mirror of
https://github.com/dani-garcia/vaultwarden.git
synced 2026-07-16 05:34:10 +03:00
[SSO] Authentik Token exchange failure #2431
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @amypotato on GitHub (Nov 10, 2025).
Prerequisites
Vaultwarden Support String
Your environment (Generated via diagnostics page)
Config & Details (Generated via diagnostics page)
Show Config & Details
Config:
Vaultwarden Build Version
v1.34.3-9017ca26
Deployment method
Official Container Image
Custom deployment method
Deployed via docker swarm, docker swarm service definition:
Reverse Proxy
traefik 3.6.0
Host/Server Operating System
Linux
Operating System Version
Ubuntu 24.04 LTS
Clients
Web Vault
Client Version
No response
Steps To Reproduce
Expected Result
User is logged in
Actual Result
Error message appears in a red notification in the web vault and is logged in the vaultwarden container:
Logs
Screenshots or Videos
No response
Additional Context
No response
@amypotato commented on GitHub (Nov 10, 2025):
I'm seeing only success for the initial auth in the authentik logs:
@Eilios commented on GitHub (Dec 6, 2025):
I'm having the same error, is it because of this?
https://github.com/dani-garcia/vaultwarden/wiki/Enabling-SSO-support-using-OpenId-Connect
Important
‼️ ‼️ ‼️
SSO is currently only available in the :testing tagged images!
The current stable v1.34.3 does not contain the SSO feature.
‼️ ‼️ ‼️
@Fredouye commented on GitHub (Dec 28, 2025):
Same issue with authentik 2025.10.3 and Vaultwarden 1.35.0
@bobsdacool commented on GitHub (Dec 28, 2025):
I am also affected by this issue in an identical manner. Same versions etc...
@bobsdacool commented on GitHub (Jan 2, 2026):
I was able to get this fixed by specifying the variables through the admin interface.
For whatever reason it didn't work for me when I ran them as environment variables, just as a heads up for anyone else that has this issue.
@Eyma88 commented on GitHub (Jan 27, 2026):
I am also affected by this issue in an identical manner. Same versions etc... (Version 1.35.2)
@boscorelly commented on GitHub (Jan 28, 2026):
Hi,
same problem here.
@boscorelly commented on GitHub (Jan 28, 2026):
Fixed for me : i was missing "openid" in graph permission on EntraID. Now, it works.