Can't disable admin page

gritche2 · May 22, 2022, 5:44pm

Hello,

I’m using Vaultwarden on a Nas with docker image.
I have used DISABLE_ADMIN_TOKEN=true but the admin page is still accessible.

When I look on the console of the docker env are :

HOSTNAME=vaultwarden-server1                                                                                                                                               
DISABLE_ADMIN_TOKEN=true                                                                                                                                                   
ROCKET_WORKERS=10                                                                                                                                                          
PWD=/                                                                                                                                                                      
INVITATIONS_ALLOWED=false                                                                                                                                                  
TZ=Europe/Paris                                                                                                                                                            
HOME=/root                                                                                                                                                                 
ROCKET_PORT=80                                                                                                                                                             
ROCKET_ENV=staging                                                                                                                                                         
SIGNUPS_ALLOWED=false                                                                                                                                                      
TERM=xterm                                                                                                                                                                 
SHLVL=1                                                                                                                                                                    
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin                                                                                                          
_=/usr/bin/env

I don’t understand why it do that.
I have several time delete / run / add Disable option : not working

I suppose answer if easy but I don’t founf anything

Thanks in advance

Regards

BlackDex · May 22, 2022, 5:59pm

Well, disable admin token means disable the need of the token.
Set that value to false will make a token to be needed and would case you to need to input a token before you are allowed to enter the admin interface.

gritche2 · May 22, 2022, 6:40pm

Hello,

thanks for this very quick answer.
The strange thing is that even with this option password was needed.
I remove it and set strong pass in admin console.

Does exists possibility to avoid access to it ?

thanks

BlackDex · May 22, 2022, 7:34pm

I think you have a password configured via the reverse proxy.
The admin interface can only be accessed by setting the ADMIN_TOKEN with a random string, or by setting the previous setting you mentioned to true.

Having no ADMIN_TOKEN set means it is disabled and not accessable.

gritche2 · May 22, 2022, 7:54pm

Thanks

sorry for this question so …
It works fine now.

Regards

Topic		Replies	Views
Enabling admin page Help	2	31093	June 2, 2022
Need to secure the admin page	9	1888	December 7, 2023
[SOLVED] Impossible to disable Admin page after enable it Help	4	363	April 20, 2023
Changing the admin password Help	2	2932	November 21, 2022
Unable to access the admin page (docker) Help	5	884	May 14, 2023

Can't disable admin page

Related Topics