Loading... ## 1.准备 安装Docker宝塔 开放6666端口 域名一个 ## 2.部署 1.安装Vaultwarden ``` docker run -d --name bitwarden \ --restart unless-stopped \ -e WEBSOCKET_ENABLED=true \ -v /www/wwwroot/bitwarden/:/data/ \ -p 6666:80 \ -p 3012:3012 \ vaultwarden/server:latest ``` 2.ssl配置证书 3.设置反向代理 反代配置: ``` location / { proxy_pass http://127.0.0.1:6666/; rewrite ^/(.*)$ /$1 break; proxy_redirect off; proxy_set_header Host $host; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header Upgrade-Insecure-Requests 1; proxy_set_header X-Forwarded-Proto https; } ``` ![1686194582.webp](https://img.ddli.cn/2023/06/1686194582.webp) 反向代理 `http://127.0.0.1:3012`以及 `http://127.0.0.1:6666`注意改成你自己的IP和端口。 4.创建账号:直接可以打开站点创建账号 ## 三:配置 1.禁用新用户的注册和开启admin 首先删除容器 ``` docker stop bitwarden #停止容器 docker rm -f bitwarden #删除容器 ``` 在重新创建 ``` docker run -d --name bitwarden \ --restart unless-stopped \ -e SIGNUPS_ALLOWED=false \ -e WEBSOCKET_ENABLED=true \ -e TZ=Asia/Shanghai \ -v /www/wwwroot/bitwarden/:/data/ \ -p 6666:80 \ -p 3012:3012 \ vaultwarden/server:latest ``` 2.设置自动同步 bitwarden 默认是不会自动同步的,不管你是添加或者删除又或是修改了一条记录,都只是先保存在本地,只有当你手动点一下同步时才会进行同步。此时我们可以打开 WebSockets notifications 功能,这样手机修改后会立刻自动同步到云端。所以,我们还需要上面的反向代理。 打开网站配置文件,直接复制过去就可以了。(可以把前面第四步的反向代理那段替换掉 ``` location / { proxy_pass http://127.0.0.1:6666; proxy_http_version 1.1; proxy_cache_bypass $http_upgrade; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Forwarded-Host $host; proxy_set_header X-Forwarded-Port $server_port; } location /notifications/hub { proxy_pass http://127.0.0.1:3012; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; } location /notifications/hub/negotiate { proxy_pass http://127.0.0.1:6666; } # Optionally add extra authentication besides the AUTH_TOKEN # If you don't want this, leave this part out # location /admin { # See: https://docs.nginx.com/nginx/admin-guide/security-controls/configuring-http-basic-authentication/ # auth_basic "Private"; # auth_basic_user_file /path/to/htpasswd_file; # proxy_set_header Host $host; # proxy_set_header X-Real-IP $remote_addr; # proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; # proxy_set_header X-Forwarded-Proto $scheme; # proxy_pass http://<SERVER>:6666; # } # Add robots.txt to prevent search engine crawlers (optional) location = /robots.txt { root /www/wwwroot/bitwarden; } ``` 如果你需要`robots.txt`,可以取消注释(把代码前面的#去掉即可这边提供一下`robots.txt`的内容,`/www/wwwroot/bitwarden`这个地址取决于你的`robots.txt`的位置 ``` User-agent: * Disallow: / ``` 3.下载客户端:登录Bitwarden,在右上角点击头像,然后点击【获取应用】 最后修改:2023 年 06 月 08 日 © 允许规范转载 打赏 赞赏作者 支付宝微信 赞 0 如果觉得我的文章对你有用,请随意赞赏