Autofill on iOS demands master password instead of PIN

iPhone 13 Pro / iOS 15.5
Latest bitwarden

My findings here are that

  1. if Vault Timeout is set to any setting besides Never, OR
  2. if Face ID is turned on:

Then when using autofill on iOS, bitwarden will always popup to “Verify Master Password” or “Verify Pin” if pin setting was enabled.

The only way to prevent a screen from popping up each usage is to turn Vault Timeout to Never and then Face ID off in the Bitwarden app. Once you do this and try to autofill a password, something in the OS triggers FaceID anyways which is good.

The shortcoming here is that setting the app to never is a big security risk, if someone happens to come across my unlocked phone they could presumably access any of my account passwords if they know where to look. For some reason Autofill is not respecting the Vault Timeout setting

There are some older threads about this being a known issue on iPads without biometrics support, but I’m using an iPhone 13 Pro with Face ID.

LastPass appears to be managing this issue better by providing more config options:

  1. “Lock Options” : Bitwarden’s “Vault Timeout”
  2. “Skip reprompt after login” : no counterpart
  3. “Auto Logout” : no counterpart