Currently, when I unlock Bitwarden with a PIN it opens the software to “All Vaults”, even if you were managing passwords inside a specific vault before the idle timer locked the software.
For example, I use Bitwarden for work and I have two vaults: my personal vault, and the team vault. I have Bitwarden configured to lock itself after 15 minutes of inactivity. When I enter my PIN to unlock Bitwarden, it reverts to the “All Vaults”" page which shows me every password entry, even though I was intending to continue working out of my personal vault only.
Steps to reproduce:
- Open and sign into Bitwarden. The program opens to “All Vaults” by default after signing in.
- Go into “My vault” to access one of my admin accounts for work
- Bitwarden either gets minimized or falls behind another window because I am working elsewhere
- 15+ minutes pass and the vault locks (which is what I have it configured to do)
- I type in my PIN to unlock the vault and it opens to “All Vaults” even though I was previously in “My vault” before it locked and I was needing to continue working out of “My vault”
Why this is important to me:
My team uses Bitwarden for work. I frequently and primarily work out of my personal vault, which has way fewer entries than our Team vault. It’s mostly inconvenient and frustrating because I am an IT administrator for a small company. I manage several apps at the admin level and use Bitwarden to maintain all of the secure passwords for those accounts, while my boss uses the Team vault to maintain our large cache of department admin passwords. Keeping them separate helps me remain organized and work more quickly, and having to manually separate them every time (by re-navigating into my personal vault) has become tedious.
Additionally, having the option to “lock” versus “sign out” of an app insinuates that “locking” is putting the app on pause so you can resume what you were doing, where as “signing out” is generally associated with being done with the app entirely. Going back to “All Vaults” after unlocking is no different than what happens when you sign in fully with your master password, which feels unintuitive.