Denis Arnst

Also I noticed that your CIDR checks only supports IPv6 localhost address ::1 I think its better to directly use a package for the IP handling. Especially as your code...

Hello, > May i ask, why it hasn't been implemented yet? Is it because it hasn't been reverse engineered? Yes. You would have to use WireShark to find out how...

The order of your parameters is mismatched. For some reason you put in the data after `--receive` which cannot work, as the data has to belong to the send command....

> It actually a problem of the entire software which was designed to support one device at a time... Yeah there is some work already in fixing that. For example...

> I guess adding a note that claim == scope name in the documentation would suffice, so others don't have to spend time wondering why the heck stuff doesn't work....

Probably access logs would be helpful (the one from the reverse proxy in front of authentik and the one in front of abs). I suspect a mismatch between http and...

@JorisM The redirect URls you specified is incorrect. The ones you specified have to go into the Authentik configuration. If you want to use the official app, you just have...

> While the authorization server (Authentik) must require the use of HTTPS, there are no requirements imposed on ABS (resource server) here. The indicated variable should be configurable in settings...

> Have you set your callback URLs to non https endpoint? Authentik /other oidc should redirect you to what's in callback URL so if that's configured incorrectly... No his issue...

fyi @pierre-emmanuelJ @PhilippeChepy