starred/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.git synced 2026-04-26 09:46:00 +03:00
Code Issues 39 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #872] Cannot read property 'importKey' of null #617

New issue
Closed
opened 2026-03-03 02:01:23 +03:00 by kerem · 12 comments
kerem commented 2026-03-03 02:01:23 +03:00
Owner
Copy link

Originally created by @Etelis2019 on GitHub (Feb 22, 2020).
Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/872

I run bitwarden on ubuntu 18.4 aws , now I understand that I need HTTPS in order to run this on chrome or use chrome expansion.

I went to the wiki but I couldnt figure out how to make the connection HTTPS I mean, please can you direct me to a method that explains how to do SSL certification on that docker container.

sorry about the noob question

Originally created by @Etelis2019 on GitHub (Feb 22, 2020). Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/872 I run bitwarden on ubuntu 18.4 aws , now I understand that I need HTTPS in order to run this on chrome or use chrome expansion. I went to the wiki but I couldnt figure out how to make the connection HTTPS I mean, please can you direct me to a method that explains how to do SSL certification on that docker container. sorry about the noob question
kerem closed this issue 2026-03-03 02:01:23 +03:00
kerem commented 2026-03-03 02:01:24 +03:00
Author
Owner
Copy link

@Gasur commented on GitHub (Feb 22, 2020):

You should probably look at running a reverse proxy, especially if you run more websites. If you only use Docker, I would recommend Traefik as it is super easy to set up. Else Caddy is very user friendly too.

<!-- gh-comment-id:589993340 --> @Gasur commented on GitHub (Feb 22, 2020): You should probably look at running a reverse proxy, especially if you run more websites. If you only use Docker, I would recommend Traefik as it is super easy to set up. Else Caddy is very user friendly too.
kerem commented 2026-03-03 02:01:24 +03:00
Author
Owner
Copy link

@Etelis2019 commented on GitHub (Feb 23, 2020):

You should probably look at running a reverse proxy, especially if you run more websites. If you only use Docker, I would recommend Traefik as it is super easy to set up. Else Caddy is very user friendly too.

Hey thank you so much for the reply.
I have installed Traefik, set it up using this guide https://www.digitalocean.com/community/tutorials/how-to-use-traefik-as-a-reverse-proxy-for-docker-containers-on-ubuntu-18-04

Also combined the domain I bought with the AWS dns of my server
so now I have the subdomain monitor.myserver.club running and it is SSL, and I have also bitwarden installed on the docker, but how do I combine them so the bitwarden runs through Traefik?
I really do try to understand and find but I cannot figure that out :(

<!-- gh-comment-id:590033557 --> @Etelis2019 commented on GitHub (Feb 23, 2020): > You should probably look at running a reverse proxy, especially if you run more websites. If you only use Docker, I would recommend Traefik as it is super easy to set up. Else Caddy is very user friendly too. Hey thank you so much for the reply. I have installed Traefik, set it up using this guide https://www.digitalocean.com/community/tutorials/how-to-use-traefik-as-a-reverse-proxy-for-docker-containers-on-ubuntu-18-04 Also combined the domain I bought with the AWS dns of my server so now I have the subdomain monitor.myserver.club running and it is SSL, and I have also bitwarden installed on the docker, but how do I combine them so the bitwarden runs through Traefik? I really do try to understand and find but I cannot figure that out :(
kerem commented 2026-03-03 02:01:24 +03:00
Author
Owner
Copy link

@dennisgerding commented on GitHub (Feb 23, 2020):

Dear @Etelis2019, it looks like you have Traefik up and running. Good job! Now you should add the proper labels to your bitwarden container so Traefik knows what to do. You can find an example of that here. I'll also post my docker-compose.yml below so you have another example. Hope it helps!

version: '2.0'

services:
  bitwarden_rs:
    image: bitwardenrs/server:alpine
    container_name: bitwarden_rs
    restart: always
    volumes:
      - /opt/docker/bitwarden_rs/bw-data:/data
    networks:
      - proxy
    environment:
      LOG_FILE: '/data/bitwarden.log'
      LOG_LEVEL: 'warn'
      EXTENDED_LOGGING: 'true'
      WEBSOCKET_ENABLED: 'true'
    labels:
      - "traefik.enable=true"
## TRAEFIK VAULT ##
      - "traefik.http.routers.bitwarden-secure.entrypoints=https"
      - "traefik.http.routers.bitwarden-secure.rule=Host(`vault.domain.nl`)"
      - "traefik.http.routers.bitwarden-secure.tls=true"
      - "traefik.http.routers.bitwarden-secure.tls.certresolver=http"
      - "traefik.http.routers.bitwarden-secure.service=bitwarden"
      - "traefik.http.routers.bitwarden-secure.middlewares=security-headers@file"
      - "traefik.http.services.bitwarden.loadbalancer.server.port=80"
## TRAEFIK ADMIN ##
      - "traefik.http.routers.bitwarden-secure-admin.entrypoints=https"
      - "traefik.http.routers.bitwarden-secure-admin.rule=Host(`vault.domain.nl`) && Path(`/admin`)"
      - "traefik.http.routers.bitwarden-secure-admin.tls=true"
      - "traefik.http.routers.bitwarden-secure-admin.tls.certresolver=http"
      - "traefik.http.routers.bitwarden-secure-admin.service=bitwarden-admin"
      - "traefik.http.routers.bitwarden-secure-admin.middlewares=sysop-auth@file,security-headers@file"
      - "traefik.http.services.bitwarden-admin.loadbalancer.server.port=80"
## TRAEFIK WEBSOCKET ##
      - "traefik.http.routers.bitwarden-secure-websocket.rule=Host(`vault.domain.nl`) && Path(`/notifications/hub`)"
      - "traefik.http.routers.bitwarden-secure-websocket.entrypoints=https"
      - "traefik.http.routers.bitwarden-secure-websocket.tls=true"
      - "traefik.http.routers.bitwarden-secure-websocket.tls.certresolver=http"
      - "traefik.http.routers.bitwarden-secure-websocket.service=bitwarden-websocket"
      - "traefik.http.routers.bitwarden-secure-websocket.middlewares=security-headers@file"
      - "traefik.http.services.bitwarden-websocket.loadbalancer.server.port=3012"
## TRAEFIK NETWORK ##
      - "traefik.docker.network=proxy"

networks:
  proxy:
    external: true
<!-- gh-comment-id:590052295 --> @dennisgerding commented on GitHub (Feb 23, 2020): Dear @Etelis2019, it looks like you have Traefik up and running. Good job! Now you should add the proper labels to your bitwarden container so Traefik knows what to do. You can find an example of that [here](https://github.com/dani-garcia/bitwarden_rs/wiki/Proxy-examples). I'll also post my ```docker-compose.yml``` below so you have another example. Hope it helps! ``` version: '2.0' services: bitwarden_rs: image: bitwardenrs/server:alpine container_name: bitwarden_rs restart: always volumes: - /opt/docker/bitwarden_rs/bw-data:/data networks: - proxy environment: LOG_FILE: '/data/bitwarden.log' LOG_LEVEL: 'warn' EXTENDED_LOGGING: 'true' WEBSOCKET_ENABLED: 'true' labels: - "traefik.enable=true" ## TRAEFIK VAULT ## - "traefik.http.routers.bitwarden-secure.entrypoints=https" - "traefik.http.routers.bitwarden-secure.rule=Host(`vault.domain.nl`)" - "traefik.http.routers.bitwarden-secure.tls=true" - "traefik.http.routers.bitwarden-secure.tls.certresolver=http" - "traefik.http.routers.bitwarden-secure.service=bitwarden" - "traefik.http.routers.bitwarden-secure.middlewares=security-headers@file" - "traefik.http.services.bitwarden.loadbalancer.server.port=80" ## TRAEFIK ADMIN ## - "traefik.http.routers.bitwarden-secure-admin.entrypoints=https" - "traefik.http.routers.bitwarden-secure-admin.rule=Host(`vault.domain.nl`) && Path(`/admin`)" - "traefik.http.routers.bitwarden-secure-admin.tls=true" - "traefik.http.routers.bitwarden-secure-admin.tls.certresolver=http" - "traefik.http.routers.bitwarden-secure-admin.service=bitwarden-admin" - "traefik.http.routers.bitwarden-secure-admin.middlewares=sysop-auth@file,security-headers@file" - "traefik.http.services.bitwarden-admin.loadbalancer.server.port=80" ## TRAEFIK WEBSOCKET ## - "traefik.http.routers.bitwarden-secure-websocket.rule=Host(`vault.domain.nl`) && Path(`/notifications/hub`)" - "traefik.http.routers.bitwarden-secure-websocket.entrypoints=https" - "traefik.http.routers.bitwarden-secure-websocket.tls=true" - "traefik.http.routers.bitwarden-secure-websocket.tls.certresolver=http" - "traefik.http.routers.bitwarden-secure-websocket.service=bitwarden-websocket" - "traefik.http.routers.bitwarden-secure-websocket.middlewares=security-headers@file" - "traefik.http.services.bitwarden-websocket.loadbalancer.server.port=3012" ## TRAEFIK NETWORK ## - "traefik.docker.network=proxy" networks: proxy: external: true ```
kerem commented 2026-03-03 02:01:24 +03:00
Author
Owner
Copy link

@Etelis2019 commented on GitHub (Feb 23, 2020):

version: '2.0'

services:
bitwarden_rs:
image: bitwardenrs/server:alpine
container_name: bitwarden_rs
restart: always
volumes:
- /opt/docker/bitwarden_rs/bw-data:/data
networks:
- proxy
environment:
LOG_FILE: '/data/bitwarden.log'
LOG_LEVEL: 'warn'
EXTENDED_LOGGING: 'true'
WEBSOCKET_ENABLED: 'true'
labels:
- "traefik.enable=true"

TRAEFIK VAULT

  - "traefik.http.routers.bitwarden-secure.entrypoints=https"
  - "traefik.http.routers.bitwarden-secure.rule=Host(`vault.domain.nl`)"
  - "traefik.http.routers.bitwarden-secure.tls=true"
  - "traefik.http.routers.bitwarden-secure.tls.certresolver=http"
  - "traefik.http.routers.bitwarden-secure.service=bitwarden"
  - "traefik.http.routers.bitwarden-secure.middlewares=security-headers@file"
  - "traefik.http.services.bitwarden.loadbalancer.server.port=80"

TRAEFIK ADMIN

  - "traefik.http.routers.bitwarden-secure-admin.entrypoints=https"
  - "traefik.http.routers.bitwarden-secure-admin.rule=Host(`vault.domain.nl`) && Path(`/admin`)"
  - "traefik.http.routers.bitwarden-secure-admin.tls=true"
  - "traefik.http.routers.bitwarden-secure-admin.tls.certresolver=http"
  - "traefik.http.routers.bitwarden-secure-admin.service=bitwarden-admin"
  - "traefik.http.routers.bitwarden-secure-admin.middlewares=sysop-auth@file,security-headers@file"
  - "traefik.http.services.bitwarden-admin.loadbalancer.server.port=80"

TRAEFIK WEBSOCKET

  - "traefik.http.routers.bitwarden-secure-websocket.rule=Host(`vault.domain.nl`) && Path(`/notifications/hub`)"
  - "traefik.http.routers.bitwarden-secure-websocket.entrypoints=https"
  - "traefik.http.routers.bitwarden-secure-websocket.tls=true"
  - "traefik.http.routers.bitwarden-secure-websocket.tls.certresolver=http"
  - "traefik.http.routers.bitwarden-secure-websocket.service=bitwarden-websocket"
  - "traefik.http.routers.bitwarden-secure-websocket.middlewares=security-headers@file"
  - "traefik.http.services.bitwarden-websocket.loadbalancer.server.port=3012"

TRAEFIK NETWORK

  - "traefik.docker.network=proxy"

networks:
proxy:
external: true

Thank you so much for the detailed information you have provided.
I have used your conf changed network to web (as this is the name I gave) and ran the code, eveything worked with no errors. I entered my monitor page and saw the following: https://prnt.sc/r6fwc5 that my Host:bitwarden-rs.ubuntu.etelis.club as I run my server using AWS I went to route 53 and added bitwarden-rs.ubuntu as a subdomain https://prnt.sc/r6fw32

but now when I try to access it bitwarden-rs.ubuntu.etelis.club it wont load :(

<!-- gh-comment-id:590058085 --> @Etelis2019 commented on GitHub (Feb 23, 2020): > version: '2.0' > > services: > bitwarden_rs: > image: bitwardenrs/server:alpine > container_name: bitwarden_rs > restart: always > volumes: > - /opt/docker/bitwarden_rs/bw-data:/data > networks: > - proxy > environment: > LOG_FILE: '/data/bitwarden.log' > LOG_LEVEL: 'warn' > EXTENDED_LOGGING: 'true' > WEBSOCKET_ENABLED: 'true' > labels: > - "traefik.enable=true" > ## TRAEFIK VAULT ## > - "traefik.http.routers.bitwarden-secure.entrypoints=https" > - "traefik.http.routers.bitwarden-secure.rule=Host(`vault.domain.nl`)" > - "traefik.http.routers.bitwarden-secure.tls=true" > - "traefik.http.routers.bitwarden-secure.tls.certresolver=http" > - "traefik.http.routers.bitwarden-secure.service=bitwarden" > - "traefik.http.routers.bitwarden-secure.middlewares=security-headers@file" > - "traefik.http.services.bitwarden.loadbalancer.server.port=80" > ## TRAEFIK ADMIN ## > - "traefik.http.routers.bitwarden-secure-admin.entrypoints=https" > - "traefik.http.routers.bitwarden-secure-admin.rule=Host(`vault.domain.nl`) && Path(`/admin`)" > - "traefik.http.routers.bitwarden-secure-admin.tls=true" > - "traefik.http.routers.bitwarden-secure-admin.tls.certresolver=http" > - "traefik.http.routers.bitwarden-secure-admin.service=bitwarden-admin" > - "traefik.http.routers.bitwarden-secure-admin.middlewares=sysop-auth@file,security-headers@file" > - "traefik.http.services.bitwarden-admin.loadbalancer.server.port=80" > ## TRAEFIK WEBSOCKET ## > - "traefik.http.routers.bitwarden-secure-websocket.rule=Host(`vault.domain.nl`) && Path(`/notifications/hub`)" > - "traefik.http.routers.bitwarden-secure-websocket.entrypoints=https" > - "traefik.http.routers.bitwarden-secure-websocket.tls=true" > - "traefik.http.routers.bitwarden-secure-websocket.tls.certresolver=http" > - "traefik.http.routers.bitwarden-secure-websocket.service=bitwarden-websocket" > - "traefik.http.routers.bitwarden-secure-websocket.middlewares=security-headers@file" > - "traefik.http.services.bitwarden-websocket.loadbalancer.server.port=3012" > ## TRAEFIK NETWORK ## > - "traefik.docker.network=proxy" > > networks: > proxy: > external: true Thank you so much for the detailed information you have provided. I have used your conf changed network to web (as this is the name I gave) and ran the code, eveything worked with no errors. I entered my monitor page and saw the following: https://prnt.sc/r6fwc5 that my Host:bitwarden-rs.ubuntu.etelis.club as I run my server using AWS I went to route 53 and added bitwarden-rs.ubuntu as a subdomain https://prnt.sc/r6fw32 but now when I try to access it bitwarden-rs.ubuntu.etelis.club it wont load :(
kerem commented 2026-03-03 02:01:24 +03:00
Author
Owner
Copy link

@dennisgerding commented on GitHub (Feb 24, 2020):

Hi @Etelis2019, I use Traefik v2.1 which has complete different configuration options compared to v1.0...

But I suspect if you go to bitwarden-rs.ubuntu.etelis.club you should at least see an error from Traefik (e.g. bad gateway or not found). If you see the Traefik error I suspect the frontend or backend router is not configured properly. If you don’t see anything at all (e.g. dns error or server not found in your browser) I suspect it is because your dns settings are incorrect.

-- edit --
When I try to access bitwarden-rs.ubuntu.etelis.club I get a dns error so you probably have to check your dns settings

C:\Users\dege016>nslookup bitwarden-rs.ubuntu.etelis.club
Server:  pihole
Address:  192.168.1.254

*** pihole can't find bitwarden-rs.ubuntu.etelis.club: Server failed

C:\Users\dege016>

Hope this helps!
Dennis

<!-- gh-comment-id:590293959 --> @dennisgerding commented on GitHub (Feb 24, 2020): Hi @Etelis2019, I use Traefik v2.1 which has complete different configuration options compared to v1.0... But I suspect if you go to [bitwarden-rs.ubuntu.etelis.club](http://bitwarden-rs.ubuntu.etelis.club) you should at least see an error from Traefik (e.g. bad gateway or not found). If you see the Traefik error I suspect the frontend or backend router is not configured properly. If you don’t see anything at all (e.g. dns error or server not found in your browser) I suspect it is because your dns settings are incorrect. -- edit -- When I try to access bitwarden-rs.ubuntu.etelis.club I get a dns error so you probably have to check your dns settings ``` C:\Users\dege016>nslookup bitwarden-rs.ubuntu.etelis.club Server: pihole Address: 192.168.1.254 *** pihole can't find bitwarden-rs.ubuntu.etelis.club: Server failed C:\Users\dege016> ``` Hope this helps! Dennis
kerem commented 2026-03-03 02:01:24 +03:00
Author
Owner
Copy link

@Etelis2019 commented on GitHub (Feb 24, 2020):

Hi @Etelis2019, I use Traefik v2.1 which has complete different configuration options compared to v1.0...

But I suspect if you go to bitwarden-rs.ubuntu.etelis.club you should at least see an error from Traefik (e.g. bad gateway or not found). If you see the Traefik error I suspect the frontend or backend router is not configured properly. If you don’t see anything at all (e.g. dns error or server not found in your browser) I suspect it is because your dns settings are incorrect.

-- edit --
When I try to access bitwarden-rs.ubuntu.etelis.club I get a dns error so you probably have to check your dns settings

C:\Users\dege016>nslookup bitwarden-rs.ubuntu.etelis.club
Server:  pihole
Address:  192.168.1.254

*** pihole can't find bitwarden-rs.ubuntu.etelis.club: Server failed

C:\Users\dege016>

Hope this helps!
Dennis

But I have added this on the route53 on AWS with the same DNS and also with the IPV4 adress as showen in the picture, have I done a misstake adding subdomain?

<!-- gh-comment-id:590306677 --> @Etelis2019 commented on GitHub (Feb 24, 2020): > Hi @Etelis2019, I use Traefik v2.1 which has complete different configuration options compared to v1.0... > > But I suspect if you go to [bitwarden-rs.ubuntu.etelis.club](http://bitwarden-rs.ubuntu.etelis.club) you should at least see an error from Traefik (e.g. bad gateway or not found). If you see the Traefik error I suspect the frontend or backend router is not configured properly. If you don’t see anything at all (e.g. dns error or server not found in your browser) I suspect it is because your dns settings are incorrect. > > -- edit -- > When I try to access bitwarden-rs.ubuntu.etelis.club I get a dns error so you probably have to check your dns settings > > ``` > C:\Users\dege016>nslookup bitwarden-rs.ubuntu.etelis.club > Server: pihole > Address: 192.168.1.254 > > *** pihole can't find bitwarden-rs.ubuntu.etelis.club: Server failed > > C:\Users\dege016> > ``` > > Hope this helps! > Dennis But I have added this on the route53 on AWS with the same DNS and also with the IPV4 adress as showen in the picture, have I done a misstake adding subdomain?
kerem commented 2026-03-03 02:01:24 +03:00
Author
Owner
Copy link

@dennisgerding commented on GitHub (Feb 24, 2020):

I have no experience in AWS so I'm afraid I can't help you with this... I'm sorry. I'm glad to help you again when this dns issue is resolved.
Sorry mate!

<!-- gh-comment-id:590311789 --> @dennisgerding commented on GitHub (Feb 24, 2020): I have no experience in AWS so I'm afraid I can't help you with this... I'm sorry. I'm glad to help you again when this dns issue is resolved. Sorry mate!
kerem commented 2026-03-03 02:01:24 +03:00
Author
Owner
Copy link

@Gasur commented on GitHub (Feb 24, 2020):

Do you have an internal DNS server? If the answer is "no" or "I don't know", then type nslookup bitwarden-rs.ubuntu.etelis.club. (note the dot at the end).

Anyways, the issue is that that domain is not properly configured. Post a screenshot of your DNS config, and I can take a look at it.

<!-- gh-comment-id:590438462 --> @Gasur commented on GitHub (Feb 24, 2020): Do you have an internal DNS server? If the answer is "no" or "I don't know", then type nslookup bitwarden-rs.ubuntu.etelis.club. (note the dot at the end). Anyways, the issue is that that domain is not properly configured. Post a screenshot of your DNS config, and I can take a look at it.
kerem commented 2026-03-03 02:01:24 +03:00
Author
Owner
Copy link

@Etelis2019 commented on GitHub (Feb 25, 2020):

figured eveything out! working like a champ! thank you guys!

<!-- gh-comment-id:590770660 --> @Etelis2019 commented on GitHub (Feb 25, 2020): figured eveything out! working like a champ! thank you guys!
kerem commented 2026-03-03 02:01:24 +03:00
Author
Owner
Copy link

@madereddy commented on GitHub (Mar 5, 2020):

Can you post your completed Traefik 2.1 setup file? I have 1.7 running now and need to upgrade to 2.1.

<!-- gh-comment-id:595028787 --> @madereddy commented on GitHub (Mar 5, 2020): Can you post your completed Traefik 2.1 setup file? I have 1.7 running now and need to upgrade to 2.1.
kerem commented 2026-03-03 02:01:24 +03:00
Author
Owner
Copy link

@Etelis2019 commented on GitHub (Mar 10, 2020):

I did not change =d a thing actually

<!-- gh-comment-id:597083710 --> @Etelis2019 commented on GitHub (Mar 10, 2020): I did not change =d a thing actually
kerem commented 2026-03-03 02:01:24 +03:00
Author
Owner
Copy link

@dani-garcia commented on GitHub (May 13, 2020):

Closed due to inactivity.

<!-- gh-comment-id:628284194 --> @dani-garcia commented on GitHub (May 13, 2020): Closed due to inactivity.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
revert-7033-patch-1
cached-config-operations
test_dylint
1.35.8
1.35.7
1.35.6
1.35.5
1.35.4
1.35.3
1.35.2
1.35.1
1.35.0
1.34.3
1.34.2
1.34.1
1.34.0
1.33.2
1.33.1
1.33.0
1.32.7
1.32.6
1.32.5
1.32.4
1.32.3
1.32.2
1.32.1
1.32.0
1.31.0
1.30.5
1.30.4
1.30.3
1.30.2
1.30.1
1.30.0
1.29.2
1.29.1
1.29.0
1.28.1
1.28.0
1.27.0
1.26.0
1.25.2
1.25.1
1.25.0
1.24.0
1.23.1
1.23.0
1.22.2
1.22.1
1.22.0
1.21.0
1.20.0
1.19.0
1.18.0
1.17.0
1.16.3
1.16.2
1.16.1
1.16.0
1.15.1
1.15.0
1.14.2
1.14.1
1.14
1.13.1
1.13.0
1.12.0
1.11.0
1.10.0
1.9.1
1.9.0
1.8.0
1.7.0
1.6.1
1.6.0
1.5.0
1.4.0
1.3.0
1.2.0
1.1.0
1.0.0
0.13.0
0.12.0
0.11.0
0.10.0
0.9.0
Labels
Clear labels   
SSO

   
Third party

   
better for forum

   
bug

   
bug

   
documentation

   
duplicate

   
enhancement

   
future Vault

   
future Vault

   
future Vault

   
good first issue

   
help wanted

   
low priority

   
notes

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
troubleshooting

   
wontfix
No labels
SSO
Third party
better for forum
bug
bug
documentation
duplicate
enhancement
future Vault
future Vault
future Vault
good first issue
help wanted
low priority
notes
pull-request
question
troubleshooting
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/vaultwarden#617
No description provided.