mirror of
https://github.com/ciur/papermerge.git
synced 2026-04-25 03:55:58 +03:00
[GH-ISSUE #662] Can't Log in with OIDC #515
Labels
No labels
2.1
3.0
3.0.1
3.0.2
3.0.3
3.0.3
3.1
3.2
3.2
3.3
3.5
3.x
Fixed. Waiting for feedback.
Fixed. Waiting for feedback.
UX
Version 2.1 - alpha
XSS
announcement
beta
blocker
bug
cannot reproduce
confirmed
confirmed
critical
demo
dependencies
deployment
detchnical debt
discussion
docker
documentation
donations
duplicate
enhancement
feature request
frontend
fundraising
good first issue
good issue
help wanted
high
implemented
important
improvement
incomplete
invalid
investigation
kubernetes
low
low impact
medium
medium
medium impact
migration from 2.0
migration from 2.1
missing-language
missing-ocr-language
no-activity
note
ocr
outofscope
packaging
performance
popular request
pull-request
pypi
question
raspberry pi
roadmap
search
security
setup
status
task
technical debt
updates
user xp
version 1.4.0 - demo
will be implemented
will not be implemented
wontfix
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference
starred/papermerge#515
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @AtomicDude on GitHub (May 31, 2025).
Original GitHub issue: https://github.com/ciur/papermerge/issues/662
Originally assigned to: @ciur on GitHub.
Description
Hello, I've followed the instructions on setting up OIDC authentication, but no matter what I do the button "Login with OIDC" doesn't appear.
I'm using Authelia as my provider, but I've also tried using Keycloak.
The normal authentication doesn't work either when the OIDC is enabled.
There are no errors in the logs when starting up.
Info:
authelia client config:
The only error that I see in authelia's log is when I'm trying to log in using the superuser account
@Strehk commented on GitHub (Nov 26, 2025):
Hey there, I ran into a very similar looking Issue:
Papermerge is failing to introspect tokens with the OIDC provider PocketID due to a "400 Bad Request" error. The logs indicate that PocketID is reporting "client id or secret not provided" during the introspection call, despite these values being configured in Papermerge's environment variables.
Papermerge Container ENVs (relevant OIDC configuration):
Papermerge Container Log Excerpt:
PocketID Container Log Excerpt:
Potential Cause:
The PocketID logs clearly state "client id or secret not provided," even though the
queryin the log does showclient_idandclient_secretpresent. This suggests a potential issue with:Additional Information:
The Papermerge stack trace points to
auth_server/backends/oidc.py, line 130, within theintrospect_tokenfunction, confirming the issue originates from the introspection call.