Auth OIDC and Gitlab errors, but nothing in logs

[nathanael-h]

Hello,
I am trying to configure OIDC or Gitlab auth.
The point is that I have for both I end with an error like this on web:

server error
trace = 060dd72d-2072-40a2-8ea3-xxxxxxxxxxxx

But even with log level set to DEBUG I have nothing in the logs output of the wg-access-server container.

So do you think I could have more logs to understand what is the error I have? Or maybe do you see any bad config I made?

Here is my config.yaml

auth:
  oidc:
    name: "SSO CAS"
    issuer: "https://sso-preprod.aaa.fr/cas/oidc"
    clientID: "wireguard"
    clientSecret: "xxx"
    scopes:
      - openid
      - profile
      - email
    redirectURL: "https://vpn.aaa.fr/callback"
    claimMapping:
      admin: "'WireguardAdmins' in group_membership"
  gitlab:
    name: "Gitlab Preprod"
    baseURL: "https://git.aaa.fr"
    clientID: "xxxxxx"
    clientSecret: "yyyyyyy"
    redirectURL: "https://vpn.company.fr/callback"
    emailDomains:
      - aaa.fr

[DasSkelett]

Yeah, the missing logs for grpc endpoints was to be fixed with #119, but I think I'm going to split that out into a separate PR now since I've got some code for this already.

[nathanael-h]

Ok, sorry I saw this PR, and I thought it was something different. If you need me to test some PR about this I can try . By the way, do you see any issue with my config file?

[DasSkelett]

If you are setup for building the binary or Docker image from source you can try #155, I would welcome testing and feedback.
The config looks good to me, syntax-wise. Could be that wg-access-server can't reach the Issuer, but also anything else.

[nathanael-h]

Hello, the problem was on the OIDC server that was not sending a namevalue. We have been able to fix this on our side thanks to the logs provided via #155 😎 👍

[DasSkelett]

Nice to hear! I've also added a commit to #155 to handle a missing name gracefully, it's not needed and only optional for the "All Devices" list (where it falls back to the email address or subject).