Unable to disable options

I’m running bitwarden_rs in a docker container on my synology nas.

After accessing the admin page, there are a couple of options which make my mind hurdle.

  1. Allow new signups
  2. Allow invitations
    Both of these options can be enabled by ticking the checkbox.

However… by default these options are already enabled. So unticking these options don’t disable.

My question is now: How do I disable new signups and invitations?

Just uncheck them, if they are unchecked it is disabled. Not sure why you think when there they are checked and state it is allowed, unchecking them wouldn’t work.

Because of what the text behind it says that the default is enabled.
But I get what your saying is that by default the checkbox is checked.
The reason why it confused me, might be because I’ve unchecked the checkbox for new user registrations, but the button is still available on the login page and it’s also clickable.

Here’s a snippet of the config.json:

  "domain": "https://address.web.com",
  "disable_icon_download": false,
  "signups_allowed": false,
  "signups_verify": true,
  "signups_verify_resend_time": 3600,
  "signups_verify_resend_limit": 6,
  "invitations_allowed": true,
  "password_iterations": 100000,
  "show_password_hint": false,
  "admin_token": "difficultpasswordverylonghardtoguess",
  "invitation_org_name": "Bitwarden",
  "ip_header": "X-Real-IP",
  "icon_cache_ttl": 2592000,
  "icon_cache_negttl": 259200,
  "icon_download_timeout": 10,
  "icon_blacklist_non_global_ips": true,
  "disable_2fa_remember": false,
  "authenticator_disable_time_drift": false,
  "require_device_email": true,
  "reload_templates": false,
  "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f",
  "disable_admin_token": false,
  "_enable_yubico": true,
  "_enable_duo": false,
  "_enable_email_2fa": false,
  "email_token_size": 6,
  "email_expiration_time": 600,
  "email_attempts_limit": 3

Just tested the registration. It fails on submission because it’s disabled.
Would be nice to get a message or something before you’re even able to fill in the information.

That’s not something we can change dynamically, and we just block this by not allowing the submission.

We use the official web-vault with some small css and js changes to let it work with our backend, but that’s about it.

Could hide the button with some css :wink:

But yeah, bad luck for the one trying to register. :slight_smile:

As i said, we can’t do that dynamically.
We also support allowing only specific domains etc… So it’s undoable to have this done on the css side.