Bitwarden Server Self-Hosted

The Bitwarden Server is the free and open-source server-side component of Bitwarden, a password manager that stores and manages passwords, credentials, and sensitive data. Developed by Bitwarden Inc. (founded in 2015 by Michael Crandall and Kyle Spearrin, headquartered in Santa Barbara, California), the server codebase allows organizations and individuals to self-host their own password management infrastructure, maintaining full control over their data without relying on Bitwarden's cloud servers. Key features: authentication: the server implements user registration, login, password verification (using PBKDF2-SHA256 with configurable iterations, defaulting to 100,000), two-factor authentication (TOTP, Duo, YubiKey, FIDO2/WebAuthn, email), and single sign-on (SAML 2.0, OpenID Connect). Vault storage: encrypted vault entries (logins, secure notes, credit cards, identities) are stored on the server encrypted with AES-256-CBC, with the encryption key derived from the master password and protected by a server-side hash. The server never sees plaintext vault data. Organizations: shared vaults for teams and organizations with collections, groups, and granular access policies. Directory connector: sync users and groups from Active Directory, LDAP, Azure AD, Google Workspace, Okta, and OneLogin. Admin panel: a web-based admin panel for server management, user management, and diagnostics. Emergency access: designate trusted contacts who can request access to the vault in emergencies. API: REST API and GraphQL API for programmatic access. Send: securely share encrypted text or files with expiration dates. .NET (C#) codebase with PostgreSQL, MySQL, or MSSQL database backend. Cross-platform via Docker containers. GPLv3.