Hello,
I'm trying to use Authelia as a realm for the authentication on my proxmox. I use it for every service I have with traefik as proxy.
I added OIDC handling in the authelia conf file, it's running without errors.
I then added a realm to my proxmox, with these settings
When I try lo log in I have the error "OpenID redirect failed request failed 500"
Does someone know what's wrong here ?
Thanks a lot
Here's my authelia conf :
I'm trying to use Authelia as a realm for the authentication on my proxmox. I use it for every service I have with traefik as proxy.
I added OIDC handling in the authelia conf file, it's running without errors.
I then added a realm to my proxmox, with these settings
When I try lo log in I have the error "OpenID redirect failed request failed 500"
Does someone know what's wrong here ?
Thanks a lot
Here's my authelia conf :
YAML:
identity_providers:
oidc:
hmac_secret: '.************'
jwks:
- key_id: 'example'
algorithm: 'RS256'
use: 'sig'
key: |
-----BEGIN PRIVATE KEY-----
MIIEvAIBADANBgkqhkiG9w0BAQEFAASCBKYwggSiAgEAAoIBAQDkk1GapsKGAcFT
......
uVES6mj5GBKtmWAJVEsNNw==
-----END PRIVATE KEY-----
# key: {{ secret "/config/secrets/oidc/jwks/private.pem" | mindent 10 "|" | msquote }}
authorization_policies:
policy_name:
default_policy: one_factor
rules:
- subject: ["group:admin"]
policy: one_factor
claims_policies:
policy_name:
id_token_audience_mode: 'specification'
custom_claims:
groups:
attribute: groups
clients:
- client_id: 'proxmox'
client_name: 'Proxmox'
client_secret: '$pbkdf2-sha512$.************'
public: false
authorization_policy: 'one_factor'
require_pkce: true
pkce_challenge_method: 'S256'
redirect_uris:
- 'https://proxmox.************.com'
scopes:
- 'openid'
- 'profile'
- 'email'
userinfo_signed_response_alg: 'none'
token_endpoint_auth_method: 'client_secret_basic'