search

bitwarden / clients

Bitwarden client apps (web, browser extension, desktop, and cli).
https://bitwarden.com
Other
9.08k stars 1.2k forks source link

Cannot login via Tor #5539

Open limdingwen opened 1 year ago

limdingwen commented 1 year ago

Steps To Reproduce

  1. Install from the Firefox extension store
  2. Try to login

Expected Result

Login successful.

Actual Result

Login produces an error message with an unexpected error. Password is double-checked to be correct.

Screenshots or Videos

image

Additional Context

I understand that Tor Browser discourages installing extensions, but this is rather useful for those who don't need full anonymity but want to use their existing password manager.

Operating System

Linux

Operating System Version

Fedora Linux 38 (Xfce)

Web Browser

Tor Browser (based on Firefox)

Browser Version

12.0.6 (based on Mozilla Firefox 102.11.0esr) (64-bit)

Build Version

2023.4.0

Issue Tracking Info

Krychaz commented 1 year ago

Hello there,

This seems is most definitely caused by connecting from Tor. Please try using different node.

cavokz commented 1 year ago

Hi,

I'm also experiencing this issue, I've never seen it succeed from the add-on itself on Torbrowser 12.0.6 (based on Mozilla Firefox 102.11.0esr and some earlier) despite I also tried to change the Tor circuit.

It looks to me that the browser extension is not able to cope with captchas. The web extension handles captchas and works nicely on Firefox instead.

I can log in from the web page on both Torbrowser and Firefox, both through captchas.

limdingwen commented 1 year ago

Weirdly, I am able to login now! Perhaps it was an issue with one of the circuits, or something changed on the backend (e.g. the captcha wasn't required on this specific try). This happened after a few reboots and relogs.

cavokz commented 1 year ago

Sorry, this is still failing for me. Could you please reopen the issue?

cavokz commented 1 year ago

Is there anything that I can do to gather more info about this failure? The browser console is not very talkative.

trollepierre commented 1 year ago

hello, I reproduce that bug with the Firefox extension. I suspect it's dued to a recaptcha because on Tor, I need to reply to a recaptcha when connecting to https://vault.bitwarden.com/#/vault . Nothing in the console or in the network tab of Inspector.

Now I am sure it's dued to the recaptcha. I just try same scenario on Brave. I spot the recaptcha on Brave. On Tor, it looks like blocked. This has to be investigated. 🙏

trollepierre commented 1 year ago

Some news happen this topics, I reproduce this issue on Tails (https://tails.net/index.fr.html), with the Linux AppImage : https://vault.bitwarden.com/download/?app=desktop&platform=linux .

Because everything passes through Tor Browser on Tails.

trollepierre commented 1 year ago

Oh I notice the Signup with HCaptcha is working on https://dashboard.hcaptcha.com/signup .

We need to check what is happening inside the network

trollepierre commented 1 year ago

I've succeeded to connect on https://vault.bitwarden.com/#/vault 🤔

Good news!

trollepierre commented 1 year ago

But the Tor extension does not work, I cannot see the recaptcha...

trollepierre commented 1 year ago

Can anyone help me to debug (to see in the network) which requests are sent by the Bitwarden extension? 🙏

gxsshallot commented 1 year ago

same problem