Skip Navigation

Exposing only the Vaultwarden "Send"-Feature via Cloudflare Tunnel

Hey,

I am hosting vaultwarden with traefik in my homelab. I can connect via tailscale from everywhere. Working fine.

The Send Feature sounds really cool to me, but it doesnt make sense to have this behind tailscale (for sharing with others).

I am wondering if its secure to only publish the /send URL via Cloudflare or if there is a way to get to my vault then. I think Cloudflare Page Rules would be the feature to use here.

1
1 comments
  • I also recently setup vaultwarden and was wondering this.

    Unfortunately I was unable to find a way to only expose the send function. The '/send/ path is preceded by a # making it part of the parameters instead of the uri path. Nginx in my case, sees all the requests for both the vault and the send feature coming from '/' '/app/' '/images/' and '/fonts/'.

    1