Hello dear community, I have a question about captcha for self-hosted Bitwarden.
I asked support via email, and got response that hcaptcha is only supported on cloud.
But nevertheless I’ve found “Nginx for Captcha” section in config.yml
. When enabled it has no effect on login phase, so what is this for? I didn’t notice any difference.
Thanks!
Hi, @oleksandr-cgp!
The captcha
key in config.yml
adds the necessary hcaptcha-related configurations to the Nginx default.conf
file. Essentially, those changes allow the hcaptcha scripts to run on your self-hosted instance. However, that alone doesn’t enable hcaptcha.
For that, you’d need to add the following to your ./bwdata/env/global.override.env
:
globalSettings__captcha__forceCaptchaRequired=true # see https://contributing.bitwarden.com/architecture/deep-dives/captchas/
globalSettings__captcha__hCaptchaSecretKey=0xcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx # replace with your own hcaptcha keys
globalSettings__captcha__hCaptchaSiteKey=12341234-1234-1234-1234-12341234 # replace with your own hcaptcha keys