AWS load balancer openid authentication rule not working (561 error)
I'm trying to setup AWS load balancer (ALB) and i added an openid authentication rule to request authentication to my Zitadel instance.
I created an app like in the attached screenshot, generated a client secret and configure everything in the AWS ALB listener.
When accessing the load balancer, it redirects me to authorize endpoint, login and callback and then on the redirectUrl for code exchange i have a 561 error. It seems to be a aws alb specific error but I tried to figure out but i'm seeing this logs from zitadel everytime i run this flow:
time="2025-11-10T17:25:15Z" level=info caller="/home/runner/work/zitadel/zitadel/internal/api/ui/login/renderer.go:353" error="ID=EVENT-adk13 Message=Errors.AuthRequest.UserAgentNotCorresponding"
(i'm on Zitadel 2.71)
Has anyone else ran into this problem before? Is there a way to disable the user agent check? Or what did I make it wrong?
0 Replies