starred/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.git synced 2026-03-01 11:19:52 +03:00
Code Issues 32 Packages Projects Releases 12 Wiki Activity

Attachment download/view from webgui broken #648

New Issue
Closed
opened 2026-02-04 22:02:03 +03:00 by OVERLORD · 0 comments
OVERLORD commented 2026-02-04 22:02:03 +03:00
Owner
Copy Link

Originally created by @msivanich on GitHub (Mar 18, 2020).

Subject of the issue

When trying to view attachments via the webgui it fails. When trying to view attachments via the iOS client it works. Apache logs look like the request is not getting the domain_path prepended to it. The iOS request does appear to have it.

Your environment

  • Bitwarden_rs version: 1.14-402c1cd0
  • Install method: docker-compose
  • Clients used: WebGUI and iOS client
  • Reverse proxy and version: apache 2.4.29
  • Other relevant information:

Steps to reproduce

View attachment on WebGui

Expected behaviour

Download image/file

Actual behaviour

Icon of attachment spins.

Relevant logs

Logs from apache
From webgui
xx.xx.xx.50 - - [17/Mar/2020:16:41:42 -0500] "GET /attachments/127fc205-b820-4d5b-87e2-5ccd6998f49b/cf9eabf6594b5d623e82 HTTP/1.1" 404 5955 "https://www.mydomain.com:2443/bitwarden/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.132 Safari/537.36"

From Apple Client
xx.xx.xx.16 - - [17/Mar/2020:16:42:14 -0500] "GET /bitwarden//attachments/127fc205-b820-4d5b-87e2-5ccd6998f49b/cf9eabf6594b5d623e82 HTTP/1.1" 200 217218 "-" "Bitwarden/59 CFNetwork/1121.2.2 Darwin/19.3.0

Apache location config
<Location /bitwarden/>
order deny,allow
deny from all
allow from all
ProxyPass http://docker:7777/bitwarden/
ProxyPassReverse http://docker:7777/bitwarden/

config.json
{
"domain": "https://www.mydomain.com:2443/bitwarden/",
"disable_icon_download": false,
"signups_allowed": false,
"signups_verify": false,
"signups_verify_resend_time": 3600,
"signups_verify_resend_limit": 6,
"invitations_allowed": true,
"password_iterations": 100000,
"show_password_hint": true,
"invitation_org_name": "Bitwarden_RS",
"ip_header": "X-Forwarded-For",
"icon_cache_ttl": 2592000,
"icon_cache_negttl": 259200,
"icon_download_timeout": 10,
"icon_blacklist_non_global_ips": true,
"disable_2fa_remember": false,
"authenticator_disable_time_drift": false,
"require_device_email": false,
"reload_templates": false,
}

docker-compose.yml
version: '3'

services:
bitwarden:
image: bitwardenrs/server
container_name: bitwarden_rs
volumes:
- /media/bitwarden:/data
ports:
- 7777:80
environment:
LOG_FILE: '/data/logs/bitwarden.log'
EXTENDED_LOGGING: 'true'
LOG_LEVEL: 'debug'
SIGNUPS_ALLOWED: 'true'
TZ: 'America/Chicago'
DOMAIN_ORIGIN: 'https://www.mydomain.com:20443'
DOMAIN_PATH: '/bitwarden/'

restart: unless-stopped

Originally created by @msivanich on GitHub (Mar 18, 2020). ### Subject of the issue When trying to view attachments via the webgui it fails. When trying to view attachments via the iOS client it works. Apache logs look like the request is not getting the domain_path prepended to it. The iOS request does appear to have it. ### Your environment * Bitwarden_rs version: 1.14-402c1cd0 * Install method: docker-compose * Clients used: WebGUI and iOS client * Reverse proxy and version: apache 2.4.29 * Other relevant information: ### Steps to reproduce View attachment on WebGui ### Expected behaviour Download image/file ### Actual behaviour Icon of attachment spins. ### Relevant logs **Logs from apache** **From webgui** xx.xx.xx.50 - - [17/Mar/2020:16:41:42 -0500] "GET /attachments/127fc205-b820-4d5b-87e2-5ccd6998f49b/cf9eabf6594b5d623e82 HTTP/1.1" 404 5955 "https://www.mydomain.com:2443/bitwarden/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.132 Safari/537.36" **From Apple Client** xx.xx.xx.16 - - [17/Mar/2020:16:42:14 -0500] "GET /bitwarden//attachments/127fc205-b820-4d5b-87e2-5ccd6998f49b/cf9eabf6594b5d623e82 HTTP/1.1" 200 217218 "-" "Bitwarden/59 CFNetwork/1121.2.2 Darwin/19.3.0 **Apache location config** <Location /bitwarden/> order deny,allow deny from all allow from all ProxyPass http://docker:7777/bitwarden/ ProxyPassReverse http://docker:7777/bitwarden/ </Location> **config.json** { "domain": "https://www.mydomain.com:2443/bitwarden/", "disable_icon_download": false, "signups_allowed": false, "signups_verify": false, "signups_verify_resend_time": 3600, "signups_verify_resend_limit": 6, "invitations_allowed": true, "password_iterations": 100000, "show_password_hint": true, "invitation_org_name": "Bitwarden_RS", "ip_header": "X-Forwarded-For", "icon_cache_ttl": 2592000, "icon_cache_negttl": 259200, "icon_download_timeout": 10, "icon_blacklist_non_global_ips": true, "disable_2fa_remember": false, "authenticator_disable_time_drift": false, "require_device_email": false, "reload_templates": false, } **docker-compose.yml** version: '3' services: bitwarden: image: bitwardenrs/server container_name: bitwarden_rs volumes: - /media/bitwarden:/data ports: - 7777:80 environment: LOG_FILE: '/data/logs/bitwarden.log' EXTENDED_LOGGING: 'true' LOG_LEVEL: 'debug' SIGNUPS_ALLOWED: 'true' TZ: 'America/Chicago' DOMAIN_ORIGIN: 'https://www.mydomain.com:20443' DOMAIN_PATH: '/bitwarden/' restart: unless-stopped
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
SSO
Third party
better for forum
bug
bug
documentation
duplicate
enhancement
future Vault
future Vault
future Vault
good first issue
help wanted
low priority
notes
pull-request
Mirrored from GitHub Pull Request
 question
troubleshooting
wontfix
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
OVERLORD
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/vaultwarden#648
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?