OIDC timeout - Authentik #6018
Description
Attempted Debugging
- I have read the debugging page
Searched GitHub Issues
- I have searched GitHub for the issue.
Describe the Scenario
Short version: OIDC/Authentik login fails due to timeout.
This is the error displayed after the login attempt.
OIDC Discovery Error: HTTP request failed during discovery with error: cURL error 28: Resolving timed out after 5000 milliseconds (see https://curl.haxx.se/libcurl/c/libcurl-errors.html) for https://sso.mydomain.com/application/o/bookstack/.well-known/openid-configuration
If I set the urls manually, I get a different failure.
Basically, Authentik runs slow as hell on my system apparently, specifically for first login attempts.
Is there a way to increase the time until failure?
Initial admin login was only standard auth performed, and only to change the password.
Exact BookStack Version
v25.12.3-ls243
Log Content
No errors logged.
Checked laravel log, nginx access and error logs, and php log.
Nothing.
Hosting Environment
Docker, managed via Portainer, running on Ubuntu 24.04.
pfSense running HAProxy for reverse proxying. Straight through, nothing fancy as auth is intended to be via Authentik OIDC, also running via a similar straight through HAProxy config.
Cloudflare providing straight DNS, no tunnels in play.
LetsEncrypt wildcard certs for domain, used in HAProxy for SSL term, and Authentik for signing tokens (not encrypting them)
Custom "let's see how this works for funsies" server running many containers.
Threadripper 1950x
128GB ECC RAM
Docker volume storage and VM OS drive storage on ZFS mirrored 1TB Samsung NVMe drives. 10Gbps connection from server to LAN, 1Gbps fiber ISP connection
Anything else, please ask.