Firefox Bitwarden extensions constantly logging me out #8873
Comments
|
Hello there, Can you please share your timeout action and settings within your Bitwarden extension? |
|
Hi @Krychaz
|
|
+1, I've been seeing the same behavior for the past week and a half or so. Same environment, MacOS 14.4.1, FIrefox 124.0.2, BW extension 2024.4.1 (I don't have the issue on Chrome 123 on a separate 14.4.1 mac, nor with Chrome on Windows 11). Assuming the same cause, it looks like the extension is locking but not performing a full logout (email is pre-filled and I am asked for my password, but not prompted for 2FA). These are my set security settings, but when this issue pops up it unchecks the "Unlock with PIN" option and I have to set a new PIN. 
|
|
Yeah to be clear the browser extension isn't doing this on Chrome (and it seemed ok on Firefox on Linux too, but I have not used that as much recently to be certain). On the browsers where I see the issue it doesn't do it every day, as today is ok. But it is happening across multiple profiles I have on the firefox browser on Mac |
|
Thank you. I have passed this issue to our engineering team. |
|
Happens with Firefox on Linux too, if that helps. |
|
Same here. I've got Vault Timeout set to 'never'. Vault Timeout option is 'lock'. Environment is Firefox (currently version 125.0.2) and MacOS Sonoma 14.4.1. |
|
I'm encountering the same problem on Firefox 125.0.2 x64, Windows 11 23H2 |
|
same here, multiple machines. between this and the biometrics-take-5-tries bug introduced 2 years ago and never fixed, bitwarden has really become a bit of a disappointment. I've stopped recommending it to people, personally, which is sad after so many years of quality product. |
|
Seeing this as well the past week. Set to "never" logout, but may be happening when computer goes to sleep and resumes. Not sure. Or maybe when restarting browser. Tried "remember email" but that setting seemed to be lost. It's not like the extension is 100% reset; after logging back in, I saw that it was still set to "never" timeout, and to Unlock with PIN. It's just finding a way to be logged out anyway. |
|
Hello everyone, I wanted to let you all know that I understand what you're all referring to, as I've experienced this myself a few times in the past 2 weeks on my Windows 11 Pro machine with Firefox. We're looking into this matter internally at this stage. I thank you in advance for your understanding and patience, |
|
Hello, We believe we have identified the root cause of this issue and plan to address it in the upcoming release of the Firefox extension. Due to ongoing release preparation and the store submission process we cannot guarantee a date for this new version to be available, but it will be provided as soon as possible. Thank you for your patience. |
|
Also happens on Firefox ESR (currently 115.10) on Linux (debian 12, in my case). |
|
I'm wondering why this doesn't happen on my PC. I'm logged in to my vault on both my work Macbook (Sonoma 14.4.1) and my home PC (Windows 11 23H2) but I'm only signed out on my Mac. On both machines I use Firefox 125.0.3 and the timeout settings are the same. |
|
Still happening on my extension version: 2024.4.2 + Mac FF 125.0.3 |
|
I haven't experienced this in a few days using 2024.4.2 with Firefox 125.0.3 on two Linux machines. |
|
I share @good-lly's experience, but running on Windows: I also experienced the logout with 2024.4.2 on Firefox 125.0.3 on Windows 10 today. |
|
2024.4.2 on Firefox 126.0, MacOS 14.4.1, still having this issue. |
|
Still occurring on Bitwarden version 2024.4.2, on Windows Firefox. |
|
Version 2024.4.2 seems to have made this worse. Previously, it was only affecting my laptop (which I imagine had something to do with sleep mode), but now it's also affecting my desktop, which doesn't ever go to sleep - it only turns off the display. Would really like to see a fix for this ASAP, because right now there's zero point in setting "Vault Timeout" to "Never" or "Vault Timeout Action" to anything other than "Log Out". Also, for whatever reason, this isn't a true logout, because I'm not asked to confirm 2FA when logging back in. Both my laptop and desktop are on Windows 11 Pro, Firefox 125.0.3 |
I should not have said that; the day after I got logged out again. |
same |
|
@trmartin4 how are things going regarding this bug? It's been some time since Bitwarden's last comment on this matter. |
|
Also happening on Firefox/Arch Linux |
|
Also got this issue, very frustrating.
|
|
Bitwarden support pointed me to this thread after I raised a support case for this issue. System: 2022 MacBook Air I can't see any pattern in the way the logout ocurs, it is not triggered by reboots or closing & re-opening the browser, it occurs sometimes after a long period of sleep, and sometimes it has occured while I've been using the browser. |
|
Similar to the above comments, no unexpected log outs on my end since sideloading the fix test build. It's been about 18 hours since installation and everything is working well. |
|
Great! I updated to 24.6.2 from the Firefox addons stores and next morning was logged-out. Thanks to the community members who tested it early and found it still broken. |
|
Ruh-roh! Bitwarden is not responding for me. Is it down or otherwise horked?
…On Thu, Jun 20, 2024 at 7:45 AM rodalpho ***@***.***> wrote:
Great! I updated to 24.6.2 from the Firefox addons stores and next morning
was logged-out. Thanks to the community members who tested it early and
found it still broken.
—
Reply to this email directly, view it on GitHub
<#8873 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AF4LAL6XT3UKGC6CSWMZAK3ZILTJJAVCNFSM6AAAAABIS24AASVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCOBQHA4TCMZVGY>
.
You are receiving this because you commented.Message ID:
***@***.***>
|
Same here. Updated the addon to version 2024.6.2 and it is gotten worse:
Edit: We are using a self hosted BitWarden. |
|
As mentioned above |
|
I was able to install the addon from your link as temporary addon in Firefox. Firefox says the version is 2024.6.1. I will now watch for errors and report them. |
Yep. It forgets my email now too, which makes it doubly annoying. Good stuff. |
|
Ditto, full log out, e-mail gone, and no longer checking MFA which I have turned on. |
|
nothing new to add just same experience as others, seeing it on windows 10 + macos 12.7.5. seems like each new bitwarden update things just get worse with this problem. 2024.6.2 now being the worse iteration with it losing session and login info that you tell it to saved. and also not doing 2fa check even though its enabled... on macos 12.7.5 with firefox 127.01 when trying to load zip via about:debugging it throws the error:
tried even newer build and saw same thing.
had to extract zip, then navigate manually to the manifest.json to get it to load it. |
|
BW is aware and has a fix which they said they will immediately submit to Mozilla. |
|
Hello, The build which includes the fix for this has been submitted to the Firefox store for approval. It will be version Thank you for your patience and assistance in diagnosing this issue. We understand the frustration this has caused. We have taken your feedback seriously internally and will continue to do our best to provide clear and accurate communications. |
|
Thanks much @trmartin4. Is there a normal timeframe that Mozilla takes before allowing an update through? |
|
I'm on Mac OS 14.5, M3 Apple Chip, Firefox. I have the BW Firefox extension with biometric fingerprint enabled. Repeatedly it does not give me the option to log in with fingerprint. I thought it was a problem with biometrics but it turns out I'm just logged out all the time (meaning bio is unavailable), in spite of having the following set: Account Security > SESSION TIMEOUT > On browser restart > Vault timeout action > Lock. When locked, bio should be available. I tested by manually locking and bio is fine. Extension Version: 2024.6.2 Last Updated 21 June 2024. |
|
So after months of promises of the next update, the updates just make things worse. And we are now waiting for another update? |
This just in: software is reportedly complex and some people make mistakes. More groundbreaking news yet to come. Read the thread. Yes they dropped the ball. Yes it is disappointing that the first fix didn't work. But it seems the full fix has now been submitted and is waiting for approval. If you need a fix today while we all wait for firefox to publish the fix, you can sideload the fixed version temporarily. Otherwise, you need to just hang in there just a few more days for 2024.6.3 to be released. It took 5 days last time. |
Oh, good grief, they're grown adults developing software, not sick puppies. Fanboyism is the first pillar of enshittification. |
|
Please provide an xpi file like ublock. This will avoid reinstalling the plugin in debug mode. And the release notes are not clear. |
No need to wait, just download it yourself. |
|
The number of fanboys in this thread is absurd. Grow a pair and realize that a company who wants us to trust it with all of the keys to our digital identities could not resolve a bug in a browser extension for months. This is an indication of their utter incompetence or complete disregard for customers, not "complex software". Defending them just rewards bad behavior. |
|
In all honesty, this has been a major black eye for bitwarden. I've been a fanboy for years, and the amount of time where a known bug wasn't solved shows a lack of custom awareness. The fact that this wasn't solved at the beginning with a simple code reversion is astounding, especially with no good response regarding a security reason preventing that. I don't know what people should switch to (if anything), but bitwarden will need to do a lot of work to regain the trust of the community. |
|
I left to 1password about 2 years ago because BW had ridiclous bugs, funny to come back to it 2 years later something as basic as staying logged in an extension has been broken for months and months...2024.2.6 still borked One wonders if basic things like this exist, how does one trust the security backed of BW??? |
Not defending BW, but I just want to share my past experience. I came to Bitwarden after Lockwise, which was run by Firefox themselves. That project was an even worse disaster, and the dev team there practically imploded and the project was shuttered as a result. I hope this bug is a catalyst for positive change and a turning point for BW. Would hate to see the same outcome happen again here. |
|
Thanks to all the armchair security researchers, non-users of Bitwarden and those incapable of reading the developer's updates for your valuable contributions. My inbox really appreciates its daily dose of your idiotic takes and incessant whining as I sift through for updates. I kindly ask the addons.mozilla.org team to finish up their daily dilation session and approve the new version so this issue can be finally put to rest. |
|
I bet that every "professional" developer that are commenting here are the same that will force push to master without thinking twice 😆 Please, if you are all that pro, please develop your own password manager and then make it open source. Looking forward for it! |
|
Good news: The version from Edit: |
I kindly ask you to refrain from comments containing hateful aspersions against marginalized people |
|
We have been able to get verification of the resolution of this issue, both internally and within the community, and so we are confident that version We are going to close this issue as resolved now, due to the nature of the conversation that is not directly relevant to the issue at hand. We are very thankful for your patience as we addressed this issue and for your help in diagnosing it. We do understand your frustration, and your feedback is taken very seriously by everyone on the Bitwarden team. |
|
I just checked now and |
and others
Steps To Reproduce
Until a week or so ago, when I use the browser every day bitwarden stays logged in for long periods of time.
Expected Result
bitwarden stays logged in for long periods of time.
Actual Result
Bitwarden is logging me out almost every day
Screenshots or Videos
No response
Additional Context
This has only started recently. Once logged in I set it to be unlocked with PIN without needing master pasword again. Usually when I go on my laptop each day it would stay logged in, but now it keeps logging me out. The desktop application and the application on my phone is not having this issue
Operating System
macOS
Operating System Version
14.4.1 (23E224)
Web Browser
Firefox
Browser Version
124.0.2 (64-bit)
Build Version
2024.4.1
Issue Tracking Info
The text was updated successfully, but these errors were encountered: