-
-
Notifications
You must be signed in to change notification settings - Fork 1.9k
Logging
bitwarden_rs logs only to standard output (stdout) by default. You can also configure it to log to a file.
Logging to a file is supported as of version 1.5.0. You can specify the path to the log file with the LOG_FILE
environment variable:
docker run -d --name bitwarden \
...
-e LOG_FILE=/data/bitwarden.log \
...
When this environment variable is set, log messages will be logged to both stdout and the log file. If you're running in Docker, you'll most likely want to use a file path that is mounted from the Docker host (such as the data
folder); otherwise, your log file will be lost (or at least hard to find) if the container is restarted or removed.
To reduce the amount of log messages, you can set the log level to 'warn' (default is 'info'). The Log level can be adjusted with the environment variable LOG_LEVEL
while also setting EXTENDED_LOGGING=true
. NOTE: Using the log level "warn" or "error" still allows Fail2Ban to work properly.
LOG_LEVEL
options are: "trace", "debug", "info", "warn", "error" or "off".
docker run -d --name bitwarden \
...
-e LOG_LEVEL=warn -e EXTENDED_LOGGING=true \
...
If running in Docker: docker logs <container-name>
If running via systemd
: journalctl -u bitwarden_rs.service
(or whatever your service is named)
Otherwise, check where standard output is being redirected, or set the LOG_FILE
environment variable and view that file.
- Which container image to use
- Starting a container
- Updating the vaultwarden image
- Using Docker Compose
- Using Podman
- Building your own docker image
- Building binary
- Pre-built binaries
- Third-party packages
- Deployment examples
- Proxy examples
- Logrotate example
- Overview
- Disable registration of new users
- Disable invitations
- Enabling admin page
- Disable the admin token
- Enabling WebSocket notifications
- Enabling Mobile Client push notification
- Enabling U2F and FIDO2 WebAuthn authentication
- Enabling YubiKey OTP authentication
- Changing persistent data location
- Changing the API request size limit
- Changing the number of workers
- SMTP configuration
- Translating the email templates
- Password hint display
- Disabling or overriding the Vault interface hosting
- Logging
- Creating a systemd service
- Syncing users from LDAP
- Using an alternate base dir (subdir/subpath)
- Other configuration