Failed to save client

getting an error "Failed to save client" in the browser when trying to create a new OIDC client on a Debian 12 LXC in proxmox.

logs from 'docker compose logs -f'

tsidp  | 2025/11/02 13:09:42 tsnet running state path /home/app/.config/tsnet-tsidp-server/tailscaled.state
tsidp  | 2025/11/02 13:09:42 tsnet starting with hostname "idp", varRoot "/home/app/.config/tsnet-tsidp-server"
tsidp  | 2025/11/02 13:09:42 LocalBackend state is NeedsLogin; running StartLoginInteractive...
tsidp  | 2025/11/02 13:09:42 INFO tsidp server started server_url=https://idp.xxxxxxxx.ts.net
tsidp  | 2025/11/02 13:09:47 AuthLoop: state is Running; done
tsidp  | 2025/11/02 13:10:45 ERROR client create: could not write funnel clients db error="open oidc-funnel-clients.json: permission denied"

compose file used:

services:
  tsidp:
    container_name: tsidp
    image: ghcr.io/tailscale/tsidp:latest
    volumes:
      - tsidp-data:/data
    environment:
      - TAILSCALE_USE_WIP_CODE=1 # tsidp is experimental - needed while version <1.0.0
      - TSIDP_STATE_DIR=/data # store persistent tsnet and tsidp state
      - TSIDP_HOSTNAME=idp # Hostname on tailnet (becomes idp.your-tailnet.ts.net)
      - TSIDP_ENABLE_STS=1 # Enable OAuth token exchange
      # Optional: Tailscale auth key for automatic node registration
      - TS_AUTHKEY=tskey-auth-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx                   
volumes:
  tsidp-data:

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Failed to save client #114

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Failed to save client #114

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions