providing greater flexibility and convenience for our users.
- Improved Developer Experience: The use of TypeScript, a widely adopted language in frontend development, makes the codebase more accessible and easier to contribute to. This encourages community involvement and fosters rapid development.
You can find everything you need on our docs page
https://zitadel.com/docs/guides/integrate/login/hosted-login#hosted-login-version-2-beta
Testing Period: till 31. March 2025
Testing Objectives:
- Did you encounter problems or bugs?
- How to enhance Customizations?
- Do you encounter any problems in regards to performance?
How to test: https://zitadel.com/docs/guides/integrate/login/hosted-login#beta-testing
Known Bugs / Limitations: https://zitadel.com/docs/guides/integrate/login/hosted-login#limitations
If you have any suggestions for improvement or bug reports please open an issue in the typescript repository, any other feedback we'd love to hear in this thread. 😃
ZITADEL Docs
ZITADEL provides a hosted single-sign-on page to securely sign-in users to your applications.
23 Replies
Will it be possible to host a custom login based on this repo within the same process, or at least as a separate docker container?
Unknown User•5mo ago
Message Not Public
Sign In & Join Server To View
Are there some examples somewhere?
Unknown User•5mo ago
Message Not Public
Sign In & Join Server To View
Yes, i was hoping that someone would already have an existing Dockerfile because it looks like the repo doesnt contain one. Otherwise i will try to create one. Build the repo using Nodejs and then serve it using Nginx or similar..
Or is there a better approach?
Ah this is a Next.js app, so i think this should work as a starting point. https://github.com/vercel/next.js/blob/canary/examples/with-docker/Dockerfile
GitHub
next.js/examples/with-docker/Dockerfile at canary · vercel/next.js
The React Framework. Contribute to vercel/next.js development by creating an account on GitHub.
The branding configuration will stay the same, currently the login interface texts are not included. As our current implementation is a lot of work each time we add new screens or texts from engineering side, we will look into an easier solution. But have not yet decided how to do it. You can track the state of that here: https://github.com/orgs/zitadel/projects/6?pane=issue&itemId=2806363287&issue=zitadel%7Ctypescript%7C346
Unknown User•5mo ago
Message Not Public
Sign In & Join Server To View
At the moment this is not yet implemented, we generally recommend checking authorization in your own application. However I just added a new issue to implement this functionality again. https://github.com/zitadel/typescript/issues/350
GitHub
Permission check on Oidc Service session API · Issue #350 · zitadel...
As an administrator I am able to configure if an authorization check should be performed when a user authenticated with Zitadel. This settings should be triggered in the OIDC Service. Acceptance Cr...
Unknown User•5mo ago
Message Not Public
Sign In & Join Server To View
not sure what you mean with that question. With that I mean, that your app should check if the user is allowed to do something ot not. as a login (especially oidc login), is generlly only about authentication.
Unknown User•5mo ago
Message Not Public
Sign In & Join Server To View
@peintnermax can you help here?
No i tried to build the login ui within a docker container but iam not able to build the container at all. 😦
Unknown User•5mo ago
Message Not Public
Sign In & Join Server To View
What role does the service user have? We recommend the IAM_LOGIN_CLIENT role
Unknown User•3mo ago
Message Not Public
Sign In & Join Server To View
Hi Adam, we would accept PRs for adding other languages to the translations, you can find all the languages currently supported here: https://github.com/zitadel/typescript/tree/main/apps/login/locales , the custom login texts, is about the possiblity to overwrite those texts when you do want to have something completaly different.
GitHub
typescript/apps/login/locales at main · zitadel/typescript
Typescript packages and application to showcase the ZITADEL resource API - zitadel/typescript
Hello! We’ve encountered an issue while onboarding the Typescript Login project in our K8S setup due to HTTP/2 and gRPC requirements. We’ve detailed the problem in the #questions-help-bugs thread —would appreciate any insights.
https://discord.com/channels/927474939156643850/1352894563831906314
Edit: we managed to solve it, see post for details.
Unknown User•3mo ago
Message Not Public
Sign In & Join Server To View
Seems "Iam Login Client" role is mandatory to work to use the new login UI for projects. "Iam Owner" is not enough, not sure if a bug.
Would be nice to have the required roles of the Service Users documented to be able to use the new login UI with V3.
Hi @Arnau yes this is on purpose. it is docuemented in the step by step guide for the vercel custom login deployment: https://zitadel.com/docs/guides/integrate/login/hosted-login?deployment=vercel_custom#hosted-login-version-2-beta
ZITADEL Docs
ZITADEL provides a hosted single-sign-on page to securely sign-in users to your applications.
Hey @fabienne, totally true, thanks! I missed that step 🫣