bitwardenrs
Bitwardenrs
⚠️IMPORTANT⚠️: This role got moved to dmaes/ansible-role-vaultwarden
This repo still exists to not break existing installs, but using the newest version will fail with a message that you need to migrate.
Builds, installs and configures Bitwarden_RS (without Docker).
Only tested on Debian 10 and CentOS 8
Requirements
- Requirements for the unarchive-module
- Requirements for the package-module
- wget or curl
- jinja => v2.11
- Systemd (optional)
Role Variables
Variable | Description | Default value |
---|---|---|
bitwardenrs_directory |
Where to install Bitwarden_RS | /opt/bitwarden_rs |
bitwardenrs_version |
Which version to install | 1.17.0 |
bitwardenrs_webvault |
Install the patched webvault | true |
bitwardenrs_webvault_version |
Version of the webvault to install | 2.16.1 |
bitwardenrs_build_backend |
The database-type to compile for | bitwardenrs_version-specific(*) |
bitwardenrs_force_recompile |
Force recompile binary, (e.g. you switched backends on same server | false |
bitwardenrs_config |
Key-value environment variables for the Bitwarden_RS .env file |
{ DOMAIN: "https://{{ ansible_fqdn }}/" } |
bitwardenrs_datadir |
Bitwarden_RS data directory (does not configure, only create and used for e.g. keys) | {{ bitwardenrs_directory }}/data |
bitwardenrs_encryption_key |
RSA key to use for encryption (content, not file), empty string to not copy, Bitwarden_RS should generate one if non-existing | "" |
bitwardenrs_force_encryption_key |
Force changing encryption key if it already exists (DANGEROUS!) | false |
bitwardenrs_systemd |
Manage systemd service | {{ ansible_service_mgr == 'systemd' }} |
(*)Starting from bitwardenrs_version: 1.17.0 : defaults to sqlite,mysql,postgresql , before: defaults to sqlite |
Example Playbook
- hosts: servers
vars:
bitwardenrs_configure: yes
bitwardenrs_domain: https://bitwarden.example.com/
bitwardenrs_port: "443"
bitwardenrs_build_backend: "sqlite,postgresql"
admin_token: !vault |
$ANSIBLE_VAULT;1.1;AES256
...
bitwardenrs_config:
DOMAIN: "https://example.com/"
ADMIN_TOKEN: "{{ admin_token }}"
DATABASE_URL: "postgresql:///bitwardenrs?host=/run/postgresql/"
SIGNUPS_ALLOWED: 'false'
SIGNUPS_VERIFY: 'true'
SIGNUPS_DOMAINS_WHITELIST: 'example.com'
INVITATIONS_ALLOWED: 'true'
SMTP_HOST: 'mail.example.com'
SMTP_FROM: '[email protected]'
SMTP_FROM_NAME: 'bitwarden'
roles:
- dmaes.bitwardenrs
License
MIT
About
Builds, installs and configures Bitwarden_RS (https://github.com/dani-garcia/bitwarden_rs) (without Docker)
Install
ansible-galaxy install dmaes/ansible-role-bitwardenrs
License
mit
Downloads
129
Owner