fix(auth): resolve 419 session errors with domain-based access and Cloudflare Tunnels (#8749)

2026-03-03 12:37:47 +01:00 · 2026-03-03 12:37:47 +01:00 · fb186841f4
commit fb186841f4
parent 7aa495baa3 0320d6a5b6
1 changed files with 9 additions and 1 deletions
--- a/resources/views/errors/419.blade.php
+++ b/resources/views/errors/419.blade.php
@ -5,7 +5,15 @@
        <h1 class="mt-4 font-bold tracking-tight dark:text-white">This page is definitely old, not like you!</h1>
        <p class="text-base leading-7 dark:text-neutral-300 text-black">Your session has expired. Please log in again to continue.
        </p>
-        <div class="flex items-center mt-10 gap-x-2">
+        <details class="mt-6 text-sm dark:text-neutral-400 text-neutral-600">
+            <summary class="cursor-pointer hover:dark:text-neutral-200 hover:text-neutral-800">Using a reverse proxy or Cloudflare Tunnel?</summary>
+            <ul class="mt-2 ml-4 list-disc space-y-1">
+                <li>Set your domain in <strong>Settings &rarr; FQDN</strong> to match the URL you use to access Coolify.</li>
+                <li>Cloudflare users: disable <strong>Browser Integrity Check</strong> and <strong>Under Attack Mode</strong> for your Coolify domain, as these can interrupt login sessions.</li>
+                <li>If you can still access Coolify via <code>localhost</code>, log in there first to configure your FQDN.</li>
+            </ul>
+        </details>
+        <div class="flex items-center mt-6 gap-x-2">
            <a href="/login">
                <x-forms.button>Back to Login</x-forms.button>
            </a>