Vault Item Sharing

Here I’m talking about sharing password with self not with other. I came into one situation, where I need to login to my email or any other account, but because of complex password I have to write down my password.

2 Likes

Your use-case would be satisfied by a feature that uses something like the current Send function to share an credential from your vault. This is one of the variations of the feature proposal being discussed in this thread.

1 Like

This issue originally was about how to organize vaults so that items could be shared with individuals. It turned into the ‘send’ functionality, which is nice, but not what was originally requested.

Right now, for an organization or a company, the available options for organizing vaults for different teams, and different accesses is quite limiting.

Imagine a typical organization, of say 60 people. There is a executive layer, then a set of line managers who manage teams, and individuals in those teams.

The executive/COO should have access to all passwords, and be able to manage all ACLs. They should be able to create a ‘team’ that is then is managed by that team’s manager. That manager should be able to then create users for that team, create collections in that team and logins/passwords that are part of different collections, and access given to the different people in that team who need it. The exec layer should also be able to create passwords for their needs, in their collections as well.

At any time, the manager of a team should be able to revoke the access of any team member, and similarly the exec should be able to revoke the manager’s access (or any individual team member in a team).

There should be additionally a way to have passwords that are not in specific teams, but are one-offs that can be shared with any individual in the organization. When I say “shared”, I don’t mean “send” via bitwarden, what I mean is to let them have access in bitwarden to the access, for when they need it.

Right now, I can make an organization which holds passwords that are not team-specific. Lets say its a password for github, and I need three managers of teams to access it. I have to then create a ‘collection’ for each of those users and the github password is shared into that collection. I then have to invite that user to the organization and give access to view their collection.

This somewhat awkward setup works, but it is quite confusing and weird for everyone. I have to keep explaining it to everyone and everyone gets it wrong. It feels like a hack until something more organized and better built is made, that is what I thought this issue was about. Is there a better issue that tracks this and isn’t about the “Send” functionality?

I see in the 2024 roadmap that there was this feature “New organization vault and user reports” – could this be a better way to solve this problem? Has this been implemented? Where can I see what that feature is/was planned to be?

2 Likes

I think it would be great in terms of Secret Sharing if we could simply share the contents of a stored password. What I mean is, sometimes I need to share a password with the notes to someone who doesn’t have a Bitwarden account. I think it would be great to be able to simply click share on the password and it could create a secret link that would share all the info of that object with the person.

Sends work great for sending info like that; you can (today) send text and/or a file using a Send and stipulate who gets it, how long the link works, and how many times it can be accessed. After that it is inaccessible.

If you are asking this in reference to sending a Bitwarden vault password itself though, that’s something I would absolutely not recommend.

Yes. I do use sends to send info like that. I am saying, it would be great to have the ability to send a password directly from the password. To set how long the share link works, how many times it can be accessed etc.

As it currently stands, if I need to send a vault password to someone who doesn’t have Bitwarden I need to create a Send and copy and paste the password. It’s cumbersome. It would be better if I could simply select “Send this password”.

@brittni Welcome to the forum?

… You don’t mean the Bitwarden password manager?

This is a feature that proton pass has and it’s very nice.

You can generate a secret link to a vault item, valid for some time or a number of views (as bitwarden send).

What’s nice about it is that if the item has a TOTP configured, the link recipient can use the generated code to login. In this latter case I haven’t checked the page source code to see if the TOTP secret is accessible, I would hope it is not.

This is an example:

EDIT: I see now why @Nail1684 was asking if this is for password manager, you selected the secrets manager tag when creating the topic. I tried to edit it (Sorry Nail if I stepped on you when moving it).

I do mean the password manager. I logged the request here as I figured it made sense with it being related to a send.

@kpiris yes. This is exactly what I would love to see.

@brittni @bwuser10000 @kpiris I moved your posts into this existing feature request about vault item sharing, as it’s essentially the same request.

1 Like

Yesss, that’s why I asked to be sure… :+1: And no problem - sometimes there is some overlap that’s unavoidable. :wink:

1 Like