starred/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.git synced 2026-04-25 17:25:57 +03:00
Code Issues 39 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #5296] iOS app "An error has occurred" not a recognized Bitwarden server #2118

New issue
Closed
opened 2026-03-03 02:15:29 +03:00 by kerem · 12 comments
kerem commented 2026-03-03 02:15:29 +03:00
Owner
Copy link

Originally created by @jacksonhull on GitHub (Dec 14, 2024).
Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/5296

Vaultwarden Support String

Your environment (Generated via diagnostics page)

  • Vaultwarden version: v1.32.6
  • Web-vault version: v2024.6.2c
  • OS/Arch: linux/x86_64
  • Running within a container: true (Base: Debian)
  • Database type: SQLite
  • Database version: 3.46.0
  • Environment settings overridden!: true
  • Uses a reverse proxy: true
  • IP Header check: true (X-Real-IP)
  • Internet access: true
  • Internet access via a proxy: false
  • DNS Check: true
  • Browser/Server Time Check: true
  • Server/NTP Time Check: true
  • Domain Configuration Check: true
  • HTTPS Check: true
  • Websocket Check: true
  • HTTP Response Checks: false

Config & Details (Generated via diagnostics page)

Show Config & Details

Environment settings which are overridden: SIGNUPS_ALLOWED, ADMIN_TOKEN

Failed HTTP Checks:

API calls:
Header: 'referrer-policy' does not contain 'same-origin'
Header: 'content-security-policy' does not contain 'base-uri 'self''
Header: 'content-security-policy' does not contain 'form-action 'self''
Header: 'content-security-policy' does not contain 'object-src 'self' blob:'
Header: 'content-security-policy' does not contain 'script-src 'self' 'wasm-unsafe-eval''
Header: 'content-security-policy' does not contain 'child-src 'self' https://*.duosecurity.com https://*.duofederal.com'
Header: 'content-security-policy' does not contain 'frame-src 'self' https://*.duosecurity.com https://*.duofederal.com'
Header: 'content-security-policy' does not contain 'frame-ancestors 'self' chrome-extension://nngceckbapebfimnlniiiahkandclblb chrome-extension://jbkfoedolllekgbhcbcoahefnbanhhlh moz-extension://*'
Header: 'content-security-policy' does not contain 'img-src 'self' data: https://haveibeenpwned.com'
Header: 'content-security-policy' does not contain 'connect-src 'self' https://api.pwnedpasswords.com https://api.2fa.directory https://app.simplelogin.io/api/ https://app.addy.io/api/ https://api.fastmail.com/ https://api.forwardemail.net'
2FA Connector calls:
Header: 'referrer-policy' does not contain 'same-origin'
Header: 'content-security-policy' is present while it should not

Config:

{
  "_duo_akey": null,
  "_enable_duo": false,
  "_enable_email_2fa": false,
  "_enable_smtp": true,
  "_enable_yubico": true,
  "_icon_service_csp": "",
  "_icon_service_url": "",
  "_ip_header_enabled": true,
  "_max_note_size": 10000,
  "_smtp_img_src": "cid:",
  "admin_ratelimit_max_burst": 3,
  "admin_ratelimit_seconds": 300,
  "admin_session_lifetime": 20,
  "admin_token": "***",
  "allowed_iframe_ancestors": "",
  "attachments_folder": "data/attachments",
  "auth_request_purge_schedule": "30 * * * * *",
  "authenticator_disable_time_drift": false,
  "data_folder": "data",
  "database_conn_init": "",
  "database_max_conns": 10,
  "database_timeout": 30,
  "database_url": "***************",
  "db_connection_retries": 15,
  "disable_2fa_remember": false,
  "disable_admin_token": false,
  "disable_icon_download": false,
  "domain": "*****://**************",
  "domain_origin": "*****://**************",
  "domain_path": "",
  "domain_set": true,
  "duo_context_purge_schedule": "30 * * * * *",
  "duo_host": null,
  "duo_ikey": null,
  "duo_skey": null,
  "duo_use_iframe": false,
  "email_2fa_auto_fallback": false,
  "email_2fa_enforce_on_verified_invite": false,
  "email_attempts_limit": 3,
  "email_change_allowed": true,
  "email_expiration_time": 600,
  "email_token_size": 6,
  "emergency_access_allowed": true,
  "emergency_notification_reminder_schedule": "0 3 * * * *",
  "emergency_request_timeout_schedule": "0 7 * * * *",
  "enable_db_wal": true,
  "enable_websocket": true,
  "enforce_single_org_with_reset_pw_policy": false,
  "event_cleanup_schedule": "0 10 0 * * *",
  "events_days_retain": null,
  "experimental_client_feature_flags": "fido2-vault-credentials",
  "extended_logging": true,
  "helo_name": null,
  "hibp_api_key": null,
  "http_request_block_non_global_ips": true,
  "http_request_block_regex": null,
  "icon_blacklist_non_global_ips": true,
  "icon_blacklist_regex": null,
  "icon_cache_folder": "data/icon_cache",
  "icon_cache_negttl": 259200,
  "icon_cache_ttl": 2592000,
  "icon_download_timeout": 10,
  "icon_redirect_code": 302,
  "icon_service": "internal",
  "incomplete_2fa_schedule": "30 * * * * *",
  "incomplete_2fa_time_limit": 3,
  "increase_note_size_limit": false,
  "invitation_expiration_hours": 120,
  "invitation_org_name": "Cloud",
  "invitations_allowed": true,
  "ip_header": "X-Real-IP",
  "job_poll_interval_ms": 30000,
  "log_file": null,
  "log_level": "info",
  "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f",
  "login_ratelimit_max_burst": 10,
  "login_ratelimit_seconds": 60,
  "org_attachment_limit": null,
  "org_creation_users": "",
  "org_events_enabled": false,
  "org_groups_enabled": false,
  "password_hints_allowed": true,
  "password_iterations": 100000,
  "push_enabled": false,
  "push_identity_uri": "https://identity.bitwarden.com",
  "push_installation_id": "***",
  "push_installation_key": "***",
  "push_relay_uri": "https://push.bitwarden.com",
  "reload_templates": false,
  "require_device_email": false,
  "rsa_key_filename": "data/rsa_key",
  "send_purge_schedule": "0 5 * * * *",
  "sendmail_command": null,
  "sends_allowed": true,
  "sends_folder": "data/sends",
  "show_password_hint": false,
  "signups_allowed": false,
  "signups_domains_whitelist": "",
  "signups_verify": false,
  "signups_verify_resend_limit": 6,
  "signups_verify_resend_time": 3600,
  "smtp_accept_invalid_certs": false,
  "smtp_accept_invalid_hostnames": false,
  "smtp_auth_mechanism": "plain",
  "smtp_debug": false,
  "smtp_embed_images": true,
  "smtp_explicit_tls": null,
  "smtp_from": "********************",
  "smtp_from_name": "Vaultwarden",
  "smtp_host": "**********************************",
  "smtp_password": "***",
  "smtp_port": 587,
  "smtp_security": "starttls",
  "smtp_ssl": null,
  "smtp_timeout": 15,
  "smtp_username": "********************",
  "templates_folder": "data/templates",
  "tmp_folder": "data/tmp",
  "trash_auto_delete_days": null,
  "trash_purge_schedule": "0 5 0 * * *",
  "use_sendmail": false,
  "use_syslog": false,
  "user_attachment_limit": null,
  "user_send_limit": null,
  "web_vault_enabled": true,
  "web_vault_folder": "web-vault/",
  "yubico_client_id": null,
  "yubico_secret_key": null,
  "yubico_server": null
}

Vaultwarden Build Version

v1.32.6

Deployment method

Official Container Image

Custom deployment method

No response

Reverse Proxy

Traefik 3.2.2

Host/Server Operating System

Linux

Operating System Version

iOS

Clients

iOS

Client Version

2024.12.0 (1740)

Steps To Reproduce

In Bitwarden app:

  1. Select self-hosted
  2. Add self-hosted url
  3. Add master password
  4. Click Log In With Master Password

Expected Result

Log in and see vault.

Actual Result

Get error message: "An error has occurred. This is not a recognized Bitwarden server. You may need to check with your provider or update your server."

Logs

there are no logs generated by the login attempt

Screenshots or Videos

Additional Context

I have another iOS installation that works perfectly, but it is using v2024.11.0 (1680). This is a new iPhone. I have a theory that because it's a new os install, it has installed an updated version of the Bitwarden iOS app (v2024.12.0 (1740)).

Originally created by @jacksonhull on GitHub (Dec 14, 2024). Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/5296 ### Vaultwarden Support String ### Your environment (Generated via diagnostics page) * Vaultwarden version: v1.32.6 * Web-vault version: v2024.6.2c * OS/Arch: linux/x86_64 * Running within a container: true (Base: Debian) * Database type: SQLite * Database version: 3.46.0 * Environment settings overridden!: true * Uses a reverse proxy: true * IP Header check: true (X-Real-IP) * Internet access: true * Internet access via a proxy: false * DNS Check: true * Browser/Server Time Check: true * Server/NTP Time Check: true * Domain Configuration Check: true * HTTPS Check: true * Websocket Check: true * HTTP Response Checks: false ### Config & Details (Generated via diagnostics page) <details><summary>Show Config & Details</summary> **Environment settings which are overridden:** SIGNUPS_ALLOWED, ADMIN_TOKEN **Failed HTTP Checks:** ```yaml API calls: Header: 'referrer-policy' does not contain 'same-origin' Header: 'content-security-policy' does not contain 'base-uri 'self'' Header: 'content-security-policy' does not contain 'form-action 'self'' Header: 'content-security-policy' does not contain 'object-src 'self' blob:' Header: 'content-security-policy' does not contain 'script-src 'self' 'wasm-unsafe-eval'' Header: 'content-security-policy' does not contain 'child-src 'self' https://*.duosecurity.com https://*.duofederal.com' Header: 'content-security-policy' does not contain 'frame-src 'self' https://*.duosecurity.com https://*.duofederal.com' Header: 'content-security-policy' does not contain 'frame-ancestors 'self' chrome-extension://nngceckbapebfimnlniiiahkandclblb chrome-extension://jbkfoedolllekgbhcbcoahefnbanhhlh moz-extension://*' Header: 'content-security-policy' does not contain 'img-src 'self' data: https://haveibeenpwned.com' Header: 'content-security-policy' does not contain 'connect-src 'self' https://api.pwnedpasswords.com https://api.2fa.directory https://app.simplelogin.io/api/ https://app.addy.io/api/ https://api.fastmail.com/ https://api.forwardemail.net' 2FA Connector calls: Header: 'referrer-policy' does not contain 'same-origin' Header: 'content-security-policy' is present while it should not ``` **Config:** ```json { "_duo_akey": null, "_enable_duo": false, "_enable_email_2fa": false, "_enable_smtp": true, "_enable_yubico": true, "_icon_service_csp": "", "_icon_service_url": "", "_ip_header_enabled": true, "_max_note_size": 10000, "_smtp_img_src": "cid:", "admin_ratelimit_max_burst": 3, "admin_ratelimit_seconds": 300, "admin_session_lifetime": 20, "admin_token": "***", "allowed_iframe_ancestors": "", "attachments_folder": "data/attachments", "auth_request_purge_schedule": "30 * * * * *", "authenticator_disable_time_drift": false, "data_folder": "data", "database_conn_init": "", "database_max_conns": 10, "database_timeout": 30, "database_url": "***************", "db_connection_retries": 15, "disable_2fa_remember": false, "disable_admin_token": false, "disable_icon_download": false, "domain": "*****://**************", "domain_origin": "*****://**************", "domain_path": "", "domain_set": true, "duo_context_purge_schedule": "30 * * * * *", "duo_host": null, "duo_ikey": null, "duo_skey": null, "duo_use_iframe": false, "email_2fa_auto_fallback": false, "email_2fa_enforce_on_verified_invite": false, "email_attempts_limit": 3, "email_change_allowed": true, "email_expiration_time": 600, "email_token_size": 6, "emergency_access_allowed": true, "emergency_notification_reminder_schedule": "0 3 * * * *", "emergency_request_timeout_schedule": "0 7 * * * *", "enable_db_wal": true, "enable_websocket": true, "enforce_single_org_with_reset_pw_policy": false, "event_cleanup_schedule": "0 10 0 * * *", "events_days_retain": null, "experimental_client_feature_flags": "fido2-vault-credentials", "extended_logging": true, "helo_name": null, "hibp_api_key": null, "http_request_block_non_global_ips": true, "http_request_block_regex": null, "icon_blacklist_non_global_ips": true, "icon_blacklist_regex": null, "icon_cache_folder": "data/icon_cache", "icon_cache_negttl": 259200, "icon_cache_ttl": 2592000, "icon_download_timeout": 10, "icon_redirect_code": 302, "icon_service": "internal", "incomplete_2fa_schedule": "30 * * * * *", "incomplete_2fa_time_limit": 3, "increase_note_size_limit": false, "invitation_expiration_hours": 120, "invitation_org_name": "Cloud", "invitations_allowed": true, "ip_header": "X-Real-IP", "job_poll_interval_ms": 30000, "log_file": null, "log_level": "info", "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f", "login_ratelimit_max_burst": 10, "login_ratelimit_seconds": 60, "org_attachment_limit": null, "org_creation_users": "", "org_events_enabled": false, "org_groups_enabled": false, "password_hints_allowed": true, "password_iterations": 100000, "push_enabled": false, "push_identity_uri": "https://identity.bitwarden.com", "push_installation_id": "***", "push_installation_key": "***", "push_relay_uri": "https://push.bitwarden.com", "reload_templates": false, "require_device_email": false, "rsa_key_filename": "data/rsa_key", "send_purge_schedule": "0 5 * * * *", "sendmail_command": null, "sends_allowed": true, "sends_folder": "data/sends", "show_password_hint": false, "signups_allowed": false, "signups_domains_whitelist": "", "signups_verify": false, "signups_verify_resend_limit": 6, "signups_verify_resend_time": 3600, "smtp_accept_invalid_certs": false, "smtp_accept_invalid_hostnames": false, "smtp_auth_mechanism": "plain", "smtp_debug": false, "smtp_embed_images": true, "smtp_explicit_tls": null, "smtp_from": "********************", "smtp_from_name": "Vaultwarden", "smtp_host": "**********************************", "smtp_password": "***", "smtp_port": 587, "smtp_security": "starttls", "smtp_ssl": null, "smtp_timeout": 15, "smtp_username": "********************", "templates_folder": "data/templates", "tmp_folder": "data/tmp", "trash_auto_delete_days": null, "trash_purge_schedule": "0 5 0 * * *", "use_sendmail": false, "use_syslog": false, "user_attachment_limit": null, "user_send_limit": null, "web_vault_enabled": true, "web_vault_folder": "web-vault/", "yubico_client_id": null, "yubico_secret_key": null, "yubico_server": null } ``` </details> ### Vaultwarden Build Version v1.32.6 ### Deployment method Official Container Image ### Custom deployment method _No response_ ### Reverse Proxy Traefik 3.2.2 ### Host/Server Operating System Linux ### Operating System Version iOS ### Clients iOS ### Client Version 2024.12.0 (1740) ### Steps To Reproduce In Bitwarden app: 1. Select self-hosted 2. Add self-hosted url 3. Add master password 4. Click Log In With Master Password ### Expected Result Log in and see vault. ### Actual Result Get error message: "An error has occurred. This is not a recognized Bitwarden server. You may need to check with your provider or update your server." ### Logs ```text there are no logs generated by the login attempt ``` ### Screenshots or Videos ### Additional Context I have another iOS installation that works perfectly, but it is using v2024.11.0 (1680). This is a new iPhone. I have a theory that because it's a new os install, it has installed an updated version of the Bitwarden iOS app (v2024.12.0 (1740)).
kerem 2026-03-03 02:15:29 +03:00
  • closed this issue
  • added the
    question
         label
kerem commented 2026-03-03 02:15:30 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Dec 14, 2024):

What are the logs of Vaultwarden and your reverse proxy?
What happens with a new clean account?

<!-- gh-comment-id:2543338482 --> @BlackDex commented on GitHub (Dec 14, 2024): What are the logs of Vaultwarden and your reverse proxy? What happens with a new clean account?
kerem commented 2026-03-03 02:15:30 +03:00
Author
Owner
Copy link

@jacksonhull commented on GitHub (Dec 14, 2024):

VW logs show nothing suspect:

[2024-12-14 21:23:06.894][request][INFO] GET /api/config
[2024-12-14 21:23:06.894][response][INFO] (config) GET /api/config => 200 OK
[2024-12-14 21:23:12.848][request][INFO] GET /api/accounts/revision-date
[2024-12-14 21:23:12.850][request][INFO] GET /api/config
[2024-12-14 21:23:12.851][response][INFO] (config) GET /api/config => 200 OK
[2024-12-14 21:23:12.851][response][INFO] (revision_date) GET /api/accounts/revision-date => 200 OK
[2024-12-14 21:23:12.860][request][INFO] GET /api/accounts/revision-date
[2024-12-14 21:23:12.860][response][INFO] (revision_date) GET /api/accounts/revision-date => 200 OK
[2024-12-14 21:23:30.473][request][INFO] GET /api/devices/knowndevice
[2024-12-14 21:23:30.477][response][INFO] (get_known_device) GET /api/devices/knowndevice => 200 OK

Traefik doesn't log anything INFO or higher.

A new account and other existing accounts have the same issue.

I should also mention that there is no issue logging into the web app.

<!-- gh-comment-id:2543349431 --> @jacksonhull commented on GitHub (Dec 14, 2024): VW logs show nothing suspect: ``` [2024-12-14 21:23:06.894][request][INFO] GET /api/config [2024-12-14 21:23:06.894][response][INFO] (config) GET /api/config => 200 OK [2024-12-14 21:23:12.848][request][INFO] GET /api/accounts/revision-date [2024-12-14 21:23:12.850][request][INFO] GET /api/config [2024-12-14 21:23:12.851][response][INFO] (config) GET /api/config => 200 OK [2024-12-14 21:23:12.851][response][INFO] (revision_date) GET /api/accounts/revision-date => 200 OK [2024-12-14 21:23:12.860][request][INFO] GET /api/accounts/revision-date [2024-12-14 21:23:12.860][response][INFO] (revision_date) GET /api/accounts/revision-date => 200 OK [2024-12-14 21:23:30.473][request][INFO] GET /api/devices/knowndevice [2024-12-14 21:23:30.477][response][INFO] (get_known_device) GET /api/devices/knowndevice => 200 OK ``` Traefik doesn't log anything INFO or higher. A new account and other existing accounts have the same issue. I should also mention that there is no issue logging into the web app.
kerem commented 2026-03-03 02:15:30 +03:00
Author
Owner
Copy link

@YWxleGlz commented on GitHub (Dec 14, 2024):

Bitwarden seems to want to detect vaultwarden servers...

github.com/bitwarden/ios@361cc87a56/BitwardenShared/Core/Platform/Models/Domain/ServerConfig.swift (L62)

github.com/bitwarden/ios@361cc87a56/BitwardenShared/UI/Auth/Login/LoginProcessorTests.swift (L156)

EDIT : I'm not able to reproduce the issue on IOS 2024.12.0 (1740) & Web 2024.6.2c

<!-- gh-comment-id:2543353875 --> @YWxleGlz commented on GitHub (Dec 14, 2024): Bitwarden seems to want to detect vaultwarden servers... https://github.com/bitwarden/ios/blob/361cc87a56d86e3626bb182382e463b59cd1eba8/BitwardenShared/Core/Platform/Models/Domain/ServerConfig.swift#L62 https://github.com/bitwarden/ios/blob/361cc87a56d86e3626bb182382e463b59cd1eba8/BitwardenShared/UI/Auth/Login/LoginProcessorTests.swift#L156 EDIT : I'm not able to reproduce the issue on IOS 2024.12.0 (1740) & Web 2024.6.2c
kerem commented 2026-03-03 02:15:30 +03:00
Author
Owner
Copy link

@jacksonhull commented on GitHub (Dec 14, 2024):

That is horrible if it’s intended to disable if the server is VW.

Thanks for trying to recreate. Just confirming you tried deleting app data and then connecting with a fresh install?

<!-- gh-comment-id:2543357305 --> @jacksonhull commented on GitHub (Dec 14, 2024): That is horrible if it’s intended to disable if the server is VW. Thanks for trying to recreate. Just confirming you tried deleting app data and then connecting with a fresh install?
kerem commented 2026-03-03 02:15:30 +03:00
Author
Owner
Copy link

@YWxleGlz commented on GitHub (Dec 14, 2024):

That is horrible if it’s intended to disable if the server is VW.

Thanks for trying to recreate. Just confirming you tried deleting app data and then connecting with a fresh install?

Uninstall/install mobile application + install new vaultwarden environment.
Can you try to make a temporary account on a public instance to see if it's related to your server configuration?
(For example, on redacted)

<!-- gh-comment-id:2543362163 --> @YWxleGlz commented on GitHub (Dec 14, 2024): > That is horrible if it’s intended to disable if the server is VW. > > Thanks for trying to recreate. Just confirming you tried deleting app data and then connecting with a fresh install? Uninstall/install mobile application + install new vaultwarden environment. Can you try to make a temporary account on a public instance to see if it's related to your server configuration? (For example, on ~~redacted~~)
kerem commented 2026-03-03 02:15:30 +03:00
Author
Owner
Copy link

@jacksonhull commented on GitHub (Dec 14, 2024):

I did uninstall/install iOS app before.

The app works on a public instance.

I haven’t taken the step yet to rebuild VW. It’s odd there is just no log in VW to help troubleshoot further. Almost like the request is rejected before it’s routed

<!-- gh-comment-id:2543363837 --> @jacksonhull commented on GitHub (Dec 14, 2024): I did uninstall/install iOS app before. The app works on a public instance. I haven’t taken the step yet to rebuild VW. It’s odd there is just no log in VW to help troubleshoot further. Almost like the request is rejected before it’s routed
kerem commented 2026-03-03 02:15:30 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Dec 14, 2024):

I would not recommend using any random public Vaultwarden instance.
Check what happens if you try to access the web-vault via Safari, does that work?

Do you have the sneaky proxy feature enabled on iOS?

<!-- gh-comment-id:2543372987 --> @BlackDex commented on GitHub (Dec 14, 2024): I would not recommend using any random public Vaultwarden instance. Check what happens if you try to access the web-vault via Safari, does that work? Do you have the sneaky proxy feature enabled on iOS?
kerem commented 2026-03-03 02:15:30 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Dec 14, 2024):

Also, did you filled in only the first entry of the self-hosted settings or all?

<!-- gh-comment-id:2543373157 --> @BlackDex commented on GitHub (Dec 14, 2024): Also, did you filled in only the first entry of the self-hosted settings or all?
kerem commented 2026-03-03 02:15:31 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Dec 14, 2024):

I just tested it on an older iOS device i have, and it works just fine for me. I'm using a Valid Let's encrypt cert btw.

<!-- gh-comment-id:2543379335 --> @BlackDex commented on GitHub (Dec 14, 2024): I just tested it on an older iOS device i have, and it works just fine for me. I'm using a Valid Let's encrypt cert btw.
kerem commented 2026-03-03 02:15:31 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Dec 14, 2024):

Bitwarden seems to want to detect vaultwarden servers...

github.com/bitwarden/ios@361cc87a56/BitwardenShared/Core/Platform/Models/Domain/ServerConfig.swift (L62)

github.com/bitwarden/ios@361cc87a56/BitwardenShared/UI/Auth/Login/LoginProcessorTests.swift (L156)

EDIT : I'm not able to reproduce the issue on IOS 2024.12.0 (1740) & Web 2024.6.2c

That detection is only done to modify the error message to emphasize it's a third party server and not an official Bitwarden.

<!-- gh-comment-id:2543379560 --> @BlackDex commented on GitHub (Dec 14, 2024): > Bitwarden seems to want to detect vaultwarden servers... > > https://github.com/bitwarden/ios/blob/361cc87a56d86e3626bb182382e463b59cd1eba8/BitwardenShared/Core/Platform/Models/Domain/ServerConfig.swift#L62 > > https://github.com/bitwarden/ios/blob/361cc87a56d86e3626bb182382e463b59cd1eba8/BitwardenShared/UI/Auth/Login/LoginProcessorTests.swift#L156 > > EDIT : I'm not able to reproduce the issue on IOS 2024.12.0 (1740) & Web 2024.6.2c That detection is only done to modify the error message to emphasize it's a third party server and not an official Bitwarden.
kerem commented 2026-03-03 02:15:31 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Dec 15, 2024):

I did uninstall/install iOS app before.

The app works on a public instance.

I haven’t taken the step yet to rebuild VW. It’s odd there is just no log in VW to help troubleshoot further. Almost like the request is rejected before it’s routed

If you do not see any log attempt even with debug logging enabled, then it's one of these items.

  1. Something in-between is blocking the calls, like VPN, Cloudflare
  2. The reverse proxy is blocking for some reason, or has some security settings enabled which blocks calls
  3. The url is not correct, typo or more then only the first field is configured in the self hosted config.
  4. SSL cert is either invalid or not trusted, like self signed certs.

Check all the steps in between for logs and errors.

<!-- gh-comment-id:2543381669 --> @BlackDex commented on GitHub (Dec 15, 2024): > I did uninstall/install iOS app before. > > The app works on a public instance. > > I haven’t taken the step yet to rebuild VW. It’s odd there is just no log in VW to help troubleshoot further. Almost like the request is rejected before it’s routed If you do not see any log attempt even with debug logging enabled, then it's one of these items. 1. Something in-between is blocking the calls, like VPN, Cloudflare 2. The reverse proxy is blocking for some reason, or has some security settings enabled which blocks calls 3. The url is not correct, typo or more then only the first field is configured in the self hosted config. 4. SSL cert is either invalid or not trusted, like self signed certs. Check all the steps in between for logs and errors.
kerem commented 2026-03-03 02:15:31 +03:00
Author
Owner
Copy link

@jacksonhull commented on GitHub (Dec 15, 2024):

Thank you. I believe I discovered the issue.

I had some deny/allow rules that allowed the app access to VW through the proxy. Specifically:

  • "^/api/.*$": allow
  • "^/identity/connect/token$": allow

I believe that the latest version of the app must be making a call to another endpoint that was being blocked. Allowing all resolved the issue, and it also explains why neither Traefik or VW were not logging any issues.

I wasn't able to determine what additional endpoint is being called.

<!-- gh-comment-id:2543865441 --> @jacksonhull commented on GitHub (Dec 15, 2024): Thank you. I believe I discovered the issue. I had some deny/allow rules that allowed the app access to VW through the proxy. Specifically: - "^/api/.*$": allow - "^/identity/connect/token$": allow I believe that the latest version of the app must be making a call to another endpoint that was being blocked. Allowing all resolved the issue, and it also explains why neither Traefik or VW were not logging any issues. I wasn't able to determine what additional endpoint is being called.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
revert-7033-patch-1
cached-config-operations
test_dylint
1.35.7
1.35.6
1.35.5
1.35.4
1.35.3
1.35.2
1.35.1
1.35.0
1.34.3
1.34.2
1.34.1
1.34.0
1.33.2
1.33.1
1.33.0
1.32.7
1.32.6
1.32.5
1.32.4
1.32.3
1.32.2
1.32.1
1.32.0
1.31.0
1.30.5
1.30.4
1.30.3
1.30.2
1.30.1
1.30.0
1.29.2
1.29.1
1.29.0
1.28.1
1.28.0
1.27.0
1.26.0
1.25.2
1.25.1
1.25.0
1.24.0
1.23.1
1.23.0
1.22.2
1.22.1
1.22.0
1.21.0
1.20.0
1.19.0
1.18.0
1.17.0
1.16.3
1.16.2
1.16.1
1.16.0
1.15.1
1.15.0
1.14.2
1.14.1
1.14
1.13.1
1.13.0
1.12.0
1.11.0
1.10.0
1.9.1
1.9.0
1.8.0
1.7.0
1.6.1
1.6.0
1.5.0
1.4.0
1.3.0
1.2.0
1.1.0
1.0.0
0.13.0
0.12.0
0.11.0
0.10.0
0.9.0
Labels
Clear labels   
SSO

   
Third party

   
better for forum

   
bug

   
bug

   
documentation

   
duplicate

   
enhancement

   
future Vault

   
future Vault

   
future Vault

   
good first issue

   
help wanted

   
low priority

   
notes

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
troubleshooting

   
wontfix
No labels
SSO
Third party
better for forum
bug
bug
documentation
duplicate
enhancement
future Vault
future Vault
future Vault
good first issue
help wanted
low priority
notes
pull-request
question
troubleshooting
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/vaultwarden#2118
No description provided.