Cloudron Forum

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Vaultwarden

94 Topics 800 Posts

G

Vaultwarden - Package Updates
Watching Ignoring Scheduled Pinned Locked Moved
79

0 Votes

79 Posts

43k Views

P

[1.25.0] Update vaultwarden to 1.36.0 Full Changelog SSO Login CSRF GHSA-pfp2-jhgq-6hg5 GHSA-w6h6-8r66-hcv7 User/Organization Enumeration GHSA-hxqh-ff5p-wfr3 SSO existing-user binding GHSA-j4j8-gpvj-7fqr GHSA-6x5c-84vm-5j56 SSRF via Icon Endpoint GHSA-72vh-x5jq-m82g Archiving of items is available https://bitwarden.com/blog/keep-your-vault-tidy-with-item-archiving/ https://bitwarden.com/nl-nl/help/managing-items/#archive Web Vault updated to v2026.4.1 SSO fallback to UserInfo preferred_username by @Timshel in #7128 Add support for archiving items by @matt-aaron in #6916 Fix favicon fetching to check all icon links instead of just the first one by @Shocker in #6880 fix: return Err instead of panic on unknown cipher atype in to_json() by @mango766 in #7068
D

Vaultwarden error after image upgrade: "Referencing column 'user_uuid' and referenced column 'uuid' in foreign key constraint 'archives_ibfk_1' are incompatible."
Watching Ignoring Scheduled Pinned Locked Moved
10

3 Votes

10 Posts

91 Views

J

I also had a not responding app and have reverted. Guess I need to look at that guide...
L

Bitwarden Statement on Checkmarx Supply Chain Incident
Watching Ignoring Scheduled Pinned Locked Moved bitwarden vaultwarden security
3

7 Votes

3 Posts

232 Views

T

Thanks for the heads up - no impact on vaultwarden apparently: https://github.com/dani-garcia/vaultwarden/discussions/7126
A

Vaultwarden fails to start after update – DB migration error (SSO)
Watching Ignoring Scheduled Pinned Locked Moved Solved
55

2 Votes

55 Posts

6k Views

N

thank you James !
N

This topic is deleted!
Watching Ignoring Scheduled Pinned Locked Moved
0

1 Votes

0 Posts

1 Views

No one has replied
M

Cloudron documentation outdated? Bitwarden now supports SSO
Watching Ignoring Scheduled Pinned Locked Moved
22

1

0 Votes

22 Posts

4k Views

J

@inibudi the latest vaultwarden package already supports Cloudron OpenID. Thanks for getting back though.
D

[NOTICE] You are using a plain text `ADMIN_TOKEN` which is insecure.
Watching Ignoring Scheduled Pinned Locked Moved
2

1 Votes

2 Posts

258 Views

J

Hello @dimtar We have a documentation for exactly that. See https://docs.cloudron.io/packages/vaultwarden#admin
K

Registration possible, even if it has been disabled
Watching Ignoring Scheduled Pinned Locked Moved
5

0 Votes

5 Posts

462 Views

K

Yes, it is set to false. Maybe I was tricked because I had one Domain whitelisted. I don't remember if the "Register"-Link was always there. Would love to hide it. It seems, that the disabled registration does work. Sorry for alerting...
A

This topic is deleted!
Watching Ignoring Scheduled Pinned Locked Moved
0

0 Votes

0 Posts

2 Views

No one has replied
C

"An unexpected error has occurred" due to missing /api/tasks endpoint
Watching Ignoring Scheduled Pinned Locked Moved
2

3 Votes

2 Posts

1k Views

G

This is getting updated - https://git.cloudron.io/packages/vaultwarden-app/-/merge_requests/20
A

Vaultwarden Branding
Watching Ignoring Scheduled Pinned Locked Moved
6

2 Votes

6 Posts

2k Views

A

By the way, Vaultwarden itself is fine with assets living elsewhere. You can use surfer to host for example logo files and then drop the link in the user.vaultwarden.scss.hbs file.
L

SIGNUPS_ALLOWED=false doesn't work for me.
Watching Ignoring Scheduled Pinned Locked Moved
14

1 Votes

14 Posts

3k Views

G

@jdaviescoates the comment in the package says there are some values that can only be set in env . But I cannot find what they are . AFAICT, it is safe to empty it out.
D

Errors in log and net responding clients
Watching Ignoring Scheduled Pinned Locked Moved Solved
18

1 Votes

18 Posts

5k Views

I

@girish Hello i confirm, the update fix the issue thank you
P

Insecure KDF iterations settings
Watching Ignoring Scheduled Pinned Locked Moved
11

1 Votes

11 Posts

4k Views

P

@necrevistonnezr my installation is quite old - that's correct. Thanks for checking in! @girish , thank you for the doc's reference! Guess it might make sense to stress that during the installation, as well as an offer to increase KDF up to 2 mln (as per Bitwarden docs as well).
I

Bitwarden extension UI Refresh
Watching Ignoring Scheduled Pinned Locked Moved
1

3 Votes

1 Posts

630 Views

No one has replied
N

Vaultwarden 1.32.7 released with security fixes
Watching Ignoring Scheduled Pinned Locked Moved
1

2 Votes

1 Posts

292 Views

No one has replied
N

Bitwarden will get NATIVE mobile apps very soon
Watching Ignoring Scheduled Pinned Locked Moved
4

6 Votes

4 Posts

2k Views

L

https://bitwarden.com/download/
N

Vaultwarden 1.32.4 released to fix several CVE Reports
Watching Ignoring Scheduled Pinned Locked Moved Solved
2

2 Votes

2 Posts

737 Views

N

The package is already out by now.
N

Vaultwarden 1.32.0 released with several security fixes
Watching Ignoring Scheduled Pinned Locked Moved Solved
4

4 Votes

4 Posts

2k Views

C

@necrevistonnezr Thank you for providing this information. It is really nice to know that although I am not a German taxpayer they are watching my back as well. Much appreciated. @joseph And as usual, Cloudron team is on the ball patching quickly so any exposure is minimized. Well done!
N

Vaultwarden 1.32.1 has been out a while….
Watching Ignoring Scheduled Pinned Locked Moved Solved
5

2 Votes

5 Posts

1k Views

G

Yup, this time it picked it up properly . https://git.cloudron.io/cloudron/vaultwarden-app/-/merge_requests/4

1 / 5

Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.

Cloudron Forum

Vaultwarden