Exposing only the Vaultwarden "Send"-Feature via Cloudflare Tunnel
Hey,
I am hosting vaultwarden with traefik in my homelab. I can connect via tailscale from everywhere. Working fine.
The Send Feature sounds really cool to me, but it doesnt make sense to have this behind tailscale (for sharing with others).
I am wondering if its secure to only publish the /send URL via Cloudflare or if there is a way to get to my vault then. I think Cloudflare Page Rules would be the feature to use here.
I also recently setup vaultwarden and was wondering this.
Unfortunately I was unable to find a way to only expose the send function. The '/send/ path is preceded by a # making it part of the parameters instead of the uri path. Nginx in my case, sees all the requests for both the vault and the send feature coming from '/' '/app/' '/images/' and '/fonts/'.