Codeberg as external IdP?
π¬Self-hostedβQuestionβUnsolvedπOIDC
Has anyone got Codeberg (I believe it's using Forgejo under the hood) as an external IdP?
It seems to almost work, but the issues are so bizarre I'm not entirely sure which side to put the blame on
1. After logging in with Codeberg, I get redirected to Zitadel where I enter the user name ane email (apparently that's normal). Then I get "Could not register user" in the interface; the console error depends on the "ID Attribute" field (please see below)
2. The user IS created in Zitadel though, but with no IdP linked
3. The user's email is not verified (fair enough). When I manually set the email to Verified and try to log in with the user, I still get presented with the "A code has just been sent to your email address. / Enter the Code provided in the verification email." screen. This is a test instance; it can't send emails.
4. when I enable automatic account linking, the account is NOT created at all; the UI error is "Account linking failed / An error occurred while trying to link your account." with the same error in the console
5. Also, I'm not sure what the correct value for "ID Attribute" is; the console errors are as follows:
- "sub" -> 'invalid AddIDPLinkRequest.IdpLink: embedded message failed validation | caused by: invalid IDPLink.UserName: value length must be between 1 and 200 runes, inclusive'
- "email" -> 'invalid AddIDPLinkRequest.IdpLink: embedded message failed validation | caused by: invalid IDPLink.UserName: value length must be between 1 and 200 runes, inclusive'
- "userid" -> 'invalid AddIDPLinkRequest.IdpLink: embedded message failed validation | caused by: invalid IDPLink.UserId: value length must be between 1 and 200 runes, inclusive'
It's entirely possible I misconfigured things, but I followed the docs for everything and... all of that all at once, yikes
This is self-hosted Zitadel 4.2.0
It seems to almost work, but the issues are so bizarre I'm not entirely sure which side to put the blame on
1. After logging in with Codeberg, I get redirected to Zitadel where I enter the user name ane email (apparently that's normal). Then I get "Could not register user" in the interface; the console error depends on the "ID Attribute" field (please see below)
2. The user IS created in Zitadel though, but with no IdP linked
3. The user's email is not verified (fair enough). When I manually set the email to Verified and try to log in with the user, I still get presented with the "A code has just been sent to your email address. / Enter the Code provided in the verification email." screen. This is a test instance; it can't send emails.
4. when I enable automatic account linking, the account is NOT created at all; the UI error is "Account linking failed / An error occurred while trying to link your account." with the same error in the console
5. Also, I'm not sure what the correct value for "ID Attribute" is; the console errors are as follows:
- "sub" -> 'invalid AddIDPLinkRequest.IdpLink: embedded message failed validation | caused by: invalid IDPLink.UserName: value length must be between 1 and 200 runes, inclusive'
- "email" -> 'invalid AddIDPLinkRequest.IdpLink: embedded message failed validation | caused by: invalid IDPLink.UserName: value length must be between 1 and 200 runes, inclusive'
- "userid" -> 'invalid AddIDPLinkRequest.IdpLink: embedded message failed validation | caused by: invalid IDPLink.UserId: value length must be between 1 and 200 runes, inclusive'
It's entirely possible I misconfigured things, but I followed the docs for everything and... all of that all at once, yikes
This is self-hosted Zitadel 4.2.0
