Implementing this feature is the ONLY way I'll switch from my current password manager.

I just migrated. And realized that I can't separate my password manager from my email account password. Which just feels like an incredible oversight on the development teams part. I'm very thankful for an incredible password manager like this but there really should be separation between this and email. Or this and the rest of the Proton ecosystem. The goal here is to be secure. Reduce the attack surface. Not expand it.

This is what I wanted. Not an extra password that was released recently.

I am the original author for this ticket and for sure the solution you presented does not address it AT ALL.
I like that you listen to the community, but if that’s how you do it then you might as well not bother pretending… If this was a mistake due to a misunderstanding, it can happen (even though I thought I had clearly express the need). But please admit it and re-open the issue, thank you @Proton

As an addendum to my comment about allowing direct login into Proton Pass using a passKEY, I think allowing direct login using a 6-digit TOTP (generated by a third-party authenticator app like Duo Mobile or Authy) would also be a viable option. I would still avoid allowing direct login into Proton Pass with nothing but a single passWORD because then literally anyone with Internet access would in principle be able to breach your Proton Pass account, as opposed to only someone who has access to your biometric data (in the case of a passkey) or at the very least your smartphone (in the case of an authenticator app-generated TOTP).

@Proton, thank you for working so diligently on the Pass product, releasing and shipping new features so promptly. It really is awesome!

I just request that when you consider this ticket's upvote count in your feature-planning process, please add about 2000 to it. That number is from this ticket's parent (#46727686) which got reworked into something else entirely, but whose upvotes were really for what THIS ticket is now proposing.

I hope you agree that's only fair to the community and their valued votes.

@Proton, thank you for working so diligently on the Pass product, releasing and shipping new features so promptly. It really is awesome!

I just request that we remain honest here and not pretend like this ticket is "done". I see your new ticket, but please consider how misrepresented its upvote count is right now. By re-interpreting this ticket to mean something it did not, the originally requested feature now has to start from square one.

That's not fair.

Sigh, disappointing. I was so excited to see Proton officially confirm they were finally working on this feature request... only to now find out they got the feature requirements (specifications) wrong.

OP very clearly specified the end goal to be that the "Proton account is protected by a generated password that I can't and don't want to remember". Meaning that Pass should be accessible with "a completely different password than the one of my Proton account".

How does that get interpreted as an extra, additional password?

I was really happy when I saw they implemented separate password so I can finally migrate from BitWarden, but to my surprise they added additional password instead of a separate one!

Please Proton, listen to your community here and let us have a separate password that we can use to login only into Proton Pass and skip regular proton account password completely.

I think there was a big misunderstanding from Proton side in regards of this issue. I voted for SEPARATE password for proton pass so we can use only that one for getting into proton pass database and skip regular proton account password.

Edit: After reading other comments, I feel deceived here, as I'm not the only one who perfectly understood feature requirements, and Proton didn't.

This is not what I was voting for!
I need a SEPARATE password for Proton Pass, not an ADDITIONAL one.

I was planning to store my Proton password (which is a cryptic one I don't remember) inside of Proton Pass. When I now need my Proton password to access Proton Pass, that wouldn't work.

Proton Pass should work with a single password only and that password must NOT be the one from my Proton main account.

Please re-open this. In my opinion, an "extra" password is not a "separate" password and I think it entirely misses the point.

The idea is that I have one really big password that I have to remember. That's what I use for my password manager. (Right now that's 1password, but I'd love for it to be Proton Pass.) Once I unlock my password manager, then I can unlock my email with a password I've never seen before.

The extra password requires me to remember a really hard password for my email AND a really hard password for my password manager. That's a different feature. One I don't actually want.

I would support this only if you would be logging directly into Proton Pass with a passKEY (which most browsers and mobile devices now support natively, meaning that the passkey would not need to be stored inside Proton). Quantum computing is going to radically change the security of conventional static passWORDS; as such, I think having only a single static passWORD (that has to be short enough that you can remember it in your head) protect *all* of the credentials stored in Proton Pass would be a significant security liability, especially considering that Proton Pass is accessible online and is thus attackable by anyone who knows or can guess your username.

Personally, I use two-password mode coupled with a 2FA authenticator app just for my *regular* Proton account, and I also took advantage of the extra password option recently added to Proton Pass, meaning that a potential attacker has to get through not one but FOUR layers of authentication to reach my Proton Pass credentials (which is exactly how I like it). However, for those who aren't as die-hard about security as I am, I think adding the option for direct passKEY (not passWORD) login would be a reasonable compromise.

Sorry Proton team but the issue was completely misunderstood. ProtonPass needs it's own completely separate master password that can be used to unlock it. Other Proton services would then have their own account and password stored within the Pass vault. Two passwords, one of them being stored within ProtonPass already makes no sense.

Thanks for opening a new ticket. Looking forward to the seperate password for Proton Pass.

Current setup makes me afraid that one day I will be signed out of Proton services on all my devices and no way to regain access.

Everything said previously, with one addition: passwordless login.

Please, please allow logging in WITHOUT the default protonmail password, using a totally distinct master password.

ALSO, please allow logging in using a passkey without involving any master password at all, generating a recovery key upon setup.

Unless this is implemented, I cannot recommend this to my friends and family, who cannot and will not ever remember a complex master password.

What you released is not what was asked for, please reopen this!

It's really a shame Proton is forcing us to vote again, when they misinterpreted the original issue 🤦

It's really a shame Proton is forcing us to vote again, when they misinterpreted the original issue 🤦