User not found?
Hey, I hosted zitadel with docker compose, everything worked well. I used this config, https://docs-git-simplify-compose-example-zitadel.vercel.app/docs/self-hosting/deploy/compose/ I added ExternalDomain so i could use my LAN address instead of localhost, it worked. In loginname, i entered zitadel-admin@lan addr as per the docs, but it say "User not found"
What do I do?
49 Replies
I'm not the expert here whatsoever, but maybe try zitadel-admin@zitadel.(lan-addr) instead?
fuck
I FORGOT TO ADD zitadel.lanaddr
Broo, ty so much!
Sorry for swearing
You're welcome!
Nah that's fine lol
Do you got it working to the dashboard tho? Cause mine says that it could not verify the password when I try to login
let me check
hey
since i dont have my old laptop (what i use for hosting)
i'll try localhost
running on mac
do u host it locally or
i got it to run
I host it on a local server (docker inside proxmox lxc)
Hmm maybe I need to tinker a little bit more
it worked perfectly for me!
whats your setup
i found out
if you dont apply TLS for zitadel
it use http/1.1
Nice !!
Ah maybe that's it? I haven't use tls yet
yes
I'll try again later
in theory CF tunnel should work
Thanks for the information
if its not running with TLS
I have zoraxy set up for tls on my lan, i'll try with that first
let me know if u got it to work
Ixion's blog
Setting up a self-hosted ZITADEL OAuth service on Ubuntu 22.04 with...
A walk-through guide for setting up ZITADEL, a self-hosted IAM solution written in Go, and integrating it with Tailscale.
apparently this guy managed to get it to work behind CF tunnels?
if CF tunnels work why isnt it in the docs?
Dunno either, the docs is often kinda confusing
yes
Clearly it’s supported..?
anybody know why?
I don’t know if he’s talking about normal cloudflare proxy or cloudflare zero trust.
I personally do this exact setup but use caddy
tunnel or?
he used cf tunnel
Cloudflare proxy -> caddy config yo reverse proxy to Zitadel at localhost.
I mean, let’s zero trus(vpn) in, to then have OAuth? I mean sure, it’s just ports, but we are building a public auth
Article looks a bit old, cloudflare rebranded tunnels over to zero trust last year.
tried this
didnt work at all
nginx too
You’re just trying to get it running right?
yes
after that. i'll make it production ready
Oh god, you can’t run nginx and caddy… WHY?!?
no
caddy DIDNT work
so i tried nginx
which DIDNT work
Your dns over cloudflare?
what
Is your URL proxied through cloudflare?
yes
What was your Caddyfile?
i used Caddyfile from docs
but changed url to my domain
external TLS one
i also enabled gRPC , http/2
on cloudflare
u got any idea?
you use zitadel with cf tunnel?
No, just cloudflare dns in proxy mode direct to Caddy. But you need a plug-in
your setup wont work for me
because i am behind CGNAt
so that why i use CF tunnels
Cgnat?
ye
What’s that?
You have a cloudflare edge certificate?
uh let just say
i cant port forward
yes
Give me a few to get on my pc
Alr
If you got it, please tell me
To build without Cloudflare Tunnels I use this:
config here:
https://discord.com/channels/927474939156643850/1402640191872827564/1402976338343891125
I build caddy using xcaddy so I can reverse translate the cloudflare IP to user IPs so they are properly sent to reverse proxy as the user.
xcaddy build --with github.com/WeidiDeng/caddy-cloudflare-ip
Based on the doucment itself -- the Cloudflare tunnel doesn't need caddy or nginx at all since it can bind directly to zitadel.
I was trying ... had to find and type stuff 🙂Yes
cloudflare tunnel can bind with zitadel
But the problem is
How?
Where’s the doc?
is cloudflare tunel looking for something on a specific port?
I could use that guy doc
But I need compose version
No
Same port as zitadel
Http/2 needs HTTPS on origin
So I used external TLS
So that’s why nginx / caddy
If you run zitadel without TLS, it use http1.1
I did this
And cloudflare tunnel worked
But the login oage however didn’t
It was just black page
ohh ... I see -- its wrong
The PORT is the port it runs on as the server -- the externalport is the one the browser connects to.
Also
I did not use the docs
I used it to show that CF tunnel works
I need one for docker compose
What do u suggest I do
Do you have any idea?
I thought I gave you everything I could? -- I'm not sure your exact setup since you haven't shared anything so I can't really be much more helpful without more information.