Hello,
We’re considering using vaultwarden to our self-hosted vault. One of our must have requisites is the ability to hide password from users on a highly rotating team.
When using the web browser extension, just right after the auto fill, the built-in browser password manager (Chrome / brave, etc) asks if the user wants to save the used credentials to the builtin password manager (thus giving the user an option reveal the passwords).
How suggestion to resolve this?
This is a known limitation of Bitwarden or frankly the inherent dilemma of using passwords in the first place. So you can realistically only “resolve” this by reducing the number of shared passwords. Since a password manager like Bitwarden drastically lowers the cost of changing those credentials without meaningfully impacting anyone’s access you should probably just incorporate that into your off-boarding process instead of having such a paradoxical requirement (i.e. giving someone access to a secret without them actually having access to that secret).