Thanks for the plugin, works for me so far, I’ve only had a small problem with the redirect so far.
For example, I call up https://rss.example.com/tt-rss, log in with Authelia, but after successful login I am redirected to rss.example.com/tt-rss without https and thus run into a timeout.
If I activate the https only mode in the browser, then the whole login and redirection process works.
you should be able to login with any account either using OIDC or locally, plugin doesn’t stop any other auth methods from working. not sure what to tell you.
May I kindly ask hhow you have setup ttrss to work with authentik? I currently try to accomplish the same but I seem to not get it working as expected.
Basically I added a new OIDC provider and attached an application to it in authentik, enabled the plugin in ttrss and configured the .env, but no additional login button appears.
sorry for double posting.
after digging around for a while I managed to get the additional login button to work but as soon as I press “login with authentik” I recieve an error 500, so it seems my authentik is configured wrongly.
Log of TTRSS stated: Uncaught Jumbojett\OpenIDConnectClientException: The provider authorization_endpoint could not be fetched. Make sure your provider has a well known configuration available
Following up on @xinput’s post and to save others some time.
With Authentik you use the OpenID Configuration Issuer url from the Provider dashboard not the OpenID Configuration URL. So, assuming that you your application name is TT-RSS and your Authentik domain is authentik.tld in, your two urls would be: