[GH-ISSUE #584] casdoor登录报错 #3395

New issue

Closed

opened 2026-02-28 11:55:54 +03:00 by kerem · 11 comments

kerem commented 2026-02-28 11:55:54 +03:00

Owner

Copy link

Originally created by @chung1912 on GitHub (Sep 27, 2024).
Original GitHub issue: https://github.com/0xJacky/nginx-ui/issues/584

2024-09-27 18:32:45 ERROR user/casdoor.go:52 json: cannot unmarshal object into Go struct field Claims.address of type []string
日志出现这个错误，怎么解决？
另外，环境变量NGINX_UI_CASDOOR_CERTIFICATE的值直接输入证书字符串也太长了，能不能支持读pem文件？直接映射这个文件来读取更方便些

Originally created by @chung1912 on GitHub (Sep 27, 2024). Original GitHub issue: https://github.com/0xJacky/nginx-ui/issues/584 2024-09-27 18:32:45 ERROR user/casdoor.go:52 json: cannot unmarshal object into Go struct field Claims.address of type []string 日志出现这个错误，怎么解决？ 另外，环境变量NGINX_UI_CASDOOR_CERTIFICATE的值直接输入证书字符串也太长了，能不能支持读pem文件？直接映射这个文件来读取更方便些

kerem 2026-02-28 11:55:54 +03:00

• closed this issue
• added the
  bug
  label

kerem commented 2026-02-28 11:55:55 +03:00

Author

Owner

Copy link

@0xJacky commented on GitHub (Sep 28, 2024):

参考一下这个配置：https://github.com/0xJacky/nginx-ui/issues/423#issuecomment-2254904566

<!-- gh-comment-id:2380383684 --> @0xJacky commented on GitHub (Sep 28, 2024): 参考一下这个配置：https://github.com/0xJacky/nginx-ui/issues/423#issuecomment-2254904566

kerem commented 2026-02-28 11:55:55 +03:00

Author

Owner

Copy link

@chung1912 commented on GitHub (Sep 28, 2024):

参考一下这个配置：#423 (comment)

我参考你这个配置的，帮忙看下是否有问题呢？docker-compose部署(证书太占地方了，我把证书处理成了一行，删除了换行符)，可以正常跳转到casdoor，也能正常返回到login页面，但是会弹出如下错误提示：
ERROR user/casdoor.go:52 invalid key: Key must be a PEM encoded PKCS1 or PKCS8 key

<!-- gh-comment-id:2380556290 --> @chung1912 commented on GitHub (Sep 28, 2024): > 参考一下这个配置：[#423 (comment)](https://github.com/0xJacky/nginx-ui/issues/423#issuecomment-2254904566) 我参考你这个配置的，帮忙看下是否有问题呢？docker-compose部署(证书太占地方了，我把证书处理成了一行，删除了换行符)，可以正常跳转到casdoor，也能正常返回到login页面，但是会弹出如下错误提示： `ERROR user/casdoor.go:52 invalid key: Key must be a PEM encoded PKCS1 or PKCS8 key`   

kerem commented 2026-02-28 11:55:55 +03:00

Author

Owner

Copy link

@0xJacky commented on GitHub (Sep 30, 2024):

换行符不能删的吧...，你可以映射配置文件进入容器，不一定用环境变量

<!-- gh-comment-id:2382245754 --> @0xJacky commented on GitHub (Sep 30, 2024): 换行符不能删的吧...，你可以映射配置文件进入容器，不一定用环境变量

kerem commented 2026-02-28 11:55:55 +03:00

Author

Owner

Copy link

@chung1912 commented on GitHub (Sep 30, 2024):

换行符不能删的吧...，你可以映射配置文件进入容器，不一定用环境变量

保留换行符，问题依旧

<!-- gh-comment-id:2382696775 --> @chung1912 commented on GitHub (Sep 30, 2024): > 换行符不能删的吧...，你可以映射配置文件进入容器，不一定用环境变量 保留换行符，问题依旧

kerem commented 2026-02-28 11:55:55 +03:00

Author

Owner

Copy link

@0xJacky commented on GitHub (Oct 3, 2024):

花了点时间复现了一下，env 解析之后会把换行符替换为空格，所以证书就提示损坏了，这个问题是环境变量的锅，我计划在下个版本移除 app.ini 中直接配置证书内容的功能，改为在配置文件中设置证书的路径，到时候，可以直接把证书文件映射到容器内。

<!-- gh-comment-id:2391704313 --> @0xJacky commented on GitHub (Oct 3, 2024): 花了点时间复现了一下，env 解析之后会把换行符替换为空格，所以证书就提示损坏了，这个问题是环境变量的锅，我计划在下个版本移除 app.ini 中直接配置证书内容的功能，改为在配置文件中设置证书的路径，到时候，可以直接把证书文件映射到容器内。

kerem commented 2026-02-28 11:55:55 +03:00

Author

Owner

Copy link

@0xJacky commented on GitHub (Oct 3, 2024):

临时的解决方案就是映射 app.ini 进容器，不使用 env

<!-- gh-comment-id:2391709096 --> @0xJacky commented on GitHub (Oct 3, 2024): 临时的解决方案就是映射 app.ini 进容器，不使用 env

kerem commented 2026-02-28 11:55:55 +03:00

Author

Owner

Copy link

@chung1912 commented on GitHub (Oct 4, 2024):

花了点时间复现了一下，env 解析之后会把换行符替换为空格，所以证书就提示损坏了，这个问题是环境变量的锅，我计划在下个版本移除 app.ini 中直接配置证书内容的功能，改为在配置文件中设置证书的路径，到时候，可以直接把证书文件映射到容器内。

是的，直接改为映射下载下来的pem证书文件，这样配置也方便，也不会出错

<!-- gh-comment-id:2393892228 --> @chung1912 commented on GitHub (Oct 4, 2024): > 花了点时间复现了一下，env 解析之后会把换行符替换为空格，所以证书就提示损坏了，这个问题是环境变量的锅，我计划在下个版本移除 app.ini 中直接配置证书内容的功能，改为在配置文件中设置证书的路径，到时候，可以直接把证书文件映射到容器内。 是的，直接改为映射下载下来的pem证书文件，这样配置也方便，也不会出错

kerem commented 2026-02-28 11:55:55 +03:00

Author

Owner

Copy link

@0xJacky commented on GitHub (Oct 6, 2024):

已修复，将会在 beta.36 中发布。

<!-- gh-comment-id:2395466558 --> @0xJacky commented on GitHub (Oct 6, 2024): 已修复，将会在 beta.36 中发布。

kerem commented 2026-02-28 11:55:55 +03:00

Author

Owner

Copy link

@echoface commented on GitHub (Feb 9, 2025):

我这里报错 User not exist；

nginx_lan    | [0.146ms] [rows:0] SELECT * FROM `auths` WHERE `name` = "admin" AND `auths`.`deleted_at` IS NULL ORDER BY `auths`.`id` LIMIT 1

sso登录必须要求对应应用要注册一个admin的用户？

配置内容

[casdoor]
Endpoint        = https://casdoor.xxxxx.cn
ExternalUrl     = https://casdoor.xxxxx.cn
ClientId        = 2b686xxxxxx6d0
ClientSecret    = e4836e2e666fb86xxxxxxxx5b1209bf6e58914d
CertificatePath = /xxxxxx/xxxxxxx/xxxxx.pem
Organization    = xxorg
Application     = nginxlan
RedirectUri     = `https://nginx.echoface.cn/#/login`

@0xJacky @chung1912

<!-- gh-comment-id:2646303339 --> @echoface commented on GitHub (Feb 9, 2025): 我这里报错 User not exist； ``` nginx_lan | [0.146ms] [rows:0] SELECT * FROM `auths` WHERE `name` = "admin" AND `auths`.`deleted_at` IS NULL ORDER BY `auths`.`id` LIMIT 1 ``` sso登录必须要求对应应用要注册一个admin的用户？ 配置内容 ``` [casdoor] Endpoint = https://casdoor.xxxxx.cn ExternalUrl = https://casdoor.xxxxx.cn ClientId = 2b686xxxxxx6d0 ClientSecret = e4836e2e666fb86xxxxxxxx5b1209bf6e58914d CertificatePath = /xxxxxx/xxxxxxx/xxxxx.pem Organization = xxorg Application = nginxlan RedirectUri = `https://nginx.echoface.cn/#/login` ``` @0xJacky @chung1912

kerem commented 2026-02-28 11:55:55 +03:00

Author

Owner

Copy link

@0xJacky commented on GitHub (Feb 9, 2025):

我这里报错 User not exist；

nginx_lan    | [0.146ms] [rows:0] SELECT * FROM `auths` WHERE `name` = "admin" AND `auths`.`deleted_at` IS NULL ORDER BY `auths`.`id` LIMIT 1

sso登录必须要求对应应用要注册一个admin的用户？

配置内容

[casdoor]
Endpoint        = https://casdoor.xxxxx.cn
ExternalUrl     = https://casdoor.xxxxx.cn
ClientId        = 2b686xxxxxx6d0
ClientSecret    = e4836e2e666fb86xxxxxxxx5b1209bf6e58914d
CertificatePath = /xxxxxx/xxxxxxx/xxxxx.pem
Organization    = xxorg
Application     = nginxlan
RedirectUri     = `https://nginx.echoface.cn/#/login`

@0xJacky @chung1912

是的

<!-- gh-comment-id:2646309528 --> @0xJacky commented on GitHub (Feb 9, 2025): > 我这里报错 User not exist； > > ``` > nginx_lan | [0.146ms] [rows:0] SELECT * FROM `auths` WHERE `name` = "admin" AND `auths`.`deleted_at` IS NULL ORDER BY `auths`.`id` LIMIT 1 > ``` > > sso登录必须要求对应应用要注册一个admin的用户？ > > 配置内容 > > ``` > [casdoor] > Endpoint = https://casdoor.xxxxx.cn > ExternalUrl = https://casdoor.xxxxx.cn > ClientId = 2b686xxxxxx6d0 > ClientSecret = e4836e2e666fb86xxxxxxxx5b1209bf6e58914d > CertificatePath = /xxxxxx/xxxxxxx/xxxxx.pem > Organization = xxorg > Application = nginxlan > RedirectUri = `https://nginx.echoface.cn/#/login` > ``` > > [@0xJacky](https://github.com/0xJacky) [@chung1912](https://github.com/chung1912) 是的

kerem commented 2026-02-28 11:55:55 +03:00

Author

Owner

Copy link

@echoface commented on GitHub (Feb 10, 2025):

我这里报错 User not exist；

nginx_lan    | [0.146ms] [rows:0] SELECT * FROM `auths` WHERE `name` = "admin" AND `auths`.`deleted_at` IS NULL ORDER BY `auths`.`id` LIMIT 1

sso登录必须要求对应应用要注册一个admin的用户？
配置内容

[casdoor]
Endpoint        = https://casdoor.xxxxx.cn
ExternalUrl     = https://casdoor.xxxxx.cn
ClientId        = 2b686xxxxxx6d0
ClientSecret    = e4836e2e666fb86xxxxxxxx5b1209bf6e58914d
CertificatePath = /xxxxxx/xxxxxxx/xxxxx.pem
Organization    = xxorg
Application     = nginxlan
RedirectUri     = `https://nginx.echoface.cn/#/login`

@0xJacky @chung1912

是的

能否支持user 自动注册或者，配置中添加对应的配置项，比如allow_user_list 或者与casdoor交互的时候制定用户也行； 不然这个功能实现的比较奇怪； 和sso的实践规范相差很多

<!-- gh-comment-id:2647060829 --> @echoface commented on GitHub (Feb 10, 2025): > > 我这里报错 User not exist； > > ``` > > nginx_lan | [0.146ms] [rows:0] SELECT * FROM `auths` WHERE `name` = "admin" AND `auths`.`deleted_at` IS NULL ORDER BY `auths`.`id` LIMIT 1 > > ``` > > > > > > > > > > > > > > > > > > > > > > > > sso登录必须要求对应应用要注册一个admin的用户？ > > 配置内容 > > ``` > > [casdoor] > > Endpoint = https://casdoor.xxxxx.cn > > ExternalUrl = https://casdoor.xxxxx.cn > > ClientId = 2b686xxxxxx6d0 > > ClientSecret = e4836e2e666fb86xxxxxxxx5b1209bf6e58914d > > CertificatePath = /xxxxxx/xxxxxxx/xxxxx.pem > > Organization = xxorg > > Application = nginxlan > > RedirectUri = `https://nginx.echoface.cn/#/login` > > ``` > > > > > > > > > > [@0xJacky](https://github.com/0xJacky) [@chung1912](https://github.com/chung1912) > > 是的 能否支持user 自动注册或者，配置中添加对应的配置项，比如allow_user_list 或者与casdoor交互的时候制定用户也行； 不然这个功能实现的比较奇怪； 和sso的实践规范相差很多

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

dev

weblate

main

renovate/uuid-14.x

renovate/typescript-6.x

renovate/all-minor-patch

cursor/interface-conversion-error-36ec

cursor/docker-api-stat-path-27ca

cursor/nginx-ui-disk-i-o-3d99

cursor/cloudflare-dns-comments-299c

cursor/access-log-dark-mode-font-dfdc

copilot/fix-ai-chat-title-error

cursor/propfind-method-logging-33b5

cursor/docker-client-version-update-d1b4

copilot/fix-nginx-ui-api-errors

cursor/update-x-forwarded-proto-header-handling-1223

cursor/fix-nginx-ui-issue-1455-gpt-5.1-codex-high-079c

cursor/update-nginx-ui-to-vue-3-gpt-5.1-codex-high-3100

cursor/investigate-nginx-ui-issue-1446-gpt-5.1-codex-high-2be0

v1

v2.3.8

v2.3.7

v2.3.6

v2.3.5

v2.3.4

v2.3.3

v2.3.2

v2.3.1

v2.3.0

v2.2.1

v2.2.0-patch.1

v2.2.0

v2.1.17

v2.1.16

v2.1.15

v2.1.14

v2.1.13

v2.1.12

v2.1.11

v2.1.10

v2.1.9

v2.1.8

v2.1.7

v2.1.6

v2.1.5

v2.1.4-patch.1

v2.1.4

v2.1.3

v2.1.2

v2.1.1

v2.1.0-patch.1

v2.1.0

v2.1.0-rc.3

v2.1.0-rc.2

v2.1.0-rc.1

v2.1.0-beta.1

v2.0.2

v2.0.1

v2.0.0

v2.0.0-rc.8-patch.1

v2.0.0-rc.8

v2.0.0-rc.7-patch.6

v2.0.0-rc.7-patch.7

v2.0.0-rc.7-patch.8

v2.0.0-rc.7-patch.5

v2.0.0-rc.7-patch.4

v2.0.0-rc.7-patch.3

v2.0.0-rc.7-patch.2

v2.0.0-rc.7-patch.1

v2.0.0-rc.7

v2.0.0-rc.6-patch.5

v2.0.0-rc.6-patch.4

v2.0.0-rc.6-patch.3

v2.0.0-rc.6-patch.2

v2.0.0-rc.6-patch.1

v2.0.0-rc.6

v2.0.0-rc.5

v2.0.0-rc.4-patch.3

v2.0.0-rc.4-patch.2

v2.0.0-rc.4-patch.1

v2.0.0-rc.4

v2.0.0-rc.3-patch.1

v2.0.0-rc.3

v2.0.0-rc.2

v2.0.0-rc.1-patch.2

v2.0.0-rc.1-patch.1

v2.0.0-rc.1

v2.0.0-beta.42

v2.0.0-beta.41

v2.0.0-beta.40

v2.0.0-beta.39-risefront.6

v2.0.0-beta.39-risefront.5

v2.0.0-beta.39-risefront.4

v2.0.0-beta.39-risefront.3

v2.0.0-beta.39-risefront.2

v2.0.0-beta.39-risefront

v2.0.0-beta.39

v2.0.0-beta.38

v2.0.0-beta.37-patch.5

v2.0.0-beta.37-patch.3

v2.0.0-beta.37-patch.4

v2.0.0-beta.37-patch.2

v2.0.0-beta.37-patch.1

v2.0.0-beta.37

v2.0.0-beta.36

v2.0.0-beta.35

v2.0.0-beta.34

v2.0.0-beta.33

v2.0.0-beta.32-patch.1

v2.0.0-beta.32

v2.0.0-beta.31

v2.0.0-beta.30

v2.0.0-beta.29

v2.0.0-beta.28

v2.0.0-beta.27

v2.0.0-beta.26

v2.0.0-beta.25-patch.2

v2.0.0-beta.25-patch.1

v2.0.0-beta.25

v2.0.0-beta.24

v2.0.0-beta.23-patch.2

v2.0.0-beta.23-patch.1

v2.0.0-beta.23

v2.0.0-beta.22

v2.0.0-beta.21

v2.0.0-beta.20

v2.0.0-beta.19

v2.0.0-beta.18-patch.2

v2.0.0-beta.18-patch.1

v2.0.0-beta.18

v2.0.0-beta.17

v2.0.0-beta.16

v2.0.0-beta.15

v2.0.0-beta.14

v2.0.0-beta.13-patch

v2.0.0-beta.13

v2.0.0-beta.12

v2.0.0-beta.11

v2.0.0-beta.10-patch

v2.0.0-beta.10

v2.0.0-beta.9

v2.0.0-beta.8-patch

v2.0.0-beta.8

v2.0.0-beta.7

v2.0.0-beta.6-patch.2

v2.0.0-beta.6-patch

v2.0.0-beta.6

v2.0.0-beta.5-patch

v2.0.0-beta.5

v2.0.0-beta.4-patch

v2.0.0-beta.4

v2.0.0-beta.3

v2.0.0-beta.2

v2.0.0-beta.1

v1.9.9-4

v1.9.9-3

v1.9.9-2

v1.9.9

v1.9.9-1

v1.8.4-patch

v1.8.4

v1.8.3

v1.8.2

v1.8.1

v1.8.0

v1.7.9

v1.7.8

v1.7.7

v1.7.6

v1.7.5

v1.7.4

v1.7.3

v1.7.2

v1.7.1

v1.7.0-patch

v1.7.0

v1.6.8

v1.6.7

v1.6.6

v1.6.5

v1.6.3

v1.6.2

v1.6.1

v1.6.0-fix

v1.6.0

v1.5.2

v1.5.1

v1.5.0

v1.5.0-beta9

v1.5.0-beta8

v1.5.0-beta7

v1.5.0-beta6

v1.5.0-beta5

v1.5.0-beta4-fix

v1.5.0-beta4

v1.5.0-beta3

v1.5.0-beta2

v1.5.0-beta1

v1.4.2

v1.4.1

v1.4.0

v1.4.0-rc1

v1.3.3-rc1

v1.3.2

v1.3.1-fix

v1.3.1

v1.3.0

v1.3.0-rc1

v1.2.2

v1.2.1

v1.2.0

v1.2.0-rc.3

v1.2.0-rc.2

v1.2.0-rc.1

v1.2.0-alpha.4

v1.2.0-alpha.3

v1.2.0-alpha.2

v1.1.0

Labels

Clear labels   

Q/A

  

bug

  

casdoor

  

dependencies

  

docker

  

documentation

  

duplicate

  

enhancement

  

help wanted

  

invalid

  

lego

  

platform:openwrt

  

platform:windows

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

wontfix

No labels

Q/A

bug

casdoor

dependencies

docker

documentation

duplicate

enhancement

help wanted

invalid

lego

platform:openwrt

platform:windows

pull-request

question

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/nginx-ui#3395

No description provided.