I've setup Google login and disabled user\password. How to login to admin account?
Hey all,
I am self hosting Zitadel\Netbird and I have setup google login successfully.
I also disabled local login to the Netbird org
This combination won't allow to login using the admin account (user\pass is disabled)
How can I recover from that?
9 Replies
hey @sarsha you can reset the login setttings and reset to the default custom login policy https://zitadel.com/docs/apis/resources/mgmt/management-service-reset-login-policy-to-default from api, and then you should be able to have it work 🙂
Thank you @Rajat for taking the time to answer.
Follow up question if I may, I have changed the settings on the Netbird organization - I was under the impression it would only affect the related projects under that organization.
Why did it affect the Zitadel console?
In the Zitadel console i do have the built in (?) ZITADEL organization as well.
the settings based on the org domain that you pass and the associated token, so if you passed the netbird org
Where can I find the token to make the request?
Not that I know of...
I guess i'll just re-create the instance with fresh data and then hook it up manually to netbird again - as this is only a couple of days old instance
But, for future me getting locked out again - what steps should I perform to make sure I have the ability to login again \ controlling Zitadel using the API
you dont really have to delete your instance yet 🙂 if you are self hosted, pretty sure you must have used a docker compose file that may/may not have a default admin user AND service user, we want to add an alert when an admin is toggling login settings as it can result in lockout and the ONLY way to come out of it would be to reset the login policy of the org/instance and FOR THAT you need Token that could be generated from the doc abovbe
So I've found the netbird service account id and secret
Generated a token using it
But it has no permissions to alter the login settings - it can only GET them
hey @sarsha you can just run this
https://zitadel.com/docs/apis/resources/mgmt/management-service-reset-login-policy-to-default