I’ve installed the Vaultwarden container on my Debian 12.1 home server. The web app is working flawlessly.
But i’m facing trouble configuring the Bitwarden app on my android device. I’m connected to my home server through a Wireguard tunnel (other services such as Nextcloud, Jellyfin and so work fine).
But i can’t login to my Vaultwarden account on the BW app. In the login page i choose “self hosted”, then i put in the server URL field the URL and port of my instance.
In “personnalised environment” all fields are empty.
I’ve imported the self signed certificate into my phone through Android settings.
But when trying to connect then, i got a popup saying, “An error occured. We couldn’t process your request. Try again or contact us”
So i really don’t know where the error comes from.
I’m on latest BW app version. and on Android 15.
Can you obtain a public certificate, say from Let’s Encrypt and try that? I’m guessing (though it is an educated guess) that the Android App is not happy with the self-signed certificate.
Do i need to open specific port on my router in order to use a public certificate ? if, yes i won’t be able to do so, i don’t want to open any port on my router (except the wireguard port).
Is there any official statement saying that the Android app is not happy with self-signed certificate ?
Search for DNS challenge as it works without opening any ports. I used to open a port for a minute or two every 90 days to renew the certificate which isn’t that big of a deal.
I’ve been looking at the Bitwarden Android source, it is open source. I’m pretty sure it won’t trust a simple self-signed certificate. However, you should be able to create your own self-signed Certificate Authority (CA) certificate and then sign your Vaultwarden server certificate with that certificate. You then install your CA certificate on your android device.
If someone doesn’t mind a numeric xyz domain they are very inexpensive and can make things like DNS challenge much easier to setup than those free DDSNS subdomains.