I
Immich•2y ago
Deleted User

OAuth Mobile with Authelia

Hello everyone! Let me start by thanking everyone involved for this great app! I am configuring OAuth authentication with Authelia serving as a oidc server. On the web part everything is working great! I tried to follow the instructions for the Mobile Redirect URI as I understand that authelia only allows HTTP and HTTPS. However, it is not working. I think I am missing a step but I found the instructions a bit unclear. I believe the problem might be in the first step as I am unsure how to "configure an http(s) endpoint to forwards requests to app.immich:/" (i.e. if this needs to be configured in my reverse proxy, Traefik) Would be great if someone could help! Thank you in advance. Sending the Oauth settings and authelia config too:
No description
No description
13 Replies
Alex Tran
Alex Tran•2y ago
@zody If I recall correctly, you also use Authelia, correct? Do you have any advises?
schuhbacca
schuhbacca•2y ago
For my setup I don't use the override. In your authelia config set one of your redirects to app.immich:/ I don't use the mobile redirect one That's all I needed
zody
zody•2y ago
redirect_uris:
  - app.immich:/
redirect_uris:
  - app.immich:/
in authelia config works fine with the app
Deleted User
Deleted UserOP•2y ago
I tried that but I am getting a 401 error when inputting the server url
zody
zody•2y ago
disable MOBILE REDIRECT URI OVERRIDE in immich settings
schuhbacca
schuhbacca•2y ago
You have auth/login User-settings app.immich:/ As the three redirects?
Deleted User
Deleted UserOP•2y ago
Yes This is what shows up on my iPad
Deleted User
Deleted UserOP•2y ago
No description
Deleted User
Deleted UserOP•2y ago
Also just tried to update the server and clients and it's still the same
zody
zody•2y ago
No description
zody
zody•2y ago
No description
zody
zody•2y ago
this works fine for me. maybe your reverse proxy is doing something weird.. but OIDC works fine on the web?
Deleted User
Deleted UserOP•2y ago
For me it's still showing the same error, but it's working in the web. What proxy are you using? Also, when you write your server endpoint in the Immich app does a popup come up so you can write your authelia credentials? I just figured out why it wasn't working. I am using traefik and I was setting authelia as a middleware. I was having the same problem in Nextcloud (although I am pretty sure there was another service that was working this way). The moment I removed the middleware everything starts working normally. I know the answer was super simple but I've been configuring OIDC clients all day and got everything confused 😅 Anyway, thanks for all your help! I hope this can help someone having the same problem

Did you find this page helpful?