FYI, I changed your topic title to be more accurate (was: “Just changed master password and it didn’t save in bitwarden”).
I don’t think there is a fixed upper limit on the number of login attempts that you get, but after 9 failed attempts, you will have to solve an hCaptcha with each further attempt.
The word list used in Bitwarden’s password generator is the EFF large word list, which contains 7776 words.
Is it possible that you may have another laptop or computer that is logged in to Bitwarden, but that is turned off or at least doesn’t have Bitwarden running at the moment? If so, let us know, and do not open any Bitwarden app on that device while awaiting further instructions. It may be possible to gain some valuable information from such a device.
Yes, that could be helpful for purposes of recovering (some of) your vault contents, if you are unable to get back in to your vault with the new master password, and if you don’t have any vault backups.
If the browser extension on that laptop was logged in (but locked) when you last used it, and if you still remember the old master password (or the PIN that you’d use for unlocking), then you may be able to export the vault contents as they existed when you last used the browser extension on that laptop.
Is it accurate that you do not have backups? If you have a backup (e.g., a recent vault export), then you’re not going to need to jump through the following hoops.
To attempt to recover data from the laptop, it is essential that Bitwarden is prevented from connecting to the internet (because this will cause your browser extension to log out, wiping all data). My recommendation would be to turn off your WiFi router before powering up the laptop. After powering up the laptop, immediately put it in Airplane mode (or otherwise disable internet connectivity).
Once the laptop is securely off-grid, you need to find the Bitwarden data folder. The location is different depending on which browser Bitwarden was used on, as explained in the documentation:
The Chrome folder path may be slightly different if you are using a profile other than the default. For Firefox, you need the UUID value, which you can find by entering about:debugging#/runtime/this-firefox in the Firefox browser address bar.
Look for any file with a .json file extension in the above locations (especially a file named data.json) — except for Chrome, where the relevant files have the extension .log. I only have personal experience with the Chrome browser extension, so if you were using Bitwarden on a different browser, I will have to make some educated guesses about how to help you.
Yes, but I would highly recommend first making a backup copy of the entire data folder (the folders I mentioned above) before opening the browser.
After backing up the data folder and unlocking the browser extension (with the internet still disconnected), go to Settings > Export vault, and choose the plain (unencrypted) .json format. Then export your vault contents (you will need your old master password).
Okay, so I have two Bitwarden accounts (one for me and one for my wife). It’s my wife’s account that we are currently trying to recover. I generated the passphrase with on the Linux desktop app - I don’t remember if I was logged into my account or hers. I can still log into my own account.
On my wife’s laptop, which has been powered off for a few weeks - so that’s the one I’m thinking we can try to recover it from.
I did log into my wife’s account on my Linux desktop app right before doing this.
If you still have an active session of the Linux Desktop app logged in from before when you changed her master password, then the data file that you will want to back up is the data.json file in one of these two folders:
Standard installations: ~/.config/Bitwarden
But, as I noted above, you are on borrowed time — as soon as that Desktop app pings the Bitwraden server, it will get logged out from your wife’s account, wiping the all vault data from the data.json file.
If you were logged into your account when generating the passphrase, then the method suggested by @DoctorBabove should show you what passphrase was generated (the generator history is specific to each client app installation, so you would have to check this from your Linux Desktop app, while logged in to your own account).
This has happened to me too when updating vault item passwords using bitwarden’s password generator and I’m highly technically savy.
How this happened to me is when I generated the password using the generator it auto copies or you click copy and then go to click out of it. But instead you have to click save on the password generator screen. Luckily the password history has saved me when this happened.