Does login password travel over LAN in clear text?

[optimist555]

If vaultwarden is hosted on one instance, and in another instance is a reverse proxy. Both reside on the same LAN subnet. The reverse proxy serves vaultwarden over HTTPS, and the traffic on LAN is plain HTTP. Would it be possible for an attacker that have compromised a computer that reside on LAN to retrieve the login passwords or the data if analyzing the network traffic? Is the traffic encrypted between the Bitwarden clients/VW web UI and the vaultwarden server even though TLS terminates at the reverse proxy?

[kpfleming]

The password is never sent over the connection between the client and the server. If you'd like to understand the Bitwarden security model, spend a few minutes reading their whitepaper.