More Password Generator Enhancements (Comprehensive List)

I love my Bitwarden (paying customer), but the password generator in Android could use some attention.

The addition of a “Create login with this password” button would make a huge difference.

The current workflow for saving a generated password seems to be:

  1. Open android shade/top drawer
  2. Click Generate Password button
  3. Password generates and I can copy it to add to app or website.

I cant easily create an entry with this long random password I didn’t even read the first three characters in order to recognise the password. So:

  1. Back out or open Bitwarden and create a new login
  2. Fill out login field
  3. Paste password from clip board - whoops it has been cleared from clipboard. How do I get to password history from new login page?
  4. Eventually find password history screen - which of these passwords were the one I used? Trial and error entry till I get the right one.

Addition of Add Login with this password button would eliminate most of this.

Alternatively replace password generator shade button with Add New Login button which gets into a different password generation UI.

Perhaps I’m missing something?

3 Likes

You could do this instead (at least on Android, not sure about iOS):

  1. Create new login.
  2. Fill in details. When it comes to the password field, press the little icon with two arrows going round in a circle (like a recycle symbol).
  3. The password generator pops up. When you have the password you want, press “Select” at the top right.
  4. The password field is populated with the generated value and you can complete the new login.

As I mentioned, if New Login was a shade button it would be far more useful than the password generator, which doesn’t have an easy way to save a generated password with an item in Bitwarden.

Feature name

  • Improve password generator

Feature function

  • Add the ability to choose which characters must be entered to generate the password
  • Show entropy value
  • Indicate password quality

Screenshot

Related topics + references

1 Like

This is a duplicate. There are lots of other threads talking about this.
Please see the links below:

  1. Brand new Bitwarden user: First impressions and To-Do's
  2. Generate pronounceable passwords
  3. Choose the word list for passphrases - #5 by MetBril
  4. Improve random password generation

Also, don’t forget to check the passphrase generator in the platforms. It already has high entropy and can secure you from security breaches, as well as keeping them memorable, so you can remember later, if necessary.

1 Like

This is not a duplicate. I am not interested in generating passphrases or pronounceable passwords or inserting additional characters in the password generation. My request is different. As in KeePassXC, I would like to know the quality of the password, the level of entropy of the password and I would like to be able to choose which characters my password should consist of.

Sounds similar to this existing feature request. It has 32 votes already: Show password strength (zxcvbn) under Password Generator and Password Fields

Since there are a number of existing feature requests on the password generator, you should probably be more specific if your feature request is different from all of them.

If your request is even slightly similar to an existing one that has a larger number of votes, it is probably better to vote for that request and discuss your recommendations there due to how voting system works.

Some other feature requests I found beyond ones that K0media listed are shown below.


For special characters:

Other requests

How about this:

  1. Add an option to define a custom JS function for password generation.
  2. Add an option to define a custom JS function for password analysis.

Then let the community sort out the rest.

Sounds similar to this existing feature request. It has 32 votes already: Show password strength (zxcvbn) under Password Generator and Password Fields

Part of my request is similar to this existing feature request.

Probably duplicate request for customizing characters (10 votes, Oct 2020):
Link: Customize what special characters are allowed to use in the Password Generator

The other part of my request looks like this existing feature request.

Plus I added the screenshot of the KeePassXC password generator to give you an idea of the functionality I was requesting. I believe that it is the most comprehensive password generator out there.

1 Like

This might meet your needs until BW generator becomes more robust. It’s nearly a duplicate to the keepassxc generator.

XKpasswd

Just generate the strongest one and you wouldn’t need to worry about strength.

Feature name

  • Password Entropy Calculator

Feature function

  • When the user generates a password they are shown a “password entropy” result.

-Although a password may look random to a user, it may still be weak. An entropy calculator would quantify the randomness in “bits of entropy”

The below website is a good example of a calculator in action…

http://rumkin.com/tools/password/passchk.php

1 Like

Allow users to generate passwords with special characters like ęêéèïœ, emojis, Japanese and Chinese characters etc.

Most websites do not support such extended character sets for password, but if you find a login that does I believe Bitwarden should be able to at least save these within the password fields.

1 Like

Adding my vote here. Longtime user of BW and premium subscriber. Please add an entropy meter to the password creation page. And also move the password creator to a sub-window of the add item page. That way I can create the item and customize the password in one place. I know pasword customization at item page is available on mobile but I also need it on desktop.

3 Likes

Keepass offers so many options when generating a new password, why not add the same options in Bitwarden which the user can choose from?

https://imgur.com/a/SnghL2u

4 Likes

Feature name

  • Passphrase extra options

Feature function

  • Choose how many numbers you have in the passphrase and position of the number - it could be generated at the beginning of the word too (someone might like to have it anywhere in too)
  • Option to have multiple word separators or longer separators (if I typed multiple separators, it would randomly take one of them)
  • Option to mix Uppercase and Lowercase (first letter of the word)
  • Add a custom dictionary. A word for password would be taken from 2 dictionaries - people could add a dictionary of a different language they speak for example. I would personally get a Czech dictionary and have a password mixed with Czech and English words (no preference for anything, if I had only few words in my custom dictionary, it is very unlikely to have it appear in the generated Password)

Instead of Retool-Overstay-Trend9 we could have 1Retool-47Overstay+Trend9 or Retool–overstay–4Trend9

1 Like

On all Bitwarden generators, passwords should be user-modifiable before copying. Some websites have very specific requirements (i.e. some special characters are not permitted). Maybe website-specific parameters could be incorporated.

Voted for. I really want a phrase generator that can produce speakable words that don’t exist, e.g., stawkingdock, fragadean, hemlosky, rekotonth, garumflate. I want to be able to choose the number of words and syllables. This will future proof against word based dictionary attacks that will likely get easier as stuff like GPT3 matures. Or worse, somebody designs an ML system that is built around passwords and is used to generate likely word combinations.

I’m posting this feature request here after contacting Support, following their suggestion:

I’m coming from KeePassXC and was surprised to see that the special character options in the password generator (Tools > Generator) were limited to only 8 (!@#$%^&*).

Also, different sites have different password requirements.
There are sites imposing a minimum password length and others imposing a maximum length.
Similarly, there are sites which allow or accept a subset of special characters. Eg.:
https://www.oracle.com NOT-ALLOWED: > < ( ) % ;
https://signin.ebay.com ALLOWED: !@#$%^&*()_±=;,.?|`~'"
NOT-ALLOWED: []:<>/

I propose the following enhancements:

  1. Make more special characters available to pick from.
  2. Make password generation options per-Item instead of global.