Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Docs about self-signed certificated #208

Open
ai opened this issue May 9, 2024 · 9 comments
Open

Docs about self-signed certificated #208

ai opened this issue May 9, 2024 · 9 comments
Labels
bug Something isn't working needs testing

Comments

@ai
Copy link

ai commented May 9, 2024

I have Valutwarden server on passwords.local with self-signed certificate.

I add this certificate to my Fedora 40 system by:

sudo cp sitniks.crt /etc/pki/ca-trust/source/anchors/sitniks.pem
sudo update-ca-trust

curl works:

$ curl https://passwords.local
<!doctype html><html class="theme_light"><head><meta charset="utf-8"/><meta name="viewport" content="width=1010"/><meta name="theme-color" content="#175DDC"/><title page-title>Vaultwarden Web</title>

But when I try to login in GoldWarden I got Traffic looks unusual after I enter password:

Captura desde 2024-05-09 18-51-04

I assume that GoldWarden doesn’t see my certificate:

  1. What is the right way to add it?
  2. Maybe we should add note to README.md or wiki
@quexten
Copy link
Owner

quexten commented May 10, 2024

Unusual traffic error is very weird and should only happen on the official instance, not on local vaultwarden instances. Need to figure out what's going on.

@quexten quexten added bug Something isn't working needs triage labels May 10, 2024
@ai
Copy link
Author

ai commented May 10, 2024

Can I collect some debug information? I run Gold Warden in terminal, but output was small without useful any detail.

@vinaysb
Copy link

vinaysb commented May 10, 2024

This is happening to me too

@ai
Copy link
Author

ai commented May 10, 2024

How I can collect more debug data? Maybe there is some verbose mode?

@ai
Copy link
Author

ai commented May 10, 2024

I also tried to set client ID and client secret (from API key), but got the same Unusual Traffic error

@quexten
Copy link
Owner

quexten commented May 11, 2024

Your self hosted server was never being used, due to a bug in the GUI code, that part should be fixed here: #213
Not sure yet about whether self-signed certs are accepted or not, you can either try the latest flatpak from the CI pipeline or wait for next release.

@quexten
Copy link
Owner

quexten commented May 11, 2024

0.3.2 is out now, should be on FlatHub within a few hours. Please try again there.

@ai
Copy link
Author

ai commented May 11, 2024

Thanks! But now I get Failed to set serverThe server you entered is invalid.

I use https://passwords.local.

This URL works in Firefox and with curl.

@K1kc4
Copy link

K1kc4 commented May 28, 2024

Having similar problem ,when i try to login with cli i am getting tls: failed to verify certificate: x509: certificate signed by unknown authority . I have CA in my /etc/ssl/certs and it works without problems with browser/curl/bitwarden app.

OS is Fedora 40. Have tried both (flatpak and rpm).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working needs testing
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@ai @quexten @vinaysb @K1kc4