After hasing admin password unable to login into the /admin page. #1567

New Issue

Closed

opened 2026-02-05 01:15:26 +03:00 by OVERLORD · 1 comment

OVERLORD commented 2026-02-05 01:15:26 +03:00

Owner

Copy Link

Originally created by @sebasdt on GitHub (Apr 16, 2023).

Subject of the issue

After I changed my admin password to a more secure password, my vaultwarden instance is still saying I need to secure it.
This also resulted in me not able to log into the admin page.

Deployment environment

I'm using portainer and vaultwarden has its own bind volume for saving everything persitantly.

• vaultwarden version:
  Latest stable version: 1.28.1

• Install method:
  portainer (docker stack)

• Clients used:

• Reverse proxy and version:

• MySQL/MariaDB or PostgreSQL version:

• Other relevant details:
  Looking into the vaultwarden volume I dont see a config.json that could conflict with the docker env's

Steps to reproduce

• Set up Vaultwarden with plain text admin token
  

• After Vaultwarden is up and running with plain text token, generate a hashed token with argon2
  

• Change ADMIN_TOKEN to hashed token and restart Vaultwarden
  

• Vaultwarden logs warning about using a plain text token with ADMIN_TOKEN set to a hashed token
  

Expected behaviour

Im able to log into the admin page and that the logs dont show I need to switch to a more secure password

Actual behaviour

The /admin page is saying: "Error: Invalid admin token, please try again." and not letting me log in.

Troubleshooting data

Logs
[NOTICE] You are using a plain textADMIN_TOKEN` which is insecure.

Please generate a secure Argon2 PHC string by using vaultwarden hash or argon2.

See: https://github.com/dani-garcia/vaultwarden/wiki/Enabling-admin-page#secure-the-admin_token
`

docker-compose yml admin env:
NOTE THIS IS NOT MY TOKEN BUT IT DOES LOOK LIKE THIS!
environment: ADMIN_TOKEN: $$argon2id$$v=19$$m=19456,t=2,p=1$$UUZxK1FZMkZoRHFQRlVrTXZvS0E3bHpNQW55c2dBN2NORzdsa0Nxd1JhND0$$cUoId+JBUsJutlG4rfDZayExfjq4TCt48aBc9qsc3UI

Originally created by @sebasdt on GitHub (Apr 16, 2023). <!-- # ### NOTE: Please update to the latest version of vaultwarden before reporting an issue! This saves you and us a lot of time and troubleshooting. See: * https://github.com/dani-garcia/vaultwarden/issues/1180 * https://github.com/dani-garcia/vaultwarden/wiki/Updating-the-vaultwarden-image # ### --> <!-- Please fill out the following template to make solving your problem easier and faster for us. This is only a guideline. If you think that parts are unnecessary for your issue, feel free to remove them. Remember to hide/redact personal or confidential information, such as passwords, IP addresses, and DNS names as appropriate. --> ### Subject of the issue <!-- Describe your issue here. --> After I changed my admin password to a more secure password, my vaultwarden instance is still saying I need to secure it. This also resulted in me not able to log into the admin page. ### Deployment environment I'm using portainer and vaultwarden has its own bind volume for saving everything persitantly. <!-- ========================================================================================= Preferably, use the `Generate Support String` button on the admin page's Diagnostics tab. That will auto-generate most of the info requested in this section. ========================================================================================= --> <!-- The version number, obtained from the logs (at startup) or the admin diagnostics page --> <!-- This is NOT the version number shown on the web vault, which is versioned separately from vaultwarden --> <!-- Remember to check if your issue exists on the latest version first! --> * vaultwarden version: Latest stable version: 1.28.1 <!-- How the server was installed: Docker image, OS package, built from source, etc. --> * Install method: portainer (docker stack) * Clients used: <!-- web vault, desktop, Android, iOS, etc. (if applicable) --> * Reverse proxy and version: <!-- if applicable --> * MySQL/MariaDB or PostgreSQL version: <!-- if applicable --> * Other relevant details: Looking into the vaultwarden volume I dont see a config.json that could conflict with the docker env's ### Steps to reproduce <!-- Tell us how to reproduce this issue. What parameters did you set (differently from the defaults) and how did you start vaultwarden? --> - Set up Vaultwarden with plain text admin token - After Vaultwarden is up and running with plain text token, generate a hashed token with argon2 - Change ADMIN_TOKEN to hashed token and restart Vaultwarden - Vaultwarden logs warning about using a plain text token with ADMIN_TOKEN set to a hashed token ### Expected behaviour <!-- Tell us what you expected to happen --> Im able to log into the admin page and that the logs dont show I need to switch to a more secure password ### Actual behaviour <!-- Tell us what actually happened --> The /admin page is saying: "Error: Invalid admin token, please try again." and not letting me log in. ### Troubleshooting data <!-- Share any log files, screenshots, or other relevant troubleshooting data --> Logs ` [NOTICE] You are using a plain text `ADMIN_TOKEN` which is insecure. Please generate a secure Argon2 PHC string by using `vaultwarden hash` or `argon2`. See: https://github.com/dani-garcia/vaultwarden/wiki/Enabling-admin-page#secure-the-admin_token ` **docker-compose yml admin env:** NOTE THIS IS NOT MY TOKEN BUT IT DOES LOOK LIKE THIS! ` environment: ADMIN_TOKEN: $$argon2id$$v=19$$m=19456,t=2,p=1$$UUZxK1FZMkZoRHFQRlVrTXZvS0E3bHpNQW55c2dBN2NORzdsa0Nxd1JhND0$$cUoId+JBUsJutlG4rfDZayExfjq4TCt48aBc9qsc3UI `

OVERLORD closed this issue 2026-02-05 01:15:27 +03:00

OVERLORD commented 2026-02-05 01:15:32 +03:00

Author

Owner

Copy Link

@BlackDex commented on GitHub (Apr 16, 2023):

Try to put single quotes around it '.
Also, make sure you have run docker compose up -d, and that you do not have a config.json file in your data folder. That will override all environment variables.

@BlackDex commented on GitHub (Apr 16, 2023): Try to put single quotes around it `'`. Also, make sure you have run `docker compose up -d`, and that you do not have a `config.json` file in your data folder. That will override all environment variables.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

cached-config-operations

test_dylint

1.35.2

1.35.1

1.35.0

1.34.3

1.34.2

1.34.1

1.34.0

1.33.2

1.33.1

1.33.0

1.32.7

1.32.6

1.32.5

1.32.4

1.32.3

1.32.2

1.32.1

1.32.0

1.31.0

1.30.5

1.30.4

1.30.3

1.30.2

1.30.1

1.30.0

1.29.2

1.29.1

1.29.0

1.28.1

1.28.0

1.27.0

1.26.0

1.25.2

1.25.1

1.25.0

1.24.0

1.23.1

1.23.0

1.22.2

1.22.1

1.22.0

1.21.0

1.20.0

1.19.0

1.18.0

1.17.0

1.16.3

1.16.2

1.16.1

1.16.0

1.15.1

1.15.0

1.14.2

1.14.1

1.14

1.13.1

1.13.0

1.12.0

1.11.0

1.10.0

1.9.1

1.9.0

1.8.0

1.7.0

1.6.1

1.6.0

1.5.0

1.4.0

1.3.0

1.2.0

1.1.0

1.0.0

0.13.0

0.12.0

0.11.0

0.10.0

0.9.0

Labels

Clear labels

SSO

Third party

better for forum

bug

bug

documentation

duplicate

enhancement

future Vault

future Vault

future Vault

good first issue

help wanted

low priority

notes

pull-request

Mirrored from GitHub Pull Request

question

troubleshooting

wontfix

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/vaultwarden#1567