Vaultwarden
App in the BluixApps catalog
What it is
Vaultwarden is a self-hosted Bitwarden-compatible password manager — implements the Bitwarden API in Rust. Use all official Bitwarden clients (browser extensions, mobile apps, desktop apps) pointed at your own Vaultwarden server. Drop-in replacement for Bitwarden cloud.
For privacy-conscious users and orgs wanting Bitwarden's UX with self-hosted control, Vaultwarden is the established alternative.
What it's for
- Personal password management — sync passwords across devices
- Family password sharing — shared vaults for household
- Business password vault — team password sharing
- Privacy-first vault — no third-party server access
- TOTP storage — store 2FA codes alongside passwords
Who it's for
- Privacy-conscious individuals rejecting cloud password managers
- Families sharing household credentials
- Small businesses rejecting Bitwarden Enterprise / 1Password fees
- Tech-forward orgs with self-hosting capability
- Compliance-bound orgs needing on-prem vault
Why teams pick Vaultwarden over alternatives
- AGPLv3 — fully open
- Bitwarden-compatible — official clients work
- Lightweight — Rust binary, minimal resources
- Self-hosted — passwords never leave your infrastructure
- Active development — strong contributor base
- Feature parity — most Bitwarden features supported
Integrations
- Bitwarden clients — official browser, mobile, desktop, CLI clients
- Authentication — local + OIDC + LDAP via reverse proxy
- 2FA / MFA — TOTP, WebAuthn / FIDO2, Duo, email
- Email — SMTP for password reset + invites
- Storage — local filesystem (SQLite or MySQL/Postgres)
- WebSocket — real-time vault sync
- API — Bitwarden-compatible API
Notable users & community
- 43k+ GitHub stars
- Used by privacy-conscious orgs and individuals worldwide
- Active community on Discord + GitHub
- Backed by single dedicated maintainer (Daniel García)
- Featured in self-hosted security guides
Tips & operations
- Persistent volume — vault data lives here; CRITICAL backup
- SMTP for invites — multi-user features need email
- WebSocket for real-time — proxy must support WS upgrade
- Backup is paramount — losing vault = losing all passwords
- Update Vaultwarden frequently — security tool needs security patches
- Disable signups after setup —
SIGNUPS_ALLOWED=falsein env
What we ship in BluixApps
- Docker compose: Vaultwarden + persistent data volume
- Pinned
vaultwarden/server:1.32(release-tagged) - HTTPS via Let's Encrypt
- Admin token auto-generated; surfaced in install report
- Persistent volume at
/data(SQLite + attachments) - SMTP placeholder for invites
- Backup hook covers
/data(CRITICAL — your password vault)
Get this app — pick a BluixApps plan
Same catalog. Scaling tenant isolation, white-label and support tier.
| Tier | Tenants | Catalog | Support | White-label | Monthly | |
|---|---|---|---|---|---|---|
| Stacks | 1 | 19 curated stacks | Standard | — | $19/mo | DetailDeploy |
| Starter | 10 | Full catalog | Standard | +$15–25/mo | $49/mo | DetailDeploy |
| Pro | 25 | Full catalog | Priority bugfix | +$15–25/mo | $149/mo | DetailDeploy |
| Growth | 100 | Full catalog | Priority bugfix | +$15–25/mo | $349/mo | DetailDeploy |
| Scale | 500 | Full catalog | 7-day window | +$15–25/mo | $799/mo | DetailDeploy |
| Enterprise | Unlimited | Full catalog | Priority 7-day | Bundled | $1,499/mo | DetailDeploy |