I have to enter my credentials and also 2FA Token each time I use passbolt. The session is only stored for a few minutes or hours and although I’m selecting “stay logged in” the login popup comes up most of the times.
I want to be able to configure the session time in the passbolt settings. It could be minutes, hours or based on the Azure/M365 login session there. But being forced to enter 2FA every 2 hours is annoying. Currently it’s a better experience simply using the Passphrase to login.
This would impact everyone who is using SSO login methods like EntraID.
This would speed up the process of using passworts and passbolt itself. Logging in once a day and simply working would be more convenient and faster than getting your smartphone out and entering the 2FA token each time you require a passwort for a service.
I propose to add an option or parameter to configure the session time until we’re required to re-login again. Defining the time ourself or using the builtin SSO option, as the “stay logged in” option from Microsoft has no effect currently.
Another option might be to us the new Firefox’s feature to use stored Windows SSO login data, which would speed up the login process a lot (https://support.mozilla.org/de/kb/informationen-zur-funktion-windows-sso?as=u&utm_source=inproduct).