Enrico Brambilla

> For the WebSocket, we are also using the access token, after getting the access token from the OAuth, I assume it can still be used as the current flow...

Hi again, with the last commit I changed the validation flow. To test now you should generate an `id_token` in OIDCDebugger and use that in the bearer token... It's very...

@zackpollard I agree on the possibility of having both authentication type enabled together. The approach I followed now is that the user can enable OAuth through env var, if OAuth...

Hi all, finally the mobile app and server are ready to be used with OAuth2/OIDC. I'm sure there is some polishing to do and whole web client is not compatible...

Hi again, so here it is Immich with full OAuth2/OIDC support. Backend, mobile app and web all support OAuth2 authentication now. The setup has slightly changed, just a different env...

Hi Alex, thanks for the appreciation! Right now I'm most concerned about two things: 1) the web frontend code: I haven't used Svelte and I don't like the code I...

Thanks @zackpollard for the answer, I’ll keep that in mind!

Hi @alextran1502, I just merged from main all the changes. I've got to admit that it's becoming really difficult to keep up with the changes since I also changed a...

Re: Issue 1 @alextran1502, that issue is not related to Immich but to Authentik. Please go in the Provider settings and verify that the "Redirect URIs/Origin" contains `https://192.168.1.216:9443`. The CORS...

@alextran1502 on Linux you can use `cat file.pem | base64`. Otherwise you can just use an online base64 encoder, the PEM certificate doesn't include a private key so no worries...