search

bitwarden / mobile

Retired Bitwarden mobile app for iOS and Android (MAUI/Xamarin).
https://bitwarden.com
GNU General Public License v3.0
155 stars 25 forks source link

Bitwarden cannot be used for passkey authentication on mobile #3237

Closed gHn6HNpDFu7J9lRNpGhvI816IzuFaY5SRnPUtFa closed 6 months ago

gHn6HNpDFu7J9lRNpGhvI816IzuFaY5SRnPUtFa commented 6 months ago

Steps To Reproduce

  1. Go to any website and authenticate via passkey
  2. Bitwarden will not show up to authenticate passkey. Both the mobile app and browser extension don't work on mobile

Expected Result

Bitwarden opens to authenticate passkey

Actual Result

Either the local phone passkey authentication system open, or it straight up fails the passkey authentication immediatley

Screenshots or Videos

No response

Additional Context

I am using Firefox 125.3.0 and I have tried the Bitwarden mobile app and the extension that runs in Firefox

Operating System

Android

Operating System Version

13

Device

OnePlus 9 Pro

Build Version

2024.4.0

Beta

yvCiXpfMZsTgTWvhIE0LmrgAcVE7155rfTbA7nd commented 6 months ago

Hi there,

I am unable to reproduce this issue, but it has been escalated for further investigation. If you have more information that can help us, please add it below.

Thanks!

gHn6HNpDFu7J9lRNpGhvI816IzuFaY5SRnPUtFa commented 6 months ago

Hi there,

I am unable to reproduce this issue, but it has been escalated for further investigation. If you have more information that can help us, please add it below.

Thanks!

Hey,

As I understand the passkey authentication works for you on mobile? Do you use the app or the browser extension? For me it always calls the passkey authentication system from the phone itself. Bitwarden has never shown up for me for this. Password autofill does work however.

I looked around and I can't see any setting for this either, so I assumed it either wasn't supported or is always enabled (and not working in my case).

XAP4kwI0P9XeCwLkNuX1Vyu97IPvtf97qteDMbs commented 6 months ago

I can confirm this issue. Running the bitwarden app, and the extension in Firefox version 125.3.0. My mobile has the same problem, it goes to the locsl phone passkey authentication system. Phone: Samsung S23, running latest android version

rSDxRjXP883M0BKIPJPlMT76wDS33KyLlzjUtQj commented 6 months ago

@platnub You use Android 13 for this? That doesn't support third-party passkey management, like with Bitwarden, so it can't work for you as long as you are not on Android 14 (or higher).

And you use the mobile app 2024.4.0 which is even not providing passkey functions. (as I understand it, for Android, passkey functions are still in Beta - and the Beta would be 2024.4.1 or 2024.4.2 I think)

And using the browser extension on mobile is even not supported by Bitwarden.

PS: And on top of that, passkeys don't seem to work on Firefox on Android... (https://bugzilla.mozilla.org/show_bug.cgi?id=1870436)

2ZK4GLurJ0I1yUYQp8g7eMNjQQKqkPKmXZDfpUJ commented 6 months ago

In chrome one need to enable the third-party password managers for passkeys as an experimental feature. No idea about other browser. As far as I know, on android, only browser authentication with passkeys works(will not work for apps).

rSDxRjXP883M0BKIPJPlMT76wDS33KyLlzjUtQj commented 6 months ago

In chrome one need to enable the third-party password managers for passkeys as an experimental feature. No idea about other browser. As far as I know, on android, only browser authentication with passkeys works(will not work for apps).

@artur-braga I think it is the same for other Chromium-based browsers (and Firefox doesn't work). And app support will come with future releases... This all can be read in more detail in the help sites (especially in the tab "Android (beta)"): https://bitwarden.com/help/storing-passkeys/#using-passkeys-with-bitwarden

rSDxRjXP883M0BKIPJPlMT76wDS33KyLlzjUtQj commented 6 months ago

I can confirm this issue. Running the bitwarden app, and the extension in Firefox version 125.3.0. My mobile has the same problem, it goes to the locsl phone passkey authentication system. Phone: Samsung S23, running latest android version

@Nathanymous As I now already wrote: it won't work with Firefox (for now - and that's a Firefox issue) - you have to use a Chromium-based browser for the time being. When your "latest Android" is Android 14, then you're good. When you have installed the Bitwarden mobile app BETA (2024.4.1 or above), then you're good. It won't work with the latest release (2024.4.0).

And then you have to do some manually configurations so that it can work - see here (especially in the tab "Android (beta)": https://bitwarden.com/help/storing-passkeys/#using-passkeys-with-bitwarden

gHn6HNpDFu7J9lRNpGhvI816IzuFaY5SRnPUtFa commented 6 months ago

I will upgrade to Android 14 this weekend and test out the beta function. Will report back.

rSDxRjXP883M0BKIPJPlMT76wDS33KyLlzjUtQj commented 6 months ago

I will upgrade to Android 14 this weekend and test out the beta function. Will report back.

@platnub Good! And make sure to use a Chromium-based browser and configure everything as described here: https://bitwarden.com/help/storing-passkeys/#using-passkeys-with-bitwarden (and watch out there for the "Android (beta)" tab in particular).

micahblut commented 6 months ago

Thank you for checking out the Android beta. As others have pointed out, Android 14 or above is required to use a 3rd party passkey provider like Bitwarden. Additionally, there are known issues with Firefox not supporting passkeys on Android. I will close this issue now.

uRtYxdSeZmz5aA32HEmLNHh2uHHFwAqeMuHt8CQ commented 6 months ago

I'm using Android 14, Bitwarden 2024.4.1 and Chrome. I have the same experience as described by OP.

I'm using lineage is 21 with microG 0.3.2.

micahblut commented 6 months ago

@ronidee can you confirm that you've configured your chrome://flags to enable 3rd party passkey providers?

uRtYxdSeZmz5aA32HEmLNHh2uHHFwAqeMuHt8CQ commented 6 months ago

Sorry, I forgot to do so. After enabling it, I am prompted to unlock Bitwarden. After doing so, this full screen pop up appears, where I can "get started" and then select device authentication -- see screenshots. After doing so, there is a sort of toast message (not a native android toast though. No, neither a snackbar) saying "no sign-inf info in Bitwarden". However, my Bitwarden account has a passkey for this website which I can use on other devices, e.g. firefox (deb) on Ubuntu 23.10. But Firefox on Windows 11 and on Ubuntu 24 says "There are no passkeys for this application", so yeah it only works on some of my other devices.

Screenshots: bitwardenmobilescreenshots

LBJJFCeplwh7X1oUhVIMZqJY1WDDzjnSIsSIJ0o commented 5 months ago

I have the same issue on my phone. The bitwarden app is correctly registered as passkey provider, but no application prompts for bitwarden when registering a or authenticating with a passkey. Furthermore, I followed the configuration hints

System Info:

Should we reopen this issue or create a new one?

uRtYxdSeZmz5aA32HEmLNHh2uHHFwAqeMuHt8CQ commented 5 months ago

"Should we reopen this issue or create a new one?"

I'd say create a new one.

LBJJFCeplwh7X1oUhVIMZqJY1WDDzjnSIsSIJ0o commented 5 months ago

Opened new issue bitwarden/mobile#3310

danielesegato commented 4 months ago

I've the same issue with Chrome and Android + Bitwarden

I've successfully setup Passkey for my Github account but when I try to use it:

  1. I select sign in with passkey on Github on Chrome (PC)
  2. Chrome show me the device and I click continue
  3. I get the passkey check on my device
  4. I continue there
  5. bitwarden opens up and I unlock it with biometric
  6. I chose Github in bitwarden
  7. I insert my password in bitwarden (master re-verification for Github)
  8. the browser on Github (PC) inform me the authentication failed