EXACTLY THIS!!! YES!!! I was just commenting on a thread in the Proton Pass section discussing biometric logon that ALL the desktop apps could use something like this. I like how you termed it as a "unified authentication." I also like providing people the option to do it by biometrics, password, or PIN. It could be done on PC's using "Window's Hello" or macOS using Platform Single Sign-On (PSSO), or perhaps there is a way to make it function separately from those if any user desires to have an extra precautionary measure.

Proton Pass Security in it's Global Settings could have some general and session overviews regarding all of the Pass instances and apps, such as the browser extensions.

Now, there is separation in each Pass app-specific settings by design as confirmed by Proton Staff to be intentional, sure, but we need one place, one app (webapp or the desktop windows app?) that's considered the main or primary one that should have some global overview, security and session management of all the Proton Pass instances to get a sense how many extensions and sessions are active (or used in past)

It can get crowded and perhaps confusing when you're a power user with multiple web browsers and even versions of the same, portable editions, on many different PCs, windows, linux, android, multiple smartphones, tablets, can be very useful to get some better security overview, perhaps logs, but also being able to revoke sessions.

What if I lose my phone or a device, I'd just revoke session, without having to at worst change the password for the whole proton account.

Some session and login management is already in the webapp for the general protonmail, but it's still more tied to the main and mail accounts without good indication/separation, because mail was the first and main product so this is understandable.

Right now, on desktop, Proton is a bunch of apps with a bunch of ways of accessing them: native apps, bridge apps, browser extensions and web apps. This means that we need to handle a lot of proton sessions for one computer.

This means that if I am on the web in my emails and I want to go to the Pass desktop app, I am most likely gonna need to enter my password.

Then, in terms of security, I can setup the Pass desktop app to require a PIN or a password every time I open the app and after X time of inactivity. But, not on the browser wallet app. So, anybody could take my computer, open my browser and steal all my bitcoins.

I think that the best ways of handling that would be to have a unified way of handling sessions on desktop. Just a menu bar app that have session locking features (biometrics, PIN, password, auto lock, require password and double auth every week, etc.). Then, all apps, extensions, websites could query this app to check if the session is open, closed of locked.

The best example of something like this would be 1Password which uses one session for the app, the cli and the extension. I do admit that the website is not connected, so it might be because it is not possible for websites. But for all others apps, we know it can work.

I would love to open the Proton Mail webapp, scan my finger print, then switch to Proton Drive and that it remembers that I just authenticated. Or, to enter a keyboard shortcut and every Proton app locks.

This duplicates the idea with more votes for a separate PP passphrase from the Protonmail login

Please keep a separate login session for the Proton pass browser plugin. Currently, It's getting logged out when I log out from my email and resetting all the PIN ( security settings ) when logged back in. Another security issue is it's showing passwords as just usual. I want to keep a pin to view the password. It's not a secure view password without any extra pin, what if someone else is using my system or I did pass set up in my workplace? Anyone who has access to the device can see the passwords too. Please implement an extra layer of security.