-
Notifications
You must be signed in to change notification settings - Fork 398
macOS Vault Master Password Entry Holds Secure Keyboard Input Open #298
Comments
The recent update upgraded our version of Electron, so maybe something internally changed there. We don't do any checks to see if Bitwarden is the foregrounded applications, so I would need to look into Electron APIs to see if that is possible to detect. |
Good news. You can now use |
+1 for implementing this! It's playing havoc with my KM macros and text expansion. I thought it was a macOS issue but found that whenever I quit Bitwarden I never have the issue. |
This is still an ongoing issue. There is another issue here: #738 |
There are several issues reporting the same problem with different apps. I'm going to close all the other threads and use this as the main issue. However I'll link them here for reference:
|
I've got the same issue with Bitwarden preventing text expansion by Alfred. Is there any update on this? |
EDIT: I forgot that I missed the last release window for this bugfix. It'll be included in the upcoming release, v. 1.28.0, which you can tentatively expect later this month. |
Hi @eliykat. I see v1.28.2 has been released a couple of weeks ago. Every when are new versions released to the Mac App Store? I am still on v1.27.1 (531) via the App Store just because I am using the unlock with biometrics for Chrome Extension functionality which as I understand is only available with Bitwarden through the App Store. |
Hi @xeroxoid, we submit our releases to the app store at the same time they are released on our website, however the approval process with Apple can take a few weeks. |
@xeroxoid, v1.28.2 is now live on the Mac App Store. |
TY for the update! |
I'm running v1.28.3 and still having problems with Alfred Text Expansion |
Hi @escobar5, can you please:
|
Hi @eliykat, sorry for my vague comment. I'm having trouble replicating it, it seems to only happens at times, contrary to previous versions where definitely having bitwarden desktop open will disable alfred text expansion. It seems it might have something to do with unlocking browser extension with touch id. I will try to provide you with more details when it happens to me again. |
With the macOS Desktop Vault, version 1.15.2, I'm seeing some new behavior with secure keyboard input or keyboard focus. I'm on Mojave 10.14.6.
My issue is that Bitwarden keeps keyboard focus active in the Master Password field, even when it's in the background. When secure keyboard input is active, system-wide keyboard macro software is unable to function (in my case, Keyboard Maestro).
This is a recent break for me, but I'm not sure if secure keyboard input is new, or focus behavior has changed. As near as I can tell, here's what's happening:
When Bitwarden loses application focus, it ends the secure input/keyboard focus on the password field
When Bitwarden regains application focus, it puts keyboard focus back on the field (if it had it when you left; if you click off the master password field to stop keyboard focus, it won't return it when application focus returns)
This is all fine!
But: It takes a few seconds for Bitwarden to go from application start to fully initialized, where it renders the vault locked UI. If it loses application focus during this window, it still begins with keyboard focus in the master password entry, and thus secure input, even though it's no longer the front application.
The way my applications start up on boot, by the time Bitwarden has fully initialized, some other restarting application has taken focus. I have to tab in and out of Bitwarden, or manually click off the master password entry text field, before Keyboard Maestro begins working.
I think that adding a check to see if Bitwarden is still the front-most application before putting keyboard focus into the password field will fix this.
The text was updated successfully, but these errors were encountered: