FIDO2 support for macOS and Linux desktop client

tgreer · October 31, 2021, 4:01pm

Sorry for any confusion on the macOS front. We confirmed as you saw above that we’re blocked on macOS for the time being, but it is a priority for us.

teslacoil68k · November 27, 2021, 9:16pm

Any updates on Linux desktop client support? Looks like it’s blocked by the same issue as macOS?

trumee · February 1, 2022, 5:38pm

Any updates for Linux desktop app?

djsmith85 · February 1, 2022, 5:51pm

This is still an upstream issue and we are also waiting on a fix.

A new PR feat: add WebAuthn dialog support on macOS by EricRahm · Pull Request #31906 · electron/electron · GitHub was opened which has some very recent activity.

peace · March 5, 2022, 12:43pm

Hi @djsmith85 ,

I’m not sure to understand why I’m getting this screenshot:

I have a Macbook (2020) using Bitwarden for months, and it works perfectly
I’m trying to add Bitwarden to another Macbook M1 (2021) but I get this screenshot

I do understand Electron … but why there is a difference between the two?

Or maybe I, in the past, only enabled the security keys on Bitwarden after installing it on my Macbook (2020), making it working since then by unlocking with TouchID… thoughts?

Thank you,

fbr · March 16, 2022, 11:03pm

Exact same error when trying to login in Desktop App. Manjaro Linux though.

jeekkd · June 11, 2022, 5:39pm

Confirmed for myself as well, FIDO keys were working on Linux Bitwarden desktop installs until recently but then a Bitwarden update resulted in me getting the same error as @peace. My account is configured with a FIDO key being the only 2FA option added.

I cannot determine which version exactly but it worked on and before April 8th I believe.

bwzrun · June 14, 2022, 7:24pm

Still an issue (mac and linux), any updates?

abanay · June 15, 2022, 12:17pm

@bwzrun @fbr @jeekkd @peace if you are still experiencing problems with the authentication process, please contact us through the support page: Get in Touch | Bitwarden so we can verify the status of your subscription.

peace · June 15, 2022, 12:43pm

@abanay my subscription is valid (I’m able to log in from other devices).

As mentioned previously in this thread it seems related to this https://github.com/electron/electron/pull/31906

I got the issue 2 days ago, so if you didn’t make any chance since then I doubt something has changed. Maybe you could help the PR being merged if that’s the real original of the issue?

dh024 · June 15, 2022, 2:12pm

Is WebAuthn now possible on the Bitwarden Desktop App? I have the most recent version installed on my MacOS and Linux machines, and it does not even come up as an option for me, even though I have FIDO keys installed in Bitwarden and they work in the browser. I can’t remember this ever being an option for the desktop app.

aalldd · August 14, 2022, 6:15pm

Feature name

FIDO2/WebAuthn support for Linux desktop app

Feature function

Ability to login to the vault via a Linux desktop app when only 2FA that’s enabled is FIDO2/WebAuthn.

k2ttulr3fxuz · August 24, 2022, 2:01pm

So Yubikey is confirmed to not work for Bitwarden on Linux? Damn.

peace · September 12, 2022, 8:03am

@djsmith85 @Hinton @abanay could you please set it on the Bitwarden roadmap? I know it depends on Electron PR https://github.com/electron/electron/pull/31906 that is staled, but if you could have a look into it?

It’s a huge security issue for me and it looks urgent:

When using a Bitwarden browser extension and to secure it with the fingerprint we need to have the Bitwarden desktop installed and logged in
For maximum security I use security keys as 2FA, but since Bitwarden desktop requires security key to login whereas it does not support it… I have to enable another 2FA to bypass this issue and be able to log in. Making my whole Bitwarden account no longer secured by a physical key (which sucks).

If it’s not something that matters to you, could you set up a fallback: when the 2FA is security key in the desktop version, could you allow us to resolve the challenge into the default browser (so then the token or whatever is injected into the Electron app)?

Thank you,

sgt.reckless · September 29, 2022, 4:32pm

Hi @djsmith85
Are there any plans from bitwarden to try and implement FIDO authentication in the Linux desktop app?
This remains an issue in the latest version 2022.9.1

peace · October 24, 2022, 8:56pm

@djsmith85 @Hinton @abanay … 4 months since an admin answered this thread.

Is there no consideration for users using Macbook M1? I would like to understand if this will remain for too long or if I/we can count on the team?

Thank you,

tymmej · January 15, 2023, 7:40pm

Is it planned to add support for Mac OS on Apple Silicon?

I cannot use biometrics authentication for Safari Extension. It’s major annoyance for me.

bw-admin · January 16, 2023, 9:03pm

Hey @tymmej are you referring to Touch ID to unlock the safari browser extension? Or as 2FA from logged out state?

tymmej · January 17, 2023, 5:19am

I can login in safari for macOS extension with 2FA. But in order to activate TouchID in extension I have to activate same option in app. I cannot activate it in app because I cannot login with 2FA in app.

x5jyh3 · January 18, 2023, 6:25pm

In light of the recent announcement concerning Webauthn (https://bitwarden.com/blog/bitwarden-extends-passwordless-leadership-with-acquisition/), are there any plans to work on Fido2 WebAuthn (e.g. security keys) login for the MacOs or Linux desktop app? @bw-admin