#Authentik + Immich mobile clients

:wave: Hey @brisk valley,

Thanks for reaching out to us. Please follow the recommended actions below; this will help us be more effective in our support effort and leave more time for building Immich .

References

• Container Logs: docker compose logs docs
• Container Status: docker compose ps docs
• Reverse Proxy: https://immich.app/docs/administration/reverse-proxy

Checklist

1. :ballot_box_with_check: I have verified I'm on the latest release(note that mobile app releases may take some time).
2. :ballot_box_with_check: I have read applicable release notes.
3. :ballot_box_with_check: I have reviewed the FAQs for known issues.
4. :ballot_box_with_check: I have reviewed Github for known issues.
5. :ballot_box_with_check: I have tried accessing Immich via local ip (without a custom reverse proxy).
6. :ballot_box_with_check: I have uploaded the relevant logs, docker compose, and .env files, making sure to use code formatting.
7. :blue_square: I have tried an incognito window, disabled extensions, cleared mobile app cache, logged out and back in, different browsers, etc. as applicable

(an item can be marked as "complete" by reacting with the appropriate number)

If this ticket can be closed you can use the /close command, and re-open it later if needed.

Successfully submitted, a tag has been added to inform contributors. :white_check_mark:

Yes, the app supports oauth

if you mean authentik SSO via oauth: yes it will, i use immich + authentik
if you mean proxying the whole immich under authentik forward proxy, uncertain but app certainly will break
(try custom headers as an escape hatch)

yeah sticking to oauth is the easiest
using custom header is entirely proxy dependent on how you conditionally bypass auth proxy by header
it's also just security by obscurity: know the header and you can bypass it