"disable admin token" in admin panel could be improved #441

New Issue

Closed

opened 2026-02-04 20:32:27 +03:00 by OVERLORD · 3 comments

OVERLORD commented 2026-02-04 20:32:27 +03:00

Owner

Copy Link

Originally created by @My1 on GitHub (Oct 8, 2019).

the message "Disable Admin Token (Know the risks!)" is kinda ambigous as it can be read as to "disable the access to admin completely" instead of "let everyone in", similar to as how disabling passwords on SSH does not mean "do not require passwords" but rather "require a different auth mechanism, aka public keys"

Originally created by @My1 on GitHub (Oct 8, 2019). the message "Disable Admin Token (Know the risks!)" is kinda ambigous as it can be read as to "disable the access to admin completely" instead of "let everyone in", similar to as how disabling passwords on SSH does not mean "do not require passwords" but rather "require a different auth mechanism, aka public keys"

OVERLORD closed this issue 2026-02-04 20:32:27 +03:00

OVERLORD commented 2026-02-04 20:32:40 +03:00

Author

Owner

Copy Link

@dani-garcia commented on GitHub (Oct 8, 2019):

You are definitely right that the naming is confusing, and something like "bypass admin security" might be more adecuate. We can easily change the description in the admin page, but changing the config option would be a breaking change (Though I think just the description would be good enough for now)

@dani-garcia commented on GitHub (Oct 8, 2019): You are definitely right that the naming is confusing, and something like "bypass admin security" might be more adecuate. We can easily change the description in the admin page, but changing the config option would be a breaking change (Though I think just the description would be good enough for now)

OVERLORD commented 2026-02-04 20:32:53 +03:00

Author

Owner

Copy Link

@My1 commented on GitHub (Oct 8, 2019):

exactly, especially considering you dont just get the env var out of nowhere and the wiki clearly states the purpose and stuff

@My1 commented on GitHub (Oct 8, 2019): exactly, especially considering you dont just get the env var out of nowhere and the wiki clearly states the purpose and stuff

OVERLORD commented 2026-02-04 20:32:59 +03:00

Author

Owner

Copy Link

@dani-garcia commented on GitHub (Oct 8, 2019):

Fixed in 662bc27523 (diff-6d8a5e2104954a026de2bfe2b936aea4), thanks!

@dani-garcia commented on GitHub (Oct 8, 2019): Fixed in https://github.com/dani-garcia/bitwarden_rs/commit/662bc2752345ef37cb394b2dd709b269dab86fd1#diff-6d8a5e2104954a026de2bfe2b936aea4, thanks!

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

cached-config-operations

test_dylint

1.35.2

1.35.1

1.35.0

1.34.3

1.34.2

1.34.1

1.34.0

1.33.2

1.33.1

1.33.0

1.32.7

1.32.6

1.32.5

1.32.4

1.32.3

1.32.2

1.32.1

1.32.0

1.31.0

1.30.5

1.30.4

1.30.3

1.30.2

1.30.1

1.30.0

1.29.2

1.29.1

1.29.0

1.28.1

1.28.0

1.27.0

1.26.0

1.25.2

1.25.1

1.25.0

1.24.0

1.23.1

1.23.0

1.22.2

1.22.1

1.22.0

1.21.0

1.20.0

1.19.0

1.18.0

1.17.0

1.16.3

1.16.2

1.16.1

1.16.0

1.15.1

1.15.0

1.14.2

1.14.1

1.14

1.13.1

1.13.0

1.12.0

1.11.0

1.10.0

1.9.1

1.9.0

1.8.0

1.7.0

1.6.1

1.6.0

1.5.0

1.4.0

1.3.0

1.2.0

1.1.0

1.0.0

0.13.0

0.12.0

0.11.0

0.10.0

0.9.0

Labels

Clear labels

SSO

Third party

better for forum

bug

bug

documentation

duplicate

enhancement

future Vault

future Vault

future Vault

good first issue

help wanted

low priority

notes

pull-request

Mirrored from GitHub Pull Request

question

troubleshooting

wontfix

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/vaultwarden#441