Mobile App - Can't access server behind reverse proxy with client cert authentification

Michel_Munzert · August 29, 2018, 6:21am

Hi,

finally I get my self-hosted version up and running on Synology Docker. To access the Bitwarden Vault I have a NGINX proxy in front of my domain. This proxy was configured that I can access the vault from any PC which has a client certificate installed. If no certificate is found the NGINX asks for a user and password in order to redirect to the vault.
This is working fine from any PC using the browser. But it seems the mobile app can’t access my client certificate which I’ve installed on my iPhone. If I deactivate the client authorization in NGINX I can access the vault from mobile app on iOS.

Any idea why the mobile app can’t access the client certificate on my iPhone?

Regards,
Michel

kspearrin · August 29, 2018, 12:08pm

Mobile apps use .NET with HttpClient. Maybe we need to enable some property to use client certificates. Will have to investigate.

Matth · August 24, 2020, 6:15am

Is there any update on this? I also have a similar setup and would love to further secure access with that client certificate.

blackph0en1x · October 17, 2021, 11:31pm

Has this been sorted out? Would love to implement mTLS for my bitwarden instance.

Chris_Ruffin · April 23, 2023, 12:29pm

Looking for the same solution.

P4SQL · April 27, 2024, 12:03pm

Any update? I’m trying to achieve the same with Traefik as a reverse proxy and the mobile app is crashing all the time.