I’ve just started using Bitwarden with the Firefox extension and I’ve noticed that when I go to unlock the vault my password is pre-filled as shown below.
Is this normal? I wouldn’t expect the extension to store the password for my vault locally like this, as far as I can tell, Firefox hasn’t cached the password. This does not feel very secure to me as it would mean that my master password is stored on my PC somewhere.
Thanks for the help!
This is likely caused by Firefox itself remembering and autofilling the password. Have a look here: https://support.mozilla.org/en-US/kb/password-manager-remember-delete-edit-logins
I’ve had a look at this and there is no bitwarden entry in the Login & Passwords manager. So I’m not sure where the password is being sourced from.
Did you check your Firefox settings (not an add-on or extension)?
Tool->Options->Privacy & Security
Set FF so it does not remember passwords and clear any previously saved ones.
Additionally, if you are going to use BW, you should probably disable or remove any other login or password saving add-ons in FF.
I agree, I had the same issue before figuring it out. Lockwise isn’t the issue for you Dylan. Just a comment on Lockwise, I used it too, but it was quite glitchy. And of course it doesn’t generate passwords.
So disabling Lockwise has stopped Firefox from populating the extension so I think this is clearly a Firefox issue and not Bitwarden. Not sure why Firefox picked up the password but isn’t showing me where it’s stored it though. Weird.
More or less. I have to use “KEE” as second password manager extension and KEE automaticaly disables the integrated firefox password manager if activated and re-activates it if disabled, Bitwarden doesn’t do this?
I had this problem and found the solution (with the help of previous posts). In my case, the Bitwarden master password was pre-filled with a completely wrong password that I had to remove before I could enter the proper one. I kinda remember having a little mouse-finger fumble at some stage and accidentally said Yes to Firefox’s saving the password, but like the OP, couldn’t find it listed in FF.
I don’t particularly want to delete my passwords from FF because it can be handy to have them without logging into BW – probably daft, but there you go. I use a primary password.
1. Clicked the Bitwarden icon on the toolbar and clicked the ‘eye’ icon to display the rogue password. Selected it all and copied it (Ctrl-C) for future reference.
2. Checked that FF was supplying the password. In Settings > Privacy and Security > Passwords I unchecked Fill usernames and passwords automatically. FF no longer filled in the wrong password when I clicked the Bitwarden icon. Checked the setting again.
3. Searched for Bitwarden (click the ‘hamburger’ icon, then Passwords), and like the OP, could not find it.
4. Still in FF passwords, clicked the three dots at the top right and pointed to Export Passwords…
5. Saved the lot as a CSV file.
6. Opened the CSV file (in LibreOffice or Excel) and searched for the password copied at step 1. It was associated with the URL moz-extension://3a8e70bf-a5ba-4e82-9cb3-844b80f31a08 rather than Bitwarden per se.
7. Searched for that ‘URL’ in Passwords and found the rogue entry. Deleted it.
8. Deleted passwords.csv before I forgot!
9. Problem solved! I don’t know whether that value for moz-extension is unique to Bitwarden or whether it is unique to every machine, so if you can’t find an entry for that straight off, repeat all my steps to find out what it is on yours.
