Admin-page says "error: Invalid admin token, please try again." #1457

New Issue

MrUnknownDE · 2026-04-06T01:54:36+02:00

MrUnknownDE commented

2026-04-06 01:54:36 +02:00

Originally created by @oneil1838 on 9/7/2023

Subject of the issue

after install a fresh instance of vaultwarden via stack (docker compose) in Portainer, I'll tired to login in to the admin-page to set some settings, but the admin token from the compose file didn't work. I only get the error "error: Invalid admin token, please try again."
Problem persits also when I use an encryptet password and also with plain text password.

Deployment environment

OS: Ubuntu 22.04.3 LTS
Docker: 24.0.6, build ed223bc
Docker compose: v2.21.0
Portainer: CE 2.19.0
Nginx Proxy Manager: jc21/nginx-proxy-manager:latest (v2.10.4)
Clients used: firefox 117

###Vaultwarden Docker File
version: '3.3'
services:
server:
container_name: vaultwarden
environment:
- ADMIN_TOKEN='some_secure_stuff'
volumes:
- '/vw-data/:/data/'
ports:
- '82:80'
image: 'vaultwarden/server:latest'
restart: unless-stopped

Steps to reproduce

) open portainer.io website -> login -> choose enviroment -> click on "Stacks" -> click on "add Stack" -> name "Vaultwarden" and insert the attached docker compose file -> click "deploy the stack" -> wait till download is compleate and vaultwarden is healthy
) meanwile create a new host in NPM and assigne cert
) open website from intranet or internet and open the admin-page with "/admin" added to the url -> enter the plain text token, click enter and recive error.

Expected behaviour

I expacted a working admin page

Actual behaviour

Troubleshooting data

log from the vaultwarden container:
/--------------------------------------------------------------------
| Starting Vaultwarden |

Version 1.29.2
This is an unofficial Bitwarden implementation, DO NOT use the
official channels to report bugs/features, regardless of client.
Send usage/configuration questions or feature requests to:
https://github.com/dani-garcia/vaultwarden/discussions or
https://vaultwarden.discourse.group/
Report suspected bugs/issues in the software itself at:
https://github.com/dani-garcia/vaultwarden/issues/new
--------------------------------------------------------------------/
[NOTICE] You are using a plain text `ADMIN_TOKEN` which is insecure.
Please generate a secure Argon2 PHC string by using `vaultwarden hash` or `argon2`.
See: https://github.com/dani-garcia/vaultwarden/wiki/Enabling-admin-page#secure-the-admin_token
[2023-09-07 20:59:36.608][vaultwarden][INFO] Private key created correctly.
[2023-09-07 20:59:36.609][vaultwarden][INFO] Public key created correctly.
[2023-09-07 20:59:36.663][start][INFO] Rocket has launched from http://0.0.0.0:80
[2023-09-07 20:59:56.555][request][INFO] GET /admin
[2023-09-07 20:59:56.556][response][INFO] (admin_page_login) GET /admin/ [2] => 200 OK
[2023-09-07 21:00:56.274][request][INFO] POST /admin
[2023-09-07 21:00:56.274][vaultwarden::api::admin][ERROR] Invalid admin token. IP: 10.10.10.77
[2023-09-07 21:00:56.274][response][INFO] (post_admin_login) POST /admin/ => 401 Unauthorized

*Originally created by @oneil1838 on 9/7/2023* ### Subject of the issue after install a fresh instance of vaultwarden via stack (docker compose) in Portainer, I'll tired to login in to the admin-page to set some settings, but the admin token from the compose file didn't work. I only get the error "error: Invalid admin token, please try again." Problem persits also when I use an encryptet password and also with plain text password. ### Deployment environment OS: Ubuntu 22.04.3 LTS Docker: 24.0.6, build ed223bc Docker compose: v2.21.0 Portainer: CE 2.19.0 Nginx Proxy Manager: jc21/nginx-proxy-manager:latest (v2.10.4) Clients used: firefox 117 ###Vaultwarden Docker File version: '3.3' services: server: container_name: vaultwarden environment: - ADMIN_TOKEN='some_secure_stuff' volumes: - '/vw-data/:/data/' ports: - '82:80' image: 'vaultwarden/server:latest' restart: unless-stopped ### Steps to reproduce ) open portainer.io website -> login -> choose enviroment -> click on "Stacks" -> click on "add Stack" -> name "Vaultwarden" and insert the attached docker compose file -> click "deploy the stack" -> wait till download is compleate and vaultwarden is healthy ) meanwile create a new host in NPM and assigne cert ) open website from intranet or internet and open the admin-page with "/admin" added to the url -> enter the plain text token, click enter and recive error. ### Expected behaviour I expacted a working admin page ### Actual behaviour  ### Troubleshooting data log from the vaultwarden container: /--------------------------------------------------------------------\ | Starting Vaultwarden | | Version 1.29.2 | |--------------------------------------------------------------------| | This is an *unofficial* Bitwarden implementation, DO NOT use the | | official channels to report bugs/features, regardless of client. | | Send usage/configuration questions or feature requests to: | | https://github.com/dani-garcia/vaultwarden/discussions or | | https://vaultwarden.discourse.group/ | | Report suspected bugs/issues in the software itself at: | | https://github.com/dani-garcia/vaultwarden/issues/new | \--------------------------------------------------------------------/ [NOTICE] You are using a plain text `ADMIN_TOKEN` which is insecure. Please generate a secure Argon2 PHC string by using `vaultwarden hash` or `argon2`. See: https://github.com/dani-garcia/vaultwarden/wiki/Enabling-admin-page#secure-the-admin_token [2023-09-07 20:59:36.608][vaultwarden][INFO] Private key created correctly. [2023-09-07 20:59:36.609][vaultwarden][INFO] Public key created correctly. [2023-09-07 20:59:36.663][start][INFO] Rocket has launched from http://0.0.0.0:80 [2023-09-07 20:59:56.555][request][INFO] GET /admin [2023-09-07 20:59:56.556][response][INFO] (admin_page_login) GET /admin/ [2] => 200 OK [2023-09-07 21:00:56.274][request][INFO] POST /admin [2023-09-07 21:00:56.274][vaultwarden::api::admin][ERROR] Invalid admin token. IP: 10.10.10.77 [2023-09-07 21:00:56.274][response][INFO] (post_admin_login) POST /admin/ => 401 Unauthorized

MrUnknownDE closed this issue

2026-04-06 01:54:36 +02:00

Sign in to join this conversation.

No Label

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github/vaultwarden#1457