starred/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.git synced 2026-04-26 01:35:54 +03:00
Code Issues 39 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #619] config.json -- storing plain text? #417

New issue
Closed
opened 2026-03-03 01:28:54 +03:00 by kerem · 2 comments
kerem commented 2026-03-03 01:28:54 +03:00
Owner
Copy link

Originally created by @moranbw on GitHub (Sep 12, 2019).
Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/619

Does it matter that we are storing the admin_token and smtp_password as plain text in the config.json? Should the permissions of this file be by default more restrictive?

More asking then suggesting. I guess this still does not necessarily expose a user's vault, which is the main thing.

Originally created by @moranbw on GitHub (Sep 12, 2019). Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/619 Does it matter that we are storing the admin_token and smtp_password as plain text in the config.json? Should the permissions of this file be by default more restrictive? More asking then suggesting. I guess this still does not necessarily expose a user's vault, which is the main thing.
kerem closed this issue 2026-03-03 01:28:54 +03:00
kerem commented 2026-03-03 01:28:55 +03:00
Author
Owner
Copy link

@mprasil commented on GitHub (Sep 13, 2019):

You can set the permissions of the file yourself - as long as the container user can read and write to it, it should work fine.

You can also provide these as environment variables and you can the work out yourself how to set them in secure manner.

<!-- gh-comment-id:531194461 --> @mprasil commented on GitHub (Sep 13, 2019): You can set the permissions of the file yourself - as long as the container user can read and write to it, it should work fine. You can also provide these as environment variables and you can the work out yourself how to set them in secure manner.
kerem commented 2026-03-03 01:28:55 +03:00
Author
Owner
Copy link

@mprasil commented on GitHub (Sep 30, 2019):

I'm going to close this one as there are multiple ways to provide the credentials without storing them in config.json and the permissions on the file itself can be set in any way as long as the service can read it and write to it. Feel free to reopen, if there's anything more we can do regarding this.

<!-- gh-comment-id:536461179 --> @mprasil commented on GitHub (Sep 30, 2019): I'm going to close this one as there are multiple ways to provide the credentials without storing them in config.json and the permissions on the file itself can be set in any way as long as the service can read it and write to it. Feel free to reopen, if there's anything more we can do regarding this.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
revert-7033-patch-1
cached-config-operations
test_dylint
1.35.8
1.35.7
1.35.6
1.35.5
1.35.4
1.35.3
1.35.2
1.35.1
1.35.0
1.34.3
1.34.2
1.34.1
1.34.0
1.33.2
1.33.1
1.33.0
1.32.7
1.32.6
1.32.5
1.32.4
1.32.3
1.32.2
1.32.1
1.32.0
1.31.0
1.30.5
1.30.4
1.30.3
1.30.2
1.30.1
1.30.0
1.29.2
1.29.1
1.29.0
1.28.1
1.28.0
1.27.0
1.26.0
1.25.2
1.25.1
1.25.0
1.24.0
1.23.1
1.23.0
1.22.2
1.22.1
1.22.0
1.21.0
1.20.0
1.19.0
1.18.0
1.17.0
1.16.3
1.16.2
1.16.1
1.16.0
1.15.1
1.15.0
1.14.2
1.14.1
1.14
1.13.1
1.13.0
1.12.0
1.11.0
1.10.0
1.9.1
1.9.0
1.8.0
1.7.0
1.6.1
1.6.0
1.5.0
1.4.0
1.3.0
1.2.0
1.1.0
1.0.0
0.13.0
0.12.0
0.11.0
0.10.0
0.9.0
Labels
Clear labels   
SSO

   
Third party

   
better for forum

   
bug

   
bug

   
documentation

   
duplicate

   
enhancement

   
future Vault

   
future Vault

   
future Vault

   
good first issue

   
help wanted

   
low priority

   
notes

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
troubleshooting

   
wontfix
No labels
SSO
Third party
better for forum
bug
bug
documentation
duplicate
enhancement
future Vault
future Vault
future Vault
good first issue
help wanted
low priority
notes
pull-request
question
troubleshooting
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/vaultwarden#417
No description provided.