Vaultwarden: Difference between revisions
m fixed caddy syntax |
|||
| (2 intermediate revisions by 2 users not shown) | |||
| Line 2: | Line 2: | ||
== Example Configuration == | == Example Configuration == | ||
< | <syntaxhighlight lang="nix"> | ||
services.vaultwarden = { | services.vaultwarden = { | ||
enable = true; | enable = true; | ||
backupDir = "/var/lib/vaultwarden/backup"; | backupDir = "/var/lib/vaultwarden/backup"; | ||
# in order to avoid having ADMIN_TOKEN in the nix store it can be also set with the help of an environment file | |||
# be aware that this file must be created by hand (or via secrets management like sops) | |||
environmentFile = "/var/lib/vaultwarden/vaultwarden.env" | |||
config = { | config = { | ||
# Refer to https://github.com/dani-garcia/vaultwarden/blob/main/.env.template | # Refer to https://github.com/dani-garcia/vaultwarden/blob/main/.env.template | ||
DOMAIN = "https://bitwarden.example.com"; | DOMAIN = "https://bitwarden.example.com"; | ||
SIGNUPS_ALLOWED = false; | SIGNUPS_ALLOWED = false; | ||
ROCKET_ADDRESS = "127.0.0.1"; | ROCKET_ADDRESS = "127.0.0.1"; | ||
ROCKET_PORT = 8222; | ROCKET_PORT = 8222; | ||
| Line 27: | Line 30: | ||
}; | }; | ||
}; | }; | ||
</ | </syntaxhighlight> | ||
== Reverse Proxy Setup (recommended) == | == Reverse Proxy Setup (recommended) == | ||
| Line 53: | Line 56: | ||
[[Category:Server]] | [[Category:Server]] | ||
[[Category:Security]] | [[Category:Security]] | ||
[[Category:Rust]] | |||