[GH-ISSUE #1040] auth-file settings ignored #731

New issue

Closed

opened 2026-05-07 00:26:59 +02:00 by BreizhHardware · 3 comments

BreizhHardware commented 2026-05-07 00:26:59 +02:00

Owner

Copy link

Originally created by @CountMurphy on GitHub (Feb 29, 2024).
Original GitHub issue: https://github.com/binwiederhier/ntfy/issues/1040

🐞 Describe the bug
Just installed on Arch by the ntfysh package. My /etc/ntfy/server.yml has the following three lines:

listen-http: ":8082"
auth-file: "/Raid/ntfy/user.db" 
auth-default-access: "deny-all"

Now the server does indeed start on port 8082, so I know ntfy is reading the config. The permissions on the directory are

drwxr-xr-x ntfy ntfy

When I attempt to create a new user with ntfy user add --role=admin Name I get:

option auth-file not set; auth is unconfigured for this server

The user.db file is also not created at service start.

💻 Components impacted

ntfy server
💡 Screenshots and/or logs

🔮 Additional context

Additionally, the deny-all setting is also ignored and the server is publicly accessible.

Originally created by @CountMurphy on GitHub (Feb 29, 2024). Original GitHub issue: https://github.com/binwiederhier/ntfy/issues/1040 :lady_beetle: **Describe the bug** Just installed on Arch by the ntfysh package. My `/etc/ntfy/server.yml` has the following three lines: ```yml listen-http: ":8082" auth-file: "/Raid/ntfy/user.db" auth-default-access: "deny-all" ``` Now the server does indeed start on port 8082, so I know ntfy is reading the config. The permissions on the directory are ``` drwxr-xr-x ntfy ntfy ``` When I attempt to create a new user with `ntfy user add --role=admin Name` I get: ``` option auth-file not set; auth is unconfigured for this server ``` The user.db file is also not created at service start. :computer: **Components impacted** <!-- ntfy server, Android app, iOS app, web app --> ntfy server :bulb: **Screenshots and/or logs** <!-- If applicable, add screenshots or share logs help explain your problem. To get logs from the ... - ntfy server: Enable "log-level: trace" in your server.yml file - Android app: Go to "Settings" -> "Record logs", then eventually "Copy/upload logs" - web app: Press "F12" and find the "Console" window --> :crystal_ball: **Additional context** <!-- Add any other context about the problem here. --> Additionally, the deny-all setting is also ignored and the server is publicly accessible.

BreizhHardware 2026-05-07 00:26:59 +02:00

• closed this issue
• added the
  🪲 bug
  label

BreizhHardware commented 2026-05-07 00:26:59 +02:00

Author

Owner

Copy link

@wunter8 commented on GitHub (Feb 29, 2024):

I'd be happy to help on Discord! It's a bit hard to go back and forth here.

(But in essence, I'm guessing the problem is that the systemd service runs as the ntfy user, whereas ntfy user add ... runs as your user, so it's looking at ~/.config/ntfy/server.yml instead of /etc/ntfy/server.yml, so it doesn't know where the auth-file is. You can either sudo -u ntfy ntfy user add ... or ntfy user --auth-file /Raid/ntfy/user.db add ...)

<!-- gh-comment-id:1972001652 --> @wunter8 commented on GitHub (Feb 29, 2024): I'd be happy to help on Discord! It's a bit hard to go back and forth here. (But in essence, I'm guessing the problem is that the systemd service runs as the ntfy user, whereas `ntfy user add ...` runs as your user, so it's looking at `~/.config/ntfy/server.yml` instead of `/etc/ntfy/server.yml`, so it doesn't know where the auth-file is. You can either `sudo -u ntfy ntfy user add ...` or `ntfy user --auth-file /Raid/ntfy/user.db add ...`)

BreizhHardware commented 2026-05-07 00:26:59 +02:00

Author

Owner

Copy link

@CountMurphy commented on GitHub (Feb 29, 2024):

Also tried running as the ntfy user, exact same result. I've just joined. What channel should I join, or should I DM you?

<!-- gh-comment-id:1972007596 --> @CountMurphy commented on GitHub (Feb 29, 2024): Also tried running as the ntfy user, exact same result. I've just joined. What channel should I join, or should I DM you?

BreizhHardware commented 2026-05-07 00:27:00 +02:00

Author

Owner

Copy link

@CountMurphy commented on GitHub (Feb 29, 2024):

Well I did a dumb. My yml was missing a whitespace character before auth-file. Seems to be working now

<!-- gh-comment-id:1972018084 --> @CountMurphy commented on GitHub (Feb 29, 2024): Well I did a dumb. My yml was missing a whitespace character before auth-file. Seems to be working now

BreizhHardware referenced this issue 2026-05-07 01:01:54 +02:00

[PR #731] [MERGED] Add woodpecker-ntfy plugin to integrations.md #1395

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

dependabot/npm_and_yarn/web/fast-uri-3.1.2

email-verification

attachment-no-http2

attachment-fixes

attachment-s3

config-generator

postgres-replica

dockers-v2

postgres-support

postgres-webpush+user+message

postgres-webpush+user

postgres-webpush

1364-copy-action

crashfix

user-header

scalar-api-docs

cancel-scheduled

update-available

windows-server

303-update-notifications

postgres

admin-ui

require-login

http-clipboard

message-cache-lock

debian-stripe

predefined-users

busy-timeout

template-dir

ipv6

client-ip-header

apns-fix

feat_optional_require_login

security-updates

pg-message-cache

templating-disallow

templating-3

templating-2

message-size-limit+delay-limit

remove-rate-topics

html-emails

cf-priority

acl-underscores

auth-user-header

markdown

img-attach

web-improvements

utf8-headers

matrix-507-reject

http-response-writer

new-homepage-design

e2e

canary

windows

electron

update-messages

webhook-templating

v2.22.0

v2.21.0

v2.20.1

v2.20.0

v2.19.2

v2.19.1

v2.19.0

v2.18.0

v2.17.0

v2.16.0

v2.15.0

v2.14.0

v2.13.0

v2.12.0

v2.11.0

v2.10.0

v2.9.0

v2.8.0

v2.7.0

v2.6.2

v2.6.1

v2.6.0

v2.5.0

v2.4.0

v2.3.1

v2.3.0

v2.2.0

v2.1.2

v2.1.1

v2.1.0

v2.0.1

v2.0.0

v1.31.0

v1.30.1

v1.29.1

v1.29.0

v1.28.0

v1.27.2

v1.27.1

v1.26.0

v1.25.2

v1.25.1

v1.25.0

v1.24.0

v1.23.0

v1.22.0

v1.21.2

v1.21.1

v1.21.0

v1.20.0

v1.19.0

v1.18.1

v1.18.0

v1.17.1

v1.17.0

v1.16.0

v1.15.0

v1.14.1

v1.14.0

v1.13.0

v1.12.1

v1.12.0

v1.11.1

v1.11.2

v1.11.0

v1.10.0

v1.9.0

v1.8.0

v1.7.0

v1.6.1

v1.6.0

v1.5.3

v1.5.2

v1.5.1

v1.5.0

v1.4.8

v1.4.7

v1.4.6

v1.4.5

v1.4.4

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.3.2

v1.3.3

v1.3.1

v1.3.0

v1.2.5

v1.2.4

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.0

v0.0.5

v0.0.4

v0.0.3

v0.0.2

v0.0.1

Labels

Clear labels   

ai-generated

  

android-app

  

android-app

  

android-app

  

🪲 bug

  

build

  

build

  

dependencies

  

docs

  

enhancement

  

enhancement

  

🔥 HOT

  

in-progress 🏃

  

ios

  

prio:low

  

prio:low

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

🔒 security

  

server

  

server

  

unified-push

  

web-app

  

website

No labels

ai-generated

android-app

android-app

android-app

🪲 bug

build

build

dependencies

docs

enhancement

enhancement

🔥 HOT

in-progress 🏃

ios

prio:low

prio:low

pull-request

question

🔒 security

server

server

unified-push

web-app

website

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/ntfy#731

No description provided.