Wimp Lo

I switched from swag to Nginx proxy manager, and it immediately started working. I noticed that ngnix looks like it uses dedicated certs for each subdomain, while swag uses a single cert for all subdomains listed. I went back to swag and tried setting bitwarden as the only subdomain and it worked. Not sure what it takes to make swag work with multi subs but nginx seems to be doing to job, so I'll stay there for now.

does bitwarden require HSTS?

Yeah, I've tried that a few times with no changes. Also I've tried older versions, and tried installing on a few of my old devices that had never had the app before. I think I have android 10, 11, and 12 attempted.

Edit: nuking SWAG and starting fresh with Ngnix PM seems to have solved it for the time being. Not sure what the problem was, but it didn't appear to be related to my vaultwarden setup. ------------------------------------------------------------------ I'm getting my butt kicked by certificates. The problem I'm trying to solve is the "chain validation failed" when using the bitwarden android app. Everything else works fine. The iOS app, macos app, and windows app all work. All browsers on windows/linux/android/iphone all work perfectly. What's worse is that I have managed to have the android app working for maybe a day or so after changing to a fresh domain, but then it breaks again once I reissue a cert. I'm running bitwarden through the swag container. Nothing super elaborate. Mostly running stock out of the box, per space invader one tutorials. 've tried a few different domains on google, with no change in results. What I'm most hung up on is I get different behavior checking on SSL Labs vs Digicert. If it matters, I changed the "only subdomains" key in swag to false, so I could test the main domain. SSL Labs mydomain.group = A bitwarden.mydomain.group = A nextcloud.myomain.group = A+ Digicert mydomain.group = all green checks bitwarden.mydomain.group = "unable to connect" nextcloud.mydomain.group = all green checks The few brief times the Android app did work, I think it corresponded with the digicert check passing the bitwarden.mydomain.group test, but I'm not positive. I seem to be at a dead end here though. Any suggestions for next steps?

Check the container name. Sometimes the unraid containers are named differently than what the included swag configs are expecting. eg: "bitwardenrs" vs "bitwarden".