Hopefully this improves the user experience for password managers. I use bitwarden, and currently, often times the option doesn’t come up to use bitwarden. I will need to refresh the page or close/reopen the app to get the option to come up.
Whenever I don’t get the option to use Bitwarden, I just open the app and sign in with my thumb, then switch back and the option is available. I’ve just been assuming this is because Android is crappy and can’t remember that my assigned password manager might not be running all the time in the background.
Have you set android autofill framework to use bitwarden?
Yes, but I still have issues with it. From googling my issues, it seems to be extremely common.
I’ve found that hitting the autofill from the quick settings panel is another workaround. It’s still annoying, but at least you don’t need to reopen the app
I use keypass and sometimes have to manually switch to it’s built in keyboard when it won’t automatically detect it.
I hope that shit stops requiring proprietary Google services. Security should never be locked behind a paywall or crappy, data-hungry proprietary trash.
Soon™
It seems that Passkeys generally require a biometric scan of some kind. I would prefer a level of privacy where I am not providing images of my face or fingerprints to unknown agencies on the cloud.
Generally it should be stored in the security chip on the device so no one has access to it.
The biometrics are on device just like your fingerprint scans stay on device to use your reader.
I could not find confirmation that biometrics are only stored on the device. In fact, I did see that iOS does at least part of the biometrics in it’s iCloud keychain.
There’s a chance I’m thinking of third-party password managers like keepass or 1password.
It’s way stronger than that. Android does not have access to your fingerprint data by design.
Here’s documentation that describes the storage architecture which prevents Android from seeing your fingerprint data.
Lol, you think Google would actually not use that.
Maybe I am not quite understanding how this is going to work, but from what I understand, third-party password managers can integrate into this, and they would not require the biometrics to leave the device.
Introducing aegis authenticator and lineageOS