starred/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.git synced 2026-04-26 01:35:54 +03:00
Code Issues 39 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #1572] Time issue #1006

New issue
Closed
opened 2026-03-03 02:05:29 +03:00 by kerem · 10 comments
kerem commented 2026-03-03 02:05:29 +03:00
Owner
Copy link

Originally created by @xgaia on GitHub (Apr 1, 2021).
Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/1572

Subject of the issue

My bitwarden instance don't show the right time. I need the right time fr double auth. Any help will be great !

image

My server time

Thu 01 Apr 2021 07:30:05 PM CEST

the bitwarden container time

Thu Apr  1 19:30:24 CEST 2021

Deployment environment

Your environment (Generated via diagnostics page)

  • Bitwarden_rs version: v1.20.0
  • Web-vault version: v2.19.0
  • Running within Docker: true
  • Uses a reverse proxy: true
  • IP Header check: true (X-Real-IP)
  • Internet access: true
  • Internet access via a proxy: false
  • DNS Check: true
  • Time Check: true
  • Domain Configuration Check: false
  • HTTPS Check: false
  • Database type: SQLite
  • Database version: 3.33.0
  • Clients used:
  • Reverse proxy and version:
  • Other relevant information:

Config (Generated via diagnostics page)

{
  "_duo_akey": null,
  "_enable_duo": false,
  "_enable_email_2fa": true,
  "_enable_smtp": true,
  "_enable_yubico": true,
  "_ip_header_enabled": true,
  "admin_token": "***",
  "allowed_iframe_ancestors": "",
  "attachments_folder": "data/attachments",
  "authenticator_disable_time_drift": false,
  "data_folder": "data",
  "database_max_conns": 10,
  "database_url": "****/**.*******",
  "db_connection_retries": 15,
  "disable_2fa_remember": false,
  "disable_admin_token": false,
  "disable_icon_download": false,
  "domain": "****://*********",
  "domain_origin": "****://*********",
  "domain_path": "",
  "domain_set": false,
  "duo_host": null,
  "duo_ikey": null,
  "duo_skey": null,
  "email_attempts_limit": 3,
  "email_expiration_time": 600,
  "email_token_size": 6,
  "enable_db_wal": true,
  "extended_logging": true,
  "helo_name": null,
  "hibp_api_key": null,
  "icon_blacklist_non_global_ips": true,
  "icon_blacklist_regex": null,
  "icon_cache_folder": "data/icon_cache",
  "icon_cache_negttl": 259200,
  "icon_cache_ttl": 2592000,
  "icon_download_timeout": 10,
  "invitation_org_name": "Bitwarden_RS",
  "invitations_allowed": true,
  "ip_header": "X-Real-IP",
  "log_file": null,
  "log_level": "Info",
  "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f",
  "org_attachment_limit": null,
  "org_creation_users": "",
  "password_iterations": 100000,
  "reload_templates": false,
  "require_device_email": false,
  "rsa_key_filename": "data/rsa_key",
  "sends_folder": "data/sends",
  "show_password_hint": true,
  "signups_allowed": true,
  "signups_domains_whitelist": "",
  "signups_verify": false,
  "signups_verify_resend_limit": 6,
  "signups_verify_resend_time": 3600,
  "smtp_accept_invalid_certs": false,
  "smtp_accept_invalid_hostnames": false,
  "smtp_auth_mechanism": "Login,Plain,Xoauth2",
  "smtp_debug": true,
  "smtp_explicit_tls": false,
  "smtp_from": "*******@*******.**",
  "smtp_from_name": "Libreon",
  "smtp_host": "****.******.***",
  "smtp_password": "***",
  "smtp_port": 587,
  "smtp_ssl": true,
  "smtp_timeout": 60,
  "smtp_username": "*******@*******.**",
  "templates_folder": "data/templates",
  "use_syslog": false,
  "user_attachment_limit": null,
  "web_vault_enabled": true,
  "web_vault_folder": "web-vault/",
  "websocket_address": "0.0.0.0",
  "websocket_enabled": false,
  "websocket_port": 3012,
  "yubico_client_id": null,
  "yubico_secret_key": null,
  "yubico_server": null
}
  • Other relevant details: my docker-compose file:
version: '3.4'
services:
  bitwardenrs:
    image: bitwardenrs/server:1.20.0
    volumes:
      - /data/bitwarden/data:/data
      - /etc/localtime:/etc/localtime:ro
      - /etc/timezone:/etc/timezone:ro
    environment:
      ADMIN_TOKEN: ${BITWARDEN_ADMIN_TOKEN}
      DISABLE_ADMIN_TOKEN: "false"
      INVITATIONS_ALLOWED: "true"
      SMTP_HOST: smtp.xxx.com
      SMTP_FROM: noreply@xxx.fr
      SMTP_FROM_NAME: xxx
      SMTP_PORT: 587
      SMTP_SSL: "true"
      SMTP_EXPLICIT_TLS: "false"
      SMTP_USERNAME: noreply@xxx.fr
      SMTP_PASSWORD: ${SMTP_PASSOWD}
      SMTP_TIMEOUT: 60
      SMTP_DEBUG: "true"
      SMTP_AUTH_MECHANISM: "Login,Plain,Xoauth2"
      TZ: Europe/Paris
    labels:
      - traefik.enable=true
      - traefik.http.routers.bitwarden.rule=Host(`vault.xxx.fr`)
      - traefik.http.routers.bitwarden.entryPoints=websecure  
    networks:
      - web

networks:
  web:
    external: true

Steps to reproduce

Run the stack with the docker-compose on a machine with CET time.

Expected behaviour

Admin interface show CET time

Actual behaviour

Admin interface show UTC time

Troubleshooting data

--

Originally created by @xgaia on GitHub (Apr 1, 2021). Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/1572 ### Subject of the issue My bitwarden instance don't show the right time. I need the right time fr double auth. Any help will be great ! ![image](https://user-images.githubusercontent.com/18330770/113332021-2d145880-9310-11eb-830a-62af73f07eb9.png) My server time ``` Thu 01 Apr 2021 07:30:05 PM CEST ``` the bitwarden container time ``` Thu Apr 1 19:30:24 CEST 2021 ``` ### Deployment environment ### Your environment (Generated via diagnostics page) * Bitwarden_rs version: v1.20.0 * Web-vault version: v2.19.0 * Running within Docker: true * Uses a reverse proxy: true * IP Header check: true (X-Real-IP) * Internet access: true * Internet access via a proxy: false * DNS Check: true * Time Check: true * Domain Configuration Check: false * HTTPS Check: false * Database type: SQLite * Database version: 3.33.0 * Clients used: * Reverse proxy and version: * Other relevant information: ### Config (Generated via diagnostics page) ```json { "_duo_akey": null, "_enable_duo": false, "_enable_email_2fa": true, "_enable_smtp": true, "_enable_yubico": true, "_ip_header_enabled": true, "admin_token": "***", "allowed_iframe_ancestors": "", "attachments_folder": "data/attachments", "authenticator_disable_time_drift": false, "data_folder": "data", "database_max_conns": 10, "database_url": "****/**.*******", "db_connection_retries": 15, "disable_2fa_remember": false, "disable_admin_token": false, "disable_icon_download": false, "domain": "****://*********", "domain_origin": "****://*********", "domain_path": "", "domain_set": false, "duo_host": null, "duo_ikey": null, "duo_skey": null, "email_attempts_limit": 3, "email_expiration_time": 600, "email_token_size": 6, "enable_db_wal": true, "extended_logging": true, "helo_name": null, "hibp_api_key": null, "icon_blacklist_non_global_ips": true, "icon_blacklist_regex": null, "icon_cache_folder": "data/icon_cache", "icon_cache_negttl": 259200, "icon_cache_ttl": 2592000, "icon_download_timeout": 10, "invitation_org_name": "Bitwarden_RS", "invitations_allowed": true, "ip_header": "X-Real-IP", "log_file": null, "log_level": "Info", "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f", "org_attachment_limit": null, "org_creation_users": "", "password_iterations": 100000, "reload_templates": false, "require_device_email": false, "rsa_key_filename": "data/rsa_key", "sends_folder": "data/sends", "show_password_hint": true, "signups_allowed": true, "signups_domains_whitelist": "", "signups_verify": false, "signups_verify_resend_limit": 6, "signups_verify_resend_time": 3600, "smtp_accept_invalid_certs": false, "smtp_accept_invalid_hostnames": false, "smtp_auth_mechanism": "Login,Plain,Xoauth2", "smtp_debug": true, "smtp_explicit_tls": false, "smtp_from": "*******@*******.**", "smtp_from_name": "Libreon", "smtp_host": "****.******.***", "smtp_password": "***", "smtp_port": 587, "smtp_ssl": true, "smtp_timeout": 60, "smtp_username": "*******@*******.**", "templates_folder": "data/templates", "use_syslog": false, "user_attachment_limit": null, "web_vault_enabled": true, "web_vault_folder": "web-vault/", "websocket_address": "0.0.0.0", "websocket_enabled": false, "websocket_port": 3012, "yubico_client_id": null, "yubico_secret_key": null, "yubico_server": null } ``` * Other relevant details: my `docker-compose` file: ``` version: '3.4' services: bitwardenrs: image: bitwardenrs/server:1.20.0 volumes: - /data/bitwarden/data:/data - /etc/localtime:/etc/localtime:ro - /etc/timezone:/etc/timezone:ro environment: ADMIN_TOKEN: ${BITWARDEN_ADMIN_TOKEN} DISABLE_ADMIN_TOKEN: "false" INVITATIONS_ALLOWED: "true" SMTP_HOST: smtp.xxx.com SMTP_FROM: noreply@xxx.fr SMTP_FROM_NAME: xxx SMTP_PORT: 587 SMTP_SSL: "true" SMTP_EXPLICIT_TLS: "false" SMTP_USERNAME: noreply@xxx.fr SMTP_PASSWORD: ${SMTP_PASSOWD} SMTP_TIMEOUT: 60 SMTP_DEBUG: "true" SMTP_AUTH_MECHANISM: "Login,Plain,Xoauth2" TZ: Europe/Paris labels: - traefik.enable=true - traefik.http.routers.bitwarden.rule=Host(`vault.xxx.fr`) - traefik.http.routers.bitwarden.entryPoints=websecure networks: - web networks: web: external: true ``` ### Steps to reproduce Run the stack with the `docker-compose` on a machine with CET time. ### Expected behaviour Admin interface show CET time ### Actual behaviour Admin interface show UTC time ### Troubleshooting data --
kerem closed this issue 2026-03-03 02:05:29 +03:00
kerem commented 2026-03-03 02:05:30 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Apr 1, 2021):

The date and time you posted your self are exactly the same.

<!-- gh-comment-id:812066227 --> @BlackDex commented on GitHub (Apr 1, 2021): The date and time you posted your self are exactly the same.
kerem commented 2026-03-03 02:05:30 +03:00
Author
Owner
Copy link

@xgaia commented on GitHub (Apr 1, 2021):

The date of the host server and the container are the same (CET), but not the date displayed by the interface (UTC)

<!-- gh-comment-id:812066966 --> @xgaia commented on GitHub (Apr 1, 2021): The date of the host server and the container are the same (CET), but not the date displayed by the interface (UTC)
kerem commented 2026-03-03 02:05:30 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Apr 1, 2021):

Could you please provide logs during the attempt to use 2FA?

<!-- gh-comment-id:812067001 --> @BlackDex commented on GitHub (Apr 1, 2021): Could you please provide logs during the attempt to use 2FA?
kerem commented 2026-03-03 02:05:30 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Apr 1, 2021):

That doesn't matter. We convert to UTC only for display

<!-- gh-comment-id:812067422 --> @BlackDex commented on GitHub (Apr 1, 2021): That doesn't matter. We convert to UTC only for display
kerem commented 2026-03-03 02:05:30 +03:00
Author
Owner
Copy link

@xgaia commented on GitHub (Apr 1, 2021):

aaah, it probably not a problem of time. I'll get the logs and get back to you. Thanks

<!-- gh-comment-id:812068589 --> @xgaia commented on GitHub (Apr 1, 2021): aaah, it probably not a problem of time. I'll get the logs and get back to you. Thanks
kerem commented 2026-03-03 02:05:30 +03:00
Author
Owner
Copy link

@xgaia commented on GitHub (Apr 1, 2021):

here is the log

[2021-04-01 20:02:28.839][bitwarden_rs::api::core::two_factor::authenticator][ERROR] Invalid TOTP code! Server time: 2021-04-01 18:02:28 UTC IP: xx.xx.xxx.xxx
[2021-04-01 20:02:28.839][response][INFO] PUT /api/two-factor/authenticator (activate_authenticator_put) => 400 Bad Request
<!-- gh-comment-id:812077094 --> @xgaia commented on GitHub (Apr 1, 2021): here is the log ``` [2021-04-01 20:02:28.839][bitwarden_rs::api::core::two_factor::authenticator][ERROR] Invalid TOTP code! Server time: 2021-04-01 18:02:28 UTC IP: xx.xx.xxx.xxx [2021-04-01 20:02:28.839][response][INFO] PUT /api/two-factor/authenticator (activate_authenticator_put) => 400 Bad Request ```
kerem commented 2026-03-03 02:05:30 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Apr 1, 2021):

Just to verify, is the time in your totp device correct?

<!-- gh-comment-id:812087356 --> @BlackDex commented on GitHub (Apr 1, 2021): Just to verify, is the time in your totp device correct?
kerem commented 2026-03-03 02:05:30 +03:00
Author
Owner
Copy link

@xgaia commented on GitHub (Apr 1, 2021):

yes

<!-- gh-comment-id:812093829 --> @xgaia commented on GitHub (Apr 1, 2021): yes
kerem commented 2026-03-03 02:05:30 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Apr 1, 2021):

Well, i can't think of anything else besides a wrong totp string.

You can't even enable 2fa without validation, so of you did that long before, then something is changed, but there is nothing changed regarding totp at all in the code.

So, i suggest to create a backup just in case, remove your 2fa via the admin interface and re-create the 2fa.

<!-- gh-comment-id:812117998 --> @BlackDex commented on GitHub (Apr 1, 2021): Well, i can't think of anything else besides a wrong totp string. You can't even enable 2fa without validation, so of you did that long before, then something is changed, but there is nothing changed regarding totp at all in the code. So, i suggest to create a backup just in case, remove your 2fa via the admin interface and re-create the 2fa.
kerem commented 2026-03-03 02:05:31 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Apr 3, 2021):

I have tested this with multiple situations, having the server timezone in US (while i'm in EU), even changed my host timezone (Still in sync with UTC offset). As long as the UTC time is correct, i can login using TOTP.

So i really think you either use a wrong TOTP, or something happened with the database and corrupted that string somehow.

<!-- gh-comment-id:812863093 --> @BlackDex commented on GitHub (Apr 3, 2021): I have tested this with multiple situations, having the server timezone in US (while i'm in EU), even changed my host timezone (Still in sync with UTC offset). As long as the UTC time is correct, i can login using TOTP. So i really think you either use a wrong TOTP, or something happened with the database and corrupted that string somehow.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
revert-7033-patch-1
cached-config-operations
test_dylint
1.35.8
1.35.7
1.35.6
1.35.5
1.35.4
1.35.3
1.35.2
1.35.1
1.35.0
1.34.3
1.34.2
1.34.1
1.34.0
1.33.2
1.33.1
1.33.0
1.32.7
1.32.6
1.32.5
1.32.4
1.32.3
1.32.2
1.32.1
1.32.0
1.31.0
1.30.5
1.30.4
1.30.3
1.30.2
1.30.1
1.30.0
1.29.2
1.29.1
1.29.0
1.28.1
1.28.0
1.27.0
1.26.0
1.25.2
1.25.1
1.25.0
1.24.0
1.23.1
1.23.0
1.22.2
1.22.1
1.22.0
1.21.0
1.20.0
1.19.0
1.18.0
1.17.0
1.16.3
1.16.2
1.16.1
1.16.0
1.15.1
1.15.0
1.14.2
1.14.1
1.14
1.13.1
1.13.0
1.12.0
1.11.0
1.10.0
1.9.1
1.9.0
1.8.0
1.7.0
1.6.1
1.6.0
1.5.0
1.4.0
1.3.0
1.2.0
1.1.0
1.0.0
0.13.0
0.12.0
0.11.0
0.10.0
0.9.0
Labels
Clear labels   
SSO

   
Third party

   
better for forum

   
bug

   
bug

   
documentation

   
duplicate

   
enhancement

   
future Vault

   
future Vault

   
future Vault

   
good first issue

   
help wanted

   
low priority

   
notes

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
troubleshooting

   
wontfix
No labels
SSO
Third party
better for forum
bug
bug
documentation
duplicate
enhancement
future Vault
future Vault
future Vault
good first issue
help wanted
low priority
notes
pull-request
question
troubleshooting
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/vaultwarden#1006
No description provided.