🐛 Bug Report: Does not work through cloudflare dns proxy #400

New Issue

Closed

opened 2025-10-08 00:07:01 +03:00 by OVERLORD · 5 comments

OVERLORD commented 2025-10-08 00:07:01 +03:00

Owner

Copy Link

Originally created by @viqasc on GitHub.

Reproduction steps

i have pocket-id working on a reverse proxy (ngx proxy manager) used the header sizes settings that was listed in the documentation.

when i have cloudflare proxy turned off i am able to access the sso tool. when i turn on the cloudflare proxy i get a Error 502 Bad Gateway.

please let me know if cloudflare needs to support the larger header sizes too therefore unsupported.

Expected behavior

Hoping that it would work with the cloudflare proxy

Actual Behavior

when cloudflare proxy is switched on i receive an error 502 Bad Gateway

Originally created by @viqasc on GitHub. ### Reproduction steps i have pocket-id working on a reverse proxy (ngx proxy manager) used the header sizes settings that was listed in the documentation. when i have cloudflare proxy turned off i am able to access the sso tool. when i turn on the cloudflare proxy i get a Error 502 Bad Gateway. please let me know if cloudflare needs to support the larger header sizes too therefore unsupported. ### Expected behavior Hoping that it would work with the cloudflare proxy ### Actual Behavior when cloudflare proxy is switched on i receive an error 502 Bad Gateway

OVERLORD added the bug label 2025-10-08 00:07:01 +03:00

OVERLORD closed this issue 2025-10-08 00:07:02 +03:00

OVERLORD commented 2025-10-08 00:07:04 +03:00

Author

Owner

Copy Link

@kmendell commented on GitHub:

@viqasc Yes mine is. Are you using public DNS Records pointing to Pocket ID? or are you using Cloudflare Tunnel (Zero Trust)?

@kmendell commented on GitHub: @viqasc Yes mine is. Are you using public DNS Records pointing to Pocket ID? or are you using Cloudflare Tunnel (Zero Trust)? 

OVERLORD commented 2025-10-08 00:07:06 +03:00

Author

Owner

Copy Link

@viqasc commented on GitHub:

@kmendell

thank you for your input, under the SSL/TLS settings for your domain select Configure menu

Is it set to Full (strict) ?

@viqasc commented on GitHub: @kmendell thank you for your input, under the SSL/TLS settings for your domain select Configure menu Is it set to Full (strict) ?

OVERLORD commented 2025-10-08 00:07:06 +03:00

Author

Owner

Copy Link

@kmendell commented on GitHub:

I'll confirm i have pocket id running behind cloudflare tunnel and it works fine not sure if that's what's being used or not here though

@kmendell commented on GitHub: I'll confirm i have pocket id running behind cloudflare tunnel and it works fine not sure if that's what's being used or not here though

OVERLORD commented 2025-10-08 00:07:07 +03:00

Author

Owner

Copy Link

@stonith404 commented on GitHub:

I'm converting this to a discussion as this is not a bug of Pocket ID directly.

@stonith404 commented on GitHub: I'm converting this to a discussion as this is not a bug of Pocket ID directly.

OVERLORD commented 2025-10-08 00:07:08 +03:00

Author

Owner

Copy Link

@stonith404 commented on GitHub:

Is the bad gateway error returned by Cloudflare or your reverse proxy?

Do you have other services behind Cloudflare and Nginx Proxy Manager that work? Just to make sure that the issue is caused by Pocket ID.

@stonith404 commented on GitHub: Is the bad gateway error returned by Cloudflare or your reverse proxy? Do you have other services behind Cloudflare and Nginx Proxy Manager that work? Just to make sure that the issue is caused by Pocket ID.

OVERLORD referenced this issue 2025-10-08 00:18:06 +03:00

[PR #400] [MERGED] Migrate backend linter to v2. Fixed unit test workflow #834

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

oidc-scopes

breaking/v2

i18n_crowdin

v2/use-item-component

default-env-db-keys

slog-gorm

v1.16.0

v1.15.0

v1.14.2

v1.14.1

v1.14.0

v1.13.1

v1.13.0

v1.12.0

v1.11.2

v1.11.1

v1.11.0

v1.10.0

v1.9.1

v1.9.0

v1.8.1

v1.8.0

v1.7.0

v1.6.4

v1.6.3

v1.6.2

v1.6.1

v1.6.0

v1.5.0

v1.4.1

v1.4.0

v1.3.1

v1.3.0

v1.2.0

v1.1.0

v1.0.0

v0.53.0

v0.52.0

v0.51.1

v0.51.0

v0.50.0

v0.49.0

v0.48.0

v0.47.0

v0.46.0

v0.45.0

v0.44.0

v0.43.1

v0.43.0

v0.42.1

v0.42.0

v0.41.0

v0.40.1

v0.40.0

v0.39.0

v0.38.0

v0.37.0

v0.36.0

v0.35.6

v0.35.5

v0.35.4

v0.35.3

v0.35.2

v0.35.1

v0.35.0

v0.34.0

v0.33.0

v0.32.0

v0.31.0

v0.30.0

v0.29.0

v0.28.1

v0.28.0

v0.27.2

v0.27.1

v0.27.0

v0.26.0

v0.25.1

v0.25.0

v0.24.1

v0.24.0

v0.23.0

v0.22.0

v0.21.0

v0.20.1

v0.20.0

v0.19.0

v0.18.0

v0.17.0

v0.16.0

v0.15.0

v0.14.0

v0.13.1

v0.13.0

v0.12.0

v0.11.0

v0.10.0

v0.9.0

v0.8.1

v0.8.0

v0.7.1

v0.7.0

v0.6.0

v0.5.3

v0.5.2

v0.5.1

v0.5.0

v0.4.1

v0.4.0

v0.3.1

v0.3.0

v0.2.1

v0.2.0

v0.1.3

v0.1.2

v0.1.1

v0.1.0

Labels

Clear labels

breaking

bug

documentation

feature

needs more upvotes

open to pull requests

pull-request

Mirrored from GitHub Pull Request

No Label bug

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/pocket-id-pocket-id-1#400