From fcd61e189a1c5791f748b7eeeab7e4d664295a98 Mon Sep 17 00:00:00 2001
From: Nick Fox <njfox@users.noreply.github.com>
Date: Tue, 1 Jan 2019 01:32:24 +0000
Subject: [PATCH] Created Enabling U2F authentication (markdown)

---
 Enabling-U2F-authentication.md | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 Enabling-U2F-authentication.md

diff --git a/Enabling-U2F-authentication.md b/Enabling-U2F-authentication.md
new file mode 100644
index 0000000..36c41a6
--- /dev/null
+++ b/Enabling-U2F-authentication.md
@@ -0,0 +1,14 @@
+To enable U2F authentication, you must be serving bitwarden_rs from an HTTPS domain with a valid certificate (Either using the included
+HTTPS options or with a reverse proxy). We recommend using a free certificate from Let's Encrypt.
+
+After that, you need to set the `DOMAIN` environment variable to the same address from where bitwarden_rs is being served:
+
+```sh
+docker run -d --name bitwarden \
+  -e DOMAIN=https://bw.domain.tld \
+  -v /bw-data/:/data/ \
+  -p 80:80 \
+  mprasil/bitwarden:latest
+```
+
+Note that the value has to include the `https://` and it may include a port at the end (in the format of `https://bw.domain.tld:port`) when not using `443`.
\ No newline at end of file