Invalid redirect URI on logout with Keycloak in v0.71.0

[minhduy1302]

Before posting

• I searched existing discussions and issues, including closed ones, and checked the relevant docs.
• I believe this is a product bug rather than a configuration or setup question.
• I can reproduce this issue, or for intermittent issues I've included trigger, frequency, and timing details below.
• I removed or anonymized sensitive data from logs, screenshots, and configuration.

Affected area

Login / Authentication / IdP, Dashboard / Admin UI, Self-hosting / Deployment

Deployment type

Self-hosted - quickstart script

Operating system or environment

Linux, Docker

NetBird version and upgrade status

• netbird-server: v0.71.0 (broken) / v0.70.5 (working)
• netbird-dashboard: v2.37.1
• Identity Provider: Keycloak (self-hosted)

Did this work before?

Yes, this worked before

Regression details

• Last known working version: v0.70.5
• First known broken version: v0.71.0

Summary

After upgrading netbird-server from v0.70.5 to v0.71.0, logging out from the NetBird dashboard results in a Keycloak error: "Invalid redirect uri". The issue does not occur on v0.70.5.

Current behavior

Keycloak rejects the logout request with "Invalid redirect uri"

Expected behavior

Logout should redirect back to the NetBird dashboard login page without errors.

Steps to reproduce

1. Login with Keycloak
2. Click Logout
3. Keycloak returns: "Invalid redirect uri"

Environment and topology

N/A

Self-hosted details, if available

• Deployment method: Docker Compose
• Netbird Server version: v0.71.0
• Netbird Dashboard version: v2.37.1
• Identity Provider: Keycloak (self-hosted)
• Keycloak version: 26.4.7

Logs, status output, or debug evidence

N/A

Related issues or discussions

No response

Impact

No response

Additional context

No response

[jnfrati]

Hi @minhduy1302 thanks for reporting, wondering if this is a missing configuration, could you give a try on Keycloak to add https://<management-url>/oauth2/logout/callback as valid logout URL?

[minhduy1302]

Hi, I added https://<management-url>/oauth2/logout/callback as a valid logout URL in Keycloak, and the issue is now resolved.
Thanks a lot for your help!