[GH-ISSUE #3865] Admin-page says "error: Invalid admin token, please try again." #1697

New issue

Closed

opened 2026-03-03 02:11:19 +03:00 by kerem · 0 comments

kerem commented 2026-03-03 02:11:19 +03:00

Owner

Copy link

Originally created by @oneil1838 on GitHub (Sep 7, 2023).
Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/3865

Subject of the issue

after install a fresh instance of vaultwarden via stack (docker compose) in Portainer, I'll tired to login in to the admin-page to set some settings, but the admin token from the compose file didn't work. I only get the error "error: Invalid admin token, please try again."
Problem persits also when I use an encryptet password and also with plain text password.

Deployment environment

OS: Ubuntu 22.04.3 LTS
Docker: 24.0.6, build ed223bc
Docker compose: v2.21.0
Portainer: CE 2.19.0
Nginx Proxy Manager: jc21/nginx-proxy-manager:latest (v2.10.4)
Clients used: firefox 117

###Vaultwarden Docker File
version: '3.3'
services:
server:
container_name: vaultwarden
environment:
- ADMIN_TOKEN='some_secure_stuff'
volumes:
- '/vw-data/:/data/'
ports:
- '82:80'
image: 'vaultwarden/server:latest'
restart: unless-stopped

Steps to reproduce

) open portainer.io website -> login -> choose enviroment -> click on "Stacks" -> click on "add Stack" -> name "Vaultwarden" and insert the attached docker compose file -> click "deploy the stack" -> wait till download is compleate and vaultwarden is healthy
) meanwile create a new host in NPM and assigne cert
) open website from intranet or internet and open the admin-page with "/admin" added to the url -> enter the plain text token, click enter and recive error.

Expected behaviour

I expacted a working admin page

Actual behaviour

Troubleshooting data

log from the vaultwarden container:
/--------------------------------------------------------------------
| Starting Vaultwarden |

Version 1.29.2
This is an unofficial Bitwarden implementation, DO NOT use the
official channels to report bugs/features, regardless of client.
Send usage/configuration questions or feature requests to:
https://github.com/dani-garcia/vaultwarden/discussions or
https://vaultwarden.discourse.group/
Report suspected bugs/issues in the software itself at:
https://github.com/dani-garcia/vaultwarden/issues/new
--------------------------------------------------------------------/
[NOTICE] You are using a plain text ADMIN_TOKEN which is insecure.
Please generate a secure Argon2 PHC string by using vaultwarden hash or argon2.
See: https://github.com/dani-garcia/vaultwarden/wiki/Enabling-admin-page#secure-the-admin_token
[2023-09-07 20:59:36.608][vaultwarden][INFO] Private key created correctly.
[2023-09-07 20:59:36.609][vaultwarden][INFO] Public key created correctly.
[2023-09-07 20:59:36.663][start][INFO] Rocket has launched from http://0.0.0.0:80
[2023-09-07 20:59:56.555][request][INFO] GET /admin
[2023-09-07 20:59:56.556][response][INFO] (admin_page_login) GET /admin/ [2] => 200 OK
[2023-09-07 21:00:56.274][request][INFO] POST /admin
[2023-09-07 21:00:56.274][vaultwarden::api::admin][ERROR] Invalid admin token. IP: 10.10.10.77
[2023-09-07 21:00:56.274][response][INFO] (post_admin_login) POST /admin/ => 401 Unauthorized

Originally created by @oneil1838 on GitHub (Sep 7, 2023). Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/3865 ### Subject of the issue after install a fresh instance of vaultwarden via stack (docker compose) in Portainer, I'll tired to login in to the admin-page to set some settings, but the admin token from the compose file didn't work. I only get the error "error: Invalid admin token, please try again." Problem persits also when I use an encryptet password and also with plain text password. ### Deployment environment OS: Ubuntu 22.04.3 LTS Docker: 24.0.6, build ed223bc Docker compose: v2.21.0 Portainer: CE 2.19.0 Nginx Proxy Manager: jc21/nginx-proxy-manager:latest (v2.10.4) Clients used: firefox 117 ###Vaultwarden Docker File version: '3.3' services: server: container_name: vaultwarden environment: - ADMIN_TOKEN='some_secure_stuff' volumes: - '/vw-data/:/data/' ports: - '82:80' image: 'vaultwarden/server:latest' restart: unless-stopped ### Steps to reproduce ) open portainer.io website -> login -> choose enviroment -> click on "Stacks" -> click on "add Stack" -> name "Vaultwarden" and insert the attached docker compose file -> click "deploy the stack" -> wait till download is compleate and vaultwarden is healthy ) meanwile create a new host in NPM and assigne cert ) open website from intranet or internet and open the admin-page with "/admin" added to the url -> enter the plain text token, click enter and recive error. ### Expected behaviour I expacted a working admin page ### Actual behaviour <!-- Tell us what actually happened --> ### Troubleshooting data log from the vaultwarden container: /--------------------------------------------------------------------\ | Starting Vaultwarden | | Version 1.29.2 | |--------------------------------------------------------------------| | This is an *unofficial* Bitwarden implementation, DO NOT use the | | official channels to report bugs/features, regardless of client. | | Send usage/configuration questions or feature requests to: | | https://github.com/dani-garcia/vaultwarden/discussions or | | https://vaultwarden.discourse.group/ | | Report suspected bugs/issues in the software itself at: | | https://github.com/dani-garcia/vaultwarden/issues/new | \--------------------------------------------------------------------/ [NOTICE] You are using a plain text `ADMIN_TOKEN` which is insecure. Please generate a secure Argon2 PHC string by using `vaultwarden hash` or `argon2`. See: https://github.com/dani-garcia/vaultwarden/wiki/Enabling-admin-page#secure-the-admin_token [2023-09-07 20:59:36.608][vaultwarden][INFO] Private key created correctly. [2023-09-07 20:59:36.609][vaultwarden][INFO] Public key created correctly. [2023-09-07 20:59:36.663][start][INFO] Rocket has launched from http://0.0.0.0:80 [2023-09-07 20:59:56.555][request][INFO] GET /admin [2023-09-07 20:59:56.556][response][INFO] (admin_page_login) GET /admin/ [2] => 200 OK [2023-09-07 21:00:56.274][request][INFO] POST /admin [2023-09-07 21:00:56.274][vaultwarden::api::admin][ERROR] Invalid admin token. IP: 10.10.10.77 [2023-09-07 21:00:56.274][response][INFO] (post_admin_login) POST /admin/ => 401 Unauthorized

kerem closed this issue 2026-03-03 02:11:19 +03:00

kerem referenced this issue 2026-03-03 09:09:17 +03:00

[PR #1700] [MERGED] Fix attachment downloads #2997

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

revert-7033-patch-1

cached-config-operations

test_dylint

1.35.8

1.35.7

1.35.6

1.35.5

1.35.4

1.35.3

1.35.2

1.35.1

1.35.0

1.34.3

1.34.2

1.34.1

1.34.0

1.33.2

1.33.1

1.33.0

1.32.7

1.32.6

1.32.5

1.32.4

1.32.3

1.32.2

1.32.1

1.32.0

1.31.0

1.30.5

1.30.4

1.30.3

1.30.2

1.30.1

1.30.0

1.29.2

1.29.1

1.29.0

1.28.1

1.28.0

1.27.0

1.26.0

1.25.2

1.25.1

1.25.0

1.24.0

1.23.1

1.23.0

1.22.2

1.22.1

1.22.0

1.21.0

1.20.0

1.19.0

1.18.0

1.17.0

1.16.3

1.16.2

1.16.1

1.16.0

1.15.1

1.15.0

1.14.2

1.14.1

1.14

1.13.1

1.13.0

1.12.0

1.11.0

1.10.0

1.9.1

1.9.0

1.8.0

1.7.0

1.6.1

1.6.0

1.5.0

1.4.0

1.3.0

1.2.0

1.1.0

1.0.0

0.13.0

0.12.0

0.11.0

0.10.0

0.9.0

Labels

Clear labels   

SSO

  

Third party

  

better for forum

  

bug

  

bug

  

documentation

  

duplicate

  

enhancement

  

future Vault

  

future Vault

  

future Vault

  

good first issue

  

help wanted

  

low priority

  

notes

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

troubleshooting

  

wontfix

No labels

SSO

Third party

better for forum

bug

bug

documentation

duplicate

enhancement

future Vault

future Vault

future Vault

good first issue

help wanted

low priority

notes

pull-request

question

troubleshooting

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/vaultwarden#1697

No description provided.