mirror of
https://github.com/bitwarden/android.git
synced 2026-03-09 03:33:36 -05:00
[PM-25227] Android can no longer detect/fill basic auth in Chrome or Brave with new autofill settings #2333
Open
opened 2025-11-26 23:16:01 -06:00 by GiteaMirror
·
8 comments
No Branch/Tag Specified
main
crowdin-pull
PM-33266-crashlytics-bug
PM-32123/cookie-sync-error-message
PM-29861-update-overflow-content-description
PM-33227/clear-cookies-debug-button
update-agp
PM-26059-remove-cipher-key-encryption-flag
remove-remember-viewmodel
PM-29871-external-links
PM-29673/flight-recorder-export-header-info
renovate/lock-file-maintenance
sdlc/sdk-update
release/2026.3-rc48
PM-24380/flight-recorder-redact-hostname
release/2026.2-rc47
PM-32714/fallback-to-web-vault-host
pr-6572
PM-28834/setting-app-layout-horizonos
PM-26896-autofill-fix
vvolkgang/process-release-notes-v2
PM-26577-app-links-support
release/2026.2-rc46
release/2026.1-rc45
PM-30644/added-logs-for-debug
PM-30644/quicktile-nav-not-showing-migration
minor-gradle-updates
release/2026.1-rc42
release/2026.1-rc44
release/2026.1-rc43
PM-28834/set-landscape-on-horizonos-devices
context-rules
devclarity/update-code-review-command
PM-20026/force-ltr-passwords-and-codes
release/2025.12-rc41
cmcg/testCoverage
claude-skill/creating-feature-flags
PM-29014/talkback-support-for-passwords
release/2025.12-rc40
BRE-1305/publish_test
accept-user-certs
autofill-permissions
release/2025.11-rc39
PM-22479/check-all-certificates-validate-asset-links
release/2025.10-rc38
agalles/android-latest
optimize-test-workflows
tier2-test-sharding
retro-agent
PM-27001/skip-account-selection-only-one-exists-cxp
release/2025.10-rc37
agalles/test-1118
release/2025.10-rc36
PM-20593-token-refresh
QA-1126b/adding-native-sanity-test
release/2025.9-rc35
pm-25933/sdk-update-password
release/2025.9-rc34
release/2025.8-rc33
agalles/20250821-release
debug-release-issues
pm-24249-allow-automated-prs-for-sdk-updates
release/2025.8-rc32
release/WORKFLOW-TEST-2025.8-rc28
agalles/20250807release
release/2025.07-rc25
release/hotfix-v2025.7.0-bwa
pm-23311/export-vault-policy-bypass
release/2025.07-rc24
authenticator-pm-sync-flags-issue
ps/implement-sdk-repository-example
release/hotfix-v2025.6.0-bwpm
release/2025.06-rc21
agalles/automate-android-fastlane-patch
release/2025.05-rc20
release/2025.04-rc19
languages/basque
release/2025.03-rc19
update-readme
qrcode/feature
innovation/archive/pm-19153-archive-items
qrcode/2-ui-fields
qrcode/1-page
hold-on-biometric-prompt-alternative
release-notes-process
release/2025.02-rc16
bwa-monorepo
PM-8223/new-device-verification-ux-improvements
pm-18451/exempt-from-policies
test-bwa
cs-workaround-linked-0-copy
release/2025.01-rc15
release/2025.01-rc14
release/2024.12-rc13
pm-16670/sync-leave-notice
821
PM-16695/backport-lean-more-new-device-verification
km/15084-testing
release/hotfix-v2024.11.7
release/2024.11-rc1
pm-11304/collection-add-item-button
PM-14241/disabling-logs-app-crash
poc/offline-editing
new-version-calc
pm-11649/expired-link-services
pm-6702/add-feature-flag
pm-6702/email-verification-feature
pm-9933/marketing-copy-update
pm-6702/registration-flows
update-templates
pm-6701/email-verification-selfhost-registration
v2026.2.1-bwpm
v2026.2.1-bwa
v2026.2.0-bwpm
v2026.2.0-bwa
v2026.1.1-bwa
v2026.1.1-bwpm
temp-test
v2026.1.0-bwpm
v2026.1.0-bwa
v2025.12.1-bwa
v2025.12.1-bwpm
v2025.12.0-bwa
v2025.12.0-bwpm
v2025.11.1-bwpm
v2025.11.1-bwa
v2025.11.0-bwpm
v2025.11.0-bwa
v2025.10.1-bwa
v2025.10.1-bwpm
v2025.10.0-bwa
v2025.10.0-bwpm
v2025.9.1-bwa
v2025.9.1-bwpm
v2025.9.0-bwa
v2025.9.0-bwpm
v2025.8.1-bwa
v2025.8.1-bwpm
v2025.8.0-bwa
v2025.8.0-bwpm
v2025.7.2-bwa
v2025.7.2-bwpm
v2025.7.1-bwa
v2025.7.1-bwpm
v2025.7.0-bwa
v2025.7.0-bwpm
v2025.6.1-bwpm
v2025.6.0-bwa
v2025.6.0-bwpm
v2025.1.0-bwa
v2025.5.0-bwa
v2025.5.0-bwpm
v2025.5.999
2025.4.0
v2025.4.0
untagged-4731eaadac73f3dfbbb8
v2025.3.0
v2025.2.0
untagged-815a165c5d70ffe75bc7
v2025.1.2
v2025.1.1
v2025.1.0
v2024.12.0
untagged-5a76b6392a4c8998c63a
v2024.11.7
v2024.11.6
v2024.11.5
v2024.11.4
v2024.11.3
v2024.11.2
v2024.11.1
v2024.11.0
v2024.10.2
v2024.10.1
v2024.10.0
v2024.9.0
v2024.8.1
v2024.8.0
v2024.7.3
v2024.7.2
v2024.7.1
v2024.7.0
v2024.6.1
v2024.6.0
v2024.5.1
v2024.4.1
v2024.4.2
v2024.4.0
v2024.3.3
v2024.3.1
v2024.3.0
v2024.2.1
v2024.2.0
v2024.1.1
v2024.1.0
v2023.12.0
v2023.10.0
v2023.9.2
maui-single-project-android
v2023.9.1
v2023.9.0
v2023.8.0
v2023.7.0
v2023.5.0
v2023.4.0
v2023.3.2
v2023.3.1
v2023.3.0
v2023.2.0
v2023.1.0
v2022.11.0
v2022.10.0
v2022.9.1
v2022.9.0
v2022.8.0
v2022.6.2
v2022.6.1
v2022.6.0
v2022.05.0
v2.18.0
v2.17.0
v2.16.4
v2.16.3
v2.16.2
v2.16.1
v2.15.0
v2.14.2
v2.14.1
v2.14.0
v2.13.0
v2.12.0
v2.11.3
v2.11.2
v2.11.1
v2.11.0
v2.10.0
v2.9.1
v2.9.0
v2.8.2
v2.8.1
v2.8.0
v2.7.2
v2.7.0
v2.6.1
v2.6.0
v2.5.6
v.2.5.5
v2.5.5
v2.5.4
v2.5.3
v2.5.2
v2.5.1
v2.5.0
v2.4.3
v2.4.2
v2.4.1
v2.4.0
v2.3.1
v2.3.0
v2.2.8
v2.2.7
v2.2.6
v2.2.2
v2.2.1
v2.2.0
v2.1.2
v2.1.0
v2.0.6
v2.0.5
v2.0.4
v2.0.3
v2.0.2
v2.0.1
v2.0.0
v1.22.1
v1.22.0
v1.21.0
v1.20.0
v1.19.0
v1.18.1
v1.18.0
v1.17.0
v1.16.0
v1.15.2
v1.15.1
v1.15.0
v1.14.4
v1.14.1
v1.14.0
v1.13.0
v1.12.2
v1.12.1
v1.12.0
v1.11.1
v1.11.0
v1.10.0
v1.9.0
v1.8.1
v1.8.0
v1.7.0
v1.6.5
v1.6.1
v1.6.0
v1.5.1
v1.5.0
v1.4.4
v1.4.3
v1.4.0
v1.3.0
v1.2.1
v1.2.0
v1.1.0
v1.0.0
v0.0.6
v0.0.5
v0.0.4
v0.0.3
v0.0.2
v0.0.1
Milestone
No items
No Milestone
Projects
Clear projects
No project
No Assignees
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: github-starred/android#2333
Reference in New Issue
Block a user
Blocking a user prevents them from interacting with repositories, such as opening or commenting on pull requests or issues. Learn more about blocking a user.
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @eddiert on GitHub (Aug 27, 2025).
Steps To Reproduce
Unlock Bitwarden vault
Browse to website that uses basic auth
Receive user/pass challenge
Autofill does not provide suggestions with context to the website being browsed
Clicking "Bitwarden My Vault" opens the vault and Bitwarden indicates that it is providing "Items for com.brave.browser or com.android.chrome".
Expected Result
Unlock Bitwarden vault
Go to website in browser (ex, https://www.mysite.com)
Receive user/pass challenge
Autofill suggests passwords relevant to the site (ie www.mysite.com)
Clicking on a selection fills user and pass and pressing sign-in succeeds
Clicking on "Bitwarden My Vault" would provide results based on the site being browsed
Actual Result
When accessing a website that uses basic auth, Bitwarden seems that it cannot see the web address that is being browsed for context and instead searches for items based on the browser being used (ie com.brave.browser/com.android.chrome).
Screenshots or Videos
No response
Additional Context
Edge browser on Android still works properly
Samsung Internet browser still works properly
Worked before 2025.7
Build Version
2025.7.2 (20551)
What server are you connecting to?
US
Self-host Server Version
No response
Environment Details
Samsung s23+
Android 15
also tested on:
Motorola Edge 2024
Android 14
Issue Tracking Info
@bitwarden-bot commented on GitHub (Aug 27, 2025):
Thank you for your report! We've added this to our internal board for review.
ID: PM-25227
@o2rhkzqx commented on GitHub (Aug 27, 2025):
I use both Chrome and Brave and it's working fine.
@eddiert commented on GitHub (Aug 29, 2025):
Are you visiting sites with basic auth?
@Anonym001 commented on GitHub (Aug 29, 2025):
i am using microg, and currently facing this exact same issue on fennec f-droid.
@eddiert commented on GitHub (Aug 30, 2025):
With pictures:
Correct behavior. Unlock Bitwarden vault. Open Edge or Samsung Internet on Android. Go to https://authenticationtest.com. Click basic authentication. Correct credentials are suggested in autofill. Clicking those credentials will autofill correctly. Click Bitwarden My vault. "Items for authenticationtest.com" is shown across the top. Correct credential is suggested.
Incorrect behavior. Unlock Bitwarden vault. Open Chrome or Brave on Android. Go to https://authenticationtest.com. Click basic authentication. Incorrect credentials are suggested. No valid option to choose to autofill. Click Bitwarden My vault. "Items for com.brave.browser" is shown across the top. Incorrect credential is suggested.
@SaintPatrck commented on GitHub (Sep 3, 2025):
Hi all,
Just wanted to drop in and let you know I've identified the issue and we're investigating solutions.
Unfortunately when we stopped using compatibility mode with the latest Chrome (and some Chromium variants) version to improve Autofill reliability we stopped receiving the website information during Basic Auth prompts, which is why we're falling back to the application package name that sent the Autofill request.
@SaintPatrck commented on GitHub (Sep 26, 2025):
Hi all,
Popping in for an update. The Chrome team has acknowledged, confirmed, and submitted a patch to fix the issue.
More details can be found on the IssueTracker ticket.
@pmr0 commented on GitHub (Nov 19, 2025):
I need to roll back to the previous version, it’s really inconvenient not being able to use autofill in almost all apps that require a username and password. Autofill works fine in versions 2025.7.2 (beta) and 2025.10.1.