Private certificate authority #6290
Replies: 2 comments 2 replies
-
Vaulwarden is working perfectly with the self signed certificates we create. We created some hints on our online docs how to extract the cert and import it into various OS to enable Bitwarden clients to work still. |
Beta Was this translation helpful? Give feedback.
-
Indeed, for vaultwarden a self-signed certificate is created automatically on package install, or was there an issue with this in your case? I also had the idea to allow creating self-signed certificates as alternative to Let's Encrypt via dedicated script, e.g. renaming |
Beta Was this translation helpful? Give feedback.
-
Hey all. Letsencrypt is awesome, but doesn't work on private networks. I've been running bitwarden server for a couple years with no problem, until it became vaultwarden. Now my app no longer works because it now requires https.
How about a quick to install, easy to use personal authority for those locked away from the net, but still needing encryption services? Or those who wish to test, but not directly online.
it seems to me forcing folks to put personal, hobbyist sites online just so https will work locally is a bit silly, opening folks up to threats they likely don't comprehend. I have two encrypted sites running now on my home net. If I need remote access, I prefer to tunnel in through SSH than have to worry about online attacks.
What do you say, Micha? Something to create and sign the cert and serve validation requests? XCA seems fairly decent, but if you gave it the Dietpi treatment, where store locations are known, and a copy can easily be created to share with clients, that'd be grand.
But I won't hold my breath.
Beta Was this translation helpful? Give feedback.
All reactions