bitwardenrs

Bitwardenrs

⚠️IMPORTANT⚠️: This role got moved to dmaes/ansible-role-vaultwarden

This repo still exists to not break existing installs, but using the newest version will fail with a message that you need to migrate.

Build Status

Builds, installs and configures Bitwarden_RS (without Docker).

Only tested on Debian 10 and CentOS 8

Requirements

  • Requirements for the unarchive-module
  • Requirements for the package-module
  • wget or curl
  • jinja => v2.11
  • Systemd (optional)

Role Variables

Variable Description Default value
bitwardenrs_directory Where to install Bitwarden_RS /opt/bitwarden_rs
bitwardenrs_version Which version to install 1.17.0
bitwardenrs_webvault Install the patched webvault true
bitwardenrs_webvault_version Version of the webvault to install 2.16.1
bitwardenrs_build_backend The database-type to compile for bitwardenrs_version-specific(*)
bitwardenrs_force_recompile Force recompile binary, (e.g. you switched backends on same server false
bitwardenrs_config Key-value environment variables for the Bitwarden_RS .env file { DOMAIN: "https://{{ ansible_fqdn }}/" }
bitwardenrs_datadir Bitwarden_RS data directory (does not configure, only create and used for e.g. keys) {{ bitwardenrs_directory }}/data
bitwardenrs_encryption_key RSA key to use for encryption (content, not file), empty string to not copy, Bitwarden_RS should generate one if non-existing ""
bitwardenrs_force_encryption_key Force changing encryption key if it already exists (DANGEROUS!) false
bitwardenrs_systemd Manage systemd service {{ ansible_service_mgr == 'systemd' }}
(*)Starting from bitwardenrs_version: 1.17.0: defaults to sqlite,mysql,postgresql, before: defaults to sqlite

Example Playbook

- hosts: servers
  vars:
    bitwardenrs_configure: yes
    bitwardenrs_domain: https://bitwarden.example.com/
    bitwardenrs_port: "443"
    bitwardenrs_build_backend: "sqlite,postgresql"
    admin_token: !vault | 
      $ANSIBLE_VAULT;1.1;AES256
      ...
    bitwardenrs_config:
      DOMAIN: "https://example.com/"
      ADMIN_TOKEN: "{{ admin_token }}"
      DATABASE_URL: "postgresql:///bitwardenrs?host=/run/postgresql/"
      SIGNUPS_ALLOWED: 'false'
      SIGNUPS_VERIFY: 'true'
      SIGNUPS_DOMAINS_WHITELIST: 'example.com'
      INVITATIONS_ALLOWED: 'true'
      SMTP_HOST: 'mail.example.com'
      SMTP_FROM: '[email protected]'
      SMTP_FROM_NAME: 'bitwarden'
  roles:
    - dmaes.bitwardenrs

License

MIT

About

Builds, installs and configures Bitwarden_RS (https://github.com/dani-garcia/bitwarden_rs) (without Docker)

Install
ansible-galaxy install dmaes/ansible-role-bitwardenrs
GitHub repository
License
mit
Downloads
129