Hi Shehwaz, A while back I ran into a similar problem in an environment. I had a proxy server in front of Guacamole with SSL offloading enabled. Guacamole was expecting an HTTP redirect URL whereas the IdP was sending an HTTPS redirect URL. I ended up switching Tomcat to SSL which made everyone happy.
Nick's suggestion below is likely to also work as well. Regards, Tim ________________________________ From: Nick Couchman <[email protected]> Sent: 22 June 2022 11:05 To: [email protected] <[email protected]> Subject: Re: Issue With Authentik and Guacamole - Infinite Redirect On Thu, Jun 9, 2022 at 11:14 AM Shehwaz Shamsuddin <[email protected]<mailto:[email protected]>> wrote: Hello, I set up Authentik and Guacamole with the configuration found here: https://goauthentik.io/integrations/services/apache-guacamole/ The issue I'm running into is that when I access guacamole, I'm greeted with the Authentik login screen and after signing in, I get stuck in a redirect loop. A lot of times re-direct loops with SSO are due to HTTP vs. HTTPS issues with the Guacamole URL. If you're proxying Guacamole behind a HTTPS proxy (Nginx, httpd, etc.) you may need to make sure that your proxy is passing through the X-Forwarded-Proto header, which should result in the correct/consistent URL being provided to the SSO system. -Nick
