Fresh installed "Bitwarden" "An unexpected error occurred" while login

Hi,

i installed Bitwarden today. After i sign up a new account and got the “Welcome” Mail.

Thank you for creating an account with Bitwarden. You may now log in with your new account.
Did you know that Bitwarden is free to sync with all of your devices? Download Bitwarden today on:

Now i tried to login, but i got a message: “An unexpected error occurred.”

I didnt find any logs in /var/log/. I looked in syslog, univention/appcenter.log, management logs etc.

In the Internet i only found “use the latest browserversion” solution, but i already use the latest.

Any Ideas?

Best Regards

Alex

Hello @Corin,

Bitwarden is a multi container app using Docker compose. To obtain the logs from the main service run univention-app logs bitwarden.

To get the collected logs of all services involved, do the following. I hope I remember the directory and the commands correctly:

cd /var/lib/univention-appcenter/apps/bitwarden/compose
docker-compose -p bitwarden logs

This shall give you all the logs of the involved containers when accessing Bitwarden. I hope this help to find the cause for the error message.

Best regards,
Nico

Hi @gulden,

thank you for your Assistance.

Toda i filter the logs, but i cant find problems. the log is very big.

i will try to find this Error.

bitwarden-icons  | info: Microsoft.Hosting.Lifetime[0]
bitwarden-icons  |       Content root path: /app
bitwarden-icons  | info: Microsoft.AspNetCore.Hosting.Diagnostics[1]
bitwarden-icons  |       Request starting HTTP/1.1 GET http://localhost:5000/google.com/icon.png  
bitwarden-icons  | info: Microsoft.AspNetCore.Routing.EndpointMiddleware[0]
bitwarden-icons  |       Executing endpoint 'Bit.Icons.Controllers.IconsController.Get (Icons)'
bitwarden-icons  | info: Microsoft.AspNetCore.Mvc.Infrastructure.ControllerActionInvoker[3]
bitwarden-icons  |       Route matched with {action = "Get", controller = "Icons"}. Executing controller action with signature System.Threading.Tasks.Task`1[Microsoft.AspNetCore.Mvc.IActionResult] Get(System.String) on controller Bit.Icons.Controllers.IconsController (Icons).
bitwarden-icons  | info: Bit.Icons.Controllers.IconsController[0]
bitwarden-icons  |       Cache icon for google.com.
bitwarden-icons  | info: Microsoft.AspNetCore.Mvc.Infrastructure.FileContentResultExecutor[2]
bitwarden-icons  |       Executing Microsoft.AspNetCore.Mvc.FileContentResult, sending file with download name '' ...
bitwarden-icons  | info: Microsoft.AspNetCore.Mvc.Infrastructure.ControllerActionInvoker[2]
bitwarden-icons  |       Executed action Bit.Icons.Controllers.IconsController.Get (Icons) in 551.6285ms
bitwarden-icons  | info: Microsoft.AspNetCore.Routing.EndpointMiddleware[1]
bitwarden-icons  |       Executed endpoint 'Bit.Icons.Controllers.IconsController.Get (Icons)'
bitwarden-icons  | info: Microsoft.AspNetCore.Hosting.Diagnostics[2]
bitwarden-icons  |       Request finished in 637.3977ms 200 image/x-icon
bitwarden-icons  | info: Microsoft.AspNetCore.Hosting.Diagnostics[1]
bitwarden-icons  |       Request starting HTTP/1.1 GET http://localhost:5000/google.com/icon.png  
bitwarden-icons  | info: Microsoft.AspNetCore.Routing.EndpointMiddleware[0]
bitwarden-icons  |       Executing endpoint 'Bit.Icons.Controllers.IconsController.Get (Icons)'
bitwarden-icons  | info: Microsoft.AspNetCore.Mvc.Infrastructure.ControllerActionInvoker[3]
bitwarden-icons  |       Route matched with {action = "Get", controller = "Icons"}. Executing controller action with signature System.Threading.Tasks.Task`1[Microsoft.AspNetCore.Mvc.IActionResult] Get(System.String) on controller Bit.Icons.Controllers.IconsController (Icons).
bitwarden-icons  | info: Microsoft.AspNetCore.Mvc.Infrastructure.FileContentResultExecutor[2]
bitwarden-icons  |       Executing Microsoft.AspNetCore.Mvc.FileContentResult, sending file with download name '' ...
bitwarden-icons  | info: Microsoft.AspNetCore.Mvc.Infrastructure.ControllerActionInvoker[2]
bitwarden-icons  |       Executed action Bit.Icons.Controllers.IconsController.Get (Icons) in 1.252ms
bitwarden-icons  | info: Microsoft.AspNetCore.Routing.EndpointMiddleware[1]
bitwarden-icons  |       Executed endpoint 'Bit.Icons.Controllers.IconsController.Get (Icons)'
bitwarden-icons  | info: Microsoft.AspNetCore.Hosting.Diagnostics[2]
bitwarden-icons  |       Request finished in 3.2696ms 200 image/x-icon
bitwarden-api    | info: Microsoft.AspNetCore.Mvc.Infrastructure.ControllerActionInvoker[3]
bitwarden-api    |       Route matched with {action = "Get", controller = "Misc"}. Executing controller action with signature System.DateTime Get() on controller Bit.Api.Controllers.MiscController (Api).
bitwarden-api    | info: Microsoft.AspNetCore.Mvc.Infrastructure.ObjectResultExecutor[1]
bitwarden-api    |       Executing ObjectResult, writing value of type 'System.DateTime'.
bitwarden-api    | info: Microsoft.AspNetCore.Mvc.Infrastructure.ControllerActionInvoker[2]
bitwarden-api    |       Executed action Bit.Api.Controllers.MiscController.Get (Api) in 0.1177ms
bitwarden-api    | info: Microsoft.AspNetCore.Routing.EndpointMiddleware[1]
bitwarden-api    |       Executed endpoint 'Bit.Api.Controllers.MiscController.Get (Api)'
bitwarden-api    | info: Microsoft.AspNetCore.Hosting.Diagnostics[2]
bitwarden-api    |       Request finished in 0.4757ms 200 application/json; charset=utf-8
bitwarden-api    | info: Microsoft.AspNetCore.Hosting.Diagnostics[1]
bitwarden-api    |       Request starting HTTP/1.1 GET http://localhost:5000/alive  
bitwarden-api    | info: Microsoft.AspNetCore.Routing.EndpointMiddleware[0]
bitwarden-api    |       Executing endpoint 'Bit.Api.Controllers.MiscController.Get (Api)'
bitwarden-api    | info: Microsoft.AspNetCore.Mvc.Infrastructure.ControllerActionInvoker[3]
bitwarden-api    |       Route matched with {action = "Get", controller = "Misc"}. Executing controller action with signature System.DateTime Get() on controller Bit.Api.Controllers.MiscController (Api).
bitwarden-api    | info: Microsoft.AspNetCore.Mvc.Infrastructure.ObjectResultExecutor[1]
bitwarden-api    |       Executing ObjectResult, writing value of type 'System.DateTime'.
bitwarden-api    | info: Microsoft.AspNetCore.Mvc.Infrastructure.ControllerActionInvoker[2]
bitwarden-api    |       Executed action Bit.Api.Controllers.MiscController.Get (Api) in 0.0918ms
bitwarden-api    | info: Microsoft.AspNetCore.Routing.EndpointMiddleware[1]
bitwarden-api    |       Executed endpoint 'Bit.Api.Controllers.MiscController.Get (Api)'
bitwarden-api    | info: Microsoft.AspNetCore.Hosting.Diagnostics[2]
bitwarden-api    |       Request finished in 0.3789ms 200 application/json; charset=utf-8
bitwarden-api    | info: Microsoft.AspNetCore.Hosting.Diagnostics[1]
bitwarden-api    |       Request starting HTTP/1.1 GET http://localhost:5000/alive  
bitwarden-api    | info: Microsoft.AspNetCore.Routing.EndpointMiddleware[0]
bitwarden-api    |       Executing endpoint 'Bit.Api.Controllers.MiscController.Get (Api)'
bitwarden-api    | info: Microsoft.AspNetCore.Mvc.Infrastructure.ControllerActionInvoker[3]
bitwarden-api    |       Route matched with {action = "Get", controller = "Misc"}. Executing controller action with signature System.DateTime Get() on controller Bit.Api.Controllers.MiscController (Api).
bitwarden-api    | info: Microsoft.AspNetCore.Mvc.Infrastructure.ObjectResultExecutor[1]
bitwarden-api    |       Executing ObjectResult, writing value of type 'System.DateTime'.
bitwarden-api    | info: Microsoft.AspNetCore.Mvc.Infrastructure.ControllerActionInvoker[2]
bitwarden-api    |       Executed action Bit.Api.Controllers.MiscController.Get (Api) in 0.1369ms
bitwarden-api    | info: Microsoft.AspNetCore.Routing.EndpointMiddleware[1]
bitwarden-api    |       Executed endpoint 'Bit.Api.Controllers.MiscController.Get (Api)'
bitwarden-api    | info: Microsoft.AspNetCore.Hosting.Diagnostics[2]
bitwarden-api    |       Request finished in 0.4907ms 200 application/json; charset

now i found a warn

bitwarden-icons  | warn: Microsoft.AspNetCore.DataProtection.Repositories.FileSystemXmlRepository[60]
bitwarden-icons  |       Storing keys in a directory '/home/bitwarden/.aspnet/DataProtection-Keys' that may not be persisted outside of the container. Protected data will be unavailable when container is destroyed.

Now i tested it with a new domain test server. it works on it. i dont know why it doesnt work on my productive system. i only changed tls settings, auto package updates and gpos for clients.

Now i installed it on a new memberserver in shell.

this errors was red:

/etc/univention/ssl/password nicht gefunden
ucr cannot be found, falling back to changing the database file directly

Here is my Video

Please i need your assistance :confused:

Hi @gulden,

i found some txt logs in /var/lib/univention-appcenter/apps/bitwarden/data/logs/

in nginx error log this error drop, if i try to login
2020/07/23 12:12:04 [error] 42#42: *25 connect() failed (113: No route to host) while connecting to upstream, client: 172.16.0.1, server: bitwarden.bw.c-lab.one, request: "POST /identity/connect/token HTTP/1.1", upstream: "http://172.16.0.6:5000/connect/token", host: "bitwarden.bw.c-lab.one", referrer: "https://bitwarden.bw.c-lab.one/"

access.log

172.16.0.1 - - [23/Jul/2020:12:13:46 +0200] "POST /api/accounts/prelogin HTTP/1.1" 200 32 "https://bitwarden.bw.c-lab.one/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0" "10.0.0.100"
172.16.0.1 - - [23/Jul/2020:12:13:49 +0200] "POST /identity/connect/token HTTP/1.1" 502 150 "https://bitwarden.bw.c-lab.one/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0" "10.0.0.100"

172.16.0.6 is not reachable with ping

PING 172.16.0.1 (172.16.0.1) 56(84) bytes of data.
64 bytes from 172.16.0.1: icmp_seq=1 ttl=64 time=0.026 ms
64 bytes from 172.16.0.1: icmp_seq=2 ttl=64 time=0.048 ms
^C
--- 172.16.0.1 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1003ms
rtt min/avg/max/mdev = 0.026/0.037/0.048/0.011 ms
root@bw:/var/lib/univention-appcenter/apps/bitwarden/data/logs/api/Api# ping 172.16.0.6
PING 172.16.0.6 (172.16.0.6) 56(84) bytes of data.
From 172.16.0.1 icmp_seq=1 Destination Host Unreachable
From 172.16.0.1 icmp_seq=2 Destination Host Unreachable
From 172.16.0.1 icmp_seq=3 Destination Host Unreachable
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: ens18: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 86:af:5e:36:c5:03 brd ff:ff:ff:ff:ff:ff
    inet 10.0.0.33/24 brd 10.0.0.255 scope global ens18
       valid_lft forever preferred_lft forever
    inet6 fe80::84af:5eff:fe36:c503/64 scope link 
       valid_lft forever preferred_lft forever
3: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default 
    link/ether 02:42:60:fe:c9:ff brd ff:ff:ff:ff:ff:ff
    inet 172.17.42.1/16 brd 172.17.255.255 scope global docker0
       valid_lft forever preferred_lft forever
4: br-5e5a93538910: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default 
    link/ether 02:42:25:2e:7d:af brd ff:ff:ff:ff:ff:ff
    inet 172.16.0.1/24 brd 172.16.0.255 scope global br-5e5a93538910
       valid_lft forever preferred_lft forever
    inet6 fe80::42:25ff:fe2e:7daf/64 scope link 
       valid_lft forever preferred_lft forever
6: vethd64f1d5@if5: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-5e5a93538910 state UP group default 
    link/ether 92:18:e6:11:77:c1 brd ff:ff:ff:ff:ff:ff link-netnsid 0
    inet6 fe80::9018:e6ff:fe11:77c1/64 scope link 
       valid_lft forever preferred_lft forever
8: veth2a70074@if7: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-5e5a93538910 state UP group default 
    link/ether 4a:f7:9c:75:ca:bc brd ff:ff:ff:ff:ff:ff link-netnsid 1
    inet6 fe80::48f7:9cff:fe75:cabc/64 scope link 
       valid_lft forever preferred_lft forever
10: veth75b7c67@if9: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-5e5a93538910 state UP group default 
    link/ether 8a:49:f8:a3:95:00 brd ff:ff:ff:ff:ff:ff link-netnsid 2
    inet6 fe80::8849:f8ff:fea3:9500/64 scope link 
       valid_lft forever preferred_lft forever
12: vetha62cdbe@if11: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-5e5a93538910 state UP group default 
    link/ether d6:0a:5b:d2:f9:26 brd ff:ff:ff:ff:ff:ff link-netnsid 8
    inet6 fe80::d40a:5bff:fed2:f926/64 scope link 
       valid_lft forever preferred_lft forever
14: veth36969c7@if13: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-5e5a93538910 state UP group default 
    link/ether c2:d2:cc:2e:39:57 brd ff:ff:ff:ff:ff:ff link-netnsid 3
    inet6 fe80::c0d2:ccff:fe2e:3957/64 scope link 
       valid_lft forever preferred_lft forever
16: veth0e25e4d@if15: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-5e5a93538910 state UP group default 
    link/ether 1e:0e:d4:03:88:28 brd ff:ff:ff:ff:ff:ff link-netnsid 4
    inet6 fe80::1c0e:d4ff:fe03:8828/64 scope link 
       valid_lft forever preferred_lft forever
18: vethce55c46@if17: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-5e5a93538910 state UP group default 
    link/ether ce:39:6d:b4:94:e3 brd ff:ff:ff:ff:ff:ff link-netnsid 5
    inet6 fe80::cc39:6dff:feb4:94e3/64 scope link 
       valid_lft forever preferred_lft forever
20: veth3b55ade@if19: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-5e5a93538910 state UP group default 
    link/ether 96:a0:f9:67:c4:f5 brd ff:ff:ff:ff:ff:ff link-netnsid 6
    inet6 fe80::94a0:f9ff:fe67:c4f5/64 scope link 
       valid_lft forever preferred_lft forever

Network

NETWORK ID          NAME                      DRIVER              SCOPE
5e5a93538910        bitwarden_appcenter_net   bridge              local
93f16e6e4c94        bridge                    bridge              local
68c500c9ca94        host                      host                local
af7d46e931f5        none                      null                local

Docker Containers

"Containers": {
            "4379f62d115f1b7365335a5a6d514e1b02d483f3d875e7861bfe97fade442b4a": {
                "Name": "bitwarden-icons",
                "EndpointID": "14668685e49bb99b0447ef48da7bada5caef554d890ca2561b1ce3a55796e253",
                "MacAddress": "02:42:ac:10:00:08",
                "IPv4Address": "172.16.0.8/24",
                "IPv6Address": ""
            },
            "57711dd577eea88c9dc25c24c27fae3bcf36f161db8ad3ea76c8a59d2d00358f": {
                "Name": "bitwarden-attachments",
                "EndpointID": "7cc17f449430c13fcfbd03496c3ad23acaf4d50bc6e7bb50000f4e26d55209cd",
                "MacAddress": "02:42:ac:10:00:04",
                "IPv4Address": "172.16.0.4/24",
                "IPv6Address": ""
            },
            "9efb148f5d05fa9e38c2bcf0241a88d9959dd2bb895a594c6d9c4fabf8b30c4a": {
                "Name": "bitwarden-api",
                "EndpointID": "b6b14eedcb85e1a38f17a16dc7fe0779d141861e4c35a2b3d42cee6c3cfb89be",
                "MacAddress": "02:42:ac:10:00:05",
                "IPv4Address": "172.16.0.5/24",
                "IPv6Address": ""
            },
            "b7f54e9b1e09c140238ae7a437b33f4ea737390467db99925f63b6319a6b7d7b": {
                "Name": "bitwarden-nginx",
                "EndpointID": "cd5f444535e48e1c2d5b441cfbab0877812135027e7505f6a05c678762e7cf9c",
                "MacAddress": "02:42:ac:10:00:0a",
                "IPv4Address": "172.16.0.10/24",
                "IPv6Address": ""
            },
            "bc35d526dce6501b1e5c10206cb35c5e9a250566b815c0ab94d52f11b6720abd": {
                "Name": "bitwarden-admin",
                "EndpointID": "075e896e3283412c2c84b90deaffdfea8e2fd698ef293ed215eeac949a33eeac",
                "MacAddress": "02:42:ac:10:00:07",
                "IPv4Address": "172.16.0.7/24",
                "IPv6Address": ""
            },
            "d3bf87ba5fc49a360fd64b39b374f2724a58b5751b42c009d1979a72fd8e15ae": {
                "Name": "bitwarden-mssql",
                "EndpointID": "7a60edcf220751da223ba7026e6ab9ba3e6d8b3f28b4e4c3ec829ed58f2fc457",
                "MacAddress": "02:42:ac:10:00:02",
                "IPv4Address": "172.16.0.2/24",
                "IPv6Address": ""
            },
            "e2476f6b148a3c9c689601af6e2b6da8807f583907138b02b935eb6faab931c6": {
                "Name": "bitwarden-web",
                "EndpointID": "530fbd3b487e301dea9533244874d97857dcff186efdcdf9c024873be0f5d73f",
                "MacAddress": "02:42:ac:10:00:03",
                "IPv4Address": "172.16.0.3/24",
                "IPv6Address": ""
            },
            "f04babde7a98d2196190d7b096be83b9932ef692a1eba59649917ff5093df7c6": {
                "Name": "bitwarden-notifications",
                "EndpointID": "e3c05888329129e6f9c4a598431c2ccdc43e2e0b872d8da51a6728dec1c839fe",
                "MacAddress": "02:42:ac:10:00:09",
                "IPv4Address": "172.16.0.9/24",
                "IPv6Address": ""
            }

docker ps on test server show me this

CONTAINER ID        IMAGE                                                          COMMAND                  CREATED             STATUS                    PORTS                        NAMES
5d609760c5f9        docker.software-univention.de/nextcloud:18.0.6-0               "/bin/sh -c /usr/sbi…"   15 hours ago        Up 15 hours               0.0.0.0:40000->80/tcp        jovial_napier
eb91e84900f4        docker.software-univention.de/bitwarden-nginx:1.34.0           "/entrypoint.sh"         26 hours ago        Up 26 hours (unhealthy)   80/tcp, 8080/tcp, 8443/tcp   bitwarden-nginx
9af925af3603        docker.software-univention.de/bitwarden-admin:1.34.0           "/entrypoint.sh"         26 hours ago        Up 26 hours (healthy)     5000/tcp                     bitwarden-admin
8237678d97e0        docker.software-univention.de/bitwarden-notifications:1.34.0   "/entrypoint.sh"         26 hours ago        Up 26 hours (healthy)     5000/tcp                     bitwarden-notifications
9561ffa207ed        docker.software-univention.de/bitwarden-icons:1.34.0           "/entrypoint.sh"         26 hours ago        Up 26 hours (healthy)     5000/tcp                     bitwarden-icons
ec964899b479        docker.software-univention.de/bitwarden-attachments:1.34.0     "/entrypoint.sh"         26 hours ago        Up 26 hours (healthy)     5000/tcp                     bitwarden-attachments
d5ce1cccf954        docker.software-univention.de/bitwarden-web:1.34.0             "/entrypoint.sh"         26 hours ago        Up 26 hours (healthy)     5000/tcp                     bitwarden-web
e1d7d8e1439f        docker.software-univention.de/bitwarden-identity:1.34.0        "/entrypoint.sh"         26 hours ago        Up 26 hours (healthy)     5000/tcp                     bitwarden-identity
c77c9d6c2a77        docker.software-univention.de/bitwarden-api:1.34.0             "/entrypoint.sh"         26 hours ago        Up 26 hours (healthy)     5000/tcp                     bitwarden-api
abe90cf6f84f        docker.software-univention.de/bitwarden-mssql:1.34.0           "/entrypoint.sh"         26 hours ago        Up 26 hours (healthy)     1433/tcp                     bitwarden-mssql

productive server this

CONTAINER ID        IMAGE                                                          COMMAND             CREATED             STATUS                          PORTS                        NAMES
b7f54e9b1e09        docker.software-univention.de/bitwarden-nginx:1.34.0           "/entrypoint.sh"    About an hour ago   Up 23 minutes (unhealthy)       80/tcp, 8080/tcp, 8443/tcp   bitwarden-nginx
bc35d526dce6        docker.software-univention.de/bitwarden-admin:1.34.0           "/entrypoint.sh"    About an hour ago   Up 23 minutes (healthy)         5000/tcp                     bitwarden-admin
19e8fd648761        docker.software-univention.de/bitwarden-identity:1.34.0        "/entrypoint.sh"    2 hours ago         Restarting (139) 1 second ago                                bitwarden-identity
57711dd577ee        docker.software-univention.de/bitwarden-attachments:1.34.0     "/entrypoint.sh"    2 hours ago         Up 23 minutes (healthy)         5000/tcp                     bitwarden-attachments
4379f62d115f        docker.software-univention.de/bitwarden-icons:1.34.0           "/entrypoint.sh"    2 hours ago         Up 23 minutes (healthy)         5000/tcp                     bitwarden-icons
d3bf87ba5fc4        docker.software-univention.de/bitwarden-mssql:1.34.0           "/entrypoint.sh"    2 hours ago         Up 23 minutes (healthy)         1433/tcp                     bitwarden-mssql
f04babde7a98        docker.software-univention.de/bitwarden-notifications:1.34.0   "/entrypoint.sh"    2 hours ago         Up 23 minutes (healthy)         5000/tcp                     bitwarden-notifications
e2476f6b148a        docker.software-univention.de/bitwarden-web:1.34.0             "/entrypoint.sh"    2 hours ago         Up 23 minutes (healthy)         5000/tcp                     bitwarden-web
9efb148f5d05        docker.software-univention.de/bitwarden-api:1.34.0             "/entrypoint.sh"    2 hours ago         Up 23 minutes (healthy)         5000/tcp                     bitwarden-api

if i stop and start identity container, the 5000/tco comes on first docker ps. second is moved

root@bw:~# docker start 19e8fd648761
19e8fd648761
root@bw:~# docker ps
CONTAINER ID        IMAGE                                                          COMMAND             CREATED             STATUS                                     PORTS                        NAMES
b7f54e9b1e09        docker.software-univention.de/bitwarden-nginx:1.34.0           "/entrypoint.sh"    2 hours ago         Up 27 minutes (unhealthy)                  80/tcp, 8080/tcp, 8443/tcp   bitwarden-nginx
bc35d526dce6        docker.software-univention.de/bitwarden-admin:1.34.0           "/entrypoint.sh"    2 hours ago         Up 27 minutes (healthy)                    5000/tcp                     bitwarden-admin
19e8fd648761        docker.software-univention.de/bitwarden-identity:1.34.0        "/entrypoint.sh"    2 hours ago         Up Less than a second (health: starting)   5000/tcp                     bitwarden-identity
57711dd577ee        docker.software-univention.de/bitwarden-attachments:1.34.0     "/entrypoint.sh"    2 hours ago         Up 27 minutes (healthy)                    5000/tcp                     bitwarden-attachments
4379f62d115f        docker.software-univention.de/bitwarden-icons:1.34.0           "/entrypoint.sh"    2 hours ago         Up 27 minutes (healthy)                    5000/tcp                     bitwarden-icons
d3bf87ba5fc4        docker.software-univention.de/bitwarden-mssql:1.34.0           "/entrypoint.sh"    2 hours ago         Up 27 minutes (healthy)                    1433/tcp                     bitwarden-mssql
f04babde7a98        docker.software-univention.de/bitwarden-notifications:1.34.0   "/entrypoint.sh"    2 hours ago         Up 28 minutes (healthy)                    5000/tcp                     bitwarden-notifications
e2476f6b148a        docker.software-univention.de/bitwarden-web:1.34.0             "/entrypoint.sh"    2 hours ago         Up 27 minutes (healthy)                    5000/tcp                     bitwarden-web
9efb148f5d05        docker.software-univention.de/bitwarden-api:1.34.0             "/entrypoint.sh"    2 hours ago         Up 27 minutes (healthy)                    5000/tcp                     bitwarden-api
root@bw:~# docker ps
CONTAINER ID        IMAGE                                                          COMMAND             CREATED             STATUS                                    PORTS                        NAMES
b7f54e9b1e09        docker.software-univention.de/bitwarden-nginx:1.34.0           "/entrypoint.sh"    2 hours ago         Up 28 minutes (unhealthy)                 80/tcp, 8080/tcp, 8443/tcp   bitwarden-nginx
bc35d526dce6        docker.software-univention.de/bitwarden-admin:1.34.0           "/entrypoint.sh"    2 hours ago         Up 28 minutes (healthy)                   5000/tcp                     bitwarden-admin
19e8fd648761        docker.software-univention.de/bitwarden-identity:1.34.0        "/entrypoint.sh"    2 hours ago         Restarting (139) Less than a second ago                                bitwarden-identity
57711dd577ee        docker.software-univention.de/bitwarden-attachments:1.34.0     "/entrypoint.sh"    2 hours ago         Up 28 minutes (healthy)                   5000/tcp                     bitwarden-attachments
4379f62d115f        docker.software-univention.de/bitwarden-icons:1.34.0           "/entrypoint.sh"    2 hours ago         Up 28 minutes (healthy)                   5000/tcp                     bitwarden-icons
d3bf87ba5fc4        docker.software-univention.de/bitwarden-mssql:1.34.0           "/entrypoint.sh"    2 hours ago         Up 28 minutes (healthy)                   1433/tcp                     bitwarden-mssql
f04babde7a98        docker.software-univention.de/bitwarden-notifications:1.34.0   "/entrypoint.sh"    2 hours ago         Up 28 minutes (healthy)                   5000/tcp                     bitwarden-notifications
e2476f6b148a        docker.software-univention.de/bitwarden-web:1.34.0             "/entrypoint.sh"    2 hours ago         Up 28 minutes (healthy)                   5000/tcp                     bitwarden-web
9efb148f5d05        docker.software-univention.de/bitwarden-api:1.34.0             "/entrypoint.sh"    2 hours ago         Up 28 minutes (healthy)                   5000/tcp                     bitwarden-api

I think i found the Problem. The error tries to connect to 172.16.0.6:5000 but i cant find this container in docker network inspect. identity container doesnt have an “port:tcp” flag in docker ps on productivity system.

How i can fix it?

Has this issue been resolved? I am having the same problem on a fresh UCS install with a fresh bitwarden install. On my end it looks like the container that manages the user identities is failing to start correctly.
92a87b5076d0 docker.software-univention.de/bitwarden-sso:1.38.2 “/entrypoint.sh” 2 hours ago Restarting (139) 18 seconds ago bitwarden-sso
75817d7b8b47 docker.software-univention.de/bitwarden-identity:1.38.2 “/entrypoint.sh” 2 hours ago Restarting (139) 17 seconds ago bitwarden-ide

1 Like

No. On my Testserver i have the same problem.

i installed Bitwarden on an non-univention server

Hello @Corin,

yesterday I had a closer look at Bitwarden installation on a UCS memberserver.

In general, for the Bitwarden installation to work correctly, some parameters need to be provided. A command-line based installation does not ask for those settings. I therefore recommend to install Bitwarden via the App Center module in the UCS management system. The following parameters are needed:

  • Installation ID and Installation Key. They need to be obtained from Bitwarden at https://bitwarden.com/host. No account at the Bitwarden website is needed for that, as far as I can remember.
  • Email settings. The Bitwarden app needs to be able to send emails and checks for a working SMTP connection.

Now, on to the memberserver problem. Users reported that the identity and sso remained in a restart loop. The reason was a problem during app initialization. Those two containers need a dedicated identity certificate (see Bitwarden documentation). During app installation it used the password from the UCS system for the SSL certificates. This password is stored in a file at /etc/univention/ssl/password, but it does not exist in a UCS member server. The needed certificate is satisfied with any password and it just needs to be made known to Bitwarden via a defined environment variable.

An app update is on the way. If you can wait for it, please wait!!

Here are the steps that worked for me. Please be aware to only apply them on a UCS system in the memberserver role.

# Create a random password and store it in the file expected by the app
pwgen -s 64 1 | tr -d '\n' > /etc/univention/ssl/password

export hostname=$(ucr get hostname)
export IDENTITY_PFX_FILE=/var/lib/univention-appcenter/apps/bitwarden/config/identity/identity.pfx

# Create a new certificate file for the identity service
openssl pkcs12 -export -out "$IDENTITY_PFX_FILE" -inkey
/etc/univention/ssl/$hostname/private.key -in
/etc/univention/ssl/$hostname/cert.pem  -certfile
/etc/univention/ssl/$hostname/cert.pem -passout pass:$(cat
/etc/univention/ssl/password)

# Reinitialize the bitwarden app in order to apply the changes
univention-app reinitialize bitwarden

Best regards,
Nico

Hello,

an update for the Bitwarden app has been released yesterday (version 1.38.2-1) which mitigates the initialization problem on UCS slave and member servers.

Best regards,
Nico

1 Like
Mastodon