services:vaultwarden
Table of Contents
Vaultwarden
Self-hosted Bitwarden-kompatibler Password Manager.
Details
| Key | Value |
|---|---|
| Container | CT 112 |
| IP | 10.100.161.112 |
| Port | 8080 |
| RAM | 512 MB |
| URL | https://vault.home.miskam.xyz |
Deployment
Vaultwarden Binary wird aus dem Docker-Image extrahiert (keine prebuilt Binaries verfügbar).
Tool: docker-image-extract
# Binary extrahieren ./docker-image-extract vaultwarden/server:latest cp output/vaultwarden /opt/vaultwarden/ cp -r output/web-vault/* /opt/vaultwarden/web-vault/
Features
- Bitwarden-kompatible API
- Browser Extensions
- Mobile Apps
- Organizations & Collections
- Admin Panel
Struktur
/opt/vaultwarden/ ├── vaultwarden # Binary ├── .env # Environment config ├── data/ # SQLite DB + Attachments └── web-vault/ # Web UI
Datenbank
Zwei Optionen:
- SQLite (default): /opt/vaultwarden/data/db.sqlite3
- PostgreSQL: 10.100.161.110
Service
systemctl status vaultwarden journalctl -u vaultwarden -f
Admin Panel
- Token: In Vaultwarden selbst gespeichert
Backup
# Alles sichern rsync -av /opt/vaultwarden/data/ backup/
Ansible
ansible-playbook site.yml --limit vaultwarden
Secrets Management
Alle Infrastruktur-Credentials sind hier gespeichert:
- Organisation: mxmlabs
- Collection: Network Automation
Das Ansible Bitwarden Lookup Plugin holt Secrets zur Laufzeit.
Links
services/vaultwarden.txt · Last modified: by 127.0.0.1