A8DOG

A8DOG

随便写写,记录折腾过程!
telegram
Home文章归档公共服务友情链接

Bitwarden Self-Hosting Tutorial - Free and Easy-to-Use Password Manager

#Bitwarden#密码管理器30
AI Translation
This post is translated from Chinese into English through AI.View Original
AI-generated summary
The author found it inconvenient to manage multiple Google accounts with different passwords using Chrome's password manager, so they decided to self-host Bitwarden on a server. They followed the installation guide provided by Bitwarden and set it up with Docker. The process involved creating a user, setting up directories, running a script to install Bitwarden, and configuring SSL. They also mentioned the differences between 1Password and Bitwarden in terms of UI and password filling. Finally, they highlighted the backup feature of Bitwarden and recommended backing up the bwdata directory.

Preface:#

The password manager is a very useful tool that can help us easily remember usernames and complex, irregular passwords for various websites, and can also generate secure passwords when creating users. Previously, I had always relied on Chrome's built-in password manager, which is very useful for automatic synchronization, website loading and password filling, and password generation, which are the most basic functions.

But later on, I found that I had registered several Google accounts for different purposes, and the passwords were not synchronized. It was very inconvenient when I needed to retrieve a password. I had the idea of ​​building my own Bitwarden a long time ago, but I was too lazy to implement it, and the official recommendation was a 4GB memory server, and the minimum was also a 2GB server. I didn't have any free servers at hand.

bitwarden-password-manager

So I used 1Password for a few months, which costs a few dollars a month. The UI interface of the software is also very beautiful, but I still feel a little distressed to spend tens of dollars every month to host my passwords. Fortunately, recently I accidentally bought a 4H4G server with an annual payment, and I regretted it after buying it and couldn't get a refund. So I created my own Bitwarden.

Let's first talk about the differences between the two products for me. 1Password looks good and the UI is very comfortable. It has all the functions of a password manager. The only thing is that the password filling doesn't make me feel more comfortable than Chrome's native one. Bitwarden's UI is average, and it also has the problem of password filling when loading web pages. Maybe I haven't used the two software for a long time and they haven't been well adapted.

Installation Tutorial:#

Adopt the official Linux standard deployment: https://bitwarden.com/help/install-on-premise-linux/

First, prepare a domain name resolution to the server, and then a server with a minimum of 2GB memory, 4GB is optimal, and the server environment should be clean.

Install Docker and Docker-Compose: Docker one-click installation script

  1. Create the bitwarden user:
sudo adduser bitwarden
  1. Set a password (strong password) for the bitwarden user:
sudo passwd bitwarden
  1. Create a docker group (if it does not already exist):
sudo groupadd docker
  1. Add the bitwarden user to the docker group:
sudo usermod -aG docker bitwarden
  1. Create the bitwarden directory:
sudo mkdir /opt/bitwarden
  1. Set the permissions for the /opt/bitwarden directory:
sudo chmod -R 700 /opt/bitwarden
  1. Set the bitwarden user as the owner of the /opt/bitwarden directory:
sudo chown -R bitwarden:bitwarden /opt/bitwarden

Bitwarden provides a shell script that can be easily installed on Linux and Windows (PowerShell). Follow these steps to install Bitwarden using the shell script:

su bitwarden # Switch to the user first, then execute the following script
curl -Lso bitwarden.sh "https://func.bitwarden.com/api/dl/?app=self-host&platform=linux" && chmod 700 bitwarden.sh
./bitwarden.sh install

Enter your domain name:

[bitwarden@vultr ~]$ ./bitwarden.sh install
 _     _ _                         _            
| |__ (_) |___      ____ _ _ __ __| | ___ _ __  
| '_ \| | __\ \ /\ / / _` | '__/ _` |/ _ \ '_ \ 
| |_) | | |_ \ V  V / (_| | | | (_| |  __/ | | |
|_.__/|_|\__| \_/\_/ \__,_|_|  \__,_|\___|_| |_|

Open source password management solutions
Copyright 2015-2024, 8bit Solutions LLC
https://bitwarden.com, https://github.com/bitwarden

===================================================

bitwarden.sh version 2024.6.1
Docker version 26.1.4, build 5650f9b
docker-compose version 1.29.2, build 5becea4c

(!) Enter the domain name for your Bitwarden instance (ex. bitwarden.example.com):

Whether to enable SSL:

(!) Do you want to use Let's Encrypt to generate a free SSL certificate? (y/n):

Enter an email address to apply for the certificate:

Enter your email address (Let's Encrypt will send you certificate expiration reminders)

Wait for a dozen seconds to apply for the certificate, and then the following content will appear (enter the database name):

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
If you like Certbot, please consider supporting our work by:
 * Donating to ISRG / Let's Encrypt:   https://letsencrypt.org/donate
 * Donating to EFF:                    https://eff.org/donate-le
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(!) Enter the database name for your Bitwarden instance (ex. vault):

Get the installation ID and key from https://bitwarden.com/host/:

(!) Enter your installation id (get at https://bitwarden.com/host):

(!) Enter your installation key:

(!) Enter your region (US/EU) [US]:

After completing these operations, you will find that there are still some dots on the screen, and after waiting for a dozen seconds, half of the deployment will be completed. Our overall file is in: /home/bitwarden/bwdata

We can also modify the file /home/bitwarden/bwdata/env/global.override.env. You can see the specific meaning of some content here: https://bitwarden.com/help/install-on-premise-manual/. If you want the background function, you can configure the sending email in this file.

The background is the domain name + admin. You need to enter the administrator's email address to log in. It should be the email address entered when applying for the ID and key. Then you need to receive an email to log in. The background function seems to only have some functions to view and manage users, and you cannot see some passwords of users. I haven't configured the sending email, so I'm not sure about the specific functions.

If you don't understand this file, you can leave it unchanged and then execute: ./bitwarden.sh start. Wait for the image to be pulled and you can access your domain name. Create an account, log in to the account, and import passwords. Install Bitwarden on your browser or device, and choose self-hosted when logging in.

Snipaste_2024-06-20_01-02-09

Bitwarden will automatically back up the database every day, and the main files are in /home/bitwarden/bwdata. You can back up this directory.

As for how to restore backup files, I haven't tried it yet. You can refer to the official documentation for the specific operations.

Loading...
Ownership of this post data is guaranteed by blockchain and smart contracts to the creator alone.