After updating Bitwarden extension 2024.9.1, authorization started to fail after trying to save password #919

New Issue

MrUnknownDE · 2026-04-06T00:54:46+02:00

MrUnknownDE commented

2026-04-06 00:54:46 +02:00

Originally created by @nikita51bot on 9/24/2024

Vaultwarden Support String

Your environment (Generated via diagnostics page)

Vaultwarden version: v1.32.0
Web-vault version: v2024.6.2b
OS/Arch: linux/x86_64
Running within a container: true (Base: Debian)
Environment settings overridden: true
Uses a reverse proxy: true
IP Header check: true (X-Real-IP)
Internet access: true
Internet access via a proxy: false
DNS Check: true
Browser/Server Time Check: false
Server/NTP Time Check: true
Domain Configuration Check: true
HTTPS Check: true
Database type: SQLite
Database version: 3.46.0
Clients used:
Reverse proxy and version:
Other relevant information:

Config (Generated via diagnostics page)

Show Running Config

Environment settings which are overridden: DOMAIN, ADMIN_TOKEN

{
  "_duo_akey": null,
  "_enable_duo": true,
  "_enable_email_2fa": false,
  "_enable_smtp": true,
  "_enable_yubico": true,
  "_icon_service_csp": "",
  "_icon_service_url": "",
  "_ip_header_enabled": true,
  "_max_note_size": 10000,
  "_smtp_img_src": "cid:",
  "admin_ratelimit_max_burst": 3,
  "admin_ratelimit_seconds": 300,
  "admin_session_lifetime": 20,
  "admin_token": "***",
  "allowed_iframe_ancestors": "",
  "attachments_folder": "data/attachments",
  "auth_request_purge_schedule": "30 * * * * *",
  "authenticator_disable_time_drift": false,
  "data_folder": "data",
  "database_conn_init": "",
  "database_max_conns": 10,
  "database_timeout": 30,
  "database_url": "***************",
  "db_connection_retries": 15,
  "disable_2fa_remember": false,
  "disable_admin_token": false,
  "disable_icon_download": false,
  "domain": "*****://******************",
  "domain_origin": "*****://******************",
  "domain_path": "",
  "domain_set": true,
  "duo_context_purge_schedule": "30 * * * * *",
  "duo_host": null,
  "duo_ikey": null,
  "duo_skey": null,
  "duo_use_iframe": false,
  "email_2fa_auto_fallback": false,
  "email_2fa_enforce_on_verified_invite": false,
  "email_attempts_limit": 3,
  "email_change_allowed": false,
  "email_expiration_time": 600,
  "email_token_size": 6,
  "emergency_access_allowed": false,
  "emergency_notification_reminder_schedule": "0 3 * * * *",
  "emergency_request_timeout_schedule": "0 7 * * * *",
  "enable_db_wal": true,
  "enable_websocket": true,
  "event_cleanup_schedule": "0 10 0 * * *",
  "events_days_retain": null,
  "experimental_client_feature_flags": "fido2-vault-credentials",
  "extended_logging": true,
  "helo_name": null,
  "hibp_api_key": null,
  "http_request_block_non_global_ips": true,
  "http_request_block_regex": null,
  "icon_blacklist_non_global_ips": true,
  "icon_blacklist_regex": null,
  "icon_cache_folder": "data/icon_cache",
  "icon_cache_negttl": 259200,
  "icon_cache_ttl": 2592000,
  "icon_download_timeout": 10,
  "icon_redirect_code": 302,
  "icon_service": "internal",
  "incomplete_2fa_schedule": "30 * * * * *",
  "incomplete_2fa_time_limit": 5,
  "increase_note_size_limit": false,
  "invitation_expiration_hours": 120,
  "invitation_org_name": "Vaultwarden",
  "invitations_allowed": true,
  "ip_header": "X-Real-IP",
  "job_poll_interval_ms": 30000,
  "log_file": null,
  "log_level": "info",
  "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f",
  "login_ratelimit_max_burst": 10,
  "login_ratelimit_seconds": 60,
  "org_attachment_limit": 1048576,
  "org_creation_users": "",
  "org_events_enabled": false,
  "org_groups_enabled": false,
  "password_hints_allowed": false,
  "password_iterations": 600000,
  "push_enabled": false,
  "push_identity_uri": "https://identity.bitwarden.com",
  "push_installation_id": "***",
  "push_installation_key": "***",
  "push_relay_uri": "https://push.bitwarden.com",
  "reload_templates": false,
  "require_device_email": false,
  "rsa_key_filename": "data/rsa_key",
  "send_purge_schedule": "0 5 * * * *",
  "sendmail_command": null,
  "sends_allowed": true,
  "sends_folder": "data/sends",
  "show_password_hint": false,
  "signups_allowed": false,
  "signups_domains_whitelist": "********",
  "signups_verify": false,
  "signups_verify_resend_limit": 6,
  "signups_verify_resend_time": 3600,
  "smtp_accept_invalid_certs": false,
  "smtp_accept_invalid_hostnames": false,
  "smtp_auth_mechanism": "plain, login",
  "smtp_debug": false,
  "smtp_embed_images": true,
  "smtp_explicit_tls": null,
  "smtp_from": "********************",
  "smtp_from_name": "Vaultwarden",
  "smtp_host": "********",
  "smtp_password": "***",
  "smtp_port": 587,
  "smtp_security": "starttls",
  "smtp_ssl": null,
  "smtp_timeout": 15,
  "smtp_username": "********************",
  "templates_folder": "data/templates",
  "tmp_folder": "data/tmp",
  "trash_auto_delete_days": null,
  "trash_purge_schedule": "0 5 0 * * *",
  "use_sendmail": false,
  "use_syslog": false,
  "user_attachment_limit": 1048576,
  "user_send_limit": null,
  "web_vault_enabled": true,
  "web_vault_folder": "web-vault/",
  "yubico_client_id": null,
  "yubico_secret_key": null,
  "yubico_server": null
}

Vaultwarden Build Version

1.32.0

Deployment method

Official Container Image

Custom deployment method

No response

Reverse Proxy

nginx 1.18.0

Host/Server Operating System

Linux

Operating System Version

Windows 11

Clients

Browser Extension

Client Version

Firefox 129.0b8 (64-bit) Bitwarden 2024.9.1

Steps To Reproduce

open the Firefox extension Bitwarden 2024.9.1
authorize on your server with master password
Try to add any new password

Expected Result

The password will be added to the server and the extension will continue to work

Actual Result

The password is not added to the server and the extension is logout from the account

Logs

This logs vaultwarden server

vaultwarden  | [2024-09-24 19:05:38.267][response][INFO] (get_known_device) GET /api/devices/knowndevice => 200 OK
vaultwarden  | [2024-09-24 19:05:45.211][request][INFO] POST /identity/accounts/prelogin
vaultwarden  | [2024-09-24 19:05:45.211][response][INFO] (prelogin) POST /identity/accounts/prelogin => 200 OK
vaultwarden  | [2024-09-24 19:05:45.224][request][INFO] POST /identity/connect/token
vaultwarden  | [2024-09-24 19:05:45.759][vaultwarden::api::identity][INFO] User bitwarden@nik51.ru logged in successfully. IP: (MY_IP)
vaultwarden  | [2024-09-24 19:05:45.760][response][INFO] (login) POST /identity/connect/token => 200 OK
vaultwarden  | [2024-09-24 19:05:45.894][request][INFO] GET /api/config
vaultwarden  | [2024-09-24 19:05:45.895][response][INFO] (config) GET /api/config => 200 OK
vaultwarden  | [2024-09-24 19:05:45.906][request][INFO] POST /identity/connect/token
vaultwarden  | [2024-09-24 19:05:45.907][request][INFO] GET /api/config
vaultwarden  | [2024-09-24 19:05:45.907][response][INFO] (config) GET /api/config => 200 OK
vaultwarden  | [2024-09-24 19:05:45.911][response][INFO] (login) POST /identity/connect/token => 200 OK
vaultwarden  | [2024-09-24 19:05:45.986][request][INFO] GET /api/sync
vaultwarden  | [2024-09-24 19:05:45.992][response][INFO] (sync) GET /api/sync?<data..> => 200 OK
vaultwarden  | [2024-09-24 19:05:46.207][request][INFO] GET /notifications/hub?access_token=(MY_ACCESS_TOKEN)
vaultwarden  | [2024-09-24 19:05:46.208][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from (MY_IP)
vaultwarden  | [2024-09-24 19:05:46.209][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK
vaultwarden  | [2024-09-24 19:05:46.209][rocket::server][WARN] Response indicated upgrade, but upgrade failed.
vaultwarden  | [2024-09-24 19:05:46.210][vaultwarden::api::notifications][INFO] Closing WS connection from (MY_IP)
vaultwarden  | [2024-09-24 19:05:56.782][request][INFO] POST /api/ciphers
vaultwarden  | [2024-09-24 19:05:56.782][auth][ERROR] Unauthorized Error: No access token provided
vaultwarden  | [2024-09-24 19:05:56.782][vaultwarden::api::core::ciphers::_][WARN] Request guard `Headers` failed: "No access token provided".
vaultwarden  | [2024-09-24 19:05:56.782][response][INFO] (post_ciphers) POST /api/ciphers => 401 Unauthorized

Screenshots or Videos

https://github.com/user-attachments/assets/0f60e569-ebcf-42fb-8eae-24d2f01f78a6

Additional Context

I think the updated bitwarden has changed protocol formats (or parameter name)

*Originally created by @nikita51bot on 9/24/2024* ### Vaultwarden Support String ### Your environment (Generated via diagnostics page) * Vaultwarden version: v1.32.0 * Web-vault version: v2024.6.2b * OS/Arch: linux/x86_64 * Running within a container: true (Base: Debian) * Environment settings overridden: true * Uses a reverse proxy: true * IP Header check: true (X-Real-IP) * Internet access: true * Internet access via a proxy: false * DNS Check: true * Browser/Server Time Check: false * Server/NTP Time Check: true * Domain Configuration Check: true * HTTPS Check: true * Database type: SQLite * Database version: 3.46.0 * Clients used: * Reverse proxy and version: * Other relevant information: ### Config (Generated via diagnostics page) <details><summary>Show Running Config</summary> **Environment settings which are overridden:** DOMAIN, ADMIN_TOKEN ```json { "_duo_akey": null, "_enable_duo": true, "_enable_email_2fa": false, "_enable_smtp": true, "_enable_yubico": true, "_icon_service_csp": "", "_icon_service_url": "", "_ip_header_enabled": true, "_max_note_size": 10000, "_smtp_img_src": "cid:", "admin_ratelimit_max_burst": 3, "admin_ratelimit_seconds": 300, "admin_session_lifetime": 20, "admin_token": "***", "allowed_iframe_ancestors": "", "attachments_folder": "data/attachments", "auth_request_purge_schedule": "30 * * * * *", "authenticator_disable_time_drift": false, "data_folder": "data", "database_conn_init": "", "database_max_conns": 10, "database_timeout": 30, "database_url": "***************", "db_connection_retries": 15, "disable_2fa_remember": false, "disable_admin_token": false, "disable_icon_download": false, "domain": "*****://******************", "domain_origin": "*****://******************", "domain_path": "", "domain_set": true, "duo_context_purge_schedule": "30 * * * * *", "duo_host": null, "duo_ikey": null, "duo_skey": null, "duo_use_iframe": false, "email_2fa_auto_fallback": false, "email_2fa_enforce_on_verified_invite": false, "email_attempts_limit": 3, "email_change_allowed": false, "email_expiration_time": 600, "email_token_size": 6, "emergency_access_allowed": false, "emergency_notification_reminder_schedule": "0 3 * * * *", "emergency_request_timeout_schedule": "0 7 * * * *", "enable_db_wal": true, "enable_websocket": true, "event_cleanup_schedule": "0 10 0 * * *", "events_days_retain": null, "experimental_client_feature_flags": "fido2-vault-credentials", "extended_logging": true, "helo_name": null, "hibp_api_key": null, "http_request_block_non_global_ips": true, "http_request_block_regex": null, "icon_blacklist_non_global_ips": true, "icon_blacklist_regex": null, "icon_cache_folder": "data/icon_cache", "icon_cache_negttl": 259200, "icon_cache_ttl": 2592000, "icon_download_timeout": 10, "icon_redirect_code": 302, "icon_service": "internal", "incomplete_2fa_schedule": "30 * * * * *", "incomplete_2fa_time_limit": 5, "increase_note_size_limit": false, "invitation_expiration_hours": 120, "invitation_org_name": "Vaultwarden", "invitations_allowed": true, "ip_header": "X-Real-IP", "job_poll_interval_ms": 30000, "log_file": null, "log_level": "info", "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f", "login_ratelimit_max_burst": 10, "login_ratelimit_seconds": 60, "org_attachment_limit": 1048576, "org_creation_users": "", "org_events_enabled": false, "org_groups_enabled": false, "password_hints_allowed": false, "password_iterations": 600000, "push_enabled": false, "push_identity_uri": "https://identity.bitwarden.com", "push_installation_id": "***", "push_installation_key": "***", "push_relay_uri": "https://push.bitwarden.com", "reload_templates": false, "require_device_email": false, "rsa_key_filename": "data/rsa_key", "send_purge_schedule": "0 5 * * * *", "sendmail_command": null, "sends_allowed": true, "sends_folder": "data/sends", "show_password_hint": false, "signups_allowed": false, "signups_domains_whitelist": "********", "signups_verify": false, "signups_verify_resend_limit": 6, "signups_verify_resend_time": 3600, "smtp_accept_invalid_certs": false, "smtp_accept_invalid_hostnames": false, "smtp_auth_mechanism": "plain, login", "smtp_debug": false, "smtp_embed_images": true, "smtp_explicit_tls": null, "smtp_from": "********************", "smtp_from_name": "Vaultwarden", "smtp_host": "********", "smtp_password": "***", "smtp_port": 587, "smtp_security": "starttls", "smtp_ssl": null, "smtp_timeout": 15, "smtp_username": "********************", "templates_folder": "data/templates", "tmp_folder": "data/tmp", "trash_auto_delete_days": null, "trash_purge_schedule": "0 5 0 * * *", "use_sendmail": false, "use_syslog": false, "user_attachment_limit": 1048576, "user_send_limit": null, "web_vault_enabled": true, "web_vault_folder": "web-vault/", "yubico_client_id": null, "yubico_secret_key": null, "yubico_server": null } ``` </details> ### Vaultwarden Build Version 1.32.0 ### Deployment method Official Container Image ### Custom deployment method _No response_ ### Reverse Proxy nginx 1.18.0 ### Host/Server Operating System Linux ### Operating System Version Windows 11 ### Clients Browser Extension ### Client Version Firefox 129.0b8 (64-bit) Bitwarden 2024.9.1 ### Steps To Reproduce 1. open the Firefox extension Bitwarden 2024.9.1 2. authorize on your server with master password 3. Try to add any new password ### Expected Result The password will be added to the server and the extension will continue to work ### Actual Result The password is not added to the server and the extension is logout from the account ### Logs This logs vaultwarden server ```text vaultwarden | [2024-09-24 19:05:38.267][response][INFO] (get_known_device) GET /api/devices/knowndevice => 200 OK vaultwarden | [2024-09-24 19:05:45.211][request][INFO] POST /identity/accounts/prelogin vaultwarden | [2024-09-24 19:05:45.211][response][INFO] (prelogin) POST /identity/accounts/prelogin => 200 OK vaultwarden | [2024-09-24 19:05:45.224][request][INFO] POST /identity/connect/token vaultwarden | [2024-09-24 19:05:45.759][vaultwarden::api::identity][INFO] User bitwarden@nik51.ru logged in successfully. IP: (MY_IP) vaultwarden | [2024-09-24 19:05:45.760][response][INFO] (login) POST /identity/connect/token => 200 OK vaultwarden | [2024-09-24 19:05:45.894][request][INFO] GET /api/config vaultwarden | [2024-09-24 19:05:45.895][response][INFO] (config) GET /api/config => 200 OK vaultwarden | [2024-09-24 19:05:45.906][request][INFO] POST /identity/connect/token vaultwarden | [2024-09-24 19:05:45.907][request][INFO] GET /api/config vaultwarden | [2024-09-24 19:05:45.907][response][INFO] (config) GET /api/config => 200 OK vaultwarden | [2024-09-24 19:05:45.911][response][INFO] (login) POST /identity/connect/token => 200 OK vaultwarden | [2024-09-24 19:05:45.986][request][INFO] GET /api/sync vaultwarden | [2024-09-24 19:05:45.992][response][INFO] (sync) GET /api/sync?<data..> => 200 OK vaultwarden | [2024-09-24 19:05:46.207][request][INFO] GET /notifications/hub?access_token=(MY_ACCESS_TOKEN) vaultwarden | [2024-09-24 19:05:46.208][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from (MY_IP) vaultwarden | [2024-09-24 19:05:46.209][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK vaultwarden | [2024-09-24 19:05:46.209][rocket::server][WARN] Response indicated upgrade, but upgrade failed. vaultwarden | [2024-09-24 19:05:46.210][vaultwarden::api::notifications][INFO] Closing WS connection from (MY_IP) vaultwarden | [2024-09-24 19:05:56.782][request][INFO] POST /api/ciphers vaultwarden | [2024-09-24 19:05:56.782][auth][ERROR] Unauthorized Error: No access token provided vaultwarden | [2024-09-24 19:05:56.782][vaultwarden::api::core::ciphers::_][WARN] Request guard `Headers` failed: "No access token provided". vaultwarden | [2024-09-24 19:05:56.782][response][INFO] (post_ciphers) POST /api/ciphers => 401 Unauthorized ``` ### Screenshots or Videos https://github.com/user-attachments/assets/0f60e569-ebcf-42fb-8eae-24d2f01f78a6 ### Additional Context I think the updated bitwarden has changed protocol formats (or parameter name)

MrUnknownDE closed this issue

2026-04-06 00:54:46 +02:00

Sign in to join this conversation.

No Label bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github/vaultwarden#919