Comments (7)
Regarding the QR code - I like this better, but what would the receiving side look like? Would you use Buttercup there too to scan the QR? If not you're just scanning using the base camera app or QR code scanning app and it falls into the same problem as the first point
Sharing passwords to devices without Buttercup should be the important point, because in my scenario the target device doesn't have an internet connection or Buttercup installed.
How would you transfer a password from Buttercup to another device that doesn't have internet access and doesn't have Buttercup installed at the moment? For now every time I'm in that situation I have to do the workaround of copying the password to a note and send it to another device via Bluetooth (and make sure to delete the file).
from buttercup-mobile.
The ability to receive doesn't infer that internet access is required - I was talking offline.
My issue here is moreso sending credentials to others via an app such as WhatsApp etc - it's ugly and promotes terrible security practices. I recognise that there are edge cases and that users might just want the power to do this, but just adding it would present every user with such an option and that would be an endorsement from us. This will probably mean we won't add it in this form.
I still like this idea and want to keep it open but it needs to be fleshed out a bit more :)
from buttercup-mobile.
I'd consider NFC and QR codes. Not sure about Bluetooth but I'd consider it if someone contributes it.
Probably a warning would be enough to ease a bit of liability here.
Good idea! Let's see when we get to this. Thanks :)
from buttercup-mobile.
Sure, but we still need to consider that the sync'd entries will de-sync after one side changes something, so we need to include update functionality.
But yes, it's a necessary first step before sync'ing within an account like via a hosted server.
from buttercup-mobile.
Hmm.. this is an interesting idea. I both see the use in it, and am also hesitant to accept it because of the security implications. Being able to immediately ship passwords off a device is potentially very dangerous. I'll think on this one.
Regarding the QR code - I like this better, but what would the receiving side look like? Would you use Buttercup there too to scan the QR? If not you're just scanning using the base camera app or QR code scanning app and it falls into the same problem as the first point.
from buttercup-mobile.
I understand your concerns and my main idea of sending passwords to devices nearby would be Bluetooth and QR-Code, perhaps NFC. These ways of data transfer work without any third party app involved. If the password was transferred to the target it's on the owner of the password to remove remaining files on the target.
Further I thought about a way to ensure encryption and temporary access to the password with the help of an HTML file embedded into a QR-Code. I rejected this idea because 1) it's not possible to embedd an HTML file into QR Codes (most readers don't support/block base64 URLs) and 2) even if it was possible it would need third party libraries to be embedded into the HTML file (=> too many chars in base64 for data URL).
This is just an idea that came into my mind because situations of sharing (WLAN-) passwords happen to me quite often 😅
from buttercup-mobile.
maybe, if the qr code reader from #310 works this feature could be added. Sharing vault entries via qr code would be very nice (encrypted, both sides need Buttercup) or unencrypted (other side just needs an qr code reader) :)
from buttercup-mobile.
Related Issues (20)
- Deleting a vault does not delete it from the IOS Password Auto-fill HOT 4
- Cannot add google vault HOT 9
- Adding a vault from Google Drive causes an error "Application error: a client-side exception has occurred" HOT 2
- Trying Sign-in on Google Auth from Buttercup mobile HOT 1
- [Feature Request] Alphabetize list of TOTP codes HOT 1
- No entries were found when using the autofill password in the iPhone HOT 4
- Can't add new entry HOT 6
- WebDav does not work on Android. HOT 3
- App keeps crashing after I enter vault password HOT 8
- [iOS] Error with webdav HOT 6
- iOS app no longer open offline vault HOT 11
- Can't find the directory to put buttercup vaults from my pc in.
- Buttercup won't open new vault on webDAV server HOT 26
- Cannot add new WebDAV URL to buttercup Android App HOT 14
- Appending android apk to github releases HOT 1
- Is this app still alive? HOT 1
- Can't activate auto-fill on Android HOT 1
- Vault stored in Google Drive can no longer be opened HOT 12
- OTP code disappear HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from buttercup-mobile.