github-starred/android
2
0
Fork 0
mirror of https://github.com/bitwarden/android.git synced 2026-05-08 12:58:36 -05:00
Code Issues 1.1k Packages Projects Releases 122 Wiki Activity

Passkey Authentication Failure on Session timeout set to 'Immediately' #2008

New Issue
Closed
opened 2025-11-26 23:04:51 -06:00 by GiteaMirror · 16 comments
GiteaMirror commented 2025-11-26 23:04:51 -06:00
Owner
Copy Link

Originally created by @ghost on GitHub (Sep 21, 2024).

Bitwarden Beta

  • I'm using the new native Bitwarden Beta app and I'm aware that legacy .NET app bugs should be reported in bitwarden/mobile

Steps To Reproduce

  1. Bitwarden and Chrome(or Samsung Internet) properly configured; Session timeout=Immediately. Unlock with biometrics ON.
  2. Passkeys created successfully for webauthn.io or any passkey supporting platform.
  3. Sign out
  4. Try to log in with passkey from Bitwarden.
  5. After successful vault unlock. Passkey selection menu is seen.
  6. Select the passkey. Asked for biometrics. Provide it.
  7. Passkey output denied by Bitwarden. Fails with message- An error has occurred. Passkey operation failed because user could not be verified.

Expected Result

Successful login with passkey.
Seen when Session timeout≠Immediately

Actual Result

Passkey output denied by Bitwarden. Fails with message- An error has occurred. Passkey operation failed because user could not be verified.

Screenshots or Videos

yeuoftwms0sdkuks

Additional Context

No response

Build Version

2024.8.1 (GPS)

Environment Details

Samsung A23 5G

Issue Tracking Info

  • I understand that work is tracked outside of Github. A PR will be linked to this issue should one be opened to address it, but Bitwarden doesn't use fields like "assigned", "milestone", or "project" to track progress.
Originally created by @ghost on GitHub (Sep 21, 2024). ### Bitwarden Beta - [X] I'm using the new native Bitwarden Beta app and I'm aware that legacy .NET app bugs should be reported in [bitwarden/mobile](https://github.com/bitwarden/mobile) ### Steps To Reproduce 1. Bitwarden and Chrome(or Samsung Internet) properly configured; **Session timeout=Immediately**. Unlock with biometrics ON. 2. Passkeys created successfully for webauthn.io or any passkey supporting platform. 3. Sign out 4. Try to log in with passkey from Bitwarden. 5. After successful vault unlock. Passkey selection menu is seen. 6. Select the passkey. Asked for biometrics. Provide it. 7. Passkey output denied by Bitwarden. Fails with message- `An error has occurred. Passkey operation failed because user could not be verified.` ### Expected Result Successful login with passkey. Seen when _`Session timeout≠Immediately`_ ### Actual Result Passkey output denied by Bitwarden. Fails with message- `An error has occurred. Passkey operation failed because user could not be verified.` ### Screenshots or Videos ![yeuoftwms0sdkuks](https://github.com/user-attachments/assets/7c046179-f358-4ac1-86aa-dbc2fb05dc84) ### Additional Context _No response_ ### Build Version 2024.8.1 (GPS) ### Environment Details Samsung A23 5G ### Issue Tracking Info - [X] I understand that work is tracked outside of Github. A PR will be linked to this issue should one be opened to address it, but Bitwarden doesn't use fields like "assigned", "milestone", or "project" to track progress.
GiteaMirror added the bug label 2025-11-26 23:04:51 -06:00
GiteaMirror commented 2025-11-26 23:04:52 -06:00
Author
Owner
Copy Link

@bitwarden-bot commented on GitHub (Sep 21, 2024):

Thank you for your report! We've added this to our internal board for review.
ID: PM-12511

@bitwarden-bot commented on GitHub (Sep 21, 2024): Thank you for your report! We've added this to our internal board for review. ID: PM-12511
GiteaMirror commented 2025-11-26 23:04:52 -06:00
Author
Owner
Copy Link

@sammbw commented on GitHub (Sep 23, 2024):

Hi there,

Thank you for your report!

I was able to reproduce this issue, and I have flagged this to our engineering team.

If you wish to add any further information/screenshots/recordings etc., please feel free to do so at any time - our engineering team will be happy to review these.

Thanks once again!

@sammbw commented on GitHub (Sep 23, 2024): Hi there, Thank you for your report! I was able to reproduce this issue, and I have flagged this to our engineering team. If you wish to add any further information/screenshots/recordings etc., please feel free to do so at any time - our engineering team will be happy to review these. Thanks once again!
GiteaMirror commented 2025-11-26 23:04:52 -06:00
Author
Owner
Copy Link

@singh9596 commented on GitHub (Oct 4, 2024):

Screenshot_20241004-094926_Mull

Mine is endlessly loading and on other device getting 'device registration failed' on mull browser.

@singh9596 commented on GitHub (Oct 4, 2024): ![Screenshot_20241004-094926_Mull](https://github.com/user-attachments/assets/42cd3963-cae9-4aeb-adbf-3be28bdc0192) Mine is endlessly loading and on other device getting 'device registration failed' on mull browser.
GiteaMirror commented 2025-11-26 23:04:53 -06:00
Author
Owner
Copy Link

@ghost commented on GitHub (Nov 8, 2024):

@NoCoder9 Hi there its sounds like fixed for me try it! new release
https://github.com/bitwarden/android/releases/tag/v2024.11.3

https://github.com/user-attachments/assets/c38faab8-85b8-44a5-a301-01987d4a2597

@ghost commented on GitHub (Nov 8, 2024): @NoCoder9 Hi there its sounds like fixed for me try it! new release https://github.com/bitwarden/android/releases/tag/v2024.11.3 https://github.com/user-attachments/assets/c38faab8-85b8-44a5-a301-01987d4a2597
GiteaMirror commented 2025-11-26 23:04:53 -06:00
Author
Owner
Copy Link

@singh9596 commented on GitHub (Nov 8, 2024):

@NoCoder9 Hi there its sounds like fixed for me try it! new release https://github.com/bitwarden/android/releases/tag/v2024.11.3
ScreenRecording_20241108_085353.mp4

Passkey is working on github. But I've mentioned that passkey is not working for microsoft/paypal websites.

@singh9596 commented on GitHub (Nov 8, 2024): > @NoCoder9 Hi there its sounds like fixed for me try it! new release https://github.com/bitwarden/android/releases/tag/v2024.11.3 > ScreenRecording_20241108_085353.mp4 Passkey is working on github. But I've mentioned that passkey is not working for microsoft/paypal websites.
GiteaMirror commented 2025-11-26 23:04:53 -06:00
Author
Owner
Copy Link

@ghost commented on GitHub (Nov 8, 2024):

@singhh9596: Ok thanks, i see that bitwarden save that passkey but when you creat passkey microsoft let you name it,but if you using BW its dosen' let you, su i think its microsoft don't save that passkey!
" Maybe i'm wrong!!"
Screenshot_20241108_100754_Brave
Screenshot_20241108_100806_Brave
Screenshot_20241108_100812_Brave
Screenshot_20241108_100539_Bitwarden

@ghost commented on GitHub (Nov 8, 2024): @singhh9596: Ok thanks, i see that bitwarden save that passkey but when you creat passkey microsoft let you name it,but if you using BW its dosen' let you, su i think its microsoft don't save that passkey! " Maybe i'm wrong!!" ![Screenshot_20241108_100754_Brave](https://github.com/user-attachments/assets/f404d9b1-9f5a-40f1-b33c-900d47c76522) ![Screenshot_20241108_100806_Brave](https://github.com/user-attachments/assets/5f3d63d2-0e99-4134-952f-f8397a9cf537) ![Screenshot_20241108_100812_Brave](https://github.com/user-attachments/assets/b1d0aa1a-6a73-41e0-b933-40c5c6b95077) ![Screenshot_20241108_100539_Bitwarden](https://github.com/user-attachments/assets/4163a920-69eb-4d00-b06e-8fc5e3b7d3b9)
GiteaMirror commented 2025-11-26 23:04:54 -06:00
Author
Owner
Copy Link

@singh9596 commented on GitHub (Nov 8, 2024):

@singhh9596: Ok thanks, i see that bitwarden save that passkey but when you creat passkey microsoft let you name it,but if you using BW its dosen' let you, su i think its microsoft don't save that passkey! " Maybe i'm wrong!!" Screenshot_20241108_100754_Brave Screenshot_20241108_100806_Brave Screenshot_20241108_100812_Brave Screenshot_20241108_100539_Bitwarden

Yes, you're right

@singh9596 commented on GitHub (Nov 8, 2024): > @singhh9596: Ok thanks, i see that bitwarden save that passkey but when you creat passkey microsoft let you name it,but if you using BW its dosen' let you, su i think its microsoft don't save that passkey! " Maybe i'm wrong!!" ![Screenshot_20241108_100754_Brave](https://private-user-images.githubusercontent.com/168963030/384324518-f404d9b1-9f5a-40f1-b33c-900d47c76522.jpg?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MzEwNjA5NjMsIm5iZiI6MTczMTA2MDY2MywicGF0aCI6Ii8xNjg5NjMwMzAvMzg0MzI0NTE4LWY0MDRkOWIxLTlmNWEtNDBmMS1iMzNjLTkwMGQ0N2M3NjUyMi5qcGc_WC1BbXotQWxnb3JpdGhtPUFXUzQtSE1BQy1TSEEyNTYmWC1BbXotQ3JlZGVudGlhbD1BS0lBVkNPRFlMU0E1M1BRSzRaQSUyRjIwMjQxMTA4JTJGdXMtZWFzdC0xJTJGczMlMkZhd3M0X3JlcXVlc3QmWC1BbXotRGF0ZT0yMDI0MTEwOFQxMDExMDNaJlgtQW16LUV4cGlyZXM9MzAwJlgtQW16LVNpZ25hdHVyZT00NWEzNmQ0NGQzM2Y3ODRkNWIzZjBkNWIzYjYyOTgzYTc1ZThjYTFiZDUwNWI2NjJlNzc1OTY4MDA3MTA2MjE1JlgtQW16LVNpZ25lZEhlYWRlcnM9aG9zdCJ9.hgL_pWdEoUBorOn2kAn0eIjEIpqP14SCP782eTgyOek) ![Screenshot_20241108_100806_Brave](https://private-user-images.githubusercontent.com/168963030/384324528-5f3d63d2-0e99-4134-952f-f8397a9cf537.jpg?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MzEwNjA5NjMsIm5iZiI6MTczMTA2MDY2MywicGF0aCI6Ii8xNjg5NjMwMzAvMzg0MzI0NTI4LTVmM2Q2M2QyLTBlOTktNDEzNC05NTJmLWY4Mzk3YTljZjUzNy5qcGc_WC1BbXotQWxnb3JpdGhtPUFXUzQtSE1BQy1TSEEyNTYmWC1BbXotQ3JlZGVudGlhbD1BS0lBVkNPRFlMU0E1M1BRSzRaQSUyRjIwMjQxMTA4JTJGdXMtZWFzdC0xJTJGczMlMkZhd3M0X3JlcXVlc3QmWC1BbXotRGF0ZT0yMDI0MTEwOFQxMDExMDNaJlgtQW16LUV4cGlyZXM9MzAwJlgtQW16LVNpZ25hdHVyZT0xZTAyMTM3NWIyMDJkYzY4OWIyOTBiZjVmMzUzMWExZjM4YmUxNGU2NmM4ZmNhNmIxNmYxNGNmYjg5N2M2NzQ4JlgtQW16LVNpZ25lZEhlYWRlcnM9aG9zdCJ9.vs72G4BgiCg3Y7apEfwZLNjpYhvf6SuJiT_AyyDuWQQ) ![Screenshot_20241108_100812_Brave](https://private-user-images.githubusercontent.com/168963030/384324530-b1d0aa1a-6a73-41e0-b933-40c5c6b95077.jpg?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MzEwNjA5NjMsIm5iZiI6MTczMTA2MDY2MywicGF0aCI6Ii8xNjg5NjMwMzAvMzg0MzI0NTMwLWIxZDBhYTFhLTZhNzMtNDFlMC1iOTMzLTQwYzVjNmI5NTA3Ny5qcGc_WC1BbXotQWxnb3JpdGhtPUFXUzQtSE1BQy1TSEEyNTYmWC1BbXotQ3JlZGVudGlhbD1BS0lBVkNPRFlMU0E1M1BRSzRaQSUyRjIwMjQxMTA4JTJGdXMtZWFzdC0xJTJGczMlMkZhd3M0X3JlcXVlc3QmWC1BbXotRGF0ZT0yMDI0MTEwOFQxMDExMDNaJlgtQW16LUV4cGlyZXM9MzAwJlgtQW16LVNpZ25hdHVyZT1jNjQxZTM3ZmExZWEzY2M4NGI1MDU0ZGRhMjY5ZTQ4OGZiMzBhZjE2MDEwYjJiNWU2OTg2Njg3MGE5YmZhYWM2JlgtQW16LVNpZ25lZEhlYWRlcnM9aG9zdCJ9.HU9UsYtb3oi7Z5zngvn5ax-petwWIPwjRIvsT3f7GE0) ![Screenshot_20241108_100539_Bitwarden](https://private-user-images.githubusercontent.com/168963030/384324540-4163a920-69eb-4d00-b06e-8fc5e3b7d3b9.jpg?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MzEwNjA5NjMsIm5iZiI6MTczMTA2MDY2MywicGF0aCI6Ii8xNjg5NjMwMzAvMzg0MzI0NTQwLTQxNjNhOTIwLTY5ZWItNGQwMC1iMDZlLThmYzVlM2I3ZDNiOS5qcGc_WC1BbXotQWxnb3JpdGhtPUFXUzQtSE1BQy1TSEEyNTYmWC1BbXotQ3JlZGVudGlhbD1BS0lBVkNPRFlMU0E1M1BRSzRaQSUyRjIwMjQxMTA4JTJGdXMtZWFzdC0xJTJGczMlMkZhd3M0X3JlcXVlc3QmWC1BbXotRGF0ZT0yMDI0MTEwOFQxMDExMDNaJlgtQW16LUV4cGlyZXM9MzAwJlgtQW16LVNpZ25hdHVyZT1iNzlmZWVmZjU1OWI5MGVlYzIxMDA3NWEzMDI3YmQ0ODVmNWQ5ZDVlYTc0ZTMyMjcxYjk1NTM5ZmMyZDQxY2RhJlgtQW16LVNpZ25lZEhlYWRlcnM9aG9zdCJ9.L60TJrbH_Qq2q9kLD9r9wvIJOtc1S-fvZyFP_MC6JxQ) Yes, you're right
GiteaMirror commented 2025-11-26 23:04:54 -06:00
Author
Owner
Copy Link

@ghost commented on GitHub (Nov 10, 2024):

@NoCoder9 Hi there its sounds like fixed for me try it! new release https://github.com/bitwarden/android/releases/tag/v2024.11.3
ScreenRecording_20241108_085353.mp4

Not working when session timeout set to "Immeditely". Every other timings work. Please verify...

@ghost commented on GitHub (Nov 10, 2024): > @NoCoder9 Hi there its sounds like fixed for me try it! new release https://github.com/bitwarden/android/releases/tag/v2024.11.3 > ScreenRecording_20241108_085353.mp4 Not working when session timeout set to "Immeditely". Every other timings work. Please verify...
GiteaMirror commented 2025-11-26 23:04:54 -06:00
Author
Owner
Copy Link

@ghost commented on GitHub (Nov 10, 2024):

@NoCoder9 its work fine on github even when "set session timeout set to "Immeditely".
The issue its in microsoft/paypal

@ghost commented on GitHub (Nov 10, 2024): @NoCoder9 its work fine on github even when "set session timeout set to "Immeditely". The issue its in microsoft/paypal
GiteaMirror commented 2025-11-26 23:04:55 -06:00
Author
Owner
Copy Link

@singh9596 commented on GitHub (Nov 10, 2024):

Well, I've added passkey through my laptop. At least I'm able to login but i still can't add passkey from mobile. And i don't know when they gonna focus on the passkey support for gecko based browsers

@singh9596 commented on GitHub (Nov 10, 2024): Well, I've added passkey through my laptop. At least I'm able to login but i still can't add passkey from mobile. And i don't know when they gonna focus on the passkey support for gecko based browsers
GiteaMirror commented 2025-11-26 23:04:55 -06:00
Author
Owner
Copy Link

@singh9596 commented on GitHub (Nov 10, 2024):

@NoCoder9 : I confirm its work, for "Microsoft/Paypal"

I just checked. Adding passkey remains the same as the screenrecording i attached to the thread.

Bitwarden vrsion: 2024.11.3 (19432)

@singh9596 commented on GitHub (Nov 10, 2024): > @NoCoder9 : I confirm its work, for "Microsoft/Paypal" I just checked. Adding passkey remains the same as the screenrecording i attached to the thread. Bitwarden vrsion: 2024.11.3 (19432)
GiteaMirror commented 2025-11-26 23:04:56 -06:00
Author
Owner
Copy Link

@Felitendo commented on GitHub (Nov 23, 2024):

It's not working for me on any website

@Felitendo commented on GitHub (Nov 23, 2024): It's not working for me on any website
GiteaMirror commented 2025-11-26 23:04:56 -06:00
Author
Owner
Copy Link

@dasunsrule32 commented on GitHub (Dec 12, 2024):

Same here, not working on any site. It used to work without issue.

Version: 2024.11.7 (195285)

I have my Session Timeout set to 5 Minutes.

@dasunsrule32 commented on GitHub (Dec 12, 2024): Same here, not working on any site. It used to work without issue. ``` Version: 2024.11.7 (195285) ``` I have my `Session Timeout` set to `5 Minutes`.
GiteaMirror commented 2025-11-26 23:04:56 -06:00
Author
Owner
Copy Link

@Budgiebrain994 commented on GitHub (Dec 18, 2024):

Replicated, Samsung Galaxy S23 Ultra, timeout set to Immediately. Issue not present when set to 5 minutes. Applies to all sites including GitHub.

© Bitwarden Inc. 2015-2024

Version: 2024.11.7 (19528)
@Budgiebrain994 commented on GitHub (Dec 18, 2024): Replicated, Samsung Galaxy S23 Ultra, timeout set to Immediately. Issue not present when set to 5 minutes. Applies to all sites including GitHub. ``` © Bitwarden Inc. 2015-2024 Version: 2024.11.7 (19528) ```
GiteaMirror commented 2025-11-26 23:04:57 -06:00
Author
Owner
Copy Link

@ghost commented on GitHub (Jan 5, 2025):

replicated
pixel 7 on build number ap4a.241205.013
version 2024.12.0 (19597)
present with discord app, 15 minutes session timeout

@ghost commented on GitHub (Jan 5, 2025): replicated pixel 7 on build number ap4a.241205.013 version 2024.12.0 (19597) present with discord app, 15 minutes session timeout
GiteaMirror commented 2025-11-26 23:04:57 -06:00
Author
Owner
Copy Link

@dasunsrule32 commented on GitHub (Jan 9, 2025):

Issue still exists on: 2025.1.0 (19622).

Android 14, Pixel 5.

@dasunsrule32 commented on GitHub (Jan 9, 2025): Issue still exists on: `2025.1.0 (19622)`. Android 14, Pixel 5.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
app:authenticator
app:password-manager
bug
bug-passkey
customer-support
duplicate
enhancement
good first issue
help wanted
needs-reply
needs-response
pull-request
Mirrored from GitHub Pull Request
 question
No Label bug
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/android#2008
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?