KeePass, but in your browser, secured by TLS/SSL & HTTP401 & your master password*
What can I do with this? This image will provide you a webinterface for KeePass secured by TLS/SSL, HTTP 401 authentication and of course, your master password.
- /keeweb/www/etc - Directory of keeweb json config file
- /keeweb/www/db - Directory of kdbx database
docker run --name keeweb \
-v .../etc:/keeweb/www/etc \
-v .../db:/keeweb/www/var \
-d 11notes/keeweb:[tag]{
"settings":{
"theme":"te",
"locale":"en",
"autoUpdate":false,
"colorfulIcons":true,
"fontSize":1,
"canImportXml":false,
"canCreate":false,
"canOpenDemo":false,
"webdav":true,
"webdavSaveMethod":"put",
"hideEmptyFields":false,
"autoSave":true,
"idleMinutes":15
},
"files":[{
"storage":"webdav",
"name":"default",
"path":"/db/default.kdbx"
}]
}| Parameter | Value | Description |
|---|---|---|
user |
docker | user docker |
uid |
1000 | user id 1000 |
gid |
1000 | group id 1000 |
home |
/keeweb | home directory of user docker |
web |
https://${IP}:8443 | web interface |
401 login |
foo // bar | default login for demo |
master password |
foo | default master password for demo |
| Parameter | Value | Default |
|---|---|---|
TZ |
Time Zone | |
DEBUG |
Show debug information |
- Only use rootless container runtime (podman, rootless docker)
- Allow non-root ports < 1024 via
echo "net.ipv4.ip_unprivileged_port_start=53" > /etc/sysctl.d/ports.conf - Use a reverse proxy like Traefik, Nginx to terminate TLS with a valid certificate
- Use Let’s Encrypt certificates to protect your SSL endpoints
- keepassium - best KeePass mobile app
This image is provided to you at your own risk. Always make backups before updating an image to a new version. Check the changelog for breaking changes.