!cASGtOHlSftdScFNMs:matrix.org

vaultwarden

848 Members
Bitwarden API server written in Rust: https://github.com/dani-garcia/vaultwarden185 Servers

Load older messages


SenderMessageTime
31 Jul 2021
@assid:matrix.orgsatishaJust an FYI, on Windows if you set up Windows hello (pin/biometric), you can use webauthn with Firefox, this will register your Windows device. On Mac, you can register your biometric, but I think it's via Safari only04:41:48
@ujjwal-2508:matrix.orgUjjwal joined the room.09:30:20
@david:vovo.id.audavoin my experience on Mac, you can only use Touch ID for WebAuthn in Chrome (not even Safari)13:48:39
@assid:matrix.orgsatishaInteresting... Whereas on Windows Chrome doesn't do that, not easily that I can see14:58:51
@korjavin:matrix.org@korjavin:matrix.org left the room.19:26:59
@metalcoder:metalcoder.devmetalcoder joined the room.20:34:23
@metalcoder:metalcoder.devmetalcoder set a profile picture.20:38:14
@metalcoder:metalcoder.devmetalcoderHey! Just wondering if account recovery (password reset, emergency contact) is anywhere close in the roadmap...20:40:28
@metalcoder:metalcoder.devmetalcoderIt's the only thing that's blocking a rollout both in my company and my family 😀20:41:07
1 Aug 2021
@assid:matrix.orgsatishaI don't think password recovery/reset works since the password is used to encrypt the data02:39:52
@assid:matrix.orgsatishaThat's why even in Bitwarden if you loose acres to your master password, you'll need to delete the account and start fresh02:40:35
@assid:matrix.orgsatishaEmergency contact, I heard someone did a check out, but nothing heard regarding that.02:41:36
@assid:matrix.orgsatishaYou could roll it out at your company.. emergency contact is mostly used by personal/ family accounts02:42:38
@metalcoder:metalcoder.devmetalcoderHaving no way of recovering from a forgotten password is a bit of a deal breaker unfortunately...04:55:25
@washort:greyface.orgdashthe way you recover is from an unencrypted backup04:55:48
@washort:greyface.orgdashor at least, encrypted with something different from the user's password04:56:01
@metalcoder:metalcoder.devmetalcoderYeah... Having an unencrypted backup feels less safe than encrypting with a stored password other than the user's login password. How has hosted bitwarden solved it woth emergency contact?05:00:32
@blackdex:matrix.orgBlackDexEmergency contact and organization master password reset both work with shared keys08:29:24
@blackdex:matrix.orgBlackDexSo the only way someone can change your master password is if you are enrolled into an org and it is enrolled into the master password recovery. Which at this point isn't build in into Vaultwarden08:31:11
@blackdex:matrix.orgBlackDexEmergency contact isn't into Vaultwarden yet. We still need to find time to validate and check the PR which is created08:32:07
@metalcoder:metalcoder.devmetalcoder
Svar på @blackdex:matrix.org
Emergency contact isn't into Vaultwarden yet. We still need to find time to validate and check the PR which is created
Any way to help out?
10:03:43
@batoo:matrix.orgbatoo joined the room.11:44:26
@batoo:matrix.orgbatooimage.png
Download image.png
11:49:15
@batoo:matrix.orgbatooHello ! Thanks a lot for this awesome FOSS port, been using it a bit and so far so good ! Only thing is ( I might be the culprit ) I use nginx as reverse proxy and connexion to vaultwarden is good, https check ok, but the diagnostic gives me this : 11:49:17
@batoo:matrix.orgbatooHave I missed something or is it like this for everyone using reverse proxy ?11:49:46
@blackdex:matrix.orgBlackDexbatoo: if you hover over those red messages, it will explain a bit what/why12:40:47
@blackdex:matrix.orgBlackDexBut bascially, you need to configure the DOMAIN variable12:40:59
@blackdex:matrix.orgBlackDexit doesn't match the hostname, neither does the http compared to https12:41:22
@blackdex:matrix.orgBlackDexIf it doesn't match, it will cause issues with e-mails (because those links are generated to localhost and will not work), WebAuthn, attachments, send etc.. all those items will not work12:42:28
@batoo:matrix.orgbatooGot it, I misunderstood the explaination in domain URL configuration, now all is good thanks a lot !16:03:57

There are no newer messages yet.


Back to Room List