Globally Defined API Keys in .env No Longer Work for Non-Admin Accounts

[gixio]

What happened?

When logging in as any non-admin user and attempting to use plugins that require API keys (such as Firecrawl or Jina), the system cannot find the globally defined API keys from the .env file. This results in errors and failed plugin requests for all users except the admin. Admin accounts continue to function normally, indicating a permissions or scoping issue with how environment variables or plugin authentication is resolved for non-admin users.

Error Logs

{"level":"error","message":"[getUserPluginAuthValue] No plugin auth FIRECRAWL_API_URL found for user 6996eff6a06e9a52612115cd","stack":"Error: No plugin auth FIRECRAWL_API_URL found for user 6996eff6a06e9a52612115cd\n    at getUserPluginAuthValue (/app/api/server/services/PluginService.js:30:13)\n    at process.processTicksAndRejections (node:internal/process/task_queues:95:5)\n    at async findAuthValue (/app/api/server/services/Tools/credentials.js:27:17)\n    at async loadAuthValues (/app/api/server/services/Tools/credentials.js:45:20)"}
{"level":"error","message":"[getUserPluginAuthValue] No plugin auth JINA_API_KEY found for user 6996eff6a06e9a52612115cd","stack":"Error: No plugin auth JINA_API_KEY found for user 6996eff6a06e9a52612115cd\n    at getUserPluginAuthValue (/app/api/server/services/PluginService.js:30:13)\n    at process.processTicksAndRejections (node:internal/process/task_queues:95:5)\n    at async findAuthValue (/app/api/server/services/Tools/credentials.js:27:17)\n    at async loadAuthValues (/app/api/server/services/Tools/credentials.js:45:20)"}

Error on Browser (Frontend)
Oops! Something Unexpected Occurred

Error Message:

Minified React error #130; visit https://reactjs.org/docs/error-decoder.html?invariant=130&args[]=undefined&args[]= for the full message or use the non-minified dev environment for full errors and additional helpful warnings.

Version Information

ghcr.io/danny-avila/librechat-dev-api latest 8b27fbd4bdd6 30 hours ago 1.13GB
ghcr.io/danny-avila/librechat-rag-api-dev-lite latest 817faebddae9 2 months ago 1.31GB

Steps to Reproduce

Steps to Reproduce

• Login to any non-admin account.
• Start a chat (agent or non-agent).
• Attempt to use a feature that requires an external API key (e.g., Firecrawl, Jina).
• Observe error on backend logs and browser.

Expected Behavior

Globally defined API keys in .env should be accessible to all users (unless explicitly overridden or restricted).

Plugin calls should succeed for all users when valid API keys are present in .env.

No "No plugin auth found" errors should be shown for non-admin users.

The issue started recently; previously, global .env API keys worked for all users.

Admin accounts continue to work as expected, suggesting a recent change in authentication or environment variable resolution logic, possibly in how user/plugin credentials are scoped.

What browsers are you seeing the problem on?

No response

Relevant log output

{"level":"error","message":"[getUserPluginAuthValue] No plugin auth FIRECRAWL_API_URL found for user 6996eff6a06e9a52612115cd","stack":"Error: No plugin auth FIRECRAWL_API_URL found for user 6996eff6a06e9a52612115cd\n    at getUserPluginAuthValue (/app/api/server/services/PluginService.js:30:13)\n    at process.processTicksAndRejections (node:internal/process/task_queues:95:5)\n    at async findAuthValue (/app/api/server/services/Tools/credentials.js:27:17)\n    at async loadAuthValues (/app/api/server/services/Tools/credentials.js:45:20)"}
{"level":"error","message":"[getUserPluginAuthValue] No plugin auth JINA_API_KEY found for user 6996eff6a06e9a52612115cd","stack":"Error: No plugin auth JINA_API_KEY found for user 6996eff6a06e9a52612115cd\n    at getUserPluginAuthValue (/app/api/server/services/PluginService.js:30:13)\n    at process.processTicksAndRejections (node:internal/process/task_queues:95:5)\n    at async findAuthValue (/app/api/server/services/Tools/credentials.js:27:17)\n    at async loadAuthValues (/app/api/server/services/Tools/credentials.js:45:20)"}

Screenshots

No response

Code of Conduct

• I agree to follow this project's Code of Conduct

[danny-avila]

Double-check your environment, since I'm not able to reproduce this as I also use environment variables for Web Search. There's no config or example relevant portion .env provided here, either, to help troubleshoot further.

It's normal to see these error logs, but to avoid confusion, I will consider suppressing them:

{"level":"error","message":"[getUserPluginAuthValue] No plugin auth FIRECRAWL_API_URL found for user 650aed971b921d96b11b2413","stack":"Error: No plugin auth FIRECRAWL_API_URL found for user 650aed971b921d96b11b2413\n    at getUserPluginAuthValue (/app/api/server/services/PluginService.js:30:13)\n    at process.processTicksAndRejections (node:internal/process/task_queues:95:5)\n    at async ...","timestamp":"2025-06-15T16:53:34.634Z"}
{"level":"error","message":"[getUserPluginAuthValue] No plugin auth JINA_API_KEY found for user 650aed971b921d96b11b2413","stack":"Error: No plugin auth JINA_API_KEY found for user 650aed971b921d96b11b2413\n    at getUserPluginAuthValue (/app/api/server/services/PluginService.js:30:13)\n    at process.processTicksAndRejections (node:internal/process/task_queues:95:5)\n    at async findA...","timestamp":"2025-06-15T16:53:34.637Z"}

FIRECRAWL_API_URL and JINA_API_KEY variables are optional, as in my case, I do not need a Firecrawl API URL set nor Jina as I'm using Cohere, as I'm sure is the case for you:

{"level":"debug","message":"Reranking 1 chunks with Cohere","timestamp":"2025-06-15T16:53:39.886Z"}
{"level":"debug","message":"Reranking 137 chunks with Cohere","timestamp":"2025-06-15T16:53:41.723Z"}

The web search completes successfully:

[gixio]

Noted, I will dig deeper, all the admin accounts was able to get conversation going, only non-admins has issues. Let me come back with more details. Thanks!

[gixio]

This was SpeechTab config issue on librechat.yaml, sorry for the false alarm.