2025-06-06 - 2025-12-06
Overview
27 Releases published by 2 users
Published
v1.16.0
Published
v1.15.0
Published
v1.14.2
Published
v1.14.1
Published
v1.14.0
Published
v1.13.1
Published
v1.13.0
Published
v1.12.0
Published
v1.11.2
Published
v1.11.1
Published
v1.11.0
Published
v1.10.0
Published
v1.9.1
Published
v1.9.0
Published
v1.8.1
Published
v1.8.0
Published
v1.7.0
Published
v1.6.4
Published
v1.6.3
Published
v1.6.2
Published
v1.6.1
Published
v1.6.0
Published
v1.5.0
Published
v1.4.1
Published
v1.4.0
Published
v1.3.1
Published
v1.3.0
852 Issues closed from 1 user
Closed
#974 [PR #9] [CLOSED] [ImgBot] Optimize images
Closed
#973 [PR #31] Edit first and last name labels
Closed
#972 [PR #17] [MERGED] [ImgBot] Optimize images
Closed
#971 [PR #26] [MERGED] feat: add audit log with email notification
Closed
#970 [PR #51] [MERGED] Jellyfin Integration Guide
Closed
#968 [PR #27] [MERGED] Improve email templating
Closed
#967 [PR #67] [MERGED] chore: make Docker image run without root user
Closed
#966 [PR #53] [MERGED] feat: custom claims
Closed
#965 [PR #71] [MERGED] fix: if already not root, don't bother
Closed
#963 [PR #69] [MERGED] fixes #5 when the authentication fails ...
Closed
#964 [PR #72] [CLOSED] chore: simplify container setup, drop down to node user
Closed
#962 [PR #77] feat(geolite): add Tailscale IP detection with CGNAT range check
Closed
#961 [PR #85] docs: Add "groups" scope to the oauth2-proxy sample configuration
Closed
#960 [PR #76] [CLOSED] feat(geolite): improve Tailscale IP detection with CGNAT range check
Closed
#958 [PR #100] [MERGED] feat: allow sign in with email
Closed
#956 [PR #79] [MERGED] feat: add support for Postgres database provider
Closed
#955 [PR #133] refactor: bug template update
Closed
#954 [PR #106] [MERGED] feat: add LDAP sync
Closed
#953 [PR #118] [MERGED] docs: add docusaurus docs
Closed
#952 [PR #138] [MERGED] fix: ensure the downloaded GeoLite2 DB is not corrupted & prevent RW race condition
Closed
#950 [PR #130] [MERGED] fix: always set secure on cookie
Closed
#949 [PR #155] draft: feat: ISP (AS) names and numbers
Closed
#948 [PR #139] [MERGED] feat: private IP ranges
Closed
#947 [PR #142] [MERGED] Create sample-configurations.md
Closed
#946 [PR #152] [MERGED] fix: make CONTRIBUTING instructions work & fix example envs
Closed
#944 [PR #161] [MERGED] [ImgBot] Optimize images
Closed
#943 [PR #173] fix: use EnvConfig.AppURL instead EnvConfig.Host for smtp ehlo
Closed
#942 [PR #165] [MERGED] fix: add save changes dialog before sending test email
Closed
#941 [PR #162] [MERGED] docs: fix open-webui docs page
Closed
#939 [PR #166] [MERGED] docs: add more client-examples
Closed
#938 [PR #175] [MERGED] fix: add __HOST prefix to cookies
Closed
#937 [PR #186] docs: add version label to navbar
Closed
#936 [PR #177] [CLOSED] feat: add oidc end-session endpoint
Closed
#935 [PR #180] [MERGED] fix: smtp hello for tls connections
Closed
#934 [PR #183] [MERGED] docs: fix typos and improve clarity in proxmox.md
Closed
#932 [PR #189] [MERGED] fix(caddy): trusted_proxies for IPv6 enabled hosts
Closed
#931 [PR #196] docs: add fly.io setup guide
Closed
#930 [PR #194] docs: Added Gitea and Memos example
Closed
#929 [PR #191] [MERGED] docs: Add Immich and Headscale client examples
Closed
#927 [PR #197] [MERGED] docs: add helper scripts install for proxmox
Closed
#926 [PR #200] [MERGED] Docs for adding Pocket ID to FreshRSS
Closed
#925 [PR #211] docs: add the "HOST" environment variable
Closed
#924 [PR #202] [MERGED] feat: map allowed groups to OIDC clients
Closed
#923 [PR #203] [MERGED] docs: add landing page
Closed
#922 [PR #205] [MERGED] docs: enhance documentation
Closed
#920 [PR #210] [CLOSED] docs: add the "HOST" environment variable
Closed
#919 [PR #212] [MERGED] docs: fix freshrss callback url
Closed
#918 [PR #216] [MERGED] feat: ldap search filters
Closed
#917 [PR #220] [MERGED] feat: add warning for only having one passkey configured
Closed
#916 [PR #218] [MERGED] feat: update host configuration to allow external access
Closed
#915 [PR #222] [MERGED] fix: user linking in ldap group sync
Closed
#914 [PR #232] feat: add end session endpoint
Closed
#913 [PR #226] [MERGED] Add GEOLITE_DB_URL and handle an empty MAXMIND_LICENSE_KEY
Closed
#912 [PR #225] [MERGED] feat: user/group source location badge
Closed
#910 [PR #236] [MERGED] feat: addition LDAP group membership attributes
Closed
#909 [PR #227] [CLOSED] feat: Added Helm chart
Closed
#907 [PR #258] [CLOSED] fix: generate valid urls when app url contains a trailing slash (#257)
Closed
#908 [PR #244] [MERGED] feat: add ability to upload a profile picture
Closed
#905 [PR #265] [CLOSED] feat: add support for TRUSTED_PROXIES environment variable
Closed
#906 [PR #270] [MERGED] feat: device authorization endpoint
Closed
#904 [PR #268] [MERGED] fix: add option to manually select SMTP TLS method
Closed
#903 [PR #290] fix: images with exif data not showing correctly
Closed
#902 [PR #291] feat: api key authentication
Closed
#901 [PR #271] [MERGED] feat(account): allow creation of own login codes
Closed
#900 [PR #273] [MERGED] fix(account): call correct function to set own profile picture
Closed
#897 [PR #277] [MERGED] feat: enable sd_notify support
Closed
#895 [PR #292] [MERGED] fix: support LOGIN authentication method for SMTP
Closed
#896 [PR #296] feat: display groups on the user form/account page
Closed
#894 [PR #293] [MERGED] ci/cd: add pr docker build
Closed
#892 [PR #299] [MERGED] fix: default sorting on tables
Closed
#891 [PR #295] [CLOSED] feat: add prometheus metrics
Closed
#890 [PR #307] fix: typo in account settings
Closed
#889 [PR #303] [CLOSED] fix: sorting not applying on page load
Closed
#888 [PR #306] [MERGED] chore(deps): bump the npm_and_yarn group across 1 directory with 3 updates
Closed
#886 [PR #314] [CLOSED] feat: ability to show/hide alternative signin button
Closed
#885 [PR #313] [MERGED] chore: add Dev Container
Closed
#884 [PR #320] feat: global audit log
Closed
#883 [PR #318] [CLOSED] Add Let's Encrypt Certs with Cloudflare DNS
Closed
#882 [PR #326] chore(deps): bump golang.org/x/net from 0.34.0 to 0.36.0 in /backend in the go_modules group across 1 directory
Closed
#880 [PR #327] [MERGED] feat: Allow setting path where keys are stored + only store private key
Closed
#879 [PR #325] [MERGED] feat: add OIDC refresh_token support
Closed
#877 [PR #331] fix: Fixes and performance improvements in utils package
Closed
#876 [PR #337] fix: pocket-id notify emails are considered as medium spam by rspamd
Closed
#875 [PR #328] [MERGED] chore(deps): bump @babel/runtime from 7.26.7 to 7.26.10 in /frontend in the npm_and_yarn group across 1 directory
Closed
#873 [PR #332] [MERGED] feat(passkeys): name new passkeys based on agguids
Closed
#871 [PR #336] [MERGED] fix: email logo icon displaying too big
Closed
#870 [PR #339] feat: store keys as JWK on disk
Closed
#869 [PR #351] fix: avatar in header fix
Closed
#868 [PR #352] fix: correct misspellings
Closed
#866 [PR #349] [MERGED] 🚀 Feature: Translation
Closed
#863 [PR #353] [CLOSED] fix: update profile picture URL to use dynamic user ID (#342)
Closed
#862 [PR #365] fix: Use source generation for managing AAGUID dataset
Closed
#861 [PR #366] chore(translations): update translations via Crowdin
Closed
#860 [PR #355] [MERGED] feat(profile-picture): allow reset of profile picture
Closed
#859 [PR #359] [MERGED] feat: Add support for ECDSA and EdDSA keys
Closed
#856 [PR #367] [CLOSED] chore(translations): update translations via Crowdin
Closed
#855 [PR #368] [MERGED] chore(translations): update translations via Crowdin
Closed
#854 [PR #371] [MERGED] feat: russian localization added and enabled
Closed
#853 [PR #374] [MERGED] chore(deps): bump github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 in /backend in the go_modules group across 1 directory
Closed
#852 [PR #372] [MERGED] refactor: use atomic renames for uploaded files
Closed
#851 [PR #375] [MERGED] chore(translations): update translations via Crowdin
Closed
#849 [PR #378] [MERGED] docs: fix api routers for swag documentation
Closed
#850 [PR #376] [MERGED] fix: skip ldap objects without a valid unique id
Closed
#848 [PR #381] [MERGED] feat: modernize ui
Closed
#847 [PR #379] [MERGED] fix: hash the refresh token in the DB (security)
Closed
#846 [PR #384] [MERGED] chore(deps-dev): bump vite from 6.2.1 to 6.2.3 in /frontend in the npm_and_yarn group across 1 directory
Closed
#845 [PR #392] fix: use transactions when operations involve multiple database queries
Closed
#844 [PR #386] [MERGED] chore(translations): update translations via Crowdin
Closed
#843 [PR #385] [MERGED] doc: update .env.example to reflect the new documentation location
Closed
#841 [PR #389] [MERGED] Add basic static analysis for backend
Closed
#840 [PR #388] [MERGED] fix: use WAL for SQLite by default and set busy_timeout
Closed
#839 [PR #399] refactor: add swagger title and version info
Closed
#838 [PR #398] [CLOSED] fix: ldap users arent deleted if removed from ldap server
Closed
#837 [PR #394] [MERGED] chore(translations): update translations via Crowdin
Closed
#836 [PR #401] [MERGED] chore(deps): install inlang plugins from npm
Closed
#834 [PR #400] [MERGED] Migrate backend linter to v2. Fixed unit test workflow
Closed
#832 [PR #402] [MERGED] refactor: do not include test controller in production builds
Closed
#833 [PR #408] fix: improve czech translation strings
Closed
#831 [PR #405] [MERGED] feat: implement token introspection
Closed
#830 [PR #406] [MERGED] fix: create reusable default profile pictures
Closed
#828 [PR #407] [CLOSED] fix: DbConfig race conditions
Closed
#827 [PR #414] chore(translations): update translations via Crowdin
Closed
#826 [PR #410] [MERGED] chore(deps-dev): bump vite from 6.2.3 to 6.2.4 in /frontend in the npm_and_yarn group across 1 directory
Closed
#825 [PR #413] [MERGED] fix: ensure file descriptors are closed + other bugs
Closed
#824 [PR #415] [MERGED] fix: ensure indexes on audit_logs table
Closed
#822 [PR #416] [MERGED] chore(translations): update translations via Crowdin
Closed
#821 [PR #425] fix: improve LDAP error handling
Closed
#820 [PR #418] [MERGED] docs: update swagger description to use markdown
Closed
#818 [PR #417] [MERGED] chore(deps-dev): bump vite from 6.2.4 to 6.2.5 in /frontend in the npm_and_yarn group across 1 directory
Closed
#816 [PR #420] [MERGED] chore(translations): update translations via Crowdin
Closed
#815 [PR #433] chore(deps-dev): bump vite from 6.2.5 to 6.2.6 in /frontend in the npm_and_yarn group across 1 directory
Closed
#814 [PR #426] [MERGED] feat(onboarding): Added button when you don't have a passkey added.
Closed
#813 [PR #427] [MERGED] chore(translations): update translations via Crowdin
Closed
#812 [PR #436] [MERGED] feat: add qrcode representation of one time link (#424)
Closed
#810 [PR #437] [MERGED] feat: disable/enable users
Closed
#808 [PR #442] [MERGED] feat: disable animations setting toggle
Closed
#809 [PR #449] fix: profile picture empty for users without first or last name
Closed
#807 [PR #443] [MERGED] chore(deps-dev): bump @sveltejs/kit from 2.16.1 to 2.20.6 in /frontend in the npm_and_yarn group across 1 directory
Closed
#806 [PR #444] [MERGED] chore(translations): update translations via Crowdin
Closed
#804 [PR #450] [MERGED] chore(deps): bump golang.org/x/net from 0.36.0 to 0.38.0 in /backend in the go_modules group across 1 directory
Closed
#803 [PR #452] [MERGED] feat: new login code card position
Closed
#802 [PR #451] [MERGED] feat: send email to user when api key expires within 7 days
Closed
#800 [PR #459] [MERGED] chore(translations): update translations via Crowdin
Closed
#801 [PR #457] [MERGED] feat: add ability to send login code via email
Closed
#799 [PR #456] [MERGED] chore(translations): update translations via Crowdin
Closed
#798 [PR #467] chore(translations): update translations via Crowdin
Closed
#797 [PR #468] chore(translations): update translations via Crowdin
Closed
#796 [PR #465] [MERGED] ci/cd: setup caching and improve ci job performance
Closed
#794 [PR #466] [MERGED] refactor: add ldap tests
Closed
#792 [PR #470] [MERGED] Fix rootless Caddy data and configuration
Closed
#790 [PR #471] [MERGED] fix: prevent deadlock when trying to delete LDAP users
Closed
#791 [PR #476] feat: make family name optional
Closed
#789 [PR #472] [MERGED] fix: do not override XDG_DATA_HOME/XDG_CONFIG_HOME if they are already set
Closed
#788 [PR #473] [MERGED] chore(translations): Add Simplified Chinese translation.
Closed
#786 [PR #479] [MERGED] chore(translations): update translations via Crowdin
Closed
#785 [PR #482] refactor: graceful shutdown for server
Closed
#784 [PR #483] fix: ensure to use correct forwarded ip
Closed
#783 [PR #481] [MERGED] refactor: do not force redirects to happen on the server
Closed
#781 [PR #485] [MERGED] chore(translations): update translations via Crowdin
Closed
#779 [PR #484] [CLOSED] fix: allow ldap users to update locale
Closed
#778 [PR #492] fix: last name still showing as required on account form
Closed
#777 [PR #491] chore(translations): update translations via Crowdin
Closed
#776 [PR #490] [MERGED] Fix incorrectly swapped refreshToken and accessToken
Closed
#775 [PR #487] [MERGED] fix: pass context to methods that were missing it
Closed
#774 [PR #493] [MERGED] refactor: complete graceful shutdown implementation and add service runner
Closed
#769 [PR #495] [MERGED] feat: OpenTelemetry tracing and metrics (#262)
Closed
#771 [PR #496] chore(deps-dev): bump vite from 6.2.6 to 6.3.4 in /frontend in the npm_and_yarn group across 1 directory
Closed
#770 [PR #494] [MERGED] feat: add healthz endpoint
Closed
#768 [PR #507] [MERGED] chore: update AAGUIDs
Closed
#766 [PR #513] [MERGED] fix: handle CORS correctly for endpoints that SPAs need
Closed
#765 [PR #517] [MERGED] chore(translations): update translations via Crowdin
Closed
#764 [PR #520] [MERGED] refactor!: serve the static frontend trough the backend
Closed
#763 [PR #530] [MERGED] refactor: switch SQLite driver to pure-Go implementation
Closed
#762 [PR #523] [MERGED] chore: update AAGUIDs
Closed
#761 [PR #529] [MERGED] refactor!: remove old DB env variables, and jwk migrations logic
Closed
#759 [PR #532] [MERGED] fix: flaky unit test in db_bootstrap_test
Closed
#760 [PR #533] [MERGED] Changes to feat/proxy-frontend
Closed
#758 [PR #537] [MERGED] v1.0.0
Closed
#757 [PR #541] [MERGED] feat: Update release pipelines (1.0)
Closed
#756 [PR #540] [MERGED] refactor: Replace create-one-time-access-token script with in-app functionality (v1.0)
Closed
#755 [PR #543] [MERGED] Update options API for simplewebauthn
Closed
#754 [PR #550] [MERGED] refactor: some clean-up in OIDC service and controller (1.0)
Closed
#752 [PR #546] [MERGED] chore: address linter's complaint in 1.0 branch
Closed
#753 [PR #545] [CLOSED] refactor: update to tw4 and svelte5 for shadcn-svelte
Closed
#751 [PR #547] [MERGED] chore: update AAGUIDs
Closed
#750 [PR #565] fix: use ldapAttributeUserUsername for finding group members
Closed
#749 [PR #551] [MERGED] refactor: migrate shadcn-components to Svelte 5 and TW4
Closed
#748 [PR #554] [MERGED] feat: polish translations
Closed
#747 [PR #561] [MERGED] chore(translations): update translations via Crowdin
Closed
#745 [PR #556] [MERGED] chore(translations): update translations via Crowdin
Closed
#744 [PR #575] chore(translations): update translations via Crowdin
Closed
#743 [PR #566] [MERGED] feat: JWT bearer assertions for client authentication
Closed
#742 [PR #567] [MERGED] feat: show allowed group count on oidc client list
Closed
#741 [PR #573] [MERGED] chore(translations): update translations via Crowdin
Closed
#739 [PR #576] [MERGED] chore: update AAGUIDs
Closed
#738 [PR #577] Tag container images with v{major}
Closed
#737 [PR #579] chore(translations): update translations via Crowdin
Closed
#736 [PR #583] feat: auto detect callback url
Closed
#734 [PR #578] [MERGED] feat: add daily heartbeat request for counting Pocket ID instances
Closed
#732 [PR #582] [MERGED] fix: small fixes in analytics_job
Closed
#731 [PR #588] fix: don't use TOFU for logout callback URLs
Closed
#730 [PR #593] chore(translations): update translations via Crowdin
Closed
#729 [PR #585] [MERGED] fix: run jobs at interval instead of specific time
Closed
#727 [PR #590] [MERGED] chore(translations): update translations via Crowdin
Closed
#725 [PR #599] [MERGED] chore(translations): update translations via Crowdin
Closed
#724 [PR #615] feat: add unix socket support
Closed
#723 [PR #605] [CLOSED] chore(translations): update translations via Crowdin
Closed
#722 [PR #606] [MERGED] chore(translations): update translations via Crowdin
Closed
#721 [PR #620] [MERGED] chore(translations): update translations via Crowdin
Closed
#719 [PR #614] [MERGED] chore(translations): update translations via Crowdin
Closed
#718 [PR #624] feat: oidc client data preview
Closed
#717 [PR #629] chore(translations): update translations via Crowdin
Closed
#716 [PR #623] [MERGED] refactor: upgrade to Zod v4
Closed
#714 [PR #633] [MERGED] ci/cd: add workflow for building 'next' docker image
Closed
#712 [PR #632] [MERGED] chore(translations): update translations via Crowdin
Closed
#711 [PR #637] [MERGED] chore(translations): update translations via Crowdin
Closed
#710 [PR #636] [MERGED] chore: Add docs link and rename to Federated Client Credentials
Closed
#709 [PR #640] [MERGED] feat: allow introspection and device code endpoints to use Federated Client Credentials
Closed
#708 [PR #642] [MERGED] chore(translations): update translations via Crowdin
Closed
#707 [PR #639] [MERGED] chore: update AAGUIDs
Closed
#706 [PR #644] chore(translations): update translations via Crowdin
Closed
#705 [PR #649] chore(translations): update translations via Crowdin
Closed
#704 [PR #643] [MERGED] feat: ui accent colors
Closed
#702 [PR #647] [MERGED] feat: auto-focus on the login buttons
Closed
#700 [PR #648] [MERGED] fix: reduce duration of animations on login and signin page
Closed
#699 [PR #650] [MERGED] fix: Update spelling and grammar in en.json
Closed
#698 [PR #652] [MERGED] chore(translations): update translations via Crowdin
Closed
#697 [PR #661] [MERGED] feat: allow setting unix socket mode
Closed
#696 [PR #657] [MERGED] feat: configurable local ipv6 ranges for audit log
Closed
#695 [PR #659] [MERGED] chore(translations): update translations via Crowdin
Closed
#694 [PR #662] feat: location filter for global audit log
Closed
#693 [PR #669] chore(translations) : typo in french language
Closed
#692 [PR #672] feat: self-service user signup
Closed
#690 [PR #663] [MERGED] chore(translations): update translations via Crowdin
Closed
#688 [PR #677] [MERGED] chore(translations): update translations via Crowdin
Closed
#686 [PR #681] gin: less noisy logging by excluding certain paths via regex and excluding localhost all together
Closed
#685 [PR #678] [MERGED] fix: remove duplicate request logging
Closed
#684 [PR #679] [CLOSED] chore: gin logging less noisy and no logging for localhost (internal …
Closed
#682 [PR #682] [MERGED] feat: Encrypt private keys saved on disk and in DB
Closed
#681 [PR #683] [MERGED] chore(translations): update translations via Crowdin
Closed
#680 [PR #688] chore(translations): update translations via Crowdin
Closed
#679 [PR #692] chore(translations): update translations via Crowdin
Closed
#678 [PR #687] [MERGED] chore(translations): update translations via Crowdin
Closed
#676 [PR #691] [MERGED] chore(translations) : translate missing french values
Closed
#674 [PR #694] [MERGED] chore(translations): update translations via Crowdin
Closed
#672 [PR #695] [MERGED] fix: Auth fails when client IP is empty on Postgres
Closed
#673 [PR #696] [MERGED] fix: app config forms not updating with latest values
Closed
#671 [PR #699] [MERGED] chore(translations): update translations via Crowdin
Closed
#670 [PR #697] [MERGED] chore(translations): update translations via Crowdin
Closed
#669 [PR #698] [MERGED] refactor: use github.com/jinzhu/copier for MapStruct
Closed
#668 [PR #704] [MERGED] fix: token introspection authentication not handled correctly
Closed
#667 [PR #705] [MERGED] chore(translations): update translations via Crowdin
Closed
#665 [PR #707] [MERGED] chore(translations): update translations via Crowdin
Closed
#666 [PR #709] [MERGED] feat: add "key-rotate" command
Closed
#664 [PR #712] [MERGED] chore(translations): update translations via Crowdin
Closed
#662 [PR #724] fix: ensure user inputs are normalized
Closed
#663 [PR #720] fix: actually fix linter issues
Closed
#661 [PR #714] [MERGED] fix: support non UTF-8 LDAP IDs
Closed
#660 [PR #716] [MERGED] feat: distroless container additional variant + healthcheck command
Closed
#659 [PR #719] [MERGED] fix: linter issues
Closed
#656 [PR #729] chore: update AAGUIDs
Closed
#655 [PR #730] chore(translations): update translations via Crowdin
Closed
#653 [PR #727] [MERGED] feat: user application dashboard
Closed
#649 [PR #732] [CLOSED] fix: custom claim input loosing focus from claim suggestions
Closed
#648 [PR #737] fix: login failures on Postgres when IP is null
Closed
#647 [PR #733] [CLOSED] fix: email template margins
Closed
#646 [PR #734] [MERGED] refactor: use react email for email templates
Closed
#645 [PR #747] [MERGED] feat: adds option to OIDC client to require reauthentication
Closed
#643 [PR #750] [MERGED] chore(translations): update translations via Crowdin
Closed
#642 [PR #754] feat: get user by username via api
Closed
#641 [PR #762] fix: migration fails on postgres
Closed
#640 [PR #752] [MERGED] chore: upgrade dependencies
Closed
#638 [PR #763] [MERGED] chore(translations): update translations via Crowdin
Closed
#636 [PR #760] [MERGED] feat: Support OTel and JSON for logs (via log/slog)
Closed
#634 [PR #773] feat: ios apple-touch-icon
Closed
#635 [PR #767] chore(translations): update translations via Crowdin
Closed
#633 [PR #774] feat: add PWA icon support
Closed
#631 [PR #771] [MERGED] chore(deps): bump form-data from 4.0.1 to 4.0.4 in /frontend in the npm_and_yarn group across 1 directory
Closed
#629 [PR #776] [MERGED] fix: set input type 'email' for email-based login
Closed
#627 [PR #777] [MERGED] chore(deps): bump axios from 1.10.0 to 1.11.0 in /frontend in the npm_and_yarn group across 1 directory
Closed
#628 [PR #783] fix: delete WebAuthn registration session after use
Closed
#626 [PR #778] [MERGED] chore(translations): update translations via Crowdin
Closed
#625 [PR #782] [MERGED] chore(translations): update translations via Crowdin
Closed
#623 [PR #779] [MERGED] chore(translations): update translations via Crowdin
Closed
#622 [PR #791] chore(translations): update translations via Crowdin
Closed
#621 [PR #786] [MERGED] chore: switch from npm to pnpm
Closed
#620 [PR #785] [MERGED] chore(translations): update translations via Crowdin
Closed
#619 [PR #794] [MERGED] feat: add support for code_challenge_methods_supported
Closed
#618 [PR #787] [MERGED] refactor: complete conversion of log calls to slog
Closed
#616 [PR #811] chore(translations): update translations via Crowdin
Closed
#615 [PR #799] [MERGED] feat: support reading secret env vars from _FILE
Closed
#614 [PR #806] [MERGED] feat: add robots.txt to block indexing
Closed
#613 [PR #812] [MERGED] feat(signup): add default user groups and claims for new users
Closed
#611 [PR #813] [MERGED] chore: additional logs for database connections
Closed
#610 [PR #820] chore(translations): update translations via Crowdin
Closed
#609 [PR #815] [MERGED] refactor: use reflection to mark file based env variables
Closed
#608 [PR #817] [MERGED] chore(translations): update translations via Crowdin
Closed
#607 [PR #819] [MERGED] chore(translations): update translations via Crowdin
Closed
#605 [PR #821] [MERGED] chore(translations): update translations via Crowdin
Closed
#604 [PR #833] chore: update deps and Go 1.25
Closed
#602 [PR #829] [CLOSED] 📝 Add docstrings to feat/react-email
Closed
#603 [PR #826] [MERGED] chore: update AAGUIDs
Closed
#601 [PR #832] [MERGED] feat: display all accessible oidc clients in the dashboard
Closed
#599 [PR #830] [CLOSED] feat: add ability to set custom client ID
Closed
#598 [PR #836] [MERGED] fix: ignore client secret if client is public
Closed
#597 [PR #840] [MERGED] feat: support for url based icons
Closed
#596 [PR #845] [MERGED] fix(deps): bump rollup from 4.45.3 to 4.46.3
Closed
#594 [PR #841] [MERGED] chore(translations): update translations via Crowdin
Closed
#595 [PR #844] [MERGED] chore: update AAGUIDs
Closed
#593 [PR #851] feat: login code font change
Closed
#592 [PR #846] [MERGED] tests: use proper async calls for cleanupBackend function
Closed
#591 [PR #848] [MERGED] chore(translations): update translations via Crowdin
Closed
#588 [PR #850] [MERGED] chore(translations): update translations via Crowdin
Closed
#589 [PR #854] [MERGED] fix: move audit log call before TX is committed
Closed
#587 [PR #855] [MERGED] fix: for one-time access tokens and signup tokens, pass TTLs instead of absolute expiration date
Closed
#586 [PR #856] [MERGED] chore: strip debug symbol from backend binary
Closed
#585 [PR #863] [MERGED] fix: enable foreign key check for sqlite
Closed
#583 [PR #858] [MERGED] feat: add custom base url
Closed
#584 [PR #860] [MERGED] chore(translations): update translations via Crowdin
Closed
#582 [PR #876] fix: ensure SQLite has a writable temporary directory
Closed
#581 [PR #864] [MERGED] feat: allow custom client IDs
Closed
#580 [PR #869] [MERGED] fix: wrong column type for reauthentication tokens in Postgres
Closed
#579 [PR #870] [MERGED] chore: update issue template
Closed
#577 [PR #874] [MERGED] feat: support automatic db migration rollbacks
Closed
#576 [PR #879] chore(deps): bump golang.org/x/oauth2 from 0.26.0 to 0.27.0 in /backend in the go_modules group across 1 directory
Closed
#575 [PR #877] [MERGED] tests: fix postgres e2e tests
Closed
#574 [PR #878] [MERGED] chore(translations): update translations via Crowdin
Closed
#573 [PR #881] [MERGED] feat: redesigned sidebar with administrative dropdown
Closed
#571 [PR #884] [MERGED] fix(i18n): missing translations fix
Closed
#570 [PR #889] chore(deps): bump sveltekit to 2.36.3 and devalue to 5.3.2
Closed
#569 [PR #893] chore(translations): update translations via Crowdin
Closed
#568 [PR #885] [MERGED] chore: update AAGUIDs
Closed
#567 [PR #887] [MERGED] chore(translations): update translations via Crowdin
Closed
#565 [PR #892] [MERGED] fix: update localized name and description of ldap group name attribute
Closed
#563 [PR #903] chore: update AAGUIDs
Closed
#562 [PR #898] [MERGED] feat: user display name
Closed
#561 [PR #901] [MERGED] feat: initial client_credentials flow support
Closed
#559 [PR #908] [MERGED] feat: add CSP header
Closed
#558 [PR #904] [MERGED] chore(translations): update translations via Crowdin
Closed
#557 [PR #915] chore(translations): update translations via Crowdin
Closed
#556 [PR #909] [CLOSED] feat: allow uppercase usernames
Closed
#555 [PR #911] [CLOSED] Fix email case sensitivity
Closed
#553 [PR #923] [MERGED] fix: ensure users imported from LDAP have fields validated
Closed
#552 [PR #924] [MERGED] chore(translations): update translations via Crowdin
Closed
#551 [PR #932] chore(deps-dev): bump vite from 7.0.6 to 7.0.7 in the npm_and_yarn group across 1 directory
Closed
#550 [PR #929] fix: add validation for callback URLs
Closed
#549 [PR #931] chore(translations): update translations via Crowdin
Closed
#547 [PR #926] [MERGED] chore: update AAGUIDs
Closed
#543 [PR #940] fix: key-rotate doesn't work with database storage
Closed
#542 [PR #942] feat: add support for LOG_LEVEL env variable
Closed
#541 [PR #933] [MERGED] chore: minify background image
Closed
#540 [PR #938] [MERGED] feat: add PWA support
Closed
#538 [PR #943] [MERGED] chore(deps): bump axios from 1.11.0 to 1.12.0 in the npm_and_yarn group across 1 directory
Closed
#536 [PR #954] [MERGED] fix: make environment variables case insensitive where necessary
Closed
#535 [PR #958] feat: allow uppercase usernames
Closed
#534 [PR #957] [MERGED] chore(translations): update translations via Crowdin
Closed
#532 [PR #963] [MERGED] chore(translations): update translations via Crowdin
Closed
#530 [PR #965] [MERGED] fix: decouple images from app config service
Closed
#529 [PR #971] [MERGED] fix: do not use cache=shared for in-memory SQLite
Closed
#528 [PR #966] [MERGED] fix: do not treat certain failures in application images bootstrap as fatal
Closed
#526 [PR #972] [MERGED] chore: update AAGUIDs
Closed
#525 [PR #974] feat: set pwa display type via environment variable
Closed
#523 [PR #989] [MERGED] fix: tokens issued with refresh token flow don't contain groups
Closed
#524 [PR #977] fix: show only country in audit log location if no city instead of Unknown
Closed
#522 [PR #973] [MERGED] chore(translations): update translations via Crowdin
Closed
#519 [PR #979] [MERGED] fix: remove previous socket file to prevent bind error
Closed
#518 [PR #994] feat: add the ability to make email optional
Closed
#516 [PR #992] [MERGED] chore(translations): update translations via Crowdin
Closed
#513 [PR #993] [MERGED] feat: add required indicator for required inputs
Closed
#511 [PR #1002] [CLOSED] feat: Add SCIM 2.0 provisioning support for user and group synchronization
Closed
#512 [PR #999] [MERGED] chore(translations): update translations via Crowdin
Closed
#509 [PR #1008] [MERGED] fix: uploading a client logo with an URL fails
Closed
#508 [PR #1003] [MERGED] chore: cleanup root of repo, update workflow actions
Closed
#510 [PR #1006] [MERGED] fix: mark any callback url as valid if they contain a wildcard
Closed
#507 🐛 Bug Report: Unable to create first user
Closed
#506 🐛 Bug Report: Invalid One Time Link for New User
Closed
#505 🐛 Bug Report: Typo in docker-compose.yml
Closed
#504 🐛 Bug Report: Unable to Add Passkey
Closed
#503 🐛 Bug Report: Browser unsupported for Arc browser with bitwarden extension installed
Closed
#502 🚀 Feature: Unraid Template
Closed
#501 🐛 Bug Report: OIDC with pgadmin not working
Closed
#499 🐛 Bug Report: Failed to get application configuration: connect ECONNREFUSED <server-IP>:80
Closed
#500 🚀 Feature: Multiple RedirectUrl for OIDC clients
Closed
#498 🐛 Bug Report: OIDC with FreshRSS not working
Closed
#497 🐛 Bug Report: Session duration not saved
Closed
#496 🐛 Bug Report: Unable to access /login/setup
Closed
#493 🐛 Bug Report: Cannot add passkey, blank account setup page
Closed
#494 🚀 Feature: proxy requests
Closed
#492 🚀 Feature: Groups
Closed
#491 🐛 Bug Report: OIDC not working with Cloudflare Access
Closed
#490 🚀 Feature: Support more characters in usernames
Closed
#489 🚀 Feature: Fallback auth?
Closed
#488 🐛 Bug Report: "name" is not included in user info
Closed
#487 🐛 Bug Report: 400 error when trying to authorize
Closed
#486 🚀 Feature: Output the urls for endpoints
Closed
#485 🚀 Feature: Allow custom claims
Closed
#484 🚀 Feature: Support Webfinger
Closed
#483 🐛 Bug Report: Changing "Application Name" isn't reflected in saved passkey
Closed
#481 🚀 Feature: Add copy icons next to OIDC client information
Closed
#480 🚀 Feature: Impersonation Mechanic
Closed
#479 🐛 Bug Report: Backend port is not taken into consideration everywhere
Closed
#478 Integration with Gravatar
Closed
#477 Logo not white in dark mode on mobile
Closed
#476 Show external IP address in the audit when using Docker
Closed
#475 🐛 Bug Report: Integration with EspoCRM fails due to missing KID in the jwks.json
Closed
#474 🐛 Bug Report: Gravatar logo used as profile picture when user has no Gravatar account
Closed
#473 Portainer Unauthorized
Closed
#472 🐛 Bug Report: Can't run pocket-id properly
Closed
#471 🚀 Feature: OIDC with Nextcloud
Closed
#470 🐛 Bug Report: "Error validating origin"
Closed
#469 🐛 Bug Report: SvelteKitError: Not found
Closed
#467 🚀 Feature: Display app version in settings
Closed
#468 🚀 Feature: Increase callback urls limit
Closed
#466 🐛 Bug Report: Komga needs "email_verified", and I can't seem to find that option in Pocket ID
Closed
#464 🐛 Bug Report: Memos Identifier invalid
Closed
#465 🚀 Feature: Ability to re-abroad the administrator
Closed
#462 🚀 Feature: How to Set up Proxmox VE OIDC
Closed
#463 🐛 Bug Report: DEV Image cannot create non admin users
Closed
#461 🐛 Bug Report: (More of a feedback) - Powered by text in light mode is broken
Closed
#460 🐛 Bug Report: refreshing page returns 502 Error
Closed
#459 🐛 Bug Report: please write a guide to use caddy proxy before pocketid
Closed
#458 🚀 Feature: Automatic Encyrpted Backup
Closed
#457 🚀 Feature: Ability for users to set a profile picture
Closed
#456 🚀 Feature: API for external dashboards?
Closed
#455 PocketID in combination with Caddy Secure / authcrunch
Closed
#453 🚀 Feature: Add more options for mail server
Closed
#452 🐛 Bug Report: All dates are set to 1/1/1, 12:17:30 AM
Closed
#451 🚀 Feature: Restrict acces to user-groups
Closed
#448 🚀 Feature: API Key authentication
Closed
#449 🚀 Feature: if you edit as admin some users, show their groups
Closed
#450 🐛 Bug Report: CORS issue when using PKCE Code Challenge with SPA
Closed
#447 🐛 Bug Report: invalid callback URL
Closed
#446 🐛 Bug Report: when the authentication fails because of an incorrect callback url, the message "please try again" makes no sense
Closed
#445 🚀 Feature: PKCE Support
Closed
#444 🐛 Bug Report: SMTP Panic
Closed
#442 🚀 Feature: healthcheck endpoint
Closed
#443 🐛 Bug Report: Unable to use empty username/password for email
Closed
#441 🐛 Bug Report: Panic when sending test email
Closed
#440 🚀 Feature: Add external postgres database support
Closed
#439 🐛 Bug Report: An error may occur when reading the timestamptz type.
Closed
#438 🚀 Feature: Manually set Client ID and Client Secret
Closed
#436 🐛 Bug Report: updating from 0.19.0 to 0.20.1 yields "Failed to lookup Client-side Discoverable Credential: record not found" errors
Closed
#437 🐛 Bug Report: Disappearing Logo for app
Closed
#435 🚀 Feature: allow client secret w/ PKCE
Closed
#434 🚀 Feature: Activate discussions
Closed
#433 🐛 Bug Report: failed onboarding admin user with: "Error #01: Error validating origin"
Closed
#432 🚀 Feature: Explain how to link more devices
Closed
#431 🚀 Feature: Documentation
Closed
#430 🚀 Feature: Enable usage as authentication back end
Closed
#429 🐛 Bug Report: Cannot set firstName and lastName to 2 character strings
Closed
#428 🐛 Bug Report: broken logo in email
Closed
#427 🐛 Bug Report: Callback url containing pound symbol
Closed
#426 🚀 Feature: Map allowed groups to applications
Closed
#425 🚀 Feature: Embed static assets into binary rather than expecting they exist
Closed
#424 🐛 Bug Report: Not found: /api/one-time-access-token/setup
Closed
#421 🚀 Feature: Ability to sort OIDC Clients
Closed
#422 🐛 Bug Report: OIDC Client Details wrong value for PKCE
Closed
#420 🐛 Bug Report: Test email sent to wrong address
Closed
#419 🐛 Bug Report: Release v0.24.0 is not reflected in web UI
Closed
#418 🐛 Bug Report: Synology Deployment Issues
Closed
#417 🚀 Feature: LDAP User and Group Sync
Closed
#416 🚀 Feature: remove restrictions on the group's name
Closed
#415 🐛 Bug Report: Pocket-ID not working for internal applications
Closed
#414 🐛 Bug Report: create-one-time-access-token.sh doesn't work with its optional arguments
Closed
#413 🐛 Bug Report: Initial Setup Fails
Closed
#412 🚀 Feature: Allow custom maxmind database download url.
Closed
#411 🚀 Feature: Support Device Authorization Flow
Closed
#410 🚀 Feature: Multi-Architecture Docker Image
Closed
#409 🐛 Bug Report: ghcr.io/stonith404/pocket-id not available
Closed
#408 🚀 Feature: Example Kubernetes + Ouath2-Proxy setup
Closed
#407 🚀 Feature: User ID
Closed
#406 🚀 Feature: access rights for certain users/groups
Closed
#405 🚀 Feature: Exclude subfolders
Closed
#404 🐛 Bug Report: Pocket ID choosing incorrect redirect uri when multiple are present
Closed
#403 🚀 Feature: Automatic Login
Closed
#402 🐛 Bug Report: Login Page too small on some mobile devices (Samsung Galaxy S24 Ultra + Chrome)
Closed
#401 🚀 Feature: Configure SMTP via Environment Variables
Closed
#399 🐛 Bug Report: Add passkey /login/setup Something went wrong, Error #1
Closed
#400 🐛 Bug Report: Does not work through cloudflare dns proxy
Closed
#398 🚀 Feature: webfinger endpoint under .well-known
Closed
#397 🚀 Feature: Audit Log Improvements - Add Username
Closed
#396 🐛 Bug Report: Unknown Locations despite GEO DB being loaded?
Closed
#395 🐛 Bug Report: Unable to kick off Setup
Closed
#394 🐛 Bug Report: Unraid - Failed to get application configuration: connect ECONNREFUSED 127.0.0.1:8080
Closed
#393 🐛 Bug Report: LDAP User Fields are 'editable'
Closed
#392 🐛 Bug Report: Non LDAP users can't be updated
Closed
#390 🚀 Feature: allow setting Logo directly from https://selfh.st/icons/
Closed
#391 🐛 Bug Report:
Closed
#388 🐛 Bug Report: Issue adding Passkey (An unknown error occurred!) ANDROID
Closed
#389 🚀 Feature: Docker containers of each component (backend & frontend)
Closed
#387 🐛 Bug Report: Caddy cant fetch metadata for OAuth 2.0 authorization server
Closed
#384 🐛 Bug Report: Cant create more then one group
Closed
#386 🐛 Bug Report: An unknown error occurred on initial Passkey setup
Closed
#385 🐛 Bug Report: Unable to change CADDY PORT
Closed
#383 🐛 Bug Report: SMTP Test Email Requires "Save" Before Functioning
Closed
#382 🐛 Bug Report: caddy-security Unauthorized "no token found"
Closed
#381 🚀 Feature: Add Support for "end_session_endpoint" or Custom URL for Logging Out
Closed
#379 🐛 Bug Report: Pocket-ID login loop after logout due to conflicting access_token cookies
Closed
#377 🚀 Feature: Signing Key
Closed
#378 🐛 Bug Report: Firefox on Linux advising not supported
Closed
#376 🐛 Bug Report: Cannot send email through Gmail SMTP relay
Closed
#375 🚀 Feature: Light/Dark logos for OIDC clients
Closed
#374 🚀 Feature: Translation
Closed
#373 🐛 Bug Report: __HOST-access_token not being checked when determining login state
Closed
#371 🚀 Feature: Add current stable version label in the docs page
Closed
#372 🐛 Bug Report: SMTP not working with iCloud Mail
Closed
#369 ignore
Closed
#368 🐛 Bug Report: With the Tailwind CSS 4.0 upgrade the Cursor for hovering is not changing
Closed
#370 🐛 Bug Report: Instant Failure logging in to Home Assistant app on iOS
Closed
#367 🐛 Bug Report: Cannot modify or delete non-LDAP user group
Closed
#366 🚀 Feature: custom Domain for docs (and future landing site?)
Closed
#365 🐛 Bug Report: Hoarder OIDC doesn't work with pocket-id
Closed
#364 🐛 Bug Report: (Caddy-security + Pocket-Id) Token expiry causes 401 error and needs manual fixing
Closed
#363 🚀 Feature: Enhance Documentation
Closed
#362 🐛 Bug Report: Something went wrong - Internal Error
Closed
#361 🚀 Feature: API Documentation
Closed
#359 🚀 Feature: Ability to have custom claims be non-string objects
Closed
#360 🐛 Bug Report: New version 0.29 fails to start
Closed
#358 🐛 Bug Report: Audit logs lost public ip behind CF
Closed
#357 🚀 Feature: Add Warning if Only One passkey is configured
Closed
#356 🚀 Feature: Allow LDAP User and Group filters
Closed
#355 🚀 Feature: Reverse-proxy on a subpath
Closed
#353 🚀Repo: Setup Dependabot for Git Repo
Closed
#354 🐛 Bug Report: Error #01: Error validating origin
Closed
#351 🐛 Bug Report: Cloudflare Zero Trust OIDC ERROR: Failed to exchange code for token.
Closed
#350 🐛 Bug Report: Unsure If I've Configured Pocket-ID Incorrectly, However I Can't Access Pocket-ID's Account Settings Anymore After Updating It To The Latest Pocket-ID Version.
Closed
#352 🐛 Bug Report: Cannot send test email with PUBLIC_UI_CONFIG_DISABLED=true
Closed
#348 🚀 Feature: Support addition LDAP group membership attributes
Closed
#349 🐛 Bug Report: HTML email is malformed; images don't load
Closed
#347 🐛 Bug Report: using end_session_endpoint with Audiobookshelf causes ABS to log back in
Closed
#345 🐛 Bug Report: Lubelogger - LogoutURL re-directs to Pocket-ID Admin panel authentication page
Closed
#346 🐛 Bug Report: SvelteKitError: Not found
Closed
#344 🐛 Bug Report: Mails not displayed correctly in Gmail
Closed
#343 🚀 Feature: Add support of ForwardAuth
Closed
#341 🚀 Feature: Global Access Log for Admins
Closed
#342 🐛 Bug Report: Caddy, caddy-security and Pocket-ID not working?
Closed
#340 🚀 Feature: one-time email codes to specific users
Closed
#339 🚀 Feature: Ability to customize access token expiration
Closed
#338 🐛 Bug Report: SMTP field type conversion error when starting with a number
Closed
#337 🐛 Bug Report: SvelteKitError when loading images with Caddy disabled
Closed
#335 🐛 Bug Report: Picture from LDAP Not syncing
Closed
#336 🚀 Feature: add automatic update check
Closed
#334 🐛 Bug Report: Creating admin Passkey returns Error: 'rp.id' cannot be used with the current origin in Web Console
Closed
#332 🚀 Feature: Support for Webfinger
Closed
#333 🐛 Bug Report: When the Public URL has a trailing slash, discovery URLs are incorrect
Closed
#331 🐛 Bug Report: Audit Log doesn't show real local IP
Closed
#330 🚀 Feature: Prometheus Metrics for the Backend
Closed
#329 🐛 Bug Report: Unable to update someone elses profile picture
Closed
#328 🚀 Feature: QR Code / 2nd Device / Assisted Sign-In
Closed
#327 🐛 Bug Report: Error syncing LDAP groups - invalid input syntax for type uuid (SQLSTATE 22P02)
Closed
#326 🐛 Bug Report: Pocket ID uses STARTTLS used by default if SMPT port is not 465
Closed
#325 🐛 Bug Report: state
Closed
#324 🐛 Bug Report: SMTP fails to authenticate
Closed
#323 🐛 Bug Report: Face ID Authentication Fails for Bitwarden Passkey on iPhone
Closed
#322 Help Needed Please:
Closed
#321 🐛 Bug Report: Unable to upload profile picture
Closed
#320 🐛 Bug Report: Some profile pictures end up sideways
Closed
#319 🐛 Bug Report: Unique Email Unable to Create Different Usernames
Closed
#318 🚀 Feature: Log levels
Closed
#317 Feature: App Dashboard for displaying allowed application for a user
Closed
#316 🐛 Bug Report: Frontend startup takes a long time without internet connection
Closed
#314 🚀 Feature: Discord Server
Closed
#315 Bug: Default Sorting not being honored
Closed
#312 🚀 Feature: Disable Update check with environment variable
Closed
#311 🐛 Bug Report: Text Avatar not updating
Closed
#313 🐛 Bug Report: As an admin, I cannot edit a user from the Users page
Closed
#308 🐛 Bug Report: OIDC login is not working when Caddy is used as a reverse proxy for pocket-id
Closed
#310 🐛 Bug Report: Alternative login mobile formatting
Closed
#309 🚀 Feature: Hide "alternative login" link
Closed
#307 🚀 Feature: Make key type & size configurable, and support EC keys
Closed
#306 🚀 Feature: Refresh Tokens
Closed
#305 🐛 Bug Report: Scripts inside /app/scripts/docker are non-executable
Closed
#304 🚀 Feature: Get rid of caddy - make backend proxy the requests to frontend too
Closed
#303 🐛 Bug Report: Use a process manager in the container to ensure apps restart if they crash
Closed
#302 🚀 Feature: Allow setting additional origins
Closed
#301 🐛 Bug Report: pocket-id notify emails are considered as medium spam by rspamd
Closed
#300 🐛 Bug Report: PocketID icon in mails is too large
Closed
#299 🐛 Bug Report: custom claims key may be overly restrictive
Closed
#298 infinite re-direct loop /login/setup
Closed
#297 🐛 Bug Report: Docs wrong on LDAP env variables
Closed
#296 🐛 Bug Report: IPv6 only HOST
Closed
#295 🐛 Bug Report: API key authentication does not work
Closed
#294 🐛 Bug Report: Cache-Control for /api/users/me/profile-picture.png is incorrect
Closed
#293 🐛 Bug Report: Pocket-id is not discovered as a container by traefik using labels - probably healthcheck related
Closed
#292 🚀 Feature: Add ability to remove profile photo
Closed
#290 🚀 Feature: AuthRequest authentication method support
Closed
#291 🚀 Feature: Emulate your users
Closed
#287 🚀 Feature: Support SameSite cookie attribute
Closed
#288 🚀 Feature: Support Tailscale as OIDC Application - Requires implementation of Webfinger
Closed
#289 🐛 Bug Report: v0.42: FreshRSS / auth_openidc error: JWT signature verification failed
Closed
#286 🐛 Bug Report: LDAP: With wrong unique attribute for groups ldap sync creates _local_ groups.
Closed
#284 🚀 Feature: Support private_key_jwt client authentication method per RFC7523 (Security)
Closed
#285 🚀 Feature: Allow user to create their own login
Closed
#283 🐛 Bug Report: 500 Internal Server Error
Closed
#282 🚀 Feature: add your own caddy webfinger config
Closed
#281 🌐 Language request: <Czech>
Closed
#280 🐛 Bug Report: Audit log always display my Nginx Proxy Manager's IP
Closed
#279 🐛 Bug Report: Proxmox identification error 401
Closed
#278 🌐 Language Request: German
Closed
#276 🐛 Bug Report: Default profile picture is not cached
Closed
#277 🌐 Language request: Brazilian Portuguese
Closed
#275 🐛 Bug Report: Race conditions in App Config
Closed
#273 🐛 Bug Report: removed ldap users aren't deleted in pocket id
Closed
#272 🚀 Feature: Provide introspection endpoint
Closed
#274 🐛 Bug Report: Security vulnerabilities
Closed
#270 🚀 Feature: Ability to disable users instead of deletion (and keeping user data intact)
Closed
#271 🐛 Bug Report: Shared passkey between KeePassXC and Keepassium does not work
Closed
#269 🐛 Bug Report: Passkey doesn't get saved on Firefox Mobile, Android 13
Closed
#267 🚀 Feature: Improve onboarding for new users
Closed
#268 🐛 Bug Report: Redirect URL can be changed while logging in
Closed
#266 🚀 Feature: mobile background
Closed
#265 🐛 Bug Report: Profile picture is empty if user has no first or last name
Closed
#264 🐛 Bug Report: Profile Picture Not Updated
Closed
#263 🚀 Feature: Login by QRCode ?
Closed
#262 🐛 Bug Report: Can’t setup new instance, “An unknown error occurred. Please try to sign in again.”
Closed
#261 🐛 Bug Report: Error #01: Failed to lookup Client-side Discoverable Credential: record not found
Closed
#260 🚀 Feature: Send One-Time Link via Email
Closed
#259 🐛 Bug Report: JWT+ID token breaks Proxmox OIDC auth
Closed
#257 🚀 Feature: Make family/last name optional
Closed
#258 🚀 Feature: Make UI animations configurable
Closed
#256 🚀 Feature: MFA
Closed
#255 🌐 Language request: Italian
Closed
#254 🐛 Bug Report: URL constructor: (Komga calback) is not a valid URL
Closed
#251 🚀 Feature: support .gif as background image
Closed
#252 🚀 Feature: WebFinger support (RFC 7033)
Closed
#253 🐛 Bug Report: invalid callback URL, it might be necessary for an admin to fix this
Closed
#250 🐛 Bug Report: No "Add Another" button for Callback URLs when editing OIDC that was once edited via API
Closed
#248 🐛 Bug Report: Profile Picture not saving
Closed
#247 🐛 Bug Report: LDAP Users Unable to Update Language Settings Due to Update Restriction
Closed
#246 🐛 Bug Report: minor UI bug
Closed
#245 little help disabling caddy
Closed
#243 🐛 Bug Report: Error page displayed when accessing Global Audit Log as non-admin user
Closed
#244 🐛 Bug Report: Logins fail after upgrading pocket id
Closed
#242 🐛 Bug Report: SQL Error - Login not possible
Closed
#241 🚀 Feature: Support ProxyAuth
Closed
#239 🚀 Feature: edit expire date of API
Closed
#238 🚀 Feature: Allow to set the client_secret per API
Closed
#237 🐛 Bug Report: Logout Redirect Fails with 403 Error (You don't have permission to perform this action)
Closed
#236 🚀 Feature: Dashboard of all Application (Clients)
Closed
#234 🐛 Bug Report: create-one-time-access-token.sh is not marked executable in container image
Closed
#235 🐛 Bug Report: STand-Alone Installation Fails with dependency error
Closed
#233 🚀 Feature: allow to set artbitrary Cliend-ID
Closed
#231 🚀 Feature: Add ability to create log files
Closed
#232 🐛 Bug Report: changing some env config variables seems to have no effect
Closed
#230 🐛 Bug Report: Timezone not respected in logs
Closed
#229 🚀 Feature: Add a page showing info regarding Login Codes
Closed
#227 🐛 Bug Report: Docker new install /login/setup does not allow passkey setup.
Closed
#228 🐛 Bug Report: Adding Passkey
Closed
#226 🐛 Bug Report: Cannot setup initial passkey
Closed
#224 🐛 Bug Report: Unable to add passkey
Closed
#225 🚀 Feature: Add "Group Count" column to Manage OIDC Clients table
Closed
#222 🐛 Bug Report: missing state cookie
Closed
#223 🐛 Bug Report: Animations should be a lot quicker
Closed
#221 🐛 Bug Report: Trim operation is not performed on OIDC Callback URLs entry boxes
Closed
#220 🚀 Feature: Auto detect and populate callback URL
Closed
#218 🚀 Feature: Allow user to input their own clientid and secret
Closed
#219 🚀 Feature: Alternative to PORT variable for configuring frontend listening port
Closed
#217 🚀 Feature: Add ability to require re-authentication for specific clients
Closed
#216 🚀 Feature: Preview OIDC data in client configuration
Closed
#215 🐛 Bug Report: Logout page does not display custom appName
Closed
#214 🐛 Bug Report: Expand LDAP group membership logic to fully support Active Directory group member DNs with non-username value.
Closed
#213 🚀 Feature: Include service in sign-in email
Closed
#212 🚀 Feature: support disabling the background image
Closed
#211 🐛 Bug Report: Setting UI_CONFIG_DISABLED breaks uploaded Application Configuration > Images
Closed
#210 🐛 Bug Report: Unable to select NFC when registering a passkey
Closed
#209 🐛 Bug Report: Can no longer login with my existing user on latest main
Closed
#208 🚀 Feature: Set expiration for client secrets
Closed
#206 🐛 Bug Report: "locale" behavior
Closed
#205 🐛 Bug Report: Login not possible after 1.0.0 migration
Closed
#204 🐛 Bug Report:
Closed
#203 🐛 Bug Report: Login not possible on v1.0.0
Closed
#200 🚀 Feature: Decouple Pocket ID session length from OIDC client
Closed
#202 🐛 Bug Report: SecurityError: The RP ID "localhost" is invalid for this domain
Closed
#201 🐛 Bug Report: unable to register additional passkeys using KeepassXC (more than one)
Closed
#198 🚀 Feature: ephemeral private key (do not store private key on disk)
Closed
#199 🚀 Feature: Encrypt private key saved to DB
Closed
#197 🚀 Feature: API to get current user's apps
Closed
#196 🐛 Bug Report: Since 1.0
Closed
#195 🚀 Feature: Bootstrap Admin API Key
Closed
#194 🐛 Bug Report: oCIS, invalid client secret (Mobile app)
Closed
#192 🐛 Bug Report: Logo and background image is not visible after upgrading to 1.0.0
Closed
#193 🐛 Bug Report: something broke recently
Closed
#191 🐛 Bug Report: Clients that uses well known openid-configuration will allways redirected to http://localhost:1411
Closed
#190 🐛 Bug Report: Proton Pass compatibility issues
Closed
#189 🐛 Bug Report: can't set language
Closed
#188 🐛 Bug Report: No passkey popup on Brave browser on Android
Closed
#187 🚀 Feature: SAML Metadata for IdP integration
Closed
#186 🐛 Bug Report: Since update, cannot sign in to Pocket ID
Closed
#185 🐛 Bug Report: CORS error for accessing the userinfo endpoint using a web client
Closed
#183 🐛 Bug Report: v1.2.0 language switching glitch on first use
Closed
#184 🐛 Bug Report: LDAP Users in the PocketID Admin Group are not given Admin Permissions
Closed
#182 🐛 Bug Report: OpenWebUI fails after authorization
Closed
#181 🐛 Bug Report: Unable to remove or change OIDC Client Logo
Closed
#180 🐛 Bug Report: Docker image for version v1.2.0 fails to start
Closed
#179 🐛 Bug Report: On first start, UI config overrides don’t take effect
Closed
#176 🌐 Language request: Danish
Closed
#177 🐛 Bug Report: Emails have a missing image
Closed
#175 🌐 Language Request: Traditional Chinese (zh_TW)
Closed
#173 🐛 Bug Report: API "List OIDC clients" paging is broken
Closed
#174 🚀 Feature: Use Weblate instead of Crowdin
Closed
#172 🚀 Feature: Approximate Location Recognizes Local IPv6 as LAN, Internal Network
Closed
#171 🐛 Bug Report: Grafana 12.0.1 fails to map the user
Closed
#170 🚀 Feature: Global Audit Log adds a local traffic filter
Closed
#169 🐛 Bug Report: Can no longer create OIDC clients
Closed
#167 🐛 Bug Report: String "Turn off all animations throughout the Admin UI." is actually applied to whole system
Closed
#168 🐛 Bug Report: Device Code flow should not require a client secret
Closed
#165 🚀 Feature: Support path-based routing
Closed
#166 🐛 Bug Report:
Closed
#164 🐛 Bug Report: Cannot connect to postgres db
Closed
#163 🐛 Bug Report: [ frontend ] crypto module deprecated.
Closed
#162 Unable to authenticate- Credential: record not found
Closed
#160 🚀 Feature: Force scopes
Closed
#159 🐛 Bug Report: Cannot disable users
Closed
#158 🐛 Bug Report: Server Not Starting On First Install
Closed
#157 🐛 Bug Report: SMTP Password is leaked in clear text to admins
Closed
#155 🐛 Bug Report: Accent color affects only some parts of the UI, others stay red.
Closed
#156 🚀 Feature: RFC9207 Support "OAuth 2.0 Authorization Server Issuer Identification"
Closed
#154 🚀 Feature: Distroless, rootless pocket-id
Closed
#152 🐛 Bug Report: Set accent color with UI_CONFIG_DISABLED
Closed
#153 🐛 Bug Report: Possible race condition when using Postgres
Closed
#151 🐛 Bug Report: Cannot login when using Unix Socket (Cannot get client ip)
Closed
#150 🚀 Feature: Enable use of Docker Secrets
Closed
#149 🚀 Feature: Build Terraform provider
Closed
#148 🐛 Bug Report: Introspection Endpoint - Client id or secret not provided
Closed
#147 🚀 Feature: unlimited session duration
Closed
#146 🐛 Bug Report: Changing accent colour then saving again reverts to black
Closed
#145 🐛 Bug Report: LDAP Error
Closed
#143 🚀 Feature: Allow users to edit profile picture, but not email or username
Closed
#144 🐛 Bug Report: Adding Passkey Throwing Unknown Error
Closed
#141 🐛 Bug Report: Custom Claims on User Groups (and Users)
Closed
#140 🐛 Bug Report: No margins in email templates
Closed
#139 🐛 Bug Report: Not starting after update to v1.6.0
Closed
#137 🐛 Bug Report: LDAP pocket-id admin group doesn't work with LLDAP
Closed
#138 Don't use Crowdin AI translations Please.
Closed
#136 🐛 Bug Report: Romm (truenas) Internal Server Error
Closed
#134 🐛 Bug Report: Documentation: wrong setup link
Closed
#135 🐛 Bug Report: UI Bug when trying to delete active signup tokens
Closed
#133 🚀 Feature: llms.txt
Closed
#131 🐛 Bug Report: Missing session id
Closed
#132 🚀 Feature: App Dashboard for users
Closed
#130 🚀 Feature: Enrollment Email
Closed
#127 🐛 Bug Report: Google Password Manager passkey name
Closed
#126 🐛 Bug Report: Invisible Rename/Delete icons
Closed
#125 🐛 Bug Report: SMTP_FROM does not account for mails in format of User <user@example.com>
Closed
#122 🐛 Bug Report: Cannot enter Custom Claims in muiltiple user groups
Closed
#123 🚀 Feature: Api to get a user by username
Closed
#121 🚀 Feature: Default user group for new users
Closed
#119 🚀 Feature: Open API swagger file
Closed
#120 🌐 Language Request: Ukrainian
Closed
#118 🐛 Bug Report: Public clients without PKCE do not work
Closed
#117 🐛 Bug Report: LDAP user uuid not matching PocketID user sub .
Closed
#116 🐛 Bug Report: PocketID gets indexed by web crawlers
Closed
#115 🐛 Bug Report: v1.6.2 -> v1.6.3: failed to apply migrations
Closed
#114 🚀 Feature: Support adaptive logos for light and dark browser themes
Closed
#113 🐛 Bug Report: Email comparison is case sensitive
Closed
#112 🐛 Bug Report: Password Manager Passkey Not Working on Mobile
Closed
#111 🚀 Feature: Send emails using external services (AWS SES, Sendgrid, etc)
Closed
#108 🚀 Feature: Support for Gravatar
Closed
#107 🚀 Feature: manage client authorizations as a user
Closed
#106 🚀 Feature: Modification audit, commented
Closed
#105 🐛 Bug Report: Loading module blocked because of disallowed MIME type ("")
Closed
#104 Feature: Token Session Duration customization
Closed
#103 🚀 Feature: Include code_challenge_methods_supported in ./well-known endpoint
Closed
#102 🚀 Feature: Protection against disabling / deleting only admin account
Closed
#101 🐛 Bug Report: oracle cloud integration not working
Closed
#100 🐛 Bug Report: Login animation not working (or at least so fast you can't see it)
Closed
#99 🐛 Bug Report: Login Code too long
Closed
#97 🐛 Bug Report: 404 page not found on authorization url for Postiz
Closed
#94 🐛 Bug Report: Admin can delete their own account, resulting in a lockout if they are the only admin.
Closed
#95 🐛 Bug Report: Passkey stopped working and redeploy can't create or save new
Closed
#91 🚀 Feature: Add display_name to users
Closed
#93 🐛 Bug Report: Blank My Apps tiles repeating
Closed
#92 🐛 Bug Report: Error validating origin
Closed
#89 🐛 Bug Report: My Apps tiles shown despite no access
Closed
#87 🐛 Bug Report: Getting 502 Error on all clients after 1.7.0 update
Closed
#86 🐛 Bug Report: Missing App on Apps Dashboard
Closed
#85 🐛 Bug Report: Failed to lookup Client-side Discoverable Credential: record not found
Closed
#84 🐛 Bug Report: Admin LLDAP group does not map to PocketID Admin
Closed
#83 🚀 Feature: include extra information in access token
Closed
#82 🐛 Bug Report: "Something went wrong" if i want to Setup my Passkey on inital Setup
Closed
#79 🐛 Bug Report: LDAP Admin Group Name not working
Closed
#81 🐛 Bug Report: Cannot create admin user - redirect to /login from /setup
Closed
#80 🚀 Feature: Add "My Apps" to Sidebar for Admins
Closed
#78 🐛 Bug Report: Cloudflare Zero Trust OIDC: "Failed to verify oidc token with fresh keys"
Closed
#76 🌐 Language request: <Korean>
Closed
#73 🐛 Bug Report: Clicking on edit app, kicks the user out of the session
Closed
#75 🚀 Feature: Different base url for openid configuration
Closed
#71 🚀 Feature: show e-mail signin button on main login page
Closed
#72 🐛 Bug Report: All OIDC clients unrestricted
Closed
#70 🐛 Bug Report: Failed upgrade to 1.8.0
Closed
#69 🐛 Bug Report: Update to 1.8.0 drops associations between OIDC Clients and Groups
Closed
#67 🚀 Feature: Make email optional
Closed
#68 🚀 Feature: Support for password + security key or double passkeys authentication flow
Closed
#66 🐛 Bug Report: DB migrations failed to complete in v1.8.0
Closed
#65 🐛 Bug Report: Broken migrations on v1.8.0
Closed
#64 🐛 Bug Report: Can't set custom ClientID
Closed
#62 🚀 Feature: support declarative configuration of OIDC clients
Closed
#63 🐛 Bug Report: First passkey login attempt fails on Android, works after "Retry"
Closed
#61 🐛 Bug Report: Visiting "My Apps" fails on 1.8.1
Closed
#59 🚀 Feature: Client Credentials flow support
Closed
#60 🐛 Bug Report: Can't update any settings
Closed
#58 🐛 Bug Report: App Dashboard Multiplication
Closed
#57 🚀 Feature: rate limit brute force protection
Closed
#56 🚀 Feature: Multi-factor Passkey Authentication with a PIN
Closed
#55 🚀 Feature: hardened CSP headers
Closed
#53 🚀 Feature: App descriptions, categorization, and visibility control for 'My Apps' page
Closed
#52 🐛 Bug Report: Readme documentation points to a dead site.
Closed
#51 🚀 Feature: Allow uppercase usernames
Closed
#50 🚀 Feature: Support password manager Passkey creation instead of always triggering native OS authenticator
Closed
#49 🐛 Bug Report: e-mail address should be case-insensitive
Closed
#47 🚀 Feature: Enable PKCE by default
Closed
#48 🚀 Feature: Machine to Machine Authentication(Service Accounts)
Closed
#46 🚀 Feature: Autocomplete claims
Closed
#44 🚀 Feature: Implement /.well-known/change-password
Closed
#43 🐛 Bug Report: URLs are not validated
Closed
#45 🚀 Feature: Make users without the required group cant see those groups
Closed
#41 🌐 Language Request: Swedish
Closed
#42 Feature: Replace id_token with refresh token request
Closed
#40 🐛 Bug Report: Can't load "My Apps" page
Closed
#39 🐛 Bug Report: mass selection in user groups with pagination does not work properly
Closed
#38 🚀 Feature: Add custom keys and rotate key features to distroless
Closed
#37 🐛 Bug Report: UI config disabled, default user group not possible to set
Closed
#36 🚀 Feature: Security notifications to telegram discord webhook etc.
Closed
#35 🚀 Feature: TOTP Authenticator App integration
Closed
#34 🐛 Bug Report: APP_URL Case sensitive
Closed
#33 🐛 Bug Report: No One-Time link option
Closed
#31 🐛 Bug Report: Nginx configuration and proxy buffers size
Closed
#29 🐛 Bug Report: failed to send request: Post \"https://analytics.pocket-id.org/heartbeat\":connection refused"
Closed
#28 🚀 Feature: Per-Integration Algorithm Configuration
Closed
#27 🐛 Bug Report: data/GeoLite2-City.mmdb: no such file or directory
Closed
#26 🚀 Feature: Definitions for an Apache Reverse Proxy
Closed
#25 🐛 Bug Report: Immich mobile app callback url not working
Closed
#23 🐛 Bug Report: Unable to see IP location
Closed
#24 🐛 Bug Report: Pocket-ID does not use passwords but passkeys
Closed
#22 🐛 Bug Report: Unable to update
Closed
#21 🐛 Bug Report: Passkey no longer launches when Authenticate
Closed
#19 🐛 Bug Report: Pocket ID not starting
Closed
#20 🐛 Bug Report: A critical error occurred when creating a new user
Closed
#18 🐛 Bug Report: Custom background image lost after update to v1.11.1
Closed
#17 🐛 Bug Report: Blank page after upgrade to v1.11.0
Closed
#16 🐛 Bug Report: front end doesn't load using v1.11.2
Closed
#14 🐛 Bug Report: OICD Client details don't include port
Closed
#10 🚀 Feature: skip alternative login page when no smtp sign in allowed
Closed
#11 🐛 Bug Report: initial id token contains groups claim but subsequent tokens generated using refresh token don't
Closed
#9 🚀 Feature: require reauthentication before adding new passkey
Closed
#7 🚀 Feature: Store images in S3
Closed
#6 🐛 Bug Report: Unable to upload oidc-clients images in distroless image
Closed
#5 🚀 Feature: Link to API docs on API key settings page
Closed
#4 🐛 Bug Report: validation for callback URLs too strict for port
Closed
#1 🚀 Feature: LDAP Sync Schedule
Closed
#2 🐛 Bug Report: Something went wrong when uploading a logo via URL
Closed
#3 🚀 Feature: Implicit Authorization
974 Issues created by 1 user
Opened
#1 🚀 Feature: LDAP Sync Schedule
Opened
#2 🐛 Bug Report: Something went wrong when uploading a logo via URL
Opened
#3 🚀 Feature: Implicit Authorization
Opened
#5 🚀 Feature: Link to API docs on API key settings page
Opened
#4 🐛 Bug Report: validation for callback URLs too strict for port
Opened
#6 🐛 Bug Report: Unable to upload oidc-clients images in distroless image
Opened
#7 🚀 Feature: Store images in S3
Opened
#9 🚀 Feature: require reauthentication before adding new passkey
Opened
#8 🚀 Feature: Allow uploading jwks file for federated credentials
Opened
#10 🚀 Feature: skip alternative login page when no smtp sign in allowed
Opened
#12 🐛 Bug Report: Unable to add an additional or edit an existing Callback URL
Opened
#11 🐛 Bug Report: initial id token contains groups claim but subsequent tokens generated using refresh token don't
Opened
#13 🚀 Feature: make Email Templates translatable based on locale stored inside database
Opened
#14 🐛 Bug Report: OICD Client details don't include port
Opened
#15 🚀 Feat: UX improvements for client options
Opened
#17 🐛 Bug Report: Blank page after upgrade to v1.11.0
Opened
#16 🐛 Bug Report: front end doesn't load using v1.11.2
Opened
#18 🐛 Bug Report: Custom background image lost after update to v1.11.1
Opened
#19 🐛 Bug Report: Pocket ID not starting
Opened
#20 🐛 Bug Report: A critical error occurred when creating a new user
Opened
#21 🐛 Bug Report: Passkey no longer launches when Authenticate
Opened
#22 🐛 Bug Report: Unable to update
Opened
#23 🐛 Bug Report: Unable to see IP location
Opened
#24 🐛 Bug Report: Pocket-ID does not use passwords but passkeys
Opened
#26 🚀 Feature: Definitions for an Apache Reverse Proxy
Opened
#25 🐛 Bug Report: Immich mobile app callback url not working
Opened
#27 🐛 Bug Report: data/GeoLite2-City.mmdb: no such file or directory
Opened
#28 🚀 Feature: Per-Integration Algorithm Configuration
Opened
#29 🐛 Bug Report: failed to send request: Post \"https://analytics.pocket-id.org/heartbeat\":connection refused"
Opened
#30 🚀 Feature: Profile Photos in user management
Opened
#32 🚀 Feature: isolated client authentication
Opened
#31 🐛 Bug Report: Nginx configuration and proxy buffers size
Opened
#33 🐛 Bug Report: No One-Time link option
Opened
#34 🐛 Bug Report: APP_URL Case sensitive
Opened
#35 🚀 Feature: TOTP Authenticator App integration
Opened
#36 🚀 Feature: Security notifications to telegram discord webhook etc.
Opened
#37 🐛 Bug Report: UI config disabled, default user group not possible to set
Opened
#38 🚀 Feature: Add custom keys and rotate key features to distroless
Opened
#39 🐛 Bug Report: mass selection in user groups with pagination does not work properly
Opened
#40 🐛 Bug Report: Can't load "My Apps" page
Opened
#42 Feature: Replace id_token with refresh token request
Opened
#41 🌐 Language Request: Swedish
Opened
#43 🐛 Bug Report: URLs are not validated
Opened
#44 🚀 Feature: Implement /.well-known/change-password
Opened
#45 🚀 Feature: Make users without the required group cant see those groups
Opened
#46 🚀 Feature: Autocomplete claims
Opened
#47 🚀 Feature: Enable PKCE by default
Opened
#48 🚀 Feature: Machine to Machine Authentication(Service Accounts)
Opened
#49 🐛 Bug Report: e-mail address should be case-insensitive
Opened
#50 🚀 Feature: Support password manager Passkey creation instead of always triggering native OS authenticator
Opened
#51 🚀 Feature: Allow uppercase usernames
Opened
#52 🐛 Bug Report: Readme documentation points to a dead site.
Opened
#53 🚀 Feature: App descriptions, categorization, and visibility control for 'My Apps' page
Opened
#54 🐛 Bug Report: Federated client credentials RFC 7523 inconsistency
Opened
#56 🚀 Feature: Multi-factor Passkey Authentication with a PIN
Opened
#55 🚀 Feature: hardened CSP headers
Opened
#57 🚀 Feature: rate limit brute force protection
Opened
#59 🚀 Feature: Client Credentials flow support
Opened
#58 🐛 Bug Report: App Dashboard Multiplication
Opened
#60 🐛 Bug Report: Can't update any settings
Opened
#61 🐛 Bug Report: Visiting "My Apps" fails on 1.8.1
Opened
#62 🚀 Feature: support declarative configuration of OIDC clients
Opened
#63 🐛 Bug Report: First passkey login attempt fails on Android, works after "Retry"
Opened
#65 🐛 Bug Report: Broken migrations on v1.8.0
Opened
#64 🐛 Bug Report: Can't set custom ClientID
Opened
#66 🐛 Bug Report: DB migrations failed to complete in v1.8.0
Opened
#68 🚀 Feature: Support for password + security key or double passkeys authentication flow
Opened
#67 🚀 Feature: Make email optional
Opened
#69 🐛 Bug Report: Update to 1.8.0 drops associations between OIDC Clients and Groups
Opened
#71 🚀 Feature: show e-mail signin button on main login page
Opened
#70 🐛 Bug Report: Failed upgrade to 1.8.0
Opened
#72 🐛 Bug Report: All OIDC clients unrestricted
Opened
#74 🚀 Feature: store auth method (passkey, e-mail, code) in claim
Opened
#73 🐛 Bug Report: Clicking on edit app, kicks the user out of the session
Opened
#75 🚀 Feature: Different base url for openid configuration
Opened
#76 🌐 Language request: <Korean>
Opened
#77 🚀 Feature: Mark certain apps so they do not appear in "my apps" for any user
Opened
#78 🐛 Bug Report: Cloudflare Zero Trust OIDC: "Failed to verify oidc token with fresh keys"
Opened
#80 🚀 Feature: Add "My Apps" to Sidebar for Admins
Opened
#79 🐛 Bug Report: LDAP Admin Group Name not working
Opened
#81 🐛 Bug Report: Cannot create admin user - redirect to /login from /setup
Opened
#84 🐛 Bug Report: Admin LLDAP group does not map to PocketID Admin
Opened
#82 🐛 Bug Report: "Something went wrong" if i want to Setup my Passkey on inital Setup
Opened
#83 🚀 Feature: include extra information in access token
Opened
#85 🐛 Bug Report: Failed to lookup Client-side Discoverable Credential: record not found
Opened
#86 🐛 Bug Report: Missing App on Apps Dashboard
Opened
#87 🐛 Bug Report: Getting 502 Error on all clients after 1.7.0 update
Opened
#88 🚀 Feature: Customizable table columns
Opened
#89 🐛 Bug Report: My Apps tiles shown despite no access
Opened
#90 🚀 Feature: Pagination improvements
Opened
#91 🚀 Feature: Add display_name to users
Opened
#92 🐛 Bug Report: Error validating origin
Opened
#93 🐛 Bug Report: Blank My Apps tiles repeating
Opened
#94 🐛 Bug Report: Admin can delete their own account, resulting in a lockout if they are the only admin.
Opened
#96 🚀 Feature: Implement Email Verification for non-LDAP User Accounts
Opened
#95 🐛 Bug Report: Passkey stopped working and redeploy can't create or save new
Opened
#97 🐛 Bug Report: 404 page not found on authorization url for Postiz
Opened
#98 🚀 Feature: Claim field override or custom per service mapping templating
Opened
#99 🐛 Bug Report: Login Code too long
Opened
#101 🐛 Bug Report: oracle cloud integration not working
Opened
#100 🐛 Bug Report: Login animation not working (or at least so fast you can't see it)
Opened
#102 🚀 Feature: Protection against disabling / deleting only admin account
Opened
#103 🚀 Feature: Include code_challenge_methods_supported in ./well-known endpoint
Opened
#105 🐛 Bug Report: Loading module blocked because of disallowed MIME type ("")
Opened
#104 Feature: Token Session Duration customization
Opened
#106 🚀 Feature: Modification audit, commented
Opened
#108 🚀 Feature: Support for Gravatar
Opened
#107 🚀 Feature: manage client authorizations as a user
Opened
#110 🚀 Feature: Custom claims for clients (fetched from HTTP endpoint)
Opened
#109 🚀 Feature: multiple session durations
Opened
#111 🚀 Feature: Send emails using external services (AWS SES, Sendgrid, etc)
Opened
#112 🐛 Bug Report: Password Manager Passkey Not Working on Mobile
Opened
#114 🚀 Feature: Support adaptive logos for light and dark browser themes
Opened
#113 🐛 Bug Report: Email comparison is case sensitive
Opened
#117 🐛 Bug Report: LDAP user uuid not matching PocketID user sub .
Opened
#115 🐛 Bug Report: v1.6.2 -> v1.6.3: failed to apply migrations
Opened
#116 🐛 Bug Report: PocketID gets indexed by web crawlers
Opened
#119 🚀 Feature: Open API swagger file
Opened
#118 🐛 Bug Report: Public clients without PKCE do not work
Opened
#120 🌐 Language Request: Ukrainian
Opened
#123 🚀 Feature: Api to get a user by username
Opened
#121 🚀 Feature: Default user group for new users
Opened
#122 🐛 Bug Report: Cannot enter Custom Claims in muiltiple user groups
Opened
#124 🐛 Bug Report: Google Password Manager passkey name
Opened
#125 🐛 Bug Report: SMTP_FROM does not account for mails in format of User <user@example.com>
Opened
#126 🐛 Bug Report: Invisible Rename/Delete icons
Opened
#127 🐛 Bug Report: Google Password Manager passkey name
Opened
#129 🚀 Feature: Dark mode OIDC Client Icons
Opened
#128 🚀 Feature: User custom claims with LDAP properties
Opened
#130 🚀 Feature: Enrollment Email
Opened
#131 🐛 Bug Report: Missing session id
Opened
#133 🚀 Feature: llms.txt
Opened
#132 🚀 Feature: App Dashboard for users
Opened
#134 🐛 Bug Report: Documentation: wrong setup link
Opened
#136 🐛 Bug Report: Romm (truenas) Internal Server Error
Opened
#135 🐛 Bug Report: UI Bug when trying to delete active signup tokens
Opened
#137 🐛 Bug Report: LDAP pocket-id admin group doesn't work with LLDAP
Opened
#138 Don't use Crowdin AI translations Please.
Opened
#139 🐛 Bug Report: Not starting after update to v1.6.0
Opened
#141 🐛 Bug Report: Custom Claims on User Groups (and Users)
Opened
#140 🐛 Bug Report: No margins in email templates
Opened
#142 🚀 Feature: Export/Import app data
Opened
#143 🚀 Feature: Allow users to edit profile picture, but not email or username
Opened
#144 🐛 Bug Report: Adding Passkey Throwing Unknown Error
Opened
#145 🐛 Bug Report: LDAP Error
Opened
#146 🐛 Bug Report: Changing accent colour then saving again reverts to black
Opened
#147 🚀 Feature: unlimited session duration
Opened
#148 🐛 Bug Report: Introspection Endpoint - Client id or secret not provided
Opened
#149 🚀 Feature: Build Terraform provider
Opened
#150 🚀 Feature: Enable use of Docker Secrets
Opened
#151 🐛 Bug Report: Cannot login when using Unix Socket (Cannot get client ip)
Opened
#152 🐛 Bug Report: Set accent color with UI_CONFIG_DISABLED
Opened
#153 🐛 Bug Report: Possible race condition when using Postgres
Opened
#154 🚀 Feature: Distroless, rootless pocket-id
Opened
#155 🐛 Bug Report: Accent color affects only some parts of the UI, others stay red.
Opened
#156 🚀 Feature: RFC9207 Support "OAuth 2.0 Authorization Server Issuer Identification"
Opened
#157 🐛 Bug Report: SMTP Password is leaked in clear text to admins
Opened
#159 🐛 Bug Report: Cannot disable users
Opened
#160 🚀 Feature: Force scopes
Opened
#158 🐛 Bug Report: Server Not Starting On First Install
Opened
#161 🚀 Feature: SCIM Provisioning
Opened
#163 🐛 Bug Report: [ frontend ] crypto module deprecated.
Opened
#162 Unable to authenticate- Credential: record not found
Opened
#164 🐛 Bug Report: Cannot connect to postgres db
Opened
#165 🚀 Feature: Support path-based routing
Opened
#166 🐛 Bug Report:
Opened
#167 🐛 Bug Report: String "Turn off all animations throughout the Admin UI." is actually applied to whole system
Opened
#169 🐛 Bug Report: Can no longer create OIDC clients
Opened
#168 🐛 Bug Report: Device Code flow should not require a client secret
Opened
#170 🚀 Feature: Global Audit Log adds a local traffic filter
Opened
#172 🚀 Feature: Approximate Location Recognizes Local IPv6 as LAN, Internal Network
Opened
#171 🐛 Bug Report: Grafana 12.0.1 fails to map the user
Opened
#173 🐛 Bug Report: API "List OIDC clients" paging is broken
Opened
#175 🌐 Language Request: Traditional Chinese (zh_TW)
Opened
#174 🚀 Feature: Use Weblate instead of Crowdin
Opened
#176 🌐 Language request: Danish
Opened
#177 🐛 Bug Report: Emails have a missing image
Opened
#178 🐛 Bug Report: LDAP_ATTRIBUTE_ADMIN_GROUP is misnamed
Opened
#179 🐛 Bug Report: On first start, UI config overrides don’t take effect
Opened
#180 🐛 Bug Report: Docker image for version v1.2.0 fails to start
Opened
#181 🐛 Bug Report: Unable to remove or change OIDC Client Logo
Opened
#183 🐛 Bug Report: v1.2.0 language switching glitch on first use
Opened
#184 🐛 Bug Report: LDAP Users in the PocketID Admin Group are not given Admin Permissions
Opened
#182 🐛 Bug Report: OpenWebUI fails after authorization
Opened
#185 🐛 Bug Report: CORS error for accessing the userinfo endpoint using a web client
Opened
#187 🚀 Feature: SAML Metadata for IdP integration
Opened
#186 🐛 Bug Report: Since update, cannot sign in to Pocket ID
Opened
#188 🐛 Bug Report: No passkey popup on Brave browser on Android
Opened
#190 🐛 Bug Report: Proton Pass compatibility issues
Opened
#189 🐛 Bug Report: can't set language
Opened
#191 🐛 Bug Report: Clients that uses well known openid-configuration will allways redirected to http://localhost:1411
Opened
#193 🐛 Bug Report: something broke recently
Opened
#192 🐛 Bug Report: Logo and background image is not visible after upgrading to 1.0.0
Opened
#194 🐛 Bug Report: oCIS, invalid client secret (Mobile app)
Opened
#195 🚀 Feature: Bootstrap Admin API Key
Opened
#196 🐛 Bug Report: Since 1.0
Opened
#197 🚀 Feature: API to get current user's apps
Opened
#199 🚀 Feature: Encrypt private key saved to DB
Opened
#198 🚀 Feature: ephemeral private key (do not store private key on disk)
Opened
#201 🐛 Bug Report: unable to register additional passkeys using KeepassXC (more than one)
Opened
#200 🚀 Feature: Decouple Pocket ID session length from OIDC client
Opened
#202 🐛 Bug Report: SecurityError: The RP ID "localhost" is invalid for this domain
Opened
#203 🐛 Bug Report: Login not possible on v1.0.0
Opened
#205 🐛 Bug Report: Login not possible after 1.0.0 migration
Opened
#204 🐛 Bug Report:
Opened
#206 🐛 Bug Report: "locale" behavior
Opened
#207 🚀 Feature: Custom scopes
Opened
#208 🚀 Feature: Set expiration for client secrets
Opened
#210 🐛 Bug Report: Unable to select NFC when registering a passkey
Opened
#209 🐛 Bug Report: Can no longer login with my existing user on latest main
Opened
#211 🐛 Bug Report: Setting UI_CONFIG_DISABLED breaks uploaded Application Configuration > Images
Opened
#212 🚀 Feature: support disabling the background image
Opened
#213 🚀 Feature: Include service in sign-in email
Opened
#214 🐛 Bug Report: Expand LDAP group membership logic to fully support Active Directory group member DNs with non-username value.
Opened
#217 🚀 Feature: Add ability to require re-authentication for specific clients
Opened
#216 🚀 Feature: Preview OIDC data in client configuration
Opened
#215 🐛 Bug Report: Logout page does not display custom appName
Opened
#219 🚀 Feature: Alternative to PORT variable for configuring frontend listening port
Opened
#218 🚀 Feature: Allow user to input their own clientid and secret
Opened
#220 🚀 Feature: Auto detect and populate callback URL
Opened
#221 🐛 Bug Report: Trim operation is not performed on OIDC Callback URLs entry boxes
Opened
#223 🐛 Bug Report: Animations should be a lot quicker
Opened
#222 🐛 Bug Report: missing state cookie
Opened
#225 🚀 Feature: Add "Group Count" column to Manage OIDC Clients table
Opened
#226 🐛 Bug Report: Cannot setup initial passkey
Opened
#224 🐛 Bug Report: Unable to add passkey
Opened
#228 🐛 Bug Report: Adding Passkey
Opened
#227 🐛 Bug Report: Docker new install /login/setup does not allow passkey setup.
Opened
#229 🚀 Feature: Add a page showing info regarding Login Codes
Opened
#230 🐛 Bug Report: Timezone not respected in logs
Opened
#231 🚀 Feature: Add ability to create log files
Opened
#232 🐛 Bug Report: changing some env config variables seems to have no effect
Opened
#233 🚀 Feature: allow to set artbitrary Cliend-ID
Opened
#235 🐛 Bug Report: STand-Alone Installation Fails with dependency error
Opened
#234 🐛 Bug Report: create-one-time-access-token.sh is not marked executable in container image
Opened
#238 🚀 Feature: Allow to set the client_secret per API
Opened
#236 🚀 Feature: Dashboard of all Application (Clients)
Opened
#237 🐛 Bug Report: Logout Redirect Fails with 403 Error (You don't have permission to perform this action)
Opened
#239 🚀 Feature: edit expire date of API
Opened
#240 🚀 Feature: Store Data in S3
Opened
#241 🚀 Feature: Support ProxyAuth
Opened
#242 🐛 Bug Report: SQL Error - Login not possible
Opened
#243 🐛 Bug Report: Error page displayed when accessing Global Audit Log as non-admin user
Opened
#244 🐛 Bug Report: Logins fail after upgrading pocket id
Opened
#245 little help disabling caddy
Opened
#246 🐛 Bug Report: minor UI bug
Opened
#247 🐛 Bug Report: LDAP Users Unable to Update Language Settings Due to Update Restriction
Opened
#248 🐛 Bug Report: Profile Picture not saving
Opened
#249 🚀 Feature: OAuth aka Modern Auth support for smtp
Opened
#250 🐛 Bug Report: No "Add Another" button for Callback URLs when editing OIDC that was once edited via API
Opened
#251 🚀 Feature: support .gif as background image
Opened
#252 🚀 Feature: WebFinger support (RFC 7033)
Opened
#253 🐛 Bug Report: invalid callback URL, it might be necessary for an admin to fix this
Opened
#254 🐛 Bug Report: URL constructor: (Komga calback) is not a valid URL
Opened
#256 🚀 Feature: MFA
Opened
#255 🌐 Language request: Italian
Opened
#257 🚀 Feature: Make family/last name optional
Opened
#258 🚀 Feature: Make UI animations configurable
Opened
#259 🐛 Bug Report: JWT+ID token breaks Proxmox OIDC auth
Opened
#261 🐛 Bug Report: Error #01: Failed to lookup Client-side Discoverable Credential: record not found
Opened
#262 🐛 Bug Report: Can’t setup new instance, “An unknown error occurred. Please try to sign in again.”
Opened
#260 🚀 Feature: Send One-Time Link via Email
Opened
#263 🚀 Feature: Login by QRCode ?
Opened
#265 🐛 Bug Report: Profile picture is empty if user has no first or last name
Opened
#264 🐛 Bug Report: Profile Picture Not Updated
Opened
#266 🚀 Feature: mobile background
Opened
#267 🚀 Feature: Improve onboarding for new users
Opened
#268 🐛 Bug Report: Redirect URL can be changed while logging in
Opened
#269 🐛 Bug Report: Passkey doesn't get saved on Firefox Mobile, Android 13
Opened
#271 🐛 Bug Report: Shared passkey between KeePassXC and Keepassium does not work
Opened
#270 🚀 Feature: Ability to disable users instead of deletion (and keeping user data intact)
Opened
#272 🚀 Feature: Provide introspection endpoint
Opened
#273 🐛 Bug Report: removed ldap users aren't deleted in pocket id
Opened
#274 🐛 Bug Report: Security vulnerabilities
Opened
#275 🐛 Bug Report: Race conditions in App Config
Opened
#276 🐛 Bug Report: Default profile picture is not cached
Opened
#277 🌐 Language request: Brazilian Portuguese
Opened
#278 🌐 Language Request: German
Opened
#279 🐛 Bug Report: Proxmox identification error 401
Opened
#280 🐛 Bug Report: Audit log always display my Nginx Proxy Manager's IP
Opened
#281 🌐 Language request: <Czech>
Opened
#283 🐛 Bug Report: 500 Internal Server Error
Opened
#282 🚀 Feature: add your own caddy webfinger config
Opened
#284 🚀 Feature: Support private_key_jwt client authentication method per RFC7523 (Security)
Opened
#285 🚀 Feature: Allow user to create their own login
Opened
#286 🐛 Bug Report: LDAP: With wrong unique attribute for groups ldap sync creates _local_ groups.
Opened
#287 🚀 Feature: Support SameSite cookie attribute
Opened
#288 🚀 Feature: Support Tailscale as OIDC Application - Requires implementation of Webfinger
Opened
#289 🐛 Bug Report: v0.42: FreshRSS / auth_openidc error: JWT signature verification failed
Opened
#290 🚀 Feature: AuthRequest authentication method support
Opened
#291 🚀 Feature: Emulate your users
Opened
#292 🚀 Feature: Add ability to remove profile photo
Opened
#293 🐛 Bug Report: Pocket-id is not discovered as a container by traefik using labels - probably healthcheck related
Opened
#294 🐛 Bug Report: Cache-Control for /api/users/me/profile-picture.png is incorrect
Opened
#295 🐛 Bug Report: API key authentication does not work
Opened
#296 🐛 Bug Report: IPv6 only HOST
Opened
#297 🐛 Bug Report: Docs wrong on LDAP env variables
Opened
#298 infinite re-direct loop /login/setup
Opened
#299 🐛 Bug Report: custom claims key may be overly restrictive
Opened
#300 🐛 Bug Report: PocketID icon in mails is too large
Opened
#301 🐛 Bug Report: pocket-id notify emails are considered as medium spam by rspamd
Opened
#303 🐛 Bug Report: Use a process manager in the container to ensure apps restart if they crash
Opened
#304 🚀 Feature: Get rid of caddy - make backend proxy the requests to frontend too
Opened
#302 🚀 Feature: Allow setting additional origins
Opened
#305 🐛 Bug Report: Scripts inside /app/scripts/docker are non-executable
Opened
#306 🚀 Feature: Refresh Tokens
Opened
#307 🚀 Feature: Make key type & size configurable, and support EC keys
Opened
#309 🚀 Feature: Hide "alternative login" link
Opened
#308 🐛 Bug Report: OIDC login is not working when Caddy is used as a reverse proxy for pocket-id
Opened
#310 🐛 Bug Report: Alternative login mobile formatting
Opened
#311 🐛 Bug Report: Text Avatar not updating
Opened
#312 🚀 Feature: Disable Update check with environment variable
Opened
#313 🐛 Bug Report: As an admin, I cannot edit a user from the Users page
Opened
#314 🚀 Feature: Discord Server
Opened
#316 🐛 Bug Report: Frontend startup takes a long time without internet connection
Opened
#315 Bug: Default Sorting not being honored
Opened
#317 Feature: App Dashboard for displaying allowed application for a user
Opened
#318 🚀 Feature: Log levels
Opened
#319 🐛 Bug Report: Unique Email Unable to Create Different Usernames
Opened
#322 Help Needed Please:
Opened
#321 🐛 Bug Report: Unable to upload profile picture
Opened
#320 🐛 Bug Report: Some profile pictures end up sideways
Opened
#325 🐛 Bug Report: state
Opened
#323 🐛 Bug Report: Face ID Authentication Fails for Bitwarden Passkey on iPhone
Opened
#324 🐛 Bug Report: SMTP fails to authenticate
Opened
#326 🐛 Bug Report: Pocket ID uses STARTTLS used by default if SMPT port is not 465
Opened
#327 🐛 Bug Report: Error syncing LDAP groups - invalid input syntax for type uuid (SQLSTATE 22P02)
Opened
#328 🚀 Feature: QR Code / 2nd Device / Assisted Sign-In
Opened
#329 🐛 Bug Report: Unable to update someone elses profile picture
Opened
#331 🐛 Bug Report: Audit Log doesn't show real local IP
Opened
#330 🚀 Feature: Prometheus Metrics for the Backend
Opened
#333 🐛 Bug Report: When the Public URL has a trailing slash, discovery URLs are incorrect
Opened
#332 🚀 Feature: Support for Webfinger
Opened
#334 🐛 Bug Report: Creating admin Passkey returns Error: 'rp.id' cannot be used with the current origin in Web Console
Opened
#336 🚀 Feature: add automatic update check
Opened
#335 🐛 Bug Report: Picture from LDAP Not syncing
Opened
#337 🐛 Bug Report: SvelteKitError when loading images with Caddy disabled
Opened
#338 🐛 Bug Report: SMTP field type conversion error when starting with a number
Opened
#339 🚀 Feature: Ability to customize access token expiration
Opened
#340 🚀 Feature: one-time email codes to specific users
Opened
#342 🐛 Bug Report: Caddy, caddy-security and Pocket-ID not working?
Opened
#341 🚀 Feature: Global Access Log for Admins
Opened
#343 🚀 Feature: Add support of ForwardAuth
Opened
#344 🐛 Bug Report: Mails not displayed correctly in Gmail
Opened
#345 🐛 Bug Report: Lubelogger - LogoutURL re-directs to Pocket-ID Admin panel authentication page
Opened
#346 🐛 Bug Report: SvelteKitError: Not found
Opened
#347 🐛 Bug Report: using end_session_endpoint with Audiobookshelf causes ABS to log back in
Opened
#349 🐛 Bug Report: HTML email is malformed; images don't load
Opened
#348 🚀 Feature: Support addition LDAP group membership attributes
Opened
#350 🐛 Bug Report: Unsure If I've Configured Pocket-ID Incorrectly, However I Can't Access Pocket-ID's Account Settings Anymore After Updating It To The Latest Pocket-ID Version.
Opened
#351 🐛 Bug Report: Cloudflare Zero Trust OIDC ERROR: Failed to exchange code for token.
Opened
#352 🐛 Bug Report: Cannot send test email with PUBLIC_UI_CONFIG_DISABLED=true
Opened
#353 🚀Repo: Setup Dependabot for Git Repo
Opened
#354 🐛 Bug Report: Error #01: Error validating origin
Opened
#355 🚀 Feature: Reverse-proxy on a subpath
Opened
#356 🚀 Feature: Allow LDAP User and Group filters
Opened
#357 🚀 Feature: Add Warning if Only One passkey is configured
Opened
#358 🐛 Bug Report: Audit logs lost public ip behind CF
Opened
#359 🚀 Feature: Ability to have custom claims be non-string objects
Opened
#360 🐛 Bug Report: New version 0.29 fails to start
Opened
#361 🚀 Feature: API Documentation
Opened
#362 🐛 Bug Report: Something went wrong - Internal Error
Opened
#363 🚀 Feature: Enhance Documentation
Opened
#364 🐛 Bug Report: (Caddy-security + Pocket-Id) Token expiry causes 401 error and needs manual fixing
Opened
#365 🐛 Bug Report: Hoarder OIDC doesn't work with pocket-id
Opened
#366 🚀 Feature: custom Domain for docs (and future landing site?)
Opened
#367 🐛 Bug Report: Cannot modify or delete non-LDAP user group
Opened
#368 🐛 Bug Report: With the Tailwind CSS 4.0 upgrade the Cursor for hovering is not changing
Opened
#369 ignore
Opened
#370 🐛 Bug Report: Instant Failure logging in to Home Assistant app on iOS
Opened
#371 🚀 Feature: Add current stable version label in the docs page
Opened
#373 🐛 Bug Report: __HOST-access_token not being checked when determining login state
Opened
#372 🐛 Bug Report: SMTP not working with iCloud Mail
Opened
#375 🚀 Feature: Light/Dark logos for OIDC clients
Opened
#374 🚀 Feature: Translation
Opened
#376 🐛 Bug Report: Cannot send email through Gmail SMTP relay
Opened
#377 🚀 Feature: Signing Key
Opened
#378 🐛 Bug Report: Firefox on Linux advising not supported
Opened
#379 🐛 Bug Report: Pocket-ID login loop after logout due to conflicting access_token cookies
Opened
#381 🚀 Feature: Add Support for "end_session_endpoint" or Custom URL for Logging Out
Opened
#380 🐛 Bug Report: SMTP Test Email Requires "Save" Before Functioning
Opened
#382 🐛 Bug Report: caddy-security Unauthorized "no token found"
Opened
#383 🐛 Bug Report: SMTP Test Email Requires "Save" Before Functioning
Opened
#385 🐛 Bug Report: Unable to change CADDY PORT
Opened
#384 🐛 Bug Report: Cant create more then one group
Opened
#386 🐛 Bug Report: An unknown error occurred on initial Passkey setup
Opened
#387 🐛 Bug Report: Caddy cant fetch metadata for OAuth 2.0 authorization server
Opened
#388 🐛 Bug Report: Issue adding Passkey (An unknown error occurred!) ANDROID
Opened
#389 🚀 Feature: Docker containers of each component (backend & frontend)
Opened
#390 🚀 Feature: allow setting Logo directly from https://selfh.st/icons/
Opened
#391 🐛 Bug Report:
Opened
#392 🐛 Bug Report: Non LDAP users can't be updated
Opened
#394 🐛 Bug Report: Unraid - Failed to get application configuration: connect ECONNREFUSED 127.0.0.1:8080
Opened
#393 🐛 Bug Report: LDAP User Fields are 'editable'
Opened
#395 🐛 Bug Report: Unable to kick off Setup
Opened
#398 🚀 Feature: webfinger endpoint under .well-known
Opened
#396 🐛 Bug Report: Unknown Locations despite GEO DB being loaded?
Opened
#397 🚀 Feature: Audit Log Improvements - Add Username
Opened
#400 🐛 Bug Report: Does not work through cloudflare dns proxy
Opened
#399 🐛 Bug Report: Add passkey /login/setup Something went wrong, Error #1
Opened
#401 🚀 Feature: Configure SMTP via Environment Variables
Opened
#402 🐛 Bug Report: Login Page too small on some mobile devices (Samsung Galaxy S24 Ultra + Chrome)
Opened
#404 🐛 Bug Report: Pocket ID choosing incorrect redirect uri when multiple are present
Opened
#403 🚀 Feature: Automatic Login
Opened
#406 🚀 Feature: access rights for certain users/groups
Opened
#407 🚀 Feature: User ID
Opened
#405 🚀 Feature: Exclude subfolders
Opened
#408 🚀 Feature: Example Kubernetes + Ouath2-Proxy setup
Opened
#409 🐛 Bug Report: ghcr.io/stonith404/pocket-id not available
Opened
#410 🚀 Feature: Multi-Architecture Docker Image
Opened
#411 🚀 Feature: Support Device Authorization Flow
Opened
#412 🚀 Feature: Allow custom maxmind database download url.
Opened
#413 🐛 Bug Report: Initial Setup Fails
Opened
#414 🐛 Bug Report: create-one-time-access-token.sh doesn't work with its optional arguments
Opened
#416 🚀 Feature: remove restrictions on the group's name
Opened
#415 🐛 Bug Report: Pocket-ID not working for internal applications
Opened
#417 🚀 Feature: LDAP User and Group Sync
Opened
#418 🐛 Bug Report: Synology Deployment Issues
Opened
#419 🐛 Bug Report: Release v0.24.0 is not reflected in web UI
Opened
#421 🚀 Feature: Ability to sort OIDC Clients
Opened
#420 🐛 Bug Report: Test email sent to wrong address
Opened
#422 🐛 Bug Report: OIDC Client Details wrong value for PKCE
Opened
#424 🐛 Bug Report: Not found: /api/one-time-access-token/setup
Opened
#423 🚀 Feature: Map allowed groups to applications
Opened
#425 🚀 Feature: Embed static assets into binary rather than expecting they exist
Opened
#426 🚀 Feature: Map allowed groups to applications
Opened
#427 🐛 Bug Report: Callback url containing pound symbol
Opened
#428 🐛 Bug Report: broken logo in email
Opened
#429 🐛 Bug Report: Cannot set firstName and lastName to 2 character strings
Opened
#432 🚀 Feature: Explain how to link more devices
Opened
#430 🚀 Feature: Enable usage as authentication back end
Opened
#431 🚀 Feature: Documentation
Opened
#434 🚀 Feature: Activate discussions
Opened
#433 🐛 Bug Report: failed onboarding admin user with: "Error #01: Error validating origin"
Opened
#435 🚀 Feature: allow client secret w/ PKCE
Opened
#436 🐛 Bug Report: updating from 0.19.0 to 0.20.1 yields "Failed to lookup Client-side Discoverable Credential: record not found" errors
Opened
#437 🐛 Bug Report: Disappearing Logo for app
Opened
#438 🚀 Feature: Manually set Client ID and Client Secret
Opened
#441 🐛 Bug Report: Panic when sending test email
Opened
#440 🚀 Feature: Add external postgres database support
Opened
#439 🐛 Bug Report: An error may occur when reading the timestamptz type.
Opened
#442 🚀 Feature: healthcheck endpoint
Opened
#443 🐛 Bug Report: Unable to use empty username/password for email
Opened
#444 🐛 Bug Report: SMTP Panic
Opened
#446 🐛 Bug Report: when the authentication fails because of an incorrect callback url, the message "please try again" makes no sense
Opened
#445 🚀 Feature: PKCE Support
Opened
#447 🐛 Bug Report: invalid callback URL
Opened
#448 🚀 Feature: API Key authentication
Opened
#449 🚀 Feature: if you edit as admin some users, show their groups
Opened
#450 🐛 Bug Report: CORS issue when using PKCE Code Challenge with SPA
Opened
#451 🚀 Feature: Restrict acces to user-groups
Opened
#452 🐛 Bug Report: All dates are set to 1/1/1, 12:17:30 AM
Opened
#453 🚀 Feature: Add more options for mail server
Opened
#454 🚀 Feature: Ability for users to set a profile picture
Opened
#455 PocketID in combination with Caddy Secure / authcrunch
Opened
#456 🚀 Feature: API for external dashboards?
Opened
#457 🚀 Feature: Ability for users to set a profile picture
Opened
#458 🚀 Feature: Automatic Encyrpted Backup
Opened
#459 🐛 Bug Report: please write a guide to use caddy proxy before pocketid
Opened
#460 🐛 Bug Report: refreshing page returns 502 Error
Opened
#462 🚀 Feature: How to Set up Proxmox VE OIDC
Opened
#461 🐛 Bug Report: (More of a feedback) - Powered by text in light mode is broken
Opened
#463 🐛 Bug Report: DEV Image cannot create non admin users
Opened
#464 🐛 Bug Report: Memos Identifier invalid
Opened
#465 🚀 Feature: Ability to re-abroad the administrator
Opened
#466 🐛 Bug Report: Komga needs "email_verified", and I can't seem to find that option in Pocket ID
Opened
#467 🚀 Feature: Display app version in settings
Opened
#469 🐛 Bug Report: SvelteKitError: Not found
Opened
#468 🚀 Feature: Increase callback urls limit
Opened
#470 🐛 Bug Report: "Error validating origin"
Opened
#471 🚀 Feature: OIDC with Nextcloud
Opened
#472 🐛 Bug Report: Can't run pocket-id properly
Opened
#473 Portainer Unauthorized
Opened
#474 🐛 Bug Report: Gravatar logo used as profile picture when user has no Gravatar account
Opened
#475 🐛 Bug Report: Integration with EspoCRM fails due to missing KID in the jwks.json
Opened
#478 Integration with Gravatar
Opened
#477 Logo not white in dark mode on mobile
Opened
#476 Show external IP address in the audit when using Docker
Opened
#479 🐛 Bug Report: Backend port is not taken into consideration everywhere
Opened
#480 🚀 Feature: Impersonation Mechanic
Opened
#481 🚀 Feature: Add copy icons next to OIDC client information
Opened
#482 🚀 Feature: Allow custom claims
Opened
#483 🐛 Bug Report: Changing "Application Name" isn't reflected in saved passkey
Opened
#484 🚀 Feature: Support Webfinger
Opened
#485 🚀 Feature: Allow custom claims
Opened
#487 🐛 Bug Report: 400 error when trying to authorize
Opened
#486 🚀 Feature: Output the urls for endpoints
Opened
#488 🐛 Bug Report: "name" is not included in user info
Opened
#490 🚀 Feature: Support more characters in usernames
Opened
#489 🚀 Feature: Fallback auth?
Opened
#491 🐛 Bug Report: OIDC not working with Cloudflare Access
Opened
#494 🚀 Feature: proxy requests
Opened
#492 🚀 Feature: Groups
Opened
#493 🐛 Bug Report: Cannot add passkey, blank account setup page
Opened
#495 🐛 Bug Report: OIDC with FreshRSS not working
Opened
#496 🐛 Bug Report: Unable to access /login/setup
Opened
#497 🐛 Bug Report: Session duration not saved
Opened
#498 🐛 Bug Report: OIDC with FreshRSS not working
Opened
#499 🐛 Bug Report: Failed to get application configuration: connect ECONNREFUSED <server-IP>:80
Opened
#501 🐛 Bug Report: OIDC with pgadmin not working
Opened
#500 🚀 Feature: Multiple RedirectUrl for OIDC clients
Opened
#502 🚀 Feature: Unraid Template
Opened
#503 🐛 Bug Report: Browser unsupported for Arc browser with bitwarden extension installed
Opened
#504 🐛 Bug Report: Unable to Add Passkey
Opened
#505 🐛 Bug Report: Typo in docker-compose.yml
Opened
#507 🐛 Bug Report: Unable to create first user
Opened
#506 🐛 Bug Report: Invalid One Time Link for New User
Opened
#509 [PR #1008] [MERGED] fix: uploading a client logo with an URL fails
Opened
#508 [PR #1003] [MERGED] chore: cleanup root of repo, update workflow actions
Opened
#510 [PR #1006] [MERGED] fix: mark any callback url as valid if they contain a wildcard
Opened
#512 [PR #999] [MERGED] chore(translations): update translations via Crowdin
Opened
#511 [PR #1002] [CLOSED] feat: Add SCIM 2.0 provisioning support for user and group synchronization
Opened
#514 [PR #994] [MERGED] feat: add the ability to make email optional
Opened
#513 [PR #993] [MERGED] feat: add required indicator for required inputs
Opened
#515 [PR #998] feat: add CLI command for importing and exporting Pocket ID data
Opened
#516 [PR #992] [MERGED] chore(translations): update translations via Crowdin
Opened
#517 [PR #991] fix: lookup federated client configurations when using RFC 7523 assertions
Opened
#518 [PR #994] feat: add the ability to make email optional
Opened
#519 [PR #979] [MERGED] fix: remove previous socket file to prevent bind error
Opened
#520 [PR #977] [MERGED] fix: show only country in audit log location if no city instead of Unknown
Opened
#522 [PR #973] [MERGED] chore(translations): update translations via Crowdin
Opened
#521 [PR #974] [CLOSED] feat: set pwa display type via environment variable
Opened
#523 [PR #989] [MERGED] fix: tokens issued with refresh token flow don't contain groups
Opened
#524 [PR #977] fix: show only country in audit log location if no city instead of Unknown
Opened
#525 [PR #974] feat: set pwa display type via environment variable
Opened
#526 [PR #972] [MERGED] chore: update AAGUIDs
Opened
#527 [PR #970] feat: table and pagination improvements
Opened
#529 [PR #971] [MERGED] fix: do not use cache=shared for in-memory SQLite
Opened
#528 [PR #966] [MERGED] fix: do not treat certain failures in application images bootstrap as fatal
Opened
#530 [PR #965] [MERGED] fix: decouple images from app config service
Opened
#531 [PR #958] [MERGED] feat: allow uppercase usernames
Opened
#532 [PR #963] [MERGED] chore(translations): update translations via Crowdin
Opened
#533 [PR #961] feat: pagination improvements
Opened
#534 [PR #957] [MERGED] chore(translations): update translations via Crowdin
Opened
#535 [PR #958] feat: allow uppercase usernames
Opened
#536 [PR #954] [MERGED] fix: make environment variables case insensitive where necessary
Opened
#537 [PR #942] [MERGED] feat: add support for LOG_LEVEL env variable
Opened
#538 [PR #943] [MERGED] chore(deps): bump axios from 1.11.0 to 1.12.0 in the npm_and_yarn group across 1 directory
Opened
#540 [PR #938] [MERGED] feat: add PWA support
Opened
#539 [PR #940] [MERGED] fix: key-rotate doesn't work with database storage
Opened
#541 [PR #933] [MERGED] chore: minify background image
Opened
#542 [PR #942] feat: add support for LOG_LEVEL env variable
Opened
#543 [PR #940] fix: key-rotate doesn't work with database storage
Opened
#545 [PR #929] [MERGED] fix: add validation for callback URLs
Opened
#544 [PR #931] [MERGED] chore(translations): update translations via Crowdin
Opened
#547 [PR #926] [MERGED] chore: update AAGUIDs
Opened
#546 [PR #932] [MERGED] chore(deps-dev): bump vite from 7.0.6 to 7.0.7 in the npm_and_yarn group across 1 directory
Opened
#548 [PR #925] [MERGED] feat: return new id_token when using refresh token
Opened
#549 [PR #931] chore(translations): update translations via Crowdin
Opened
#551 [PR #932] chore(deps-dev): bump vite from 7.0.6 to 7.0.7 in the npm_and_yarn group across 1 directory
Opened
#550 [PR #929] fix: add validation for callback URLs
Opened
#552 [PR #924] [MERGED] chore(translations): update translations via Crowdin
Opened
#553 [PR #923] [MERGED] fix: ensure users imported from LDAP have fields validated
Opened
#554 [PR #915] [MERGED] chore(translations): update translations via Crowdin
Opened
#555 [PR #911] [CLOSED] Fix email case sensitivity
Opened
#556 [PR #909] [CLOSED] feat: allow uppercase usernames
Opened
#557 [PR #915] chore(translations): update translations via Crowdin
Opened
#558 [PR #904] [MERGED] chore(translations): update translations via Crowdin
Opened
#559 [PR #908] [MERGED] feat: add CSP header
Opened
#560 [PR #903] [MERGED] chore: update AAGUIDs
Opened
#561 [PR #901] [MERGED] feat: initial client_credentials flow support
Opened
#562 [PR #898] [MERGED] feat: user display name
Opened
#563 [PR #903] chore: update AAGUIDs
Opened
#564 [PR #893] [MERGED] chore(translations): update translations via Crowdin
Opened
#566 [PR #889] [MERGED] chore(deps): bump sveltekit to 2.36.3 and devalue to 5.3.2
Opened
#565 [PR #892] [MERGED] fix: update localized name and description of ldap group name attribute
Opened
#567 [PR #887] [MERGED] chore(translations): update translations via Crowdin
Opened
#568 [PR #885] [MERGED] chore: update AAGUIDs
Opened
#569 [PR #893] chore(translations): update translations via Crowdin
Opened
#570 [PR #889] chore(deps): bump sveltekit to 2.36.3 and devalue to 5.3.2
Opened
#571 [PR #884] [MERGED] fix(i18n): missing translations fix
Opened
#572 [PR #879] [MERGED] chore(deps): bump golang.org/x/oauth2 from 0.26.0 to 0.27.0 in /backend in the go_modules group across 1 directory
Opened
#574 [PR #878] [MERGED] chore(translations): update translations via Crowdin
Opened
#573 [PR #881] [MERGED] feat: redesigned sidebar with administrative dropdown
Opened
#575 [PR #877] [MERGED] tests: fix postgres e2e tests
Opened
#576 [PR #879] chore(deps): bump golang.org/x/oauth2 from 0.26.0 to 0.27.0 in /backend in the go_modules group across 1 directory
Opened
#578 [PR #876] [MERGED] fix: ensure SQLite has a writable temporary directory
Opened
#577 [PR #874] [MERGED] feat: support automatic db migration rollbacks
Opened
#579 [PR #870] [MERGED] chore: update issue template
Opened
#580 [PR #869] [MERGED] fix: wrong column type for reauthentication tokens in Postgres
Opened
#581 [PR #864] [MERGED] feat: allow custom client IDs
Opened
#582 [PR #876] fix: ensure SQLite has a writable temporary directory
Opened
#583 [PR #858] [MERGED] feat: add custom base url
Opened
#585 [PR #863] [MERGED] fix: enable foreign key check for sqlite
Opened
#584 [PR #860] [MERGED] chore(translations): update translations via Crowdin
Opened
#586 [PR #856] [MERGED] chore: strip debug symbol from backend binary
Opened
#587 [PR #855] [MERGED] fix: for one-time access tokens and signup tokens, pass TTLs instead of absolute expiration date
Opened
#589 [PR #854] [MERGED] fix: move audit log call before TX is committed
Opened
#588 [PR #850] [MERGED] chore(translations): update translations via Crowdin
Opened
#590 [PR #851] [MERGED] feat: login code font change
Opened
#592 [PR #846] [MERGED] tests: use proper async calls for cleanupBackend function
Opened
#591 [PR #848] [MERGED] chore(translations): update translations via Crowdin
Opened
#593 [PR #851] feat: login code font change
Opened
#595 [PR #844] [MERGED] chore: update AAGUIDs
Opened
#594 [PR #841] [MERGED] chore(translations): update translations via Crowdin
Opened
#596 [PR #845] [MERGED] fix(deps): bump rollup from 4.45.3 to 4.46.3
Opened
#597 [PR #840] [MERGED] feat: support for url based icons
Opened
#598 [PR #836] [MERGED] fix: ignore client secret if client is public
Opened
#599 [PR #830] [CLOSED] feat: add ability to set custom client ID
Opened
#600 [PR #833] [MERGED] chore: update deps and Go 1.25
Opened
#601 [PR #832] [MERGED] feat: display all accessible oidc clients in the dashboard
Opened
#602 [PR #829] [CLOSED] 📝 Add docstrings to feat/react-email
Opened
#603 [PR #826] [MERGED] chore: update AAGUIDs
Opened
#604 [PR #833] chore: update deps and Go 1.25
Opened
#605 [PR #821] [MERGED] chore(translations): update translations via Crowdin
Opened
#606 [PR #820] [MERGED] chore(translations): update translations via Crowdin
Opened
#608 [PR #817] [MERGED] chore(translations): update translations via Crowdin
Opened
#607 [PR #819] [MERGED] chore(translations): update translations via Crowdin
Opened
#609 [PR #815] [MERGED] refactor: use reflection to mark file based env variables
Opened
#610 [PR #820] chore(translations): update translations via Crowdin
Opened
#611 [PR #813] [MERGED] chore: additional logs for database connections
Opened
#612 [PR #811] [MERGED] chore(translations): update translations via Crowdin
Opened
#613 [PR #812] [MERGED] feat(signup): add default user groups and claims for new users
Opened
#614 [PR #806] [MERGED] feat: add robots.txt to block indexing
Opened
#615 [PR #799] [MERGED] feat: support reading secret env vars from _FILE
Opened
#616 [PR #811] chore(translations): update translations via Crowdin
Opened
#617 [PR #791] [MERGED] chore(translations): update translations via Crowdin
Opened
#618 [PR #787] [MERGED] refactor: complete conversion of log calls to slog
Opened
#619 [PR #794] [MERGED] feat: add support for code_challenge_methods_supported
Opened
#620 [PR #785] [MERGED] chore(translations): update translations via Crowdin
Opened
#621 [PR #786] [MERGED] chore: switch from npm to pnpm
Opened
#622 [PR #791] chore(translations): update translations via Crowdin
Opened
#623 [PR #779] [MERGED] chore(translations): update translations via Crowdin
Opened
#625 [PR #782] [MERGED] chore(translations): update translations via Crowdin
Opened
#624 [PR #783] [MERGED] fix: delete WebAuthn registration session after use
Opened
#626 [PR #778] [MERGED] chore(translations): update translations via Crowdin
Opened
#627 [PR #777] [MERGED] chore(deps): bump axios from 1.10.0 to 1.11.0 in /frontend in the npm_and_yarn group across 1 directory
Opened
#628 [PR #783] fix: delete WebAuthn registration session after use
Opened
#630 [PR #773] [CLOSED] feat: ios apple-touch-icon
Opened
#629 [PR #776] [MERGED] fix: set input type 'email' for email-based login
Opened
#631 [PR #771] [MERGED] chore(deps): bump form-data from 4.0.1 to 4.0.4 in /frontend in the npm_and_yarn group across 1 directory
Opened
#632 [PR #767] [MERGED] chore(translations): update translations via Crowdin
Opened
#633 [PR #774] feat: add PWA icon support
Opened
#634 [PR #773] feat: ios apple-touch-icon
Opened
#635 [PR #767] chore(translations): update translations via Crowdin
Opened
#636 [PR #760] [MERGED] feat: Support OTel and JSON for logs (via log/slog)
Opened
#639 [PR #754] [CLOSED] feat: get user by username via api
Opened
#637 [PR #762] [MERGED] fix: migration fails on postgres
Opened
#638 [PR #763] [MERGED] chore(translations): update translations via Crowdin
Opened
#640 [PR #752] [MERGED] chore: upgrade dependencies
Opened
#641 [PR #762] fix: migration fails on postgres
Opened
#642 [PR #754] feat: get user by username via api
Opened
#643 [PR #750] [MERGED] chore(translations): update translations via Crowdin
Opened
#645 [PR #747] [MERGED] feat: adds option to OIDC client to require reauthentication
Opened
#644 [PR #737] [MERGED] fix: login failures on Postgres when IP is null
Opened
#646 [PR #734] [MERGED] refactor: use react email for email templates
Opened
#647 [PR #733] [CLOSED] fix: email template margins
Opened
#648 [PR #737] fix: login failures on Postgres when IP is null
Opened
#650 [PR #731] [MERGED] i18n: Fix inconsistent punctuation marks for the language name of zh-TW
Opened
#651 [PR #730] [MERGED] chore(translations): update translations via Crowdin
Opened
#649 [PR #732] [CLOSED] fix: custom claim input loosing focus from claim suggestions
Opened
#652 [PR #729] [MERGED] chore: update AAGUIDs
Opened
#653 [PR #727] [MERGED] feat: user application dashboard
Opened
#654 [PR #731] i18n: Fix inconsistent punctuation marks for the language name of zh-TW
Opened
#655 [PR #730] chore(translations): update translations via Crowdin
Opened
#656 [PR #729] chore: update AAGUIDs
Opened
#658 [PR #724] [MERGED] fix: ensure user inputs are normalized
Opened
#657 [PR #720] [MERGED] fix: actually fix linter issues
Opened
#660 [PR #716] [MERGED] feat: distroless container additional variant + healthcheck command
Opened
#659 [PR #719] [MERGED] fix: linter issues
Opened
#661 [PR #714] [MERGED] fix: support non UTF-8 LDAP IDs
Opened
#662 [PR #724] fix: ensure user inputs are normalized
Opened
#663 [PR #720] fix: actually fix linter issues
Opened
#664 [PR #712] [MERGED] chore(translations): update translations via Crowdin
Opened
#665 [PR #707] [MERGED] chore(translations): update translations via Crowdin
Opened
#666 [PR #709] [MERGED] feat: add "key-rotate" command
Opened
#667 [PR #705] [MERGED] chore(translations): update translations via Crowdin
Opened
#668 [PR #704] [MERGED] fix: token introspection authentication not handled correctly
Opened
#669 [PR #698] [MERGED] refactor: use github.com/jinzhu/copier for MapStruct
Opened
#670 [PR #697] [MERGED] chore(translations): update translations via Crowdin
Opened
#672 [PR #695] [MERGED] fix: Auth fails when client IP is empty on Postgres
Opened
#671 [PR #699] [MERGED] chore(translations): update translations via Crowdin
Opened
#673 [PR #696] [MERGED] fix: app config forms not updating with latest values
Opened
#674 [PR #694] [MERGED] chore(translations): update translations via Crowdin
Opened
#675 [PR #692] [MERGED] chore(translations): update translations via Crowdin
Opened
#676 [PR #691] [MERGED] chore(translations) : translate missing french values
Opened
#677 [PR #688] [MERGED] chore(translations): update translations via Crowdin
Opened
#679 [PR #692] chore(translations): update translations via Crowdin
Opened
#678 [PR #687] [MERGED] chore(translations): update translations via Crowdin
Opened
#680 [PR #688] chore(translations): update translations via Crowdin
Opened
#681 [PR #683] [MERGED] chore(translations): update translations via Crowdin
Opened
#682 [PR #682] [MERGED] feat: Encrypt private keys saved on disk and in DB
Opened
#683 [PR #681] [MERGED] gin: less noisy logging by excluding certain paths via regex and excluding localhost all together
Opened
#684 [PR #679] [CLOSED] chore: gin logging less noisy and no logging for localhost (internal …
Opened
#685 [PR #678] [MERGED] fix: remove duplicate request logging
Opened
#686 [PR #681] gin: less noisy logging by excluding certain paths via regex and excluding localhost all together
Opened
#689 [PR #669] [MERGED] chore(translations) : typo in french language
Opened
#688 [PR #677] [MERGED] chore(translations): update translations via Crowdin
Opened
#687 [PR #672] [MERGED] feat: self-service user signup
Opened
#690 [PR #663] [MERGED] chore(translations): update translations via Crowdin
Opened
#691 [PR #662] [MERGED] feat: location filter for global audit log
Opened
#692 [PR #672] feat: self-service user signup
Opened
#693 [PR #669] chore(translations) : typo in french language
Opened
#694 [PR #662] feat: location filter for global audit log
Opened
#695 [PR #659] [MERGED] chore(translations): update translations via Crowdin
Opened
#696 [PR #657] [MERGED] feat: configurable local ipv6 ranges for audit log
Opened
#697 [PR #661] [MERGED] feat: allow setting unix socket mode
Opened
#698 [PR #652] [MERGED] chore(translations): update translations via Crowdin
Opened
#699 [PR #650] [MERGED] fix: Update spelling and grammar in en.json
Opened
#700 [PR #648] [MERGED] fix: reduce duration of animations on login and signin page
Opened
#702 [PR #647] [MERGED] feat: auto-focus on the login buttons
Opened
#701 [PR #649] [MERGED] chore(translations): update translations via Crowdin
Opened
#703 [PR #644] [MERGED] chore(translations): update translations via Crowdin
Opened
#704 [PR #643] [MERGED] feat: ui accent colors
Opened
#705 [PR #649] chore(translations): update translations via Crowdin
Opened
#706 [PR #644] chore(translations): update translations via Crowdin
Opened
#707 [PR #639] [MERGED] chore: update AAGUIDs
Opened
#708 [PR #642] [MERGED] chore(translations): update translations via Crowdin
Opened
#709 [PR #640] [MERGED] feat: allow introspection and device code endpoints to use Federated Client Credentials
Opened
#711 [PR #637] [MERGED] chore(translations): update translations via Crowdin
Opened
#710 [PR #636] [MERGED] chore: Add docs link and rename to Federated Client Credentials
Opened
#712 [PR #632] [MERGED] chore(translations): update translations via Crowdin
Opened
#713 [PR #629] [MERGED] chore(translations): update translations via Crowdin
Opened
#714 [PR #633] [MERGED] ci/cd: add workflow for building 'next' docker image
Opened
#715 [PR #624] [MERGED] feat: oidc client data preview
Opened
#716 [PR #623] [MERGED] refactor: upgrade to Zod v4
Opened
#717 [PR #629] chore(translations): update translations via Crowdin
Opened
#718 [PR #624] feat: oidc client data preview
Opened
#720 [PR #615] [MERGED] feat: add unix socket support
Opened
#719 [PR #614] [MERGED] chore(translations): update translations via Crowdin
Opened
#722 [PR #606] [MERGED] chore(translations): update translations via Crowdin
Opened
#721 [PR #620] [MERGED] chore(translations): update translations via Crowdin
Opened
#723 [PR #605] [CLOSED] chore(translations): update translations via Crowdin
Opened
#724 [PR #615] feat: add unix socket support
Opened
#725 [PR #599] [MERGED] chore(translations): update translations via Crowdin
Opened
#726 [PR #593] [MERGED] chore(translations): update translations via Crowdin
Opened
#727 [PR #590] [MERGED] chore(translations): update translations via Crowdin
Opened
#728 [PR #588] [MERGED] fix: don't use TOFU for logout callback URLs
Opened
#729 [PR #585] [MERGED] fix: run jobs at interval instead of specific time
Opened
#730 [PR #593] chore(translations): update translations via Crowdin
Opened
#731 [PR #588] fix: don't use TOFU for logout callback URLs
Opened
#733 [PR #579] [MERGED] chore(translations): update translations via Crowdin
Opened
#732 [PR #582] [MERGED] fix: small fixes in analytics_job
Opened
#734 [PR #578] [MERGED] feat: add daily heartbeat request for counting Pocket ID instances
Opened
#735 [PR #577] [MERGED] Tag container images with v{major}
Opened
#736 [PR #583] feat: auto detect callback url
Opened
#737 [PR #579] chore(translations): update translations via Crowdin
Opened
#738 [PR #577] Tag container images with v{major}
Opened
#739 [PR #576] [MERGED] chore: update AAGUIDs
Opened
#740 [PR #575] [MERGED] chore(translations): update translations via Crowdin
Opened
#741 [PR #573] [MERGED] chore(translations): update translations via Crowdin
Opened
#742 [PR #567] [MERGED] feat: show allowed group count on oidc client list
Opened
#743 [PR #566] [MERGED] feat: JWT bearer assertions for client authentication
Opened
#744 [PR #575] chore(translations): update translations via Crowdin
Opened
#745 [PR #556] [MERGED] chore(translations): update translations via Crowdin
Opened
#746 [PR #565] [MERGED] fix: use ldapAttributeUserUsername for finding group members
Opened
#747 [PR #561] [MERGED] chore(translations): update translations via Crowdin
Opened
#748 [PR #554] [MERGED] feat: polish translations
Opened
#749 [PR #551] [MERGED] refactor: migrate shadcn-components to Svelte 5 and TW4
Opened
#750 [PR #565] fix: use ldapAttributeUserUsername for finding group members
Opened
#751 [PR #547] [MERGED] chore: update AAGUIDs
Opened
#752 [PR #546] [MERGED] chore: address linter's complaint in 1.0 branch
Opened
#753 [PR #545] [CLOSED] refactor: update to tw4 and svelte5 for shadcn-svelte
Opened
#754 [PR #550] [MERGED] refactor: some clean-up in OIDC service and controller (1.0)
Opened
#755 [PR #543] [MERGED] Update options API for simplewebauthn
Opened
#756 [PR #540] [MERGED] refactor: Replace create-one-time-access-token script with in-app functionality (v1.0)
Opened
#757 [PR #541] [MERGED] feat: Update release pipelines (1.0)
Opened
#759 [PR #532] [MERGED] fix: flaky unit test in db_bootstrap_test
Opened
#758 [PR #537] [MERGED] v1.0.0
Opened
#760 [PR #533] [MERGED] Changes to feat/proxy-frontend
Opened
#762 [PR #523] [MERGED] chore: update AAGUIDs
Opened
#761 [PR #529] [MERGED] refactor!: remove old DB env variables, and jwk migrations logic
Opened
#763 [PR #530] [MERGED] refactor: switch SQLite driver to pure-Go implementation
Opened
#764 [PR #520] [MERGED] refactor!: serve the static frontend trough the backend
Opened
#765 [PR #517] [MERGED] chore(translations): update translations via Crowdin
Opened
#766 [PR #513] [MERGED] fix: handle CORS correctly for endpoints that SPAs need
Opened
#769 [PR #495] [MERGED] feat: OpenTelemetry tracing and metrics (#262)
Opened
#767 [PR #496] [MERGED] chore(deps-dev): bump vite from 6.2.6 to 6.3.4 in /frontend in the npm_and_yarn group across 1 directory
Opened
#768 [PR #507] [MERGED] chore: update AAGUIDs
Opened
#770 [PR #494] [MERGED] feat: add healthz endpoint
Opened
#771 [PR #496] chore(deps-dev): bump vite from 6.2.6 to 6.3.4 in /frontend in the npm_and_yarn group across 1 directory
Opened
#772 [PR #492] [MERGED] fix: last name still showing as required on account form
Opened
#774 [PR #493] [MERGED] refactor: complete graceful shutdown implementation and add service runner
Opened
#773 [PR #491] [MERGED] chore(translations): update translations via Crowdin
Opened
#775 [PR #487] [MERGED] fix: pass context to methods that were missing it
Opened
#776 [PR #490] [MERGED] Fix incorrectly swapped refreshToken and accessToken
Opened
#777 [PR #491] chore(translations): update translations via Crowdin
Opened
#778 [PR #492] fix: last name still showing as required on account form
Opened
#781 [PR #485] [MERGED] chore(translations): update translations via Crowdin
Opened
#779 [PR #484] [CLOSED] fix: allow ldap users to update locale
Opened
#780 [PR #483] [CLOSED] fix: ensure to use correct forwarded ip
Opened
#782 [PR #482] [MERGED] refactor: graceful shutdown for server
Opened
#784 [PR #483] fix: ensure to use correct forwarded ip
Opened
#783 [PR #481] [MERGED] refactor: do not force redirects to happen on the server
Opened
#785 [PR #482] refactor: graceful shutdown for server
Opened
#786 [PR #479] [MERGED] chore(translations): update translations via Crowdin
Opened
#788 [PR #473] [MERGED] chore(translations): Add Simplified Chinese translation.
Opened
#787 [PR #476] [MERGED] feat: make family name optional
Opened
#789 [PR #472] [MERGED] fix: do not override XDG_DATA_HOME/XDG_CONFIG_HOME if they are already set
Opened
#791 [PR #476] feat: make family name optional
Opened
#790 [PR #471] [MERGED] fix: prevent deadlock when trying to delete LDAP users
Opened
#792 [PR #470] [MERGED] Fix rootless Caddy data and configuration
Opened
#793 [PR #468] [MERGED] chore(translations): update translations via Crowdin
Opened
#794 [PR #466] [MERGED] refactor: add ldap tests
Opened
#795 [PR #467] [MERGED] chore(translations): update translations via Crowdin
Opened
#796 [PR #465] [MERGED] ci/cd: setup caching and improve ci job performance
Opened
#797 [PR #468] chore(translations): update translations via Crowdin
Opened
#798 [PR #467] chore(translations): update translations via Crowdin
Opened
#799 [PR #456] [MERGED] chore(translations): update translations via Crowdin
Opened
#801 [PR #457] [MERGED] feat: add ability to send login code via email
Opened
#800 [PR #459] [MERGED] chore(translations): update translations via Crowdin
Opened
#802 [PR #451] [MERGED] feat: send email to user when api key expires within 7 days
Opened
#803 [PR #452] [MERGED] feat: new login code card position
Opened
#804 [PR #450] [MERGED] chore(deps): bump golang.org/x/net from 0.36.0 to 0.38.0 in /backend in the go_modules group across 1 directory
Opened
#806 [PR #444] [MERGED] chore(translations): update translations via Crowdin
Opened
#805 [PR #449] [MERGED] fix: profile picture empty for users without first or last name
Opened
#807 [PR #443] [MERGED] chore(deps-dev): bump @sveltejs/kit from 2.16.1 to 2.20.6 in /frontend in the npm_and_yarn group across 1 directory
Opened
#808 [PR #442] [MERGED] feat: disable animations setting toggle
Opened
#809 [PR #449] fix: profile picture empty for users without first or last name
Opened
#810 [PR #437] [MERGED] feat: disable/enable users
Opened
#812 [PR #436] [MERGED] feat: add qrcode representation of one time link (#424)
Opened
#813 [PR #427] [MERGED] chore(translations): update translations via Crowdin
Opened
#811 [PR #433] [MERGED] chore(deps-dev): bump vite from 6.2.5 to 6.2.6 in /frontend in the npm_and_yarn group across 1 directory
Opened
#815 [PR #433] chore(deps-dev): bump vite from 6.2.5 to 6.2.6 in /frontend in the npm_and_yarn group across 1 directory
Opened
#814 [PR #426] [MERGED] feat(onboarding): Added button when you don't have a passkey added.
Opened
#816 [PR #420] [MERGED] chore(translations): update translations via Crowdin
Opened
#817 [PR #425] [MERGED] fix: improve LDAP error handling
Opened
#818 [PR #417] [MERGED] chore(deps-dev): bump vite from 6.2.4 to 6.2.5 in /frontend in the npm_and_yarn group across 1 directory
Opened
#820 [PR #418] [MERGED] docs: update swagger description to use markdown
Opened
#819 [PR #423] refactor: simplify app_config service and fix race conditions
Opened
#821 [PR #425] fix: improve LDAP error handling
Opened
#822 [PR #416] [MERGED] chore(translations): update translations via Crowdin
Opened
#824 [PR #415] [MERGED] fix: ensure indexes on audit_logs table
Opened
#823 [PR #414] [MERGED] chore(translations): update translations via Crowdin
Opened
#825 [PR #413] [MERGED] fix: ensure file descriptors are closed + other bugs
Opened
#826 [PR #410] [MERGED] chore(deps-dev): bump vite from 6.2.3 to 6.2.4 in /frontend in the npm_and_yarn group across 1 directory
Opened
#827 [PR #414] chore(translations): update translations via Crowdin
Opened
#828 [PR #407] [CLOSED] fix: DbConfig race conditions
Opened
#829 [PR #408] [MERGED] fix: improve czech translation strings
Opened
#830 [PR #406] [MERGED] fix: create reusable default profile pictures
Opened
#831 [PR #405] [MERGED] feat: implement token introspection
Opened
#832 [PR #402] [MERGED] refactor: do not include test controller in production builds
Opened
#833 [PR #408] fix: improve czech translation strings
Opened
#834 [PR #400] [MERGED] Migrate backend linter to v2. Fixed unit test workflow
Opened
#835 [PR #399] [MERGED] refactor: add swagger title and version info
Opened
#836 [PR #401] [MERGED] chore(deps): install inlang plugins from npm
Opened
#837 [PR #394] [MERGED] chore(translations): update translations via Crowdin
Opened
#838 [PR #398] [CLOSED] fix: ldap users arent deleted if removed from ldap server
Opened
#839 [PR #399] refactor: add swagger title and version info
Opened
#840 [PR #388] [MERGED] fix: use WAL for SQLite by default and set busy_timeout
Opened
#842 [PR #392] [MERGED] fix: use transactions when operations involve multiple database queries
Opened
#841 [PR #389] [MERGED] Add basic static analysis for backend
Opened
#843 [PR #385] [MERGED] doc: update .env.example to reflect the new documentation location
Opened
#844 [PR #386] [MERGED] chore(translations): update translations via Crowdin
Opened
#845 [PR #392] fix: use transactions when operations involve multiple database queries
Opened
#846 [PR #384] [MERGED] chore(deps-dev): bump vite from 6.2.1 to 6.2.3 in /frontend in the npm_and_yarn group across 1 directory
Opened
#847 [PR #379] [MERGED] fix: hash the refresh token in the DB (security)
Opened
#848 [PR #381] [MERGED] feat: modernize ui
Opened
#849 [PR #378] [MERGED] docs: fix api routers for swag documentation
Opened
#850 [PR #376] [MERGED] fix: skip ldap objects without a valid unique id
Opened
#852 [PR #372] [MERGED] refactor: use atomic renames for uploaded files
Opened
#851 [PR #375] [MERGED] chore(translations): update translations via Crowdin
Opened
#853 [PR #374] [MERGED] chore(deps): bump github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 in /backend in the go_modules group across 1 directory
Opened
#854 [PR #371] [MERGED] feat: russian localization added and enabled
Opened
#855 [PR #368] [MERGED] chore(translations): update translations via Crowdin
Opened
#856 [PR #367] [CLOSED] chore(translations): update translations via Crowdin
Opened
#857 [PR #366] [CLOSED] chore(translations): update translations via Crowdin
Opened
#859 [PR #359] [MERGED] feat: Add support for ECDSA and EdDSA keys
Opened
#858 [PR #365] [CLOSED] fix: Use source generation for managing AAGUID dataset
Opened
#860 [PR #355] [MERGED] feat(profile-picture): allow reset of profile picture
Opened
#862 [PR #365] fix: Use source generation for managing AAGUID dataset
Opened
#861 [PR #366] chore(translations): update translations via Crowdin
Opened
#863 [PR #353] [CLOSED] fix: update profile picture URL to use dynamic user ID (#342)
Opened
#866 [PR #349] [MERGED] 🚀 Feature: Translation
Opened
#865 [PR #351] [MERGED] fix: avatar in header fix
Opened
#864 [PR #352] [MERGED] fix: correct misspellings
Opened
#867 [PR #339] [MERGED] feat: store keys as JWK on disk
Opened
#868 [PR #352] fix: correct misspellings
Opened
#869 [PR #351] fix: avatar in header fix
Opened
#870 [PR #339] feat: store keys as JWK on disk
Opened
#871 [PR #336] [MERGED] fix: email logo icon displaying too big
Opened
#872 [PR #337] [MERGED] fix: pocket-id notify emails are considered as medium spam by rspamd
Opened
#873 [PR #332] [MERGED] feat(passkeys): name new passkeys based on agguids
Opened
#874 [PR #331] [MERGED] fix: Fixes and performance improvements in utils package
Opened
#875 [PR #328] [MERGED] chore(deps): bump @babel/runtime from 7.26.7 to 7.26.10 in /frontend in the npm_and_yarn group across 1 directory
Opened
#876 [PR #337] fix: pocket-id notify emails are considered as medium spam by rspamd
Opened
#877 [PR #331] fix: Fixes and performance improvements in utils package
Opened
#878 [PR #326] [MERGED] chore(deps): bump golang.org/x/net from 0.34.0 to 0.36.0 in /backend in the go_modules group across 1 directory
Opened
#880 [PR #327] [MERGED] feat: Allow setting path where keys are stored + only store private key
Opened
#879 [PR #325] [MERGED] feat: add OIDC refresh_token support
Opened
#881 [PR #320] [MERGED] feat: global audit log
Opened
#882 [PR #326] chore(deps): bump golang.org/x/net from 0.34.0 to 0.36.0 in /backend in the go_modules group across 1 directory
Opened
#883 [PR #318] [CLOSED] Add Let's Encrypt Certs with Cloudflare DNS
Opened
#884 [PR #320] feat: global audit log
Opened
#886 [PR #314] [CLOSED] feat: ability to show/hide alternative signin button
Opened
#885 [PR #313] [MERGED] chore: add Dev Container
Opened
#887 [PR #307] [MERGED] fix: typo in account settings
Opened
#888 [PR #306] [MERGED] chore(deps): bump the npm_and_yarn group across 1 directory with 3 updates
Opened
#889 [PR #303] [CLOSED] fix: sorting not applying on page load
Opened
#890 [PR #307] fix: typo in account settings
Opened
#891 [PR #295] [CLOSED] feat: add prometheus metrics
Opened
#892 [PR #299] [MERGED] fix: default sorting on tables
Opened
#893 [PR #296] [MERGED] feat: display groups on the user form/account page
Opened
#894 [PR #293] [MERGED] ci/cd: add pr docker build
Opened
#895 [PR #292] [MERGED] fix: support LOGIN authentication method for SMTP
Opened
#896 [PR #296] feat: display groups on the user form/account page
Opened
#898 [PR #291] [MERGED] feat: api key authentication
Opened
#897 [PR #277] [MERGED] feat: enable sd_notify support
Opened
#899 [PR #290] [CLOSED] fix: images with exif data not showing correctly
Opened
#900 [PR #273] [MERGED] fix(account): call correct function to set own profile picture
Opened
#901 [PR #271] [MERGED] feat(account): allow creation of own login codes
Opened
#902 [PR #291] feat: api key authentication
Opened
#903 [PR #290] fix: images with exif data not showing correctly
Opened
#904 [PR #268] [MERGED] fix: add option to manually select SMTP TLS method
Opened
#905 [PR #265] [CLOSED] feat: add support for TRUSTED_PROXIES environment variable
Opened
#906 [PR #270] [MERGED] feat: device authorization endpoint
Opened
#907 [PR #258] [CLOSED] fix: generate valid urls when app url contains a trailing slash (#257)
Opened
#908 [PR #244] [MERGED] feat: add ability to upload a profile picture
Opened
#909 [PR #227] [CLOSED] feat: Added Helm chart
Opened
#910 [PR #236] [MERGED] feat: addition LDAP group membership attributes
Opened
#911 [PR #232] [MERGED] feat: add end session endpoint
Opened
#912 [PR #225] [MERGED] feat: user/group source location badge
Opened
#913 [PR #226] [MERGED] Add GEOLITE_DB_URL and handle an empty MAXMIND_LICENSE_KEY
Opened
#914 [PR #232] feat: add end session endpoint
Opened
#915 [PR #222] [MERGED] fix: user linking in ldap group sync
Opened
#916 [PR #218] [MERGED] feat: update host configuration to allow external access
Opened
#917 [PR #220] [MERGED] feat: add warning for only having one passkey configured
Opened
#918 [PR #216] [MERGED] feat: ldap search filters
Opened
#919 [PR #212] [MERGED] docs: fix freshrss callback url
Opened
#920 [PR #210] [CLOSED] docs: add the "HOST" environment variable
Opened
#921 [PR #211] [CLOSED] docs: add the "HOST" environment variable
Opened
#922 [PR #205] [MERGED] docs: enhance documentation
Opened
#923 [PR #203] [MERGED] docs: add landing page
Opened
#925 [PR #211] docs: add the "HOST" environment variable
Opened
#924 [PR #202] [MERGED] feat: map allowed groups to OIDC clients
Opened
#926 [PR #200] [MERGED] Docs for adding Pocket ID to FreshRSS
Opened
#928 [PR #196] [CLOSED] docs: add fly.io setup guide
Opened
#927 [PR #197] [MERGED] docs: add helper scripts install for proxmox
Opened
#929 [PR #191] [MERGED] docs: Add Immich and Headscale client examples
Opened
#931 [PR #196] docs: add fly.io setup guide
Opened
#930 [PR #194] docs: Added Gitea and Memos example
Opened
#932 [PR #189] [MERGED] fix(caddy): trusted_proxies for IPv6 enabled hosts
Opened
#933 [PR #186] [MERGED] docs: add version label to navbar
Opened
#934 [PR #183] [MERGED] docs: fix typos and improve clarity in proxmox.md
Opened
#935 [PR #180] [MERGED] fix: smtp hello for tls connections
Opened
#936 [PR #177] [CLOSED] feat: add oidc end-session endpoint
Opened
#937 [PR #186] docs: add version label to navbar
Opened
#939 [PR #166] [MERGED] docs: add more client-examples
Opened
#938 [PR #175] [MERGED] fix: add __HOST prefix to cookies
Opened
#941 [PR #162] [MERGED] docs: fix open-webui docs page
Opened
#940 [PR #173] [CLOSED] fix: use EnvConfig.AppURL instead EnvConfig.Host for smtp ehlo
Opened
#942 [PR #165] [MERGED] fix: add save changes dialog before sending test email
Opened
#943 [PR #173] fix: use EnvConfig.AppURL instead EnvConfig.Host for smtp ehlo
Opened
#944 [PR #161] [MERGED] [ImgBot] Optimize images
Opened
#945 [PR #155] [CLOSED] draft: feat: ISP (AS) names and numbers
Opened
#946 [PR #152] [MERGED] fix: make CONTRIBUTING instructions work & fix example envs
Opened
#947 [PR #142] [MERGED] Create sample-configurations.md
Opened
#948 [PR #139] [MERGED] feat: private IP ranges
Opened
#949 [PR #155] draft: feat: ISP (AS) names and numbers
Opened
#952 [PR #138] [MERGED] fix: ensure the downloaded GeoLite2 DB is not corrupted & prevent RW race condition
Opened
#951 [PR #133] [MERGED] refactor: bug template update
Opened
#950 [PR #130] [MERGED] fix: always set secure on cookie
Opened
#953 [PR #118] [MERGED] docs: add docusaurus docs
Opened
#954 [PR #106] [MERGED] feat: add LDAP sync
Opened
#955 [PR #133] refactor: bug template update
Opened
#956 [PR #79] [MERGED] feat: add support for Postgres database provider
Opened
#957 [PR #85] [MERGED] docs: Add "groups" scope to the oauth2-proxy sample configuration
Opened
#958 [PR #100] [MERGED] feat: allow sign in with email
Opened
#959 [PR #77] [MERGED] feat(geolite): add Tailscale IP detection with CGNAT range check
Opened
#960 [PR #76] [CLOSED] feat(geolite): improve Tailscale IP detection with CGNAT range check
Opened
#961 [PR #85] docs: Add "groups" scope to the oauth2-proxy sample configuration
Opened
#962 [PR #77] feat(geolite): add Tailscale IP detection with CGNAT range check
Opened
#963 [PR #69] [MERGED] fixes #5 when the authentication fails ...
Opened
#965 [PR #71] [MERGED] fix: if already not root, don't bother
Opened
#964 [PR #72] [CLOSED] chore: simplify container setup, drop down to node user
Opened
#966 [PR #53] [MERGED] feat: custom claims
Opened
#967 [PR #67] [MERGED] chore: make Docker image run without root user
Opened
#968 [PR #27] [MERGED] Improve email templating
Opened
#971 [PR #26] [MERGED] feat: add audit log with email notification
Opened
#970 [PR #51] [MERGED] Jellyfin Integration Guide
Opened
#969 [PR #31] [MERGED] Edit first and last name labels
Opened
#972 [PR #17] [MERGED] [ImgBot] Optimize images
Opened
#973 [PR #31] Edit first and last name labels
Opened
#974 [PR #9] [CLOSED] [ImgBot] Optimize images