starred/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.git synced 2026-02-05 00:29:40 +03:00
Code Issues 32 Packages Projects Releases 10 Wiki Activity

Enable support for DUO Universal Login prompt #1907

New Issue
Closed
opened 2026-02-05 02:10:24 +03:00 by OVERLORD · 12 comments
OVERLORD commented 2026-02-05 02:10:24 +03:00
Owner
Copy Link

Originally created by @jeroen-ansink on GitHub (Apr 30, 2024).

Subject of the issue

Currently unable to login, because DUO Universal login prompt is not supported.

Deployment environment

  • vaultwarden version:

  • Install method: docker image

  • Clients used: web vault

  • Reverse proxy and version: caddy 2

  • Other relevant details:

Steps to reproduce

Try to login with DUO 2FA enabled.

Expected behaviour

Able to login using DUO

Actual behaviour

Unable to login using DUO

Troubleshooting data

Scherm­afbeelding 2024-04-30 om 08 49 22
Originally created by @jeroen-ansink on GitHub (Apr 30, 2024). <!-- # ### NOTE: Please update to the latest version of vaultwarden before reporting an issue! This saves you and us a lot of time and troubleshooting. See: * https://github.com/dani-garcia/vaultwarden/issues/1180 * https://github.com/dani-garcia/vaultwarden/wiki/Updating-the-vaultwarden-image # ### --> <!-- Please fill out the following template to make solving your problem easier and faster for us. This is only a guideline. If you think that parts are unnecessary for your issue, feel free to remove them. Remember to hide/redact personal or confidential information, such as passwords, IP addresses, and DNS names as appropriate. --> ### Subject of the issue Currently unable to login, because DUO Universal login prompt is not supported. ### Deployment environment <!-- ========================================================================================= Preferably, use the `Generate Support String` button on the admin page's Diagnostics tab. That will auto-generate most of the info requested in this section. ========================================================================================= --> <!-- The version number, obtained from the logs (at startup) or the admin diagnostics page --> <!-- This is NOT the version number shown on the web vault, which is versioned separately from vaultwarden --> <!-- Remember to check if your issue exists on the latest version first! --> * vaultwarden version: <!-- How the server was installed: Docker image, OS package, built from source, etc. --> * Install method: docker image * Clients used: web vault * Reverse proxy and version: caddy 2 * Other relevant details: ### Steps to reproduce Try to login with DUO 2FA enabled. ### Expected behaviour Able to login using DUO ### Actual behaviour Unable to login using DUO ### Troubleshooting data <img width="794" alt="Scherm­afbeelding 2024-04-30 om 08 49 22" src="https://github.com/dani-garcia/vaultwarden/assets/144269883/5bd921a7-fb32-4898-9832-eb562e0e89d8">
OVERLORD added the enhancementbughelp wanted labels 2026-02-05 02:10:24 +03:00
OVERLORD commented 2026-02-05 02:10:30 +03:00
Author
Owner
Copy Link

@BlackDex commented on GitHub (Apr 30, 2024):

We need to make some big changes in the code for this.
It will probably take some time.

@BlackDex commented on GitHub (Apr 30, 2024): We need to make some big changes in the code for this. It will probably take some time.
OVERLORD commented 2026-02-05 02:10:34 +03:00
Author
Owner
Copy Link

@jeroen-ansink commented on GitHub (Apr 30, 2024):

Ok, is there maybe a way to disable DUO in the backend without being able to login to the frontend and without having a recovery code?

@jeroen-ansink commented on GitHub (Apr 30, 2024): Ok, is there maybe a way to disable DUO in the backend without being able to login to the frontend and without having a recovery code?
OVERLORD commented 2026-02-05 02:10:37 +03:00
Author
Owner
Copy Link

@BlackDex commented on GitHub (Apr 30, 2024):

You can remove all MFA/2FA from your account via the /admin interface

@BlackDex commented on GitHub (Apr 30, 2024): You can remove all MFA/2FA from your account via the `/admin` interface
OVERLORD commented 2026-02-05 02:10:40 +03:00
Author
Owner
Copy Link

@ajb3932 commented on GitHub (May 3, 2024):

image

I'm also having this issue too. No pressure to fix asap from me, just wanted to raise awareness.

@ajb3932 commented on GitHub (May 3, 2024): ![image](https://github.com/dani-garcia/vaultwarden/assets/45558436/06ac6363-e966-4d73-a067-c64f72544e52) I'm also having this issue too. No pressure to fix asap from me, just wanted to raise awareness.
OVERLORD commented 2026-02-05 02:10:42 +03:00
Author
Owner
Copy Link

@BlackDex commented on GitHub (May 4, 2024):

There seems to be a bug in the latest web-vault btw https://github.com/bitwarden/clients/issues/8554
Not sure if that is also the case in the web-vault we currently bundle, but i do not think so.

@BlackDex commented on GitHub (May 4, 2024): There seems to be a bug in the latest web-vault btw https://github.com/bitwarden/clients/issues/8554 Not sure if that is also the case in the web-vault we currently bundle, but i do not think so.
OVERLORD commented 2026-02-05 02:10:45 +03:00
Author
Owner
Copy Link

@GeorgeCastanza commented on GitHub (May 16, 2024):

Me too. As a new user, it wont allow me to use the old (expired, but still working until Sep-24 for some) prompt.

@GeorgeCastanza commented on GitHub (May 16, 2024): Me too. As a new user, it wont allow me to use the old (expired, but still working until Sep-24 for some) prompt.
OVERLORD commented 2026-02-05 02:10:49 +03:00
Author
Owner
Copy Link

@0x0fbc commented on GitHub (May 17, 2024):

I saw the 'help wanted'. Is there any specific assistance you're looking for? If there isn't anyone actively working on this, I can take a shot at it.

@0x0fbc commented on GitHub (May 17, 2024): I saw the 'help wanted'. Is there any specific assistance you're looking for? If there isn't anyone actively working on this, I can take a shot at it.
OVERLORD commented 2026-02-05 02:10:52 +03:00
Author
Owner
Copy Link

@BlackDex commented on GitHub (May 17, 2024):

@0x0fbc, i only looked at the available code of the universal duo implementation provided by Duo in the python and php language to have a baseline. But not yet started coding it.

So, if you want to take a crack at it, feel free to do so 😄.
Everytime I want to start on it i need to do other stuff instead or I am hindered to use a laptop unfortunately.

If you need some help you can find me on our Vaultwarden Matrix channel.

@BlackDex commented on GitHub (May 17, 2024): @0x0fbc, i only looked at the available code of the universal duo implementation provided by Duo in the python and php language to have a baseline. But not yet started coding it. So, if you want to take a crack at it, feel free to do so 😄. Everytime I want to start on it i need to do other stuff instead or I am hindered to use a laptop unfortunately. If you need some help you can find me on our Vaultwarden Matrix channel.
OVERLORD commented 2026-02-05 02:10:54 +03:00
Author
Owner
Copy Link

@yurividal commented on GitHub (May 23, 2024):

This is odd. i have DUO enabled in my account, and I can login just fine with it.
I am running latest vaultwarden, and have had DUO activated for more than 1 year.

@yurividal commented on GitHub (May 23, 2024): This is odd. i have DUO enabled in my account, and I can login just fine with it. I am running latest vaultwarden, and have had DUO activated for more than 1 year.
OVERLORD commented 2026-02-05 02:10:59 +03:00
Author
Owner
Copy Link

@ajb3932 commented on GitHub (May 23, 2024):

Effective March 30, 2024 Duo no longer supports the traditional Duo Prompt for most applications.

I think it only affects users trying to activate Duo since March 30th.

@ajb3932 commented on GitHub (May 23, 2024): Effective March 30, 2024 Duo no longer supports the traditional Duo Prompt for most applications. I think it only affects users trying to activate Duo since March 30th.
OVERLORD commented 2026-02-05 02:11:03 +03:00
Author
Owner
Copy Link

@Simon-CR commented on GitHub (May 24, 2024):

that would most likely explain this: Can't fetch Duo Keys error when trying to log into the web vault. Since I had this enable on the vault itself, I had to "remove all 2FA" from the user...

@Simon-CR commented on GitHub (May 24, 2024): that would most likely explain this: Can't fetch Duo Keys error when trying to log into the web vault. Since I had this enable on the vault itself, I had to "remove all 2FA" from the user...
OVERLORD commented 2026-02-05 02:11:08 +03:00
Author
Owner
Copy Link

@BlackDex commented on GitHub (Jul 31, 2024):

Fixed via #4637

@BlackDex commented on GitHub (Jul 31, 2024): Fixed via #4637
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
SSO
Third party
better for forum
bug
bug
documentation
duplicate
enhancement
future Vault
future Vault
future Vault
good first issue
help wanted
low priority
notes
pull-request
Mirrored from GitHub Pull Request
 question
troubleshooting
wontfix
No Label bug enhancement help wanted
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
OVERLORD
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/vaultwarden#1907
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?