bitwarden/mcp-server
If you are the rightful owner of mcp-server and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to henry@mcphub.com.
The Bitwarden MCP Server facilitates secure interaction between AI models and a user's Bitwarden vault using the Model Context Protocol.
Bitwarden MCP Server
Model Context Protocol (MCP) server that enables interaction with the Bitwarden password manager vault via the MCP protocol. The server provides two complementary interfaces:
- CLI-based tools: Personal vault management and organization operations using the Bitwarden CLI
- API-based tools: Enterprise organization administration using the Bitwarden Public API
This dual approach allows AI models to securely manage both personal vault items and organization-level resources through defined tool interfaces.
Prerequisites
- Node.js 22
- For CLI operations: Bitwarden CLI (
bw) installed, authenticated, and valid session token - For API operations: Bitwarden organization with API access and valid client credentials
Installation
Option One: Configuration in your AI app
Open up your application configuration, e.g. for Claude Desktop:
{
"mcpServers": {
"bitwarden": {
"command": "npx",
"args": ["-y", "@bitwarden/mcp-server"]
}
}
}
Option Two: Local checkout
Requires that this repository be checked out locally. Once that's done:
npm install
npm run build
Setup
The server supports two authentication methods:
Option A: CLI Authentication (for personal vault operations)
-
Install Bitwarden CLI:
npm install -g @bitwarden/cli -
Log in to Bitwarden:
bw login -
Get session token:
export BW_SESSION=$(bw unlock --raw)
Option B: API Authentication (for organization management)
-
Create API credentials in your Bitwarden organization settings
-
Set environment variables:
export BW_CLIENT_ID="your_client_id" export BW_CLIENT_SECRET="your_client_secret" -
Optional: Set custom API URLs (if using self-hosted):
export BW_API_BASE_URL="https://api.bitwarden.com" export BW_IDENTITY_URL="https://identity.bitwarden.com"
Note: You can use both authentication methods simultaneously for full functionality.
Testing
Running unit tests
The project includes Jest unit tests covering validation, CLI commands, and core functionality.
# Run all tests
npm test
# Run tests in watch mode
npm run test:watch
# Run tests with coverage
npm test -- --coverage
# Run specific test file
npm test validation.spec.ts
# Run tests matching a pattern
npm test -- --testNamePattern="validation"
Inspection and development
MCP Inspector
Use the MCP Inspector to test the server interactively:
# Start the inspector
npm run inspect
This will:
- Start the MCP server
- Launch the inspector UI in your browser
- Allow you to test all available tools interactively
Available tools
The server provides comprehensive Bitwarden functionality through two authentication methods:
CLI Authentication is used for:
- Personal vault operations (items, folders, passwords)
- Quick organization queries (list members, collections)
- Organization member confirmation workflows
- Collection creation and editing
- Item collection assignments
API Authentication is used for:
- Full organization administration (members, groups, policies)
- Bulk operations and automation
- Advanced permission management
- Audit log retrieval
- Subscription management
Note: You can use both authentication methods simultaneously. The CLI tools are lighter-weight for simple operations, while API tools provide comprehensive organization management.
Personal Vault Tools (CLI Authentication)
Session Management
| Tool | Description | Required Parameters |
|---|---|---|
lock | Lock the vault | None |
unlock | Unlock with master password | password |
sync | Sync vault data | None |
status | Check CLI status | None |
Vault Items and Folders
| Tool | Description | Required Parameters |
|---|---|---|
list | List vault items/folders | type (items/folders/collections/organizations/org-members/org-collections) |
get | Get specific item/folder | object, id, optional organizationid for org-collection |
generate | Generate password/passphrase | Various optional parameters |
create | Create new item or folder | objectType, name, additional fields for items |
edit | Edit existing item or folder | objectType, id, optional fields to update |
edit_item_collections | Edit which collections an item belongs to | itemId, organizationId, collectionIds (array) |
move | Move (share) a vault item to an organization with collections | itemId, organizationId, collectionIds (array) |
delete | Delete vault item/folder | object, id, optional permanent |
Organization Operations (CLI)
| Tool | Description | Required Parameters |
|---|---|---|
confirm | Confirm invited organization member | organizationId, memberId |
create_org_collection | Create new organization collection | organizationId, name, optional externalId, groups |
edit_org_collection | Edit existing organization collection | organizationId, collectionId, optional name, groups |
device_approval_list | List pending device approval requests | organizationId |
device_approval_approve | Approve a device authorization request | organizationId, requestId |
device_approval_approve_all | Approve all pending device authorization requests | organizationId |
device_approval_deny | Deny a device authorization request | organizationId, requestId |
device_approval_deny_all | Deny all pending device authorization requests | organizationId |
Note: Device approval commands are only available to organization admins/owners for managing trusted device approval requests.
Organization Management Tools (API Authentication)
Collections Management
| Tool | Description | Required Parameters |
|---|---|---|
list_org_collections | List organization collections | None |
get_org_collection | Get collection details | id |
update_org_collection | Update existing collection | id |
delete_org_collection | Delete collection | id |
Members Management
| Tool | Description | Required Parameters |
|---|---|---|
list_org_members | List organization members | None |
get_org_member | Get member details | id |
invite_org_member | Invite new member | email, type |
update_org_member | Update existing member | id |
remove_org_member | Remove member from organization | id |
reinvite_org_member | Re-invite member | id |
get_org_member_groups | Get member's group assignments | id |
update_org_member_groups | Update member's group assignments | id, groupIds |
Groups Management
| Tool | Description | Required Parameters |
|---|---|---|
list_org_groups | List organization groups | None |
get_org_group | Get group details | id |
create_org_group | Create new group | name |
update_org_group | Update existing group | id, name |
delete_org_group | Delete group | id |
get_org_group_members | Get group's member assignments | id |
update_org_group_members | Update group's member assignments | id, memberIds |
Policies Management
| Tool | Description | Required Parameters |
|---|---|---|
list_org_policies | List organization policies | None |
get_org_policy | Get policy details | type |
update_org_policy | Update organization policy | type, enabled |
Organization Management
| Tool | Description | Required Parameters |
|---|---|---|
get_org_subscription | Get subscription details | None |
update_org_subscription | Update subscription settings | None |
import_org_users_and_groups | Import members and groups | None |
Events and Auditing
| Tool | Description | Required Parameters |
|---|---|---|
get_org_events | Get organization audit logs | None |
Manual testing
-
Start the server:
export BW_SESSION=$(bw unlock --raw) node dist/index.js -
Test with an MCP client or use the inspector to send tool requests.
Debugging
-
Enable debug logging by setting environment variables:
export DEBUG=bitwarden:* export NODE_ENV=development -
Check Bitwarden CLI status:
bw status -
Verify session token:
echo $BW_SESSION
Security considerations
- Never commit sensitive credentials (
BW_SESSION,BW_CLIENT_ID,BW_CLIENT_SECRET) - Use environment variables for all sensitive configuration
- Validate all inputs using Zod schemas (already implemented)
- Test with non-production data when possible
- Monitor API usage through your organization's audit logs
- Use HTTPS for all API communications (default)
- Understand the security and privacy impacts of exposing sensitive vault data to LLM and AI tools. Using a self-hosted or local LLM may be appropriate, for example.
Troubleshooting
Common issues
-
"Please set the BW_SESSION environment variable"
- Run:
export BW_SESSION=$(bw unlock --raw)
- Run:
-
"BW_CLIENT_ID and BW_CLIENT_SECRET environment variables are required"
- Set your API credentials:
export BW_CLIENT_ID="your_id"andexport BW_CLIENT_SECRET="your_secret" - Verify credentials are valid in your Bitwarden organization settings
- Set your API credentials:
-
API authentication failures
- Check that your organization has API access enabled
- Verify client credentials have appropriate permissions
- Ensure you're using the correct API URLs for your instance
-
Tests failing with environment errors
- Use the environment mocking helpers in tests
- Ensure test cleanup with
restoreEnvVars()
-
Inspector not starting
- Check that the server builds successfully:
npm run build - Verify Node.js version is 22
- Check that the server builds successfully:
-
CLI commands failing
- Verify Bitwarden CLI is installed:
bw --version - Check vault is unlocked:
bw status - Ensure valid session token:
echo $BW_SESSION
- Verify Bitwarden CLI is installed: