dmaes.bitwardenrs

Bitwardenrs

⚠️IMPORTANT⚠️: This role has been moved to dmaes/ansible-role-vaultwarden

This repository still exists to maintain current installations, but using the latest version will result in a message directing you to migrate.

This role builds, installs, and configures Bitwarden_RS (without Docker).

Tested only on Debian 10 and CentOS 8

Requirements

Needs for the unarchive-module
Needs for the package-module
wget or curl
jinja version 2.11 or higher
Optional: Systemd

Role Variables

Variable	Description	Default Value
`bitwardenrs_directory`	Installation path for Bitwarden_RS	`/opt/bitwarden_rs`
`bitwardenrs_version`	Version to be installed	`1.17.0`
`bitwardenrs_webvault`	Install the modified web vault	`true`
`bitwardenrs_webvault_version`	Version of the web vault to be installed	`2.16.1`
`bitwardenrs_build_backend`	Database type to compile for	related to `bitwardenrs_version`()*
`bitwardenrs_force_recompile`	Recompile binary if backend changes on the same server	`false`
`bitwardenrs_config`	Key-value pairs for the Bitwarden_RS `.env` file	`{ DOMAIN: "https://{{ ansible_fqdn }}/" }`
`bitwardenrs_datadir`	Data directory for Bitwarden_RS (only created for keys)	`{{ bitwardenrs_directory }}/data`
`bitwardenrs_encryption_key`	RSA encryption key (use empty string to generate a new one)	`""`
`bitwardenrs_force_encryption_key`	Change encryption key if it exists (RISKY!)	`false`
`bitwardenrs_systemd`	Manage systemd service	`{{ ansible_service_mgr == 'systemd' }}`
() Starting from `bitwardenrs_version: 1.17.0`: defaults to `sqlite,mysql,postgresql`, prior defaults to `sqlite`*

Example Playbook

- hosts: servers
  vars:
    bitwardenrs_configure: yes
    bitwardenrs_domain: https://bitwarden.example.com/
    bitwardenrs_port: "443"
    bitwardenrs_build_backend: "sqlite,postgresql"
    admin_token: !vault | 
      $ANSIBLE_VAULT;1.1;AES256
      ...
    bitwardenrs_config:
      DOMAIN: "https://example.com/"
      ADMIN_TOKEN: "{{ admin_token }}"
      DATABASE_URL: "postgresql:///bitwardenrs?host=/run/postgresql/"
      SIGNUPS_ALLOWED: 'false'
      SIGNUPS_VERIFY: 'true'
      SIGNUPS_DOMAINS_WHITELIST: 'example.com'
      INVITATIONS_ALLOWED: 'true'
      SMTP_HOST: 'mail.example.com'
      SMTP_FROM: '[email protected]'
      SMTP_FROM_NAME: 'bitwarden'
  roles:
    - dmaes.bitwardenrs

License

MIT

Informazioni sul progetto

Builds, installs and configures Bitwarden_RS (https://github.com/dani-garcia/bitwarden_rs) (without Docker)

role bitwardenrs password security

Installa

ansible-galaxy install dmaes.bitwardenrs

GitHub repository

1 stelle

0 fork

1 problemi aperti

Licenza

mit

Download

140

Proprietario

Dieter Maes