Benutzer-Werkzeuge

Webseiten-Werkzeuge


bitwarden

Unterschiede

Hier werden die Unterschiede zwischen zwei Versionen angezeigt.

Link zu dieser Vergleichsansicht

Beide Seiten der vorigen RevisionVorhergehende Überarbeitung
Nächste Überarbeitung
Vorhergehende Überarbeitung
bitwarden [2024-04-03 21:10:53] – [Konfiguration von vaultwarden] manfredbitwarden [2024-05-27 17:53:04] (aktuell) – [Konfiguration von vaultwarden] manfred
Zeile 69: Zeile 69:
 === Konfiguration von vaultwarden === === Konfiguration von vaultwarden ===
  
-dedizierten Benutzer anlegen: +  > touch /var/log/vaultwarden.log 
-  # pw groupadd -n vaultwarden +  > chown www:www /var/log/vaultwarden.log
-  # pw useradd -n vaultwarden -g vaultwarden -s /usr/local/bin/bash+
  
-  # touch /var/log/vaultwarden.log +<file bash /usr/local/etc/rc.conf.d/vaultwarden> 
-  # chown vaultwarden:vaultwarden /var/log/vaultwarden.log +#------------------------------------------------------------------------------# 
-   +vaultwarden_enable="YES"
-  # mkdir /home/vaultwarden/bin/ +
-  # vim /home/vaultwarden/bin/vaultwarden.sh +
-  # chmod 0700 /home/vaultwarden/bin/vaultwarden.sh +
-  chown -R vaultwarden:vaultwarden /home/vaultwarden/bin/ +
-   +
-  vim /usr/local/bin/vaultwarden.sh+
  
-<file bash /home/vaultwarden/bin/vaultwarden.sh> +#Warning : Some of these settings may be overridden when changing settings on the admin page or in the config.json file 
-#!/usr/bin/env bash+#located by default at: /usr/local/www/vaulwarden/data/config.json
  
-cd /home/vaultwarden || exit 1 +LOG_FILE='/var/log/vaultwarden.log' 
-mkdir -p data web-vault/+export LOG_FILE
  
-#------------------------------------------------------------------------------# +ROCKET_ADDRESS=::1
-# Dieser Server wird per Umgebungsvariablen gesteuert: +
-# https://github.com/dani-garcia/vaultwarden/blob/main/.env.template +
-#------------------------------------------------------------------------------# +
-ROCKET_ADDRESS=0.0.0.0+
 export ROCKET_ADDRESS export ROCKET_ADDRESS
-ROCKET_PORT=8000+ 
 +ROCKET_PORT=4567 # your port here
 export ROCKET_PORT export ROCKET_PORT
  
-https://github.com/dani-garcia/vaultwarden/wiki/Building-binary#install-the-web-vault +ROCKET_TLS='{certs = "/ssl/fullchain.pem", key = "/ssl/key.pem"}' 
-WEB_VAULT_ENABLED=false +# LOG_FILE='/data/bitwarden.log'
-export WEB_VAULT_ENABLED+
  
-LOG_FILE=/var/log/vaultwarden.log +SIGNUPS_ALLOWED=false 
-export LOG_FILE +export SIGNUPS_ALLOWED
-#------------------------------------------------------------------------------#+
  
-screen -d -m -S vaultwarden /usr/local/bin/vaultwarden +SIGNUPS_VERIFY=true 
-</file>+export SIGNUPS_VERIFY
  
-<file bash /usr/local/bin/vaultwarden.sh> +INVITATIONS_ALLOWED=false 
-#!/usr/bin/env bash+export INVITATIONS_ALLOWED
  
-su - vaultwarden -c /home/vaultwarden/bin/vaultwarden.sh+DOMAIN='https://vaultwarden.domain.de' 
 +export DOMAIN 
 + 
 +# ADMIN_TOKEN= # generate one with ~$ openssl rand -base64 48 
 +# export ADMIN_TOKEN 
 + 
 +SMTP_HOST='mailout.domain.de' 
 +export SMTP_HOST 
 + 
 +SMTP_FROM='vaultwarden@domain.de' 
 +export SMTP_FROM 
 + 
 +SMTP_PORT=465 
 +export SMTP_PORT 
 + 
 +SMTP_SECURITY=force_tls 
 +export SMTP_SECURITY 
 + 
 +SMTP_USERNAME='mailbenutzer' 
 +export SMTP_USERNAME 
 + 
 +SMTP_PASSWORD='Motivate7-Sulphate7-Operate6-Contact3-Habitat9' 
 +export SMTP_PASSWORD 
 + 
 +# Beta feature 
 +# ORG_GROUPS_ENABLED=false 
 +# export ORG_GROUPS_ENABLED
 </file> </file>
  
-... und jetzt starten wir ihn: +<file c /home/etc/nginx/conf.d/vaultwarden.domain.de.conf> 
-  # /usr/local/bin/vaultwarden.sh +https://github.com/dani-garcia/vaultwarden/wiki 
-  cat /var/log/vaultwarden.log  + 
-  [2024-04-03 22:26:38.536][start][INFO] Rocket has launched from http://0.0.0.0:8000+### vaultwarden 
 +upstream vaultwarden { 
 + zone vaultwarden 64k; 
 + server [::1]:4567; 
 + keepalive 2; 
 +
 + 
 +# Needed to support websocket connections 
 +# See: https://nginx.org/en/docs/http/websocket.html 
 +# Instead of "close" as stated in the above link we send an empty value. 
 +# Else all keepalive connections will not work. 
 +map $http_upgrade $connection_upgrade { 
 +    default upgrade; 
 +    ''      ""; 
 +
 + 
 +server { 
 +    listen [::]:443 ssl http2; 
 +    server_name vaultwarden.domain.de; 
 + 
 + include /home/etc/nginx/snippets/header.conf; 
 + 
 + client_max_body_size 525M; 
 + 
 +    location / { 
 + include /home/etc/nginx/snippets/proxy.conf; 
 +        proxy_pass http://vaultwarden; 
 +    } 
 +
 +</file>
  
  
/home/http/wiki/data/attic/bitwarden.1712178653.txt · Zuletzt geändert: von manfred