I can't log into my user account

Help
1

Hello,

I’ve just installed Vaultwarden on Linux (Mageia 9) without docker after I’ve followed this post :

My config :

ksnip_20240526-200842
ksnip_20240526-2008421131×730 72.6 KB

I can connect to the admin account and can create a user account but I can’t login using this new created account. I’m immediately disconnected. I’ve seen many topics with the same issue but without any clear explanation on how to solve it.
The error in the vaultwarden log file :
[2024-05-26 17:05:11.518][auth][ERROR] Unauthorized Error: No access token provided
[2024-05-26 17:05:11.518][vaultwarden::api::core::ciphers::_][WARN] Request guard Headers failed: “No access token provided”.

I’m using apache. Here is my vaultwarden.conf file :

<IfModule mod_proxy_http.c>

    SSLProxyEngine on
    ProxyRequests Off
    ProxyPreserveHost On

    <Proxy http://127.0.0.1:8000/vaultwarden/>
         Order allow,deny
         Allow from all
    </Proxy>

    ProxyPass /vaultwarden/ http://127.0.0.1:8000/vaultwarden/
    ProxyPassReverse /vaultwarden/ http://127.0.0.1:8000/vaultwarden/

#     ProxyPass /vaultwarden/ http://127.0.0.1:8000/vaultwarden/ upgrade=websocket

</IfModule>

Here is my config.json file :

{
  "domain": "https://my-domain.fr/vaultwarden",
  "sends_allowed": true,
  "incomplete_2fa_time_limit": 3,
  "disable_icon_download": false,
  "signups_allowed": true,
  "signups_verify": true,
  "signups_verify_resend_time": 3600,
  "signups_verify_resend_limit": 6,
  "org_creation_users": "xuo@my-domain.com",
  "invitations_allowed": true,
  "emergency_access_allowed": true,
  "email_change_allowed": true,
  "password_iterations": 600000,
  "password_hints_allowed": true,
  "show_password_hint": true,
  "admin_token": "$argon2id$this_is_my_admin_token",
  "invitation_org_name": "Vaultwarden",
  "ip_header": "X-Forwarded-For",
  "icon_redirect_code": 302,
  "icon_cache_ttl": 2592000,
  "icon_cache_negttl": 259200,
  "icon_download_timeout": 10,
  "icon_blacklist_non_global_ips": true,
  "disable_2fa_remember": false,
  "authenticator_disable_time_drift": false,
  "require_device_email": false,
  "reload_templates": false,
  "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f",
  "admin_session_lifetime": 20,
  "_enable_yubico": true,
  "_enable_duo": true,
  "_enable_smtp": true,
  "use_sendmail": false,
  "smtp_host": "smtp.gmail.com",
  "smtp_security": "starttls",
  "smtp_port": 587,
  "smtp_from": "xuo@my-domain.com",
  "smtp_from_name": "Vaultwarden",
  "smtp_username": "xuo@my-domain.com",
  "smtp_password": "my-password",
  "smtp_timeout": 15,
  "smtp_embed_images": true,
  "smtp_accept_invalid_certs": false,
  "smtp_accept_invalid_hostnames": false,
  "_enable_email_2fa": true,
  "email_token_size": 6,
  "email_expiration_time": 600,
  "email_attempts_limit": 3
}

Could you help me to solve this issue ?

Regards.

Xuo.

2

Not sure if there should be a trailing slash in the DOMAIN variable or not. Our wiki seems to have contradictory opinions on the matter, e.g. Proxy examples seems to recommend it with but Using an alternate base dir does not. But my guess would be that this might be the cause of the problem.

From experience this also happens if you are using old rsa_key.* files, if you have upgraded from an old installation.

3

Hello stefan0xC,

Thank you for your answer but I don’t think it is the correct one :grinning:
In my .env file, I’ve got the /
DOMAIN=https://my-domain.fr/vaultwarden/
but it seems to be translated without in the file data/config.json :
“domain”: “https://my-domain.fr/vaultwarden”,

I didn’t try to overwrite what is written in the config.json file because I think it will be overridden again if I modify the .env file (am I right ?).

Regards.

xuo.