這是本文件的舊版!

安裝 VaultWarden(Docker) 密碼管理服務

  • 想想還是要有個自己的服務來管理自己的密碼, 這樣應該會比較安心吧!
  1. 編輯 docker-compose.yml 
    version: '3'
services:
  vaultwarden:
    image: vaultwarden/server:latest
    container_name: vaultwarden
    restart: always
    environment:
      - ADMIN_TOKEN=${ADMIN_TOKEN}
      - WEBSOCKET_ENABLED=true
      - SIGNUPS_ALLOWED=false
      - DOMAIN=${DOMAIN}
    volumes:
      - ./vw-data:/data

  caddy:
    image: caddy:2
    container_name: caddy
    restart: always
    ports:
      - 80:80  # Needed for the ACME HTTP-01 challenge.
      - 443:443
    volumes:
      - ./Caddyfile:/etc/caddy/Caddyfile:ro
      - ./caddy-config:/config
      - ./caddy-data:/data
    environment:
      - DOMAIN=${DOMAIN}  # Your domain.
      - EMAIL=${EMAIL}        # The email address to use for ACME registration.
      - LOG_FILE="/data/access.log"
  2. 產生 Caddyfile 檔案 
    {$DOMAIN}:443 {
  log {
    level INFO
    output file {$LOG_FILE} {
      roll_size 10MB
      roll_keep 10
    }
  }

  # Use the ACME HTTP-01 challenge to get a cert for the configured domain.
  tls {$EMAIL}

  # This setting may have compatibility issues with some browsers
  # (e.g., attachment downloading on Firefox). Try disabling this
  # if you encounter issues.
  encode gzip

  # Proxy everything Rocket
  reverse_proxy vaultwarden:80 {
       # Send the true remote IP to Rocket, so that vaultwarden can put this in the
       # log, so that fail2ban can ban the correct IP.
       header_up X-Real-IP {remote_host}
  }
}
  3. 依照實際資訊編輯 .env 參數定義檔 Exp. 
    DOMAIN=https://vaultwarden.ichiayi.com
[email protected]
ADMIN_TOKEN=ec11fe8eaf1afd3f0e9a053563cbda7c33751d316ff3f956ba1c7af0
  4. 啟動服務 

    docker compose up -d

參考網址

,
  • tech/vaultwarden.1709562640.txt.gz
  • 上一次變更: 2024/03/04 22:30
  • jonathan