This would be useful.
But how would it be secure?
It would probably be a good idea to get the person who shared the password to change it after the share expires?
One example, we got a solar energy consultant to quote us on an expansion of our solar power system and he asked for the login to view our generation stats. The web portal doesn’t provide the ability to export the stats, you have to go view them online, it also only has a single user, no ability to add secondary logins for other users.
We already use Bitwarden to share that login amongst the team who needs access to that information.
There’s no harm that can come from him going there, and I want him to have the info, but I don’t want him to have to install Bitwarden and sign up and then create an organisation and create a collection and have him accept the invite and then approve the acceptance and then share it with him on a permanent basis.
I just want him to have access to it through a link a few times for a week or so, and then when he’s done, I want to be reminded to go change that to something secure again.
Obviously anyone with access to his email or access to that link (perhaps he shares it) will be able to view the login information. - so I don’t see this being a secure feature, it’s more of a simple convenience with a thin layer of security in that the actual password isn’t in clear text in any emails, and won’t be there FOREVER incase his or my email - or backups of that email - is ever compromised.
So to me, in this scenario the reminder to change the details after the share expires is a critical feature.
Privatebin.info is a better implementation of onetimesecret and fugacio.us
Both of these use Server-Side encryption, which means the server receives it in plaintext at some point.
instead, Privatebin encrypts the secret client-side and stores the encrypted data on the server. it uses the # (shard) in an url to make the decryption key only available clientside, without having to send it to a remote server. The only downside to this is the requirement of JavaScript to decrypt the content
as a user i want to share secrets or notes.
i want to have the possibility to set a view-count and an expiration time (in 12h for ex.) of the sharing period.
optionally a possibility to set a pin code.
after the sharing period i want to receive a notification in BW to change my secret.
SCORE!!
Great work BitWarden Team!
This long-term requested feature has now been officially delivered with the new BitWarden Send feature: https://bitwarden.com/help/article/about-send/
A really excellent execution with this delivery as well. Lots of flexibility in terms of how long the Secret message lasts, how many times it can be accessed, and the ability to disable a previous Send.
You guys took the best of both OneTimeSecret and Fugacio.us and put them into a really usable package. Really well done.
Thanks for listening to customer requests like this.
-m
Even better, unlike OneTimeSecret and Fugacio, this implementation is e2e encrypted like privatebin, which is awesome.
Now all that is needed is adding the “send” option to the “share” option when you open a login in bitwarden, that would make the UX for this superb for sharing credentials.
Hi @tgreer, do you have any updates on this Item Sharing with individual users? Is it still in the roadmap for 2022?
My company is evaluating a new password manager (even with a paid business plan for 130 people), but this feature is a blocker on the adoption of bitwarden because it’s used a lot within the team
It would be a great feature to have and to support the project!
For premium/paying customers, integrating this into Bitwarden Send feature would be very helpful. I would love to be able to click “Share via send” on a password entry, select expiration rules, and share with an individual like I do today with text/files.
As I posted separately, my hope is for simple sharing to user(s), which is a feature my corp uses in lastpass quite a lot. Since people are fleeing lp I expect more wanting an alternative with this feature.
I have just started testing Bitwarden to make the move from Lastpass, but I’m a bit surprised the sharing is so limited unless I am missing something?
I am the owner and IT manager for my business so I have Lastpass deployed for our core staff of 5 people. We use shared folders which everyone has access to for general company-wide shares. We then have a few extended contractors/consultants that are also on Lastpass and need access to only a few discrete items. For those users, I simply share a vault item to those contractors and only the staff who needs that access.
Finally, I have about 6 family members who are NOT tech savvy at all and I set them up on Lastpass so we can share passwords using the share vault-item function in Lastpass. Given the limits around organizations, this seems impossible to carry out in bitwarden?
Am I right to understand that there is no functionality or workaround to do something like this in Bitwarden? If so, this is really sad because it is absolutely a deal breaker on migrating to Bitwarden.
Hi @JeremyCouch thanks for the reply, but this feature was also planned for the end of 2022 ( https://community.bitwarden.com/uploads/default/original/3X/a/5/a58c81b62c054f9b10a0e11d2b4bc2badcc7c7ed.png )
Now it’s planned for first half of 2023. So I’m not sure if the planning is actually followed-up.
I’d be happy if it’s actually in development and coming up soon, but as said in previous message as a company we might need to use a different password manager to close this yearly goal of security.
Maybe @bw-admin can you give us some updates on this topic.
Thank you!
Thanks for checking in all, this is on the roadmap but I don’t have any specific ETAs at this time, we will be sure to share more information as it becomes available
It is also a crucial feature for our company to make the switch to bitwarden. We absolutely need the function of sharing individual passwords with individual users.
I am very happy to see here that this function is planned in the status. We very much hope that a focus can be put on this in order to share passwords even more comfortably and easily in the near future.
I wanted to add my voice to this feature request as well, as it is crucial for my company’s needs. We are currently evaluating different password managers for our team, and Bitwarden is one of our top choices. However, the ability to share individual passwords with specific users is a critical feature that we require in order to fully make the switch to Bitwarden.
As an IT manager, I work with multiple contractors and vendors who require access to specific passwords, and the current workaround of creating collections for each user is not a sustainable solution for us. We need a more streamlined and user-friendly way to share passwords with specific users, while maintaining control over access and permissions.
I appreciate the effort that the Bitwarden team is putting into implementing this feature, and I hope that it will be available soon. Please let us know if there’s anything we can do to help or provide feedback during the development process.
Thank you for considering our request and for providing such a great product.
I wanted to add my vote here as well for the absolutely critical feature to share individual items with individual bitwarden accounts in perpetuity. This flexibility in sharing is a clear advantage of the LastPass implementation of sharing, and I hope bitwarden staff play around with LastPass to get an idea of exactly how much better this particular sharing feature is for LastPass versus bitwarden. we recently switched to 1password fro LastPass die to the data breach, but were shocked to find that there is no easy, intuitive and seamless way to share individual items with individual people. It is a deal breaker for us to use bitwarden if this feature doesn’t not exist. Additionally, this feature should be available for all users. For instance on a family account with 6 users, let say 2 spouses, their kids and grandparents, there is at present no way to have a grandparent make an item and share it only with a kid, and not have everything visible to the the 2 spouses. crazy that this is not possoble. it assumes there is no privacy for kids from their parents…Thats not fair. Please fix this and we would switch immediately…
@bw-admin - we are well into June so the first half of 2023 is essentially over. Can we have an update? I’m furious with Lastpass for their breach and their customer support is beyond atrocious. I want to move to Bitwarden, but the sharing systems is 100% a dealbreaker for us.
Thanks for checking in! Both Vault Item Sharing and Flexible collections (self management of collections) are in development, we will share more as information becomes available, thanks for your patience!
