anonymous1184 / bitwarden-autotype Goto Github PK

I got "Unknown kdf" error while traing to log in. I'm not sure why. Only possible reason that I can come up with is that I'm using Argon2id instead of PBKDF2 but I'm not sure

Hi.

I've tried to install using autohotkey latest stable. But the installation fails with this exception

---------------------------
bw-at.ahk
---------------------------
Error:  Expecting ',' delimiter or object closing '}': line 1 col 3944 (char 3944)

Specifically: n

	Line#
	290: isLogged := 1
	291: isLocked := 0
	294: parseItems()  
	297: TrayTip,atWTitle,Auto-Type ready,10,0x20
	298: }
	301: {
	304: items := bw("list items")
--->	305: items := Jxon_Load(items)
	307: atFields := []
	308: For i,item in items
	309: {
	311: if (item.type = 1)  
	312: {
	313: uri := item.login.uris[1].uri
	314: if (RegExMatch(uri, "^(win)?app://(.+)", match))  

The current thread will exit.
---------------------------

I don' know how to give useful feedback as items string directly contains all my passwords.

checked on multiple pcs

why would it need that much performance when its not doing anything?

Issue:
When I use the keyboard shortcut for TOTP codes or the full auto entry no code is entered or in my clipboard for me to paste.

Other details:
I selfhost with vaultwarden.
The codes are displayed when I access BW CLI directly.

Example of a test entry I created in my vault:

{ClearField}{Username}{SmartTab}{Password}{Enter}{Wait 500}{TOTP}{SmartTab}{Enter}

The value I set for auto-type seems to be read, and I have tested in Notepad++.

This is the output:

(to be clear, that is the correct password and it is random and unique for this test so not an issue to share)

You can see the tabs and enters but the spot where the TOTP code should be is blank.

_{^{(Sorry to create more issues for you, this is a really cool tool and I'm thankful for it, keep up the good work)}}

New to Bitwarden, but I setup a selfhosted vault and it all works great. Missing (like everyone I guess?) the auto-type function like I had with KeePass.
It seems like this application isn't meant to work with a selfhosted vault? Or am I missing something?

When i try to run this custom auto-type with a shift-tab it execute a normal tab instead.

{ClearField}{Username}{Tab}{ClearField}SOMETHING{Tab}{ClearField}{Password}{Tab}{Space}+{Tab}+{Tab}{Right}

Line 096 wh.ropen get url false whr.send

Hello. Trying to install Bitwarden Auto-type tonight on a new Windows install. V1.0.1 has been working wonderfully for months until tonight. Its installer will not work anymore as it only provided the option to download the newer 1.1.1 or quit. Proceeded to download 1.1.1 setup.exe but after installing it, am receiving this error when loading auto-type:

C:\Program Files]Auto-Type\bw-at.exe

A referral was returned from the server.

The only option in that dialog is "OK" and when pressed the program quits.

Unfortunately the 1.0.1 doesn't install anymore so am stuck. Thanks for reading and looking forward to any guidance on what the issue is.

https://i.imgur.com/ZZ6GnUD.png

This may be related to the fix for issue #30

I used to be able to have autotype detect a URI for an extension in FF starting with moz-extension://

Now instead of correctly filling the field in for the extension it prompts me to choose from one of my google accounts. This seems to only happen in firefox windows with a tab pinned, possibly only if you have the tab pinned from a previous session.

I'm using Firefox 91.7.0esr (64-bit)

I have the problem that the url does not seem to be updated after the 2nd use (several tabs). the wrong entry for the auto type always appears.

Can we have a Option to save the Password for API Login?
I use API Login only in my local Network and a startup without typing my Password would great.

When the following dialog is displayed allow the user to press 1-9 on the keyboard to select one of the first nine entries

My Master-Password with spaces didn't get accepted.

Enclosing the password in double quotes by changing line 268 in bw-at.ahk to

login := "login " bwUser " """ bwPass """"

does fix the problem for me.

Bitwarden has changed the way it is handling updates for clients and moved them to a new repo.
The old repo is archived and read-only.

I recommend changing Line 155 of the Readme.md
from:
[11]: https://github.com/bitwarden/cli "Bitwarden CLI"
to:
[11]: https://github.com/bitwarden/clients/releases?q=cli "Bitwarden CLI"

The updated url should take users to the latest BW CLI release.

Execute a auto-type sequence based on the URI matched.

Use case example:
Steam will prompt for username and password initially. Later on waking the computer Steam will occasionally prompt for the password only and have the username prefilled and disabled. Also after entering the password it will ask for the TOTP code.

Current solution:
Just press the shortcut combo for password only. Then press the TOTP shortcut combo.

Suggested Improvement:
Just press the standard auto-type shortcut and based on the URI that is matched, looking at the title of the window in question, a different auto-type sequence would be used.

Implementation idea:
In the custom text field allow auto-type-# where the number following auto-type would correspond to the URI. If no matching auto-type is found for a given URI fall back to the default.

(This is just an idea to think about, it might be a lot of work. The existing options provide a reasonable solution already. Feel free to ignore this if you want.)

Hi,

can this be used on a self-hosted vault with a custom URL?

Hey,
I am self hosting bitwarden on my raspi. Is there a way to use your application. I switched from keepass and autotype is something which I am really missing.
Kind regards leander

The following error happens often and right now everytime I hit the Sync button I am getting this screen

along with log:

{
	"A_Error": {
		"Extra": "Unexpected character at position 1: 'V'",
		"File": "bw-at.exe",
		"Line": 832,
		"Message": "Failed to parse JSON (-1,0)",
		"What": "-1"
	},
	"A_Info": {
		"locked": 0,
		"logged": 1,
		"portable": 1,
		"session": 0,
		"status": "locked",
		"sync": "2023-02-10T12:36:54.575Z",
		"version": "1.1.33.10",
		"windows": "10.0.19045"
	},
	"ADVANCED": {
		"field": "auto-type",
		"NODE_EXTRA_CA_CERTS": "Present",
		"pin-length": "6",
		"reprompt-with-pin": "1",
		"server": "Present",
		"tcato-ksps": "10",
		"tcato-wait": "250",
		"update-frequency": "1"
	},
	"CREDENTIALS": {
		"api-key": "0",
		"client-id": "",
		"client-secret": "",
		"tsl": "2",
		"user": "Present"
	},
	"DATA": {
		"pin": "Present",
		"update": "1676019288",
		"version": "1.1"
	},
	"GENERAL": {
		"action": "1",
		"favicons": "0",
		"pin": "2",
		"sync": "10",
		"tcato": 1,
		"timeout": "10",
		"totp": "1",
		"updates": "1"
	},
	"GENERATOR": {
		"digits": "1",
		"exclude": "",
		"length": "39",
		"lower": "1",
		"symbols": "1",
		"upper": "1"
	},
	"HOTKEYS": {
		"default": "#!v",
		"password": "^!p",
		"totp": "^!o",
		"username": "^!u"
	},
	"SEQUENCES": {
		"default": "{ClearField}{Username}{SmartTab}{Password}{Enter}",
		"password": "{ClearField}{Password}{Enter}",
		"totp": "{TOTP}",
		"username": "{ClearField}{Username}"
	}
}

With Autotype Obfuscation the autotyper misses around every 3rd character, with input fields filled like this

original:
    [email protected]
AO enabled:
    [email protected]

Tested with notepad, citrix workspace and a couple of game launchers.

For release v1.1.3 https://www.virustotal.com reports multiple false positives.

Results for Setup.exe, flagged by 6 vendors.

Results for bw-at.zip, flagged by 2 vendors.

I really have no idea what is causing the AVs to flag it. I wonder if it has to do with the key generation.

A quick google search shows that is is a common problem.
This is a recent discussion of the issue on AHK forums.

When putting a TOTP code in the clipboard save the previous value in the clipboard and after 30sec (when the TOTP is no longer valid) restore the previous clipboard value.

After updating my KDF to argon2 I am not able to log into this app. I get a message that says unknown KDF. I know that it uses the bitwarden cli, is this something that I can download an updated version of the CLI to fix?

it looks like that only vault.bitwarden.com is supported. Other self managed instalation of Bitwarden or VaultWarden are not supported.

notes:

1. tested without custom setup
2. tested to setup own URL via CLi command line
   bw config server https://vault.myownserver.net
3. copied data.json from "C:\Users\MyUser\AppData\Roaming\Bitwarden CLI" to "C:\Program Files\Auto-Type"

without success

It seems that the uninstallation created a lot of junk files in C:\Users\UserName\AppData\Local\Temp
I'm using Windows 11(22000.132 Beta Channel), AutoType version 1.0.1

Hello,
first of all thank you for the nice project!
I have my Bitwarden server self hosted. Is there a way to log in with your own URL?
I have not been able to do it until now.
Thanks a lot

something that would be great is a gui of some sort perhaps with the help of autohotkeys window spy to add the program entries needed, tho at minimum if could add the window spy when right clicking auto-type it would be a great help

This extension of sorts, righ now, doesn't work for firefox.

I put bw-at.exe and bw.exe in the same folder.
launched and tried to log in with the normal password and API key.
both methods give the error:
request to https://identity.bitwarden.com/connect/token failed,
readon: unable to get local issuer certificate.

any ideas?

I think Bitwarden broke this amazing script :(

Hello!
Is there any way to use that in an linux environment?
Or do anyone know a port / solution for linux autotype with bitwarden?

thanks in advance

I just updated the software because the icon in the taskbar showed a version that was older than what I see on github and I was having issues with the software using alot of cpu... This is what I see in the taskbar

Is this dynamic or is it static? should it reflect the version of autotype or is that the bw cli version?

In some cases, such as using xshell software, I may have many machines to manage, and I need to keep pressing the key to select a specific host password

{ "A_Error": { "Extra": "Unexpected character at position 1: 'Y'", "File": "bw-at.exe", "Line": 833, "Message": "Failed to parse JSON (-1,0)", "What": "-1" }, "A_Info": { "locked": 0, "logged": 1, "portable": 1, "status": "unauthenticated", "sync": null, "version": "1.1.1.1", "windows": "10.0.19041" }, "ADVANCED": { "field": "auto-type", "NODE_EXTRA_CA_CERTS": "", "pin-length": "4", "reprompt-with-pin": "1", "server": "", "tcato-ksps": "10", "tcato-wait": "250", "update-frequency": "1" }, "CREDENTIALS": { "tsl": 2, "user": "Present" }, "DATA": { "pin": "", "update": "1633742864", "version": "1.0" }, "GENERAL": { "action": "0", "favicons": "0", "pin": "0", "sync": "15", "tcato": "1", "timeout": "0", "totp": "2", "updates": "1" }, "GENERATOR": { "digits": "1", "exclude": "", "length": "39", "lower": "1", "symbols": "1", "upper": "1" }, "HOTKEYS": { "default": "^!a", "password": "+^!s", "totp": "^!o", "username": "^!u" }, "SEQUENCES": { "default": "{ClearField}{Username}{SmartTab}{Password}{Enter}", "password": "{ClearField}{Password}{Enter}", "totp": "{TOTP}", "username": "{ClearField}{Username}" } }

If you install on a limited (non-admin) user account the settings.ini file will end up in the admin user AppData folder, and has to be copied to the non admin's profile manually.

Not sure why this is happening, it was working for a while and now does not. I get No Auto-Type Found error on this window... the same issue applies to discord (on Win x64) I added all the possible .exe I could find related to it, not sure why it doesn't work.

.

I can't get this to install.

First problem was that the scripts seems to assume that AutoHotKey is installed on C:. I had it on D:. Uninstalled and reinstalled to C: and made progress.

Then the build.ahk script reports an error as shown in the attached JPG. (I couldn't copy and paste from the dialog box.) I tried moving the installation files to C: but it didn't help.

I would really like to use this utility!

AutoType cannot seem to get the URL from the Opera GX process opera.exe. The browser version is LVL3 (core: 83.0.4254.70).

looking at the readme and going over the git log couldn't understand what is the asset bw-at.bin?
is it needed? what is it used for?

thanks for the great tool :) trying to understand it a bit.

Hey there,

I've recently installed a Vaultwarden instance on my VPS and am missing an option for bitwarden-autotype to set the Server to the correct sub.domain.com.

Would you be so kind to add a setting that would solve this?

Bitwarden is platform agnostic. This is not.

Hi!
Every time I try to connect, it says, "Loggin first." But BW CLI works perfectly.

C:\bitwarden-autotype\bw.exe -v
1.9.1

It installs with errors and then I have persistent "Please wait..." under my cursor.

first I'd like to start off, any chance to reduce the pin length to 4? ideally let people choose length

and even if adding 2fa to it, still keeps asking for master password

It could be useful to have the current version displayed as a disabled menu option in the right click menu on the tray icon. Or maybe in the tooltip.

Hi, i need to go to a previous field and added "{LShift}+{Tab}" at the beginning, but this doesn't work. How can i make it work?
{LShift}+{Tab}{ClearField}{Username}{SmartTab}{Password}{SmartTab}pass{Enter}

Hello,
i don't know what i'm doing wrong, but the Hotkeys sometimes did not work since i use Windows 11.
sometimes they work, and after a restart, they don't.
i have to change the hotkey to an other binding and then, sometimes, they will work again.

I just tried to install the app in windows 11 version 21h2 build 22000.856

and got the following errors. I just took screenshots of everything as it happened.

After all of that a tooltip that says please wait that follows the mouse cursor around and the installer just hangs.

If a single vault item has multiple matching URIs a request to select the matching entry will be display even if all the entries are the same.

Request dialog:

Vault entry: