Vaultwarden + Traefik getting 403 Forbidden

ducken · March 21, 2024, 9:31am

Hello there,
I've been struggling to setup vaultwarden with traefik proxy.
I have some endpoints like /api/config and /api/devices/knowndevice, which returns 403 Forbidden when behind the proxy.
I've tried with various traefik settings but nothing worked, and I have no idea whats blocking those endpoints. Ultimately I think these are the reasons my session expires after login.
My current configs:

"traefik.enable=true"
"traefik.docker.network=traefik_proxy_default"
"traefik.http.routers.pwd.rule=Host(vw.domain.tld)"
"traefik.http.routers.pwd.tls=true"

bluepuma77 · March 21, 2024, 7:16pm

Enable Traefik access log in JSON format to see if the response comes from Traefik itself or the target service.

That shows the status differentiated into OriginStatus (from target) and DownstreamStatus (from Traefik).

You might also add the port in labels, in case the service/containers exposes (declares) multiple. Check simple Traefik example.

Topic		Replies	Views
Traefik and Vaultwarden and Unraid Traefik v2 docker	3	1245	December 30, 2023
Running vaultwarden locally with traefik Traefik v2 docker	2	1359	April 17, 2024
Ipwhitelist only for a specific route Traefik v2 docker , middleware	4	629	September 18, 2023
Vaultwarden container on RPi has "bad gateway" Traefik v3 (latest) docker	7	99	January 12, 2025
Can't get traefik to work behind a proxy Traefik v2 docker	7	2777	February 13, 2023

Vaultwarden + Traefik getting 403 Forbidden

Related topics