[GH-ISSUE #588] Cannot login on Android app, but can everywhere else #388

New issue

Closed

opened 2026-03-03 01:28:40 +03:00 by kerem · 1 comment

kerem commented

2026-03-03 01:28:40 +03:00

Owner

Originally created by @Ezzahhh on GitHub (Aug 27, 2019).
Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/588

I can login to my vault via all the apps/webbrowsers except on the Bitwarden app on my Android phone. I can access the Bitwarden vault via chrome on that same phone, but not through the app.

I am running Caddy as the reverse proxy with the cloudflare plugin; I have tried both Caddy as docker and as systemd service (both show same symptoms as above regardless and I provide setup for each I tried below). Since I am using cloudflare to serve HTTPS, this means that my docker bitwarden_rs image is running locally without HTTPS.

bitwarden_rs image run:
sudo docker run -d --name bitwarden -e ADMIN_TOKEN=xxx -e WEBSOCKET_ENABLED=true -e INVITATIONS_ALLOWED=false -e LOG_FILE=/data/bitwarden.log -v /bw-data/:/data/ -p 8000:80 -p 3012:3012 bitwardenrs/server:latest

caddy image run:
sudo docker run -d --name caddy -e CLOUDFLARE_EMAIL=**@gmail.com -e CLOUDFLARE_API_KEY=asdf -v /etc/caddy/Caddyfile:/etc/Caddyfile -v $HOME/.caddy:/root/.caddy -p 80:80 -p 443:443 abiosoft/caddy

caddyfile:

xx.ml {

 # The negotiation endpoint is also proxied to Rocket
 proxy /notifications/hub/negotiate localhost:8000 { 
     transparent
 }

# Notifications redirected to the websockets server
proxy /notifications/hub localhost:3012 {
    websocket
}

# Proxy the Root directory to Rocket
proxy / localhost:8000 {
    transparent
}

tls {
    dns cloudflare
}

}

caddy systemd service:
It is merely the default one but with the cloudflare email and api key environment variables added.

Is there some cloudflare setting in the dashboard that is preventing the Android app from working? Or is there some part of my setup that is broken? I find it weird that I can access the vault from virtually everywhere else but the android app I cannot (I have also tried reinstalling the app and restarting phone to no avail).

Originally created by @Ezzahhh on GitHub (Aug 27, 2019). Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/588 I can login to my vault via all the apps/webbrowsers except on the Bitwarden app on my Android phone. I can access the Bitwarden vault via chrome on that same phone, but not through the app. I am running Caddy as the reverse proxy with the cloudflare plugin; I have tried both Caddy as docker and as systemd service (both show same symptoms as above regardless and I provide setup for each I tried below). Since I am using cloudflare to serve HTTPS, this means that my docker bitwarden_rs image is running locally without HTTPS. bitwarden_rs image run: `sudo docker run -d --name bitwarden -e ADMIN_TOKEN=xxx -e WEBSOCKET_ENABLED=true -e INVITATIONS_ALLOWED=false -e LOG_FILE=/data/bitwarden.log -v /bw-data/:/data/ -p 8000:80 -p 3012:3012 bitwardenrs/server:latest` caddy image run: `sudo docker run -d --name caddy -e CLOUDFLARE_EMAIL=**@gmail.com -e CLOUDFLARE_API_KEY=asdf -v /etc/caddy/Caddyfile:/etc/Caddyfile -v $HOME/.caddy:/root/.caddy -p 80:80 -p 443:443 abiosoft/caddy` caddyfile: xx.ml { # The negotiation endpoint is also proxied to Rocket proxy /notifications/hub/negotiate localhost:8000 { transparent } # Notifications redirected to the websockets server proxy /notifications/hub localhost:3012 { websocket } # Proxy the Root directory to Rocket proxy / localhost:8000 { transparent } tls { dns cloudflare } } caddy systemd service: It is merely the default one but with the cloudflare email and api key environment variables added. Is there some cloudflare setting in the dashboard that is preventing the Android app from working? Or is there some part of my setup that is broken? I find it weird that I can access the vault from virtually everywhere else but the android app I cannot (I have also tried reinstalling the app and restarting phone to no avail).

kerem closed this issue

2026-03-03 01:28:40 +03:00

kerem commented

2026-03-03 01:28:40 +03:00

Author

Owner

@Ezzahhh commented on GitHub (Aug 27, 2019):

The issue appears to have been resolved by changing cloudflare settings to allow minimum TLS version to be 1.0. I had it set to 1.3 for security, but it appears the app does not support 1.3

@Ezzahhh commented on GitHub (Aug 27, 2019): The issue appears to have been resolved by changing cloudflare settings to allow minimum TLS version to be 1.0. I had it set to 1.3 for security, but it appears the app does not support 1.3