Azure Container Apps - 404 / cannot find well-known configuration paradox

Hey folks, i have Zitadel running within an azure container app and cant seem to make calls to its api suite from my dotnet application. I'm using Terraform to provision my Zitadel instance with the following (abstract) configuration:

env {
        name  = "ZITADEL_EXTERNALSECURE"
        value = "true"
      }

      env {
        name  = "ZITADEL_EXTERNALDOMAIN"
        value = "${var.container_app_name}.${var.domain}"
      }

      env {
        name  = "ZITADEL_EXTERNALPORT"
        value = "443"
      }

env {
        name  = "ZITADEL_EXTERNALSECURE"
        value = "true"
      }

      env {
        name  = "ZITADEL_EXTERNALDOMAIN"
        value = "${var.container_app_name}.${var.domain}"
      }

      env {
        name  = "ZITADEL_EXTERNALPORT"
        value = "443"
      }

where container app name is the name of my running container, and

var.domain

var.domain

is the default_domain of my container app environment (funnelled into my module using the azurerm provider https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/data-sources/container_app_environment#default_domain-2) . Zitadel_ExternalSecure is set to true and

tlsmode

tlsmode

is set to

external

external

.

Within my app, i have

https://<containername>.<cae_domain>

https://<containername>.<cae_domain>

as my base url for Zitadel (e.g. this will yield https://zitadel.somecustomdomain.azurecontainerapp.io). I do not have the port suffixed as part of the configuration within the app here. Using the Smartive package for dotnet, when i make a call to the get organizations endpoint, I get a 404 back. When I add the port number (which works with my local docker setup) to my applications configuration, i get a "well-known config cant be found" error. Which I also get back when navigating in the browser to endpoint with the port number attached. My ACA replica is running green and I can navigate to the console, I just cant seem to call any APIs from my application.

I am no doubt missing something glaringly obvious here. Does anyone know what has to be set as the external domain for Zitadel in relation to container apps, and what the configuration should be within any calling application in order to call the Zitadel apis?

Terraform Registry

Azure Container Apps - 404 / cannot find well-known configuration paradox

env {
        name  = "ZITADEL_EXTERNALSECURE"
        value = "true"
      }

      env {
        name  = "ZITADEL_EXTERNALDOMAIN"
        value = "${var.container_app_name}.${var.domain}"
      }

      env {
        name  = "ZITADEL_EXTERNALPORT"
        value = "443"
      }

env {
        name  = "ZITADEL_EXTERNALSECURE"
        value = "true"
      }

      env {
        name  = "ZITADEL_EXTERNALDOMAIN"
        value = "${var.container_app_name}.${var.domain}"
      }

      env {
        name  = "ZITADEL_EXTERNALPORT"
        value = "443"
      }

where container app name is the name of my running container, and

var.domain

var.domain

tlsmode

tlsmode

is set to

external

external

.

Within my app, i have

https://<containername>.<cae_domain>

https://<containername>.<cae_domain>

Terraform Registry

Azure Container Apps - 404 / cannot find well-known configuration paradox

Azure Container Apps - 404 / cannot find well-known configuration paradox

Similar Threads

Similar Threads

Similar Threads