Google SSO Issue {"code":"E_NOT_FOUND"} #810

New Issue

Closed

opened 2026-02-04 21:23:41 +03:00 by OVERLORD · 2 comments

OVERLORD commented 2026-02-04 21:23:41 +03:00

Owner

Copy Link

Originally created by @ilovefreesw on GitHub (Sep 9, 2025).

Hi, I am getting this after configuring Google SSO

My OIDC ENVs:

OIDC_ISSUER=https://accounts.google.com
OIDC_CLIENT_ID=188528823XXXXXXXXXXXXapps.googleusercontent.com
OIDC_CLIENT_SECRET=GOXXXXXXXXO5Yw
OIDC_USE_OAUTH_CALLBACK=true
OIDC_SCOPES=openid email profile
OIDC_RESPONSE_MODE=form_post
OIDC_USERINFO_SIGNED_RESPONSE_ALG=RS256
OIDC_ADMIN_ROLES=admin
OIDC_PROJECT_OWNER_ROLES=project_owner
OIDC_BOARD_USER_ROLES=board_user
OIDC_EMAIL_ATTRIBUTE=email
OIDC_NAME_ATTRIBUTE=name
OIDC_USERNAME_ATTRIBUTE=preferred_username
OIDC_CLAIMS_SOURCE=userinfo

I don't know what I am doing wrong. There are no errors in the browser or in the docker logs.

Originally created by @ilovefreesw on GitHub (Sep 9, 2025). Hi, I am getting this after configuring Google SSO <img width="522" height="340" alt="Image" src="https://github.com/user-attachments/assets/00c6b167-03d0-4914-a7fe-582bfaa342f5" /> My OIDC ENVs: ``` OIDC_ISSUER=https://accounts.google.com OIDC_CLIENT_ID=188528823XXXXXXXXXXXXapps.googleusercontent.com OIDC_CLIENT_SECRET=GOXXXXXXXXO5Yw OIDC_USE_OAUTH_CALLBACK=true OIDC_SCOPES=openid email profile OIDC_RESPONSE_MODE=form_post OIDC_USERINFO_SIGNED_RESPONSE_ALG=RS256 OIDC_ADMIN_ROLES=admin OIDC_PROJECT_OWNER_ROLES=project_owner OIDC_BOARD_USER_ROLES=board_user OIDC_EMAIL_ATTRIBUTE=email OIDC_NAME_ATTRIBUTE=name OIDC_USERNAME_ATTRIBUTE=preferred_username OIDC_CLAIMS_SOURCE=userinfo ``` I don't know what I am doing wrong. There are no errors in the browser or in the docker logs.

OVERLORD closed this issue 2026-02-04 21:23:46 +03:00

OVERLORD commented 2026-02-04 21:23:51 +03:00

Author

Owner

Copy Link

@meltyshev commented on GitHub (Sep 9, 2025):

Hey! Hmmm... Are you using the manual or Docker-based installation? This looks a bit strange, because the server should serve index.html from the views, which handles the callback on the frontend. Instead, it seems there's no route like that, or maybe the index.html is missing. Could you please share your configuration (without any sensitive data) and the steps you used for installation?

@meltyshev commented on GitHub (Sep 9, 2025): Hey! Hmmm... Are you using the manual or Docker-based installation? This looks a bit strange, because the server should serve `index.html` from the views, which handles the callback on the frontend. Instead, it seems there's no route like that, or maybe the `index.html` is missing. Could you please share your configuration (without any sensitive data) and the steps you used for installation?

OVERLORD commented 2026-02-04 21:23:57 +03:00

Author

Owner

Copy Link

@ilovefreesw commented on GitHub (Sep 9, 2025):

I tinkered the given compose.yml file a bit...

services:
  traefik:
    image: traefik:v2.10
    restart: unless-stopped
    command:
      - "--api.insecure=true"
      - "--providers.docker=true"
      - "--entrypoints.web.address=:80"
      - "--entrypoints.websecure.address=:443"
      - "--certificatesresolvers.letsencrypt.acme.httpchallenge=true"
      - "--certificatesresolvers.letsencrypt.acme.httpchallenge.entrypoint=web"
      - "--certificatesresolvers.letsencrypt.acme.email=sul@xxxxx.com"
      - "--certificatesresolvers.letsencrypt.acme.storage=/letsencrypt/acme.json"
    ports:
      - "80:80"
      - "443:443"
    volumes:
      - "/var/run/docker.sock:/var/run/docker.sock:ro"
      - "/srv/planka-data/cert-data:/letsencrypt"

  planka:
    image: ghcr.io/plankanban/planka:2.0.0-rc.4
    restart: unless-stopped
    environment:
      - BASE_URL=${BASE_URL}
      - DATABASE_URL=${DATABASE_URL}
      - SECRET_KEY=${SECRET_KEY}
      - SMTP_HOST=${SMTP_HOST}
      - SMTP_PORT=${SMTP_PORT}
      - SMTP_SECURE=${SMTP_SECURE}
      - SMTP_USER=${SMTP_USER}
      - SMTP_PASSWORD=${SMTP_PASSWORD}
      - SMTP_FROM=${SMTP_FROM}
      - LOG_LEVEL=warn
      - TRUST_PROXY=true
      - OIDC_ISSUER=${OIDC_ISSUER}
      - OIDC_CLIENT_ID=${OIDC_CLIENT_ID}
      - OIDC_CLIENT_SECRET=${OIDC_CLIENT_SECRET}
      - OIDC_USE_OAUTH_CALLBACK=${OIDC_USE_OAUTH_CALLBACK}
      - OIDC_SCOPES=${OIDC_SCOPES}
      - OIDC_CLAIMS_SOURCE=userinfo
      - OIDC_ADMIN_ROLES=admin
      - OIDC_PROJECT_OWNER_ROLES=project_owner
      - OIDC_BOARD_USER_ROLES=board_user
      - OIDC_EMAIL_ATTRIBUTE=email
      - OIDC_NAME_ATTRIBUTE=name
      - OIDC_IGNORE_ROLES=true
    volumes:
      - /srv/planka-data/favicons:/app/public/favicons
      - /srv/planka-data/user-avatars:/app/public/user-avatars
      - /srv/planka-data/background-images:/app/public/background-images
      - /srv/planka-data/attachments:/app/private/attachments
    labels:
      - "traefik.enable=true"
      - "traefik.http.routers.planka.rule=Host(`boxxxxxxx.com`)"
      - "traefik.http.routers.planka.entrypoints=websecure"
      - "traefik.http.routers.planka.tls.certresolver=letsencrypt"
    depends_on:
      postgres:
        condition: service_healthy

  postgres:
    image: postgres:16-alpine
    restart: unless-stopped
    environment:
      - POSTGRES_DB=planka
      - POSTGRES_USER=postgres
      - POSTGRES_PASSWORD=${POSTGRES_PASSWORD}
    ports:
      - "5432:5432"
    volumes:
      - /srv/planka-data/db-data:/var/lib/postgresql/data
    healthcheck:
      test: ["CMD-SHELL", "pg_isready -U postgres -d planka"]
      interval: 10s
      timeout: 5s
      retries: 5

volumes:
  cert-data:
  favicons:
  user-avatars:
  background-images:
  attachments:
  db-data:

Removing OIDC_USERNAME_ATTRIBUTE=preferred_username (as per chatgpt) worked for me. After that, I ran into this issue so manually changed role to admin in the database... everything is working fine now.

@ilovefreesw commented on GitHub (Sep 9, 2025): I tinkered the given compose.yml file a bit... ``` services: traefik: image: traefik:v2.10 restart: unless-stopped command: - "--api.insecure=true" - "--providers.docker=true" - "--entrypoints.web.address=:80" - "--entrypoints.websecure.address=:443" - "--certificatesresolvers.letsencrypt.acme.httpchallenge=true" - "--certificatesresolvers.letsencrypt.acme.httpchallenge.entrypoint=web" - "--certificatesresolvers.letsencrypt.acme.email=sul@xxxxx.com" - "--certificatesresolvers.letsencrypt.acme.storage=/letsencrypt/acme.json" ports: - "80:80" - "443:443" volumes: - "/var/run/docker.sock:/var/run/docker.sock:ro" - "/srv/planka-data/cert-data:/letsencrypt" planka: image: ghcr.io/plankanban/planka:2.0.0-rc.4 restart: unless-stopped environment: - BASE_URL=${BASE_URL} - DATABASE_URL=${DATABASE_URL} - SECRET_KEY=${SECRET_KEY} - SMTP_HOST=${SMTP_HOST} - SMTP_PORT=${SMTP_PORT} - SMTP_SECURE=${SMTP_SECURE} - SMTP_USER=${SMTP_USER} - SMTP_PASSWORD=${SMTP_PASSWORD} - SMTP_FROM=${SMTP_FROM} - LOG_LEVEL=warn - TRUST_PROXY=true - OIDC_ISSUER=${OIDC_ISSUER} - OIDC_CLIENT_ID=${OIDC_CLIENT_ID} - OIDC_CLIENT_SECRET=${OIDC_CLIENT_SECRET} - OIDC_USE_OAUTH_CALLBACK=${OIDC_USE_OAUTH_CALLBACK} - OIDC_SCOPES=${OIDC_SCOPES} - OIDC_CLAIMS_SOURCE=userinfo - OIDC_ADMIN_ROLES=admin - OIDC_PROJECT_OWNER_ROLES=project_owner - OIDC_BOARD_USER_ROLES=board_user - OIDC_EMAIL_ATTRIBUTE=email - OIDC_NAME_ATTRIBUTE=name - OIDC_IGNORE_ROLES=true volumes: - /srv/planka-data/favicons:/app/public/favicons - /srv/planka-data/user-avatars:/app/public/user-avatars - /srv/planka-data/background-images:/app/public/background-images - /srv/planka-data/attachments:/app/private/attachments labels: - "traefik.enable=true" - "traefik.http.routers.planka.rule=Host(`boxxxxxxx.com`)" - "traefik.http.routers.planka.entrypoints=websecure" - "traefik.http.routers.planka.tls.certresolver=letsencrypt" depends_on: postgres: condition: service_healthy postgres: image: postgres:16-alpine restart: unless-stopped environment: - POSTGRES_DB=planka - POSTGRES_USER=postgres - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} ports: - "5432:5432" volumes: - /srv/planka-data/db-data:/var/lib/postgresql/data healthcheck: test: ["CMD-SHELL", "pg_isready -U postgres -d planka"] interval: 10s timeout: 5s retries: 5 volumes: cert-data: favicons: user-avatars: background-images: attachments: db-data: ``` Removing `OIDC_USERNAME_ATTRIBUTE=preferred_username` (as per chatgpt) worked for me. After that, I ran into [this issue](https://github.com/plankanban/planka/issues/661) so manually changed role to admin in the database... everything is working fine now.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

dependabot/npm_and_yarn/client/multi-5543462fab

gh-pages

dependabot/npm_and_yarn/multi-795903f3f3

dependabot/npm_and_yarn/server/multi-60f2582fdd

dependabot/npm_and_yarn/client/qs-6.14.2

dependabot/npm_and_yarn/client/markdown-it-14.1.1

v2.0.2

planka-2.0.2

v2.0.1

planka-2.0.1

v2.0.0

planka-2.0.0

planka-1.1.2

planka-1.1.1

planka-1.1.0

planka-1.0.5

planka-1.0.4

v2.0.0-rc.4

v1.26.3

planka-0.2.26

planka-1.0.3

planka-1.0.2

v2.0.0-rc.3

planka-1.0.1

planka-1.0.0

v2.0.0-rc.2

planka-0.2.25

v1.26.2

v1.26.1

planka-0.2.24

v1.26.0

planka-0.2.23

v1.25.1

planka-0.2.22

v1.25.0

planka-0.2.21

v1.24.4

planka-0.2.20

v1.24.3

planka-0.2.19

planka-0.2.18

v1.24.2

planka-0.2.17

planka-0.2.16

v1.24.1

planka-0.2.15

v1.24.0

planka-0.2.14

v1.23.5

v1.23.4

planka-0.2.13

planka-0.2.12

v1.23.3

planka-0.2.11

v1.23.2

planka-0.2.10

v1.23.1

planka-0.2.9

v1.23.0

v1.22.0

planka-0.2.8

Labels

Clear labels

bug

bug

documentation

documentation

duplicate

enhancement

good first issue

help wanted

pull-request

Mirrored from GitHub Pull Request

question

wontfix

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/planka#810