Bitwardenrs HTTPS Help

russdyer77

By russdyer77
in General Support

Recommended Posts

russdyer77 Rookie

russdyer77

Posted
Posted (edited)

Using the community application "bitwardenrs", I was able to get it up and running & using SpaceInvaderOne's LetsEncrypt tutorial, was able to get working through reverse proxy.  

 

However, I can't figure out how to get HTTPS working - accoring to the author, ROCKET_TLS needs to be enabled but this can only be done by directly editing the docker, is there a was to edit the docker in unraid?  The LetsEncrypt nginx proxy config file looks like this (where the http port was changed to 8011:

  

server {
    listen 443 ssl;
    listen [::]:443 ssl;

    server_name bitwarden.*;

    include /config/nginx/ssl.conf;

    client_max_body_size 128M;

    # enable for ldap auth, fill in ldap details in ldap.conf
    #include /config/nginx/ldap.conf;

    location / {
        # enable the next two lines for http auth
        #auth_basic "Restricted";
        #auth_basic_user_file /config/nginx/.htpasswd;

        # enable the next two lines for ldap auth
        #auth_request /auth;
        #error_page 401 =200 /login;

        include /config/nginx/proxy.conf;
        resolver 127.0.0.11 valid=30s;
        set $upstream_bitwarden bitwardenrs;
        proxy_pass http://$upstream_bitwarden:8011;
    }

    location /notifications/hub {
        include /config/nginx/proxy.conf;
        resolver 127.0.0.11 valid=30s;
        set $upstream_bitwarden bitwardenrs;
        proxy_pass http://$upstream_bitwarden:8011;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection "Upgrade";
    }

    location /notifications/hub/negotiate {
        include /config/nginx/proxy.conf;
        resolver 127.0.0.11 valid=30s;
        set $upstream_bitwarden bitwardenrs;
        proxy_pass http://$upstream_bitwarden:8011;
    }

}

Any help would be appreciated.  

Edited by russdyer77
Link to comment
  • 2 weeks later...
bluebug Noob

bluebug

Posted
Posted
On 1/11/2020 at 4:49 AM, russdyer77 said:

Using the community application "bitwardenrs", I was able to get it up and running & using SpaceInvaderOne's LetsEncrypt tutorial, was able to get working through reverse proxy.  

 

However, I can't figure out how to get HTTPS working - accoring to the author, ROCKET_TLS needs to be enabled but this can only be done by directly editing the docker, is there a was to edit the docker in unraid?  The LetsEncrypt nginx proxy config file looks like this (where the http port was changed to 8011:

  


server {
    listen 443 ssl;
    listen [::]:443 ssl;

    server_name bitwarden.*;

    include /config/nginx/ssl.conf;

    client_max_body_size 128M;

    # enable for ldap auth, fill in ldap details in ldap.conf
    #include /config/nginx/ldap.conf;

    location / {
        # enable the next two lines for http auth
        #auth_basic "Restricted";
        #auth_basic_user_file /config/nginx/.htpasswd;

        # enable the next two lines for ldap auth
        #auth_request /auth;
        #error_page 401 =200 /login;

        include /config/nginx/proxy.conf;
        resolver 127.0.0.11 valid=30s;
        set $upstream_bitwarden bitwardenrs;
        proxy_pass http://$upstream_bitwarden:8011;
    }

    location /notifications/hub {
        include /config/nginx/proxy.conf;
        resolver 127.0.0.11 valid=30s;
        set $upstream_bitwarden bitwardenrs;
        proxy_pass http://$upstream_bitwarden:8011;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection "Upgrade";
    }

    location /notifications/hub/negotiate {
        include /config/nginx/proxy.conf;
        resolver 127.0.0.11 valid=30s;
        set $upstream_bitwarden bitwardenrs;
        proxy_pass http://$upstream_bitwarden:8011;
    }

}

Any help would be appreciated.  

i had the same problem. I only solved it by typing the command to install the docker directly into the unraid terminal.
The only problem now is that you cannot update the docker from the GUI.


 

docker run -d --name='bitwardenrs' --net='bridge' -e TZ="Europe/Berlin" -e HOST_OS="Unraid" -e 'SIGNUPS_ALLOWED'='true' -e 'INVITATIONS_ALLOWED'='true' -e 'SERVER_ADMIN_EMAIL'='YOUREMAIL' -e 'WEBSOCKET_ENABLED'='true' -e 'ATTACHMENTS_FOLDER'='/attachments' -e 'ICON_CACHE_FOLDER'='/icon_cache' -e 'ADMIN_TOKEN'='YOURTOKEN' -p '8080:80/tcp' -v '/mnt/user/Bitwarden/':'/data':'rw' -v '/mnt/user/Bitwarden/ssl/':'/ssl':'rw' -e 'ROCKET_TLS'='{certs="/ssl/keys/bitwarden.crt",key="/ssl/keys/bitwarden.key"}' 'bitwardenrs/server:alpine'

Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing