Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
Brand Logo

Cloudron Forum
  1. Cloudron Forum
  2. Vaultwarden

Vaultwarden

92 Topics 785 Posts
  • girishG

    Vaultwarden - Package Updates

    Pinned
    77
    0 Votes
    77 Posts
    36k Views
    Package UpdatesP
    [1.24.3] Update vaultwarden to 1.35.4 Full Changelog GHSA-w9f8-m526-h7fh. This vulnerability would allow an attacker to access a cipher from a different user (fully encrypted) if they already know its internal UUID. GHSA-h4hq-rgvh-wh27. This vulnerability allows an attacker with manager-level access within an organization to modify collections they can access, even if they do not have management permissions for them. GHSA-r32r-j5jq-3w4m. This vulnerability allows an attacker with manager-level access within an organization to modify collections they are not assigned. Update Rust and Crates and GHA by @​BlackDex in #​6843 hide remember 2fa token by @​stefan0xC in #​6852 fix(send_invite): invite links by @​proofofcopilot in #​6824 Misc organization fixes by @​BlackDex in #​6867
  • archosA

    Vaultwarden fails to start after update – DB migration error (SSO)

    Solved
    55
    2 Votes
    55 Posts
    3k Views
    N
    thank you James !
  • N

    This topic is deleted!

    0
    1 Votes
    0 Posts
    1 Views
    No one has replied
  • M

    Cloudron documentation outdated? Bitwarden now supports SSO

    22
    1
    0 Votes
    22 Posts
    3k Views
    J
    @inibudi the latest vaultwarden package already supports Cloudron OpenID. Thanks for getting back though.
  • D

    [NOTICE] You are using a plain text `ADMIN_TOKEN` which is insecure.

    2
    1 Votes
    2 Posts
    92 Views
    jamesJ
    Hello @dimtar We have a documentation for exactly that. See https://docs.cloudron.io/packages/vaultwarden#admin
  • KubernetesK

    Registration possible, even if it has been disabled

    5
    0 Votes
    5 Posts
    170 Views
    KubernetesK
    Yes, it is set to false. Maybe I was tricked because I had one Domain whitelisted. I don't remember if the "Register"-Link was always there. Would love to hide it. It seems, that the disabled registration does work. Sorry for alerting...
  • apesorgukA

    This topic is deleted!

    0
    0 Votes
    0 Posts
    2 Views
    No one has replied
  • canadaduaneC

    "An unexpected error has occurred" due to missing /api/tasks endpoint

    2
    3 Votes
    2 Posts
    938 Views
    girishG
    This is getting updated - https://git.cloudron.io/packages/vaultwarden-app/-/merge_requests/20
  • andreasduerenA

    Vaultwarden Branding

    6
    2 Votes
    6 Posts
    2k Views
    andreasduerenA
    By the way, Vaultwarden itself is fine with assets living elsewhere. You can use surfer to host for example logo files and then drop the link in the user.vaultwarden.scss.hbs file.
  • luckowL

    SIGNUPS_ALLOWED=false doesn't work for me.

    14
    1 Votes
    14 Posts
    2k Views
    girishG
    @jdaviescoates the comment in the package says there are some values that can only be set in env . But I cannot find what they are . AFAICT, it is safe to empty it out.
  • D

    Errors in log and net responding clients

    Solved
    18
    1 Votes
    18 Posts
    4k Views
    I
    @girish Hello i confirm, the update fix the issue thank you
  • potemkin_aiP

    Insecure KDF iterations settings

    11
    1 Votes
    11 Posts
    3k Views
    potemkin_aiP
    @necrevistonnezr my installation is quite old - that's correct. Thanks for checking in! @girish , thank you for the doc's reference! Guess it might make sense to stress that during the installation, as well as an offer to increase KDF up to 2 mln (as per Bitwarden docs as well).
  • infogulchI

    Bitwarden extension UI Refresh

    1
    3 Votes
    1 Posts
    576 Views
    No one has replied
  • necrevistonnezrN

    Vaultwarden 1.32.7 released with security fixes

    1
    1 Votes
    1 Posts
    251 Views
    No one has replied
  • necrevistonnezrN

    Bitwarden will get NATIVE mobile apps very soon

    4
    6 Votes
    4 Posts
    2k Views
    L
    https://bitwarden.com/download/
  • necrevistonnezrN

    Vaultwarden 1.32.4 released to fix several CVE Reports

    Solved
    2
    2 Votes
    2 Posts
    636 Views
    nebulonN
    The package is already out by now.
  • necrevistonnezrN

    Vaultwarden 1.32.0 released with several security fixes

    Solved
    4
    4 Votes
    4 Posts
    2k Views
    C
    @necrevistonnezr Thank you for providing this information. It is really nice to know that although I am not a German taxpayer they are watching my back as well. Much appreciated. @joseph And as usual, Cloudron team is on the ball patching quickly so any exposure is minimized. Well done!
  • necrevistonnezrN

    Vaultwarden 1.32.1 has been out a while….

    Solved
    5
    2 Votes
    5 Posts
    1k Views
    girishG
    Yup, this time it picked it up properly . https://git.cloudron.io/cloudron/vaultwarden-app/-/merge_requests/4
  • necrevistonnezrN

    Bitwarden native apps for iOS / Android released - but (currently) not compatible with Vaultwarden

    23
    6 Votes
    23 Posts
    9k Views
    nichu42N
    @necrevistonnezr I've been using it for a while now and did not encounter any problems.
  • jaschaezraJ

    Mobile Push to sync through all devices

    1
    1 Votes
    1 Posts
    356 Views
    No one has replied