diff --git a/ansible/roles/postgres/vars/main/db_passwords.yml b/ansible/roles/postgres/vars/main/db_passwords.yml
index 6c319092..55cb3bac 100644
--- a/ansible/roles/postgres/vars/main/db_passwords.yml
+++ b/ansible/roles/postgres/vars/main/db_passwords.yml
@@ -1,15 +1,18 @@
 $ANSIBLE_VAULT;1.1;AES256
-33376564336164313533613136396638396332383132366634373361303361643631353663646538
-6132653061306166356238396636656538356164343765380a316134626534363566363237373162
-66383963323931646230353265613764313062616466616465653066613636633233613038626239
-3133373631626531330a656330336466616165623161303963376538616331343032376461663237
-32306664356464376437623138393530643436303465353336613465353963356665303032366134
-65373166376339666138393835383863326138663536383039373438356634373534306332656231
-30656531623561353161616334323739373533363034663936376430316132316166396665376537
-61623131383037633432356538616434333139646465383432366132653636306233653865633134
-34663633386266323634366134356166346634333063323230336666373366343134353733303732
-39653137646132613635623531343464653931323262333534393766623132613938303763646636
-35343137656262313236343434393462383464393664333736383861383363313861363636653739
-31653439336365316466613065623063306635653336336565323539343061616163323235336463
-64303335623465303462613332303330666433333538316165333561663537386635653130663432
-6437633131326534656664353332623163653664373965633330
+64383831663533626363313935323030623565653466326237393238623737376163333735376664
+6636653730633932333438623462336265393962303266650a326336323661383566343336333265
+36386664663839346131376431653636366236646465616364343863616464616331653261663261
+3066373633633330320a326136333339376138643437666331383962303434343063386432326330
+62323030303235313365643166616663393466386531626237313439616533306463303930653630
+37653765396333333132333433623732623835653230316232663831653732313430363532353763
+30613734383566616236386235656239333966666434303531313437353936303235326439356433
+35313337363537623037383539333430323564356531393439313361313766636133396662346262
+64336530373131653961376434386335353935623836623239633833633966663565303131323634
+62303836313637383531396434626333393631303839656239633764313534626136333835386339
+36656465383163666433303436663934303437626464353065643737383531303561333965616433
+32653836623261333261343732396332376363336535366665656437353564303633346566313665
+30613461656162343465343232316434666631653161663831366464623766373430383339666361
+35326235393164346236646130396461383031613135633064366666376665653035363533646136
+61653739366333633061333439363937353734363036643832663165373530376134356262313038
+65633965343463663430353536653065356330333931653832373065656430313433363364383833
+3337
diff --git a/ansible/roles/postgres/vars/main/main.yml b/ansible/roles/postgres/vars/main/main.yml
index 3df94327..99290b33 100644
--- a/ansible/roles/postgres/vars/main/main.yml
+++ b/ansible/roles/postgres/vars/main/main.yml
@@ -12,6 +12,10 @@ postgres_users:
     roles:
       - pg_read_all_data
 
+  - name: bitwarden
+    password: "{{ vault_postgres_user_passwords.bitwarden }}"
+    roles:
+
 
 postgres_hba_rules:
   - conn_type: host
@@ -26,7 +30,15 @@ postgres_hba_rules:
     address: all
     method: scram-sha-256
 
+  - conn_type: host
+    database: bitwarden
+    user: bitwarden
+    address: all
+    method: scram-sha-256
+
 
 postgres_databases:
   - name: pinnwand
     owner: pinnwand
+  - name: bitwarden
+    owner: bitwarden