Dear community!
Ive opted for wildcard certs with DNS validation for my services, I was looking to do the same with bitwarden. I chose the unified deployment.
I have the following files after running certbot copied to the dir mapped to /etc/bitwarden
cert.pem chain.pem fullchain.pem privkey.pem
I have tried every combination for
BW_SSL_CERT=
BW_SSL_KEY=
BW_SSL_CA_CERT=
Yet i get the same error.
SSL_CTX_use_PrivateKey("/etc/bitwarden/privkey.pem") failed (SSL: error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch)
Which pem-file goes where?
The hashes match when tested from the host and the same certs works for other services.
Below is my settings.env file
#Domain
BW_DOMAIN=bw.domain.tld
# Database
BW_DB_PROVIDER=mysql
BW_DB_SERVER=db
BW_DB_DATABASE=bitwarden_vault
BW_DB_USERNAME=bitwarden
BW_DB_PASSWORD=my very strong passwd
#Bitwarden key
BW_INSTALLATION_ID=my-ID-is-here
BW_INSTALLATION_KEY=my-key-is-here
# Mail
[email protected]
globalSettings__mail__smtp__host=mx.mydomain.tld
globalSettings__mail__smtp__port=587
globalSettings__mail__smtp__ssl=true
[email protected]
globalSettings__mail__smtp__password=super strong passwd
#SSL
BW_ENABLE_SSL=true
BW_ENABLE_SSL_CA=true
BW_SSL_CERT=any.pem
BW_SSL_KEY=any.pem
BW_SSL_CA_CERT=any.pem