Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix: OpenID setup instructions for Azure Entra/AD should require role token kind #190

Open
bprussell opened this issue Dec 30, 2024 · 0 comments · May be fixed by #189
Open

Fix: OpenID setup instructions for Azure Entra/AD should require role token kind #190

bprussell opened this issue Dec 30, 2024 · 0 comments · May be fixed by #189

Comments

@bprussell
Copy link

What happened?

I followed the instructions here to set up OpenID using Azure Entra. I do not want to restrict access by groups; I just want any user in my tenant to be able to access LibreChat.

I received an "Internal Server Error" when logging in using OpenID.

I fixed this by adding the OPENID_REQUIRED_ROLE_TOKEN_KIND=id environment variable. The documentation lists it under a comment that says you should add this if you want to restrict access by groups, but it seems like that one is needed always. I didn't add the other two settings listed there, and it's working now.

Steps to Reproduce

  1. Setup LibreChat in Azure following the instructions for Azure Entra/AD.
  2. Do not set the OPENID_REQUIRED_ROLE_TOKEN_KIND environment variable
  3. Run the app, log in with OpenID -> Internal Server Error
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

📘 docs: Update Azure OAuth2 configuration to clarify that role token … bprussell/librechat.ai
1 participant
@bprussell