I am designing an android autofill service, and one of its features is that it shouldn't allow the user to see the password content it fills in any app because the password doesn't originate from the user. However, most apps have Show Password functionality in their password text fields. I have thought of programmatically pressing the enter key on the keypad as soon as the autofill service fills the password field, that way the user gets logged into the app without seeing the password. I'd like to know if this approach could work and if not, what other approaches I could take?
7
-
A password autofill service that doesn't require me to know my passwords is great (as long as it stores them securely and is trustworthy); a password autofill service that doesn't allow me to know my passwords is terrible and I can't imagine ever using such a thing.David Conrad– David Conrad2021-01-15 17:46:42 +00:00Commented Jan 15, 2021 at 17:46
-
@David Conrad, I explicitly stated that the passwords do not originate from the user. They aren't your passwordsIsrael– Israel2021-01-15 17:55:07 +00:00Commented Jan 15, 2021 at 17:55
-
They absolutely are my passwords. They're passwords to access my accounts on various apps, right? This is exactly how Google's password service works when it generates passwords for you, except of course it allows you to see your passwords, not only on the web pages or apps where it enters them for you, but on passwords.google.com. Just because I used a tool to generate the password for me doesn't me it is not my password.David Conrad– David Conrad2021-01-15 18:00:33 +00:00Commented Jan 15, 2021 at 18:00
-
I can't remember mentioning that it generates passwords like Google's password serviceIsrael– Israel2021-01-15 18:05:10 +00:00Commented Jan 15, 2021 at 18:05
-
You could've just asked me to explain better if the question wasn't clearIsrael– Israel2021-01-15 18:05:44 +00:00Commented Jan 15, 2021 at 18:05
|
Show 2 more comments
