basnotes

 

Bitwarden RS

tip

While I have been quite satisfied using a self-hosted official Bitwarden server, the large amount of containers and high resource usage has always seemed over the top for a “simple password vault”. Now, I ran into Bitwarden RS, which is a server-api compatible server written in Rust as a single docker image having a lower resource demand.

Bitwarden RS looks promising, so I decided to try it out to compare against the official server. The Using Docker Compose wiki page was of great help to set it up.

I’m already using Caddy Server as my main webserver and reverse proxy and set it up to serve Bitwarden RS. So I just have to run the Bitwarden RS image:

version: '3'

services:
  bitwarden:
    image: bitwardenrs/server
    restart: always
    volumes:
      - ./bw-data:/data
    environment:
      WEBSOCKET_ENABLED: 'false' # Required to use websockets
      SIGNUPS_ALLOWED: 'false'   # set to false to disable signups
      ADMIN_TOKEN: '********************'
    ports:
      - 82:80

Bitwarden RS will be accessible from the internet, so we can use the Bitwarden app on our phones, but I don’t want to allow people other than within my family to sign up for use of it. So I blocked it by setting SIGNUPS_ALLOWED to false.

Conclusion

All in all, moving over from the official server to Bitwarden RS was done in a breeze and works just fine with the official Bitwarden app.

By the way, Bitwarden RS allows setting up an organization which allows to share passwords between users. For the official server, this is a premium feature!

September 23, 2020