I use Biwarden extensively, in self-hosted mode (vaultwarden), for a few years now.
It is truly excellent, especially the fact that you can "move" an entry to an organization, where everyone has the same ownership and rights (and not merely "share" it). Plus a ton of wonderful things.
There are two minor points I am missing:
- the ability to control someone's passwords. Typical usage: the 24/7/365 support for my parents, where I would like to be able to access their passwords (they also would like that, obviously). There would be a simple solution: the ability to force someone to file entries only in an organization. But it is not possible (and new entries will go to the personal vault by default).
- the ability to discard the Android pop-up, sometimes it completely blocks the ability to manually fill in something. An "escape" kind of gesture.
Having tried almost every other solution available over the past 25 years I also self host vaultwarden in a docker container and I'm pretty happy with it.
I've been wanting to set up vaultwarden with Docker. However the setup guide[1] uses caddy with ports 443 and 80, but I already have traefik set up with those ports, so docker-compose aborts. My docker knowledge is quite minimal, so I am unsure how (or if) I can resolve this.
Now - I used traefik and caddy extensively (and everything I do is in docker these days) and caddy is so much, much better than traefik.
I used traefik v1 and v2 and struggled with having an optimal configuration. With caddy it just works.
The main difference is that with traefik you usually try to squeeze your configuration in the docker-compose.yaml, but end up with a traefik configuration as well.
With caddy you have everything in a caddy file - in my case adding a service with plenty of things set up (filtering for networks etc. is a matter of adding
On top of that, the caddy community is great - some questions may seem simple for the ones who are used to proxies etc. but are very hard to understand for the newcomers. There are always kind guidance for these people in the forum.
You can set an organisation policy to disable personal ownership, which forces every password to be saved into an org, unless the user is an org owner or administrator.
The thing is that I still want BW to give me the possibility to choose a site to fill in (so I do need the popup). It is just that sometimes I need it out of the way, and there is no gesture for that (such as sliding it to the side for instance, or long pressing to make it go away)
Are you referring to the popup created by the autofill service that is integrated in Android (https://developer.android.com/guide/topics/text/autofill)? In that case you can activate the inline autofill functionality (assuming that your keyboard supports that) so that no popup will show up.
It is truly excellent, especially the fact that you can "move" an entry to an organization, where everyone has the same ownership and rights (and not merely "share" it). Plus a ton of wonderful things.
There are two minor points I am missing:
- the ability to control someone's passwords. Typical usage: the 24/7/365 support for my parents, where I would like to be able to access their passwords (they also would like that, obviously). There would be a simple solution: the ability to force someone to file entries only in an organization. But it is not possible (and new entries will go to the personal vault by default).
- the ability to discard the Android pop-up, sometimes it completely blocks the ability to manually fill in something. An "escape" kind of gesture.