Why are duplicate Login items created?

khad
khad
1Password Alumni
edited December 2012 in 1Password 4 for Windows
Warning No formatter is installed for the format ipb

Comments

  • jemenake
    jemenake
    Community Member
    Warning No formatter is installed for the format ipb
  • khad
    khad
    1Password Alumni
    Warning No formatter is installed for the format ipb
  • seanhoughton
    seanhoughton
    Community Member

    The most frustrating thing about using 1Password is the duplicate login problem that is perfectly explained by jemenake. After browsing through my logins I can see that about 60% of them have duplicate entries due to this problem with the Chrome integration constantly asking me if I want to save the login again. Note that I've turned off auto-fill a long time ago hoping it would fix the problem but it happens constantly.

  • khad
    khad
    1Password Alumni

    It sounds like you are dealing with a separate issue then. The issue above was related to something other than 1Password filling in credentials on a site where there is already a saved Login item.

    If you are using 1Password to fill a Login it should absolutely not prompt you to save a duplicate of the Login item you just filled. Can you give me the steps to reproduce the issue including the specific URL? I'd love to take a look and get this sorted out.

    Thanks!

  • tcsinos
    tcsinos
    Community Member

    I have exactly the same issues as described here: multiple saved logins for all pages. In Chrome&FF&IE&Safari on Win7 Pro.

  • khad
    khad
    1Password Alumni

    Please be sure to read my post at the top of this thread.

    Can you confirm for me that you have disabled your browsers' own password managers as we recommend in the User Guide? If your browser is filling in the data rather than 1Password, then 1Password won't be able to check to see if it has already been entered and you will be prompted to save a Login even if one already exists in 1Password. To avoid this simply disable your browsers' password managers and/or decline the prompt when it appears. A duplicate will not be created.

    Let me know if you're still having trouble.

  • llamalover
    llamalover
    Community Member

    Hi,
    I have the same problem that Jemenake so well described (duplicate logins for the same site.) Google Chrome never fills in my passwords.
    I have typed in my own username and password (I remembered them) and get the "save?" form 1Password. I click yes and then I have several entries for the same site on my password chain. Now when I save any of them, I type the date I did it along with the name of the site.
    If I simply use the 1Password log in all the time, this won't happen?
    Thanks.

  • khad
    khad
    1Password Alumni

    If I simply use the 1Password log in all the time, this won't happen? Thanks.

    That should be the case, yes. Please let me know if you are being prompted after using 1Password to fill in your Logins.

  • rccoleman
    rccoleman
    Community Member

    I think what frustrates me about this process is that I will often visit a website and type my password manually just out of habit. 1Password then jumps into action and asks me to save it via the Chrome plugin. I enter my master password (thinking: hmm..doesn't it already have this one saved?) and go ahead and save it. I then open the 1Password app and, sure enough, it's saved a duplicate entry for exactly the same URL that's already in the database.

    My assumption here is that the 1Password database is still locked when I enter the website password and 1Password doesn't yet know that it's in the database. Once I enter the master password, it should definitely know that it's trying to create a duplicate and either not do it or at least advise against it. Your comment above ("[crucially] use 1Password to fill the Login") has the effect of unlocking the database, so perhaps it's better able to see that the entry already exists.

    Is this a plausible explanation? It just happened like that for wwws.mint.com, and the two entries that I have are identical in title, URL, and all parameters except for the thumbnail (for some reason). Surely, at the time that it's saving a password, it can be a bit smarter about whether it's going to duplicate an existing entry.

    Granted, this is different from the multiple URL issue described above (which does happen), but it also results in duplicate entries for me.

    Rob

  • khad
    khad
    1Password Alumni

    I think what frustrates me about this process is that I will often visit a website and type my password manually just out of habit. 1Password then jumps into action and asks me to save it via the Chrome plugin. I enter my master password (thinking: hmm..doesn't it already have this one saved?) and go ahead and save it. I then open the 1Password app and, sure enough, it's saved a duplicate entry for exactly the same URL that's already in the database.

    I completely understand the frustration. Unfortunately, if you don't fill the Login with 1Password there is not a way for 1Password to check to see if a Login with that same password already exists.

    There are two things I would suggest which will help if you are willing to follow them:

    1. If you can type your passwords by hand you likely are not using 1Password as it is intended to be used. Obviously the choice is yours, but 1Password is designed to store strong, unique passwords like T9W+UKD-8_!gV731=om&IeFh'fu9?sG5QToGBz=y9AEc#UE58G and fill them automatically so you don't need to (and realistically can't) remember them. :)
    2. Then you would be essentially forced to use 1Password to fill your Logins. But even if you don't change your password(s) using the password generator, I would still recommend making CTRL+\ a habit when you come to a login page. Then if 1Password doesn't fill your password you can assume there is no Login saved and perhaps log in manually. 1Password will then ask you to save the password for the first time, and you can follow the instructions in the User Guide to change the password to a generated one.

    Does that help at all?

  • rccoleman
    rccoleman
    Community Member
    edited July 2013

    I had gotten into the habit of using command/control-\, but I found that it often didn't work for mysterious reasons. I suspect that the "helper" app would sometimes stop (crash or otherwise) and I'd find myself frustrated that the keyboard shortcut wasn't working. In any case, I understand that the automation is a large part of your strategy and I admittedly haven't taken advantage of it much lately. There are also some websites (like DirecTV) that go out of their way to hide their initial login fields using Javascript and that seems to get in the way of 1Password's automation. Luckily, they're in the minority.

    I'd like to reiterate one of my comments above:

    Surely, at the time that it's saving a password, it can be a bit smarter about whether it's going to duplicate an existing entry.

    I still think that this is possible once you've unlocked the database, and it may help avoid some of the mysterious "why do I have duplicate entries?" comments.

    Rob

  • khad
    khad
    1Password Alumni

    I still think that this is possible once you've unlocked the database, and it may help avoid some of the mysterious "why do I have duplicate entries?" comments.

    Yes, of course. But it is not possible to check this unless 1Password itself is doing the filling.

    If you're having trouble with the keyboard shortcut or with filling Logins (even without the keyboard shortcut), please let me know some more details. I would love to help. In the case of trouble filling Logins, we would need to know the URL. Perhaps creating another thread would be best for the separate issues.

  • bjavor
    bjavor
    Community Member

    Hi

    Sorry to drop in on this thread, but I have the same problem/frustration and I wanted to add something to what's been already said...

    I also have (currently) enabled the automatic saving/filling of passords in Chrome. As mentioned above, this may be the cause of the problem. However I wanted to add that the reason I have it enabled is so that in most cases I do not need to type anything! I can just hit the Login button on most sites an be logged in automatically. (I know this is less secure, but this is my own desktop PC at home and noone has access to it. I'm mostly using 1password as a backup/master storage for all my passwords...) Would I disable that I would need to constantly type in my 1password master password to unlock the 1password extension as it gets locked every time I close Chrome. Perhaps I would not need to do it every single time but quite often as I usually don't keep an open Chrome window around when I'm not needing it. And if I wanted to type in a password (almost) every time I login somewhere, then I might as well just type in the site's password directly...

    I guess the point of the somewhat lengthly rant is that it would be nice if one could at least keep the extension permanently unlocked until you reboot similarly as you can do it with Safari on the Mac if I remember correctly.

  • khad
    khad
    1Password Alumni

    The problem is that 1Password can't check to see if there is an existing Login item in your data file unless 1Password is the one doing the filling. There are a few different solutions.

    As you mentioned, one simple solution is to just make sure 1Password is unlocked. You can adjust your security settings so that 1Password is always unlocked when you are at your computer.

    • If you disable 1Password's auto-lock settings 1Password will stay unlocked all day long. You will only need to type your master password after a fresh login to your Windows account.

    • If you use a laptop, enabling only the "Lock when your computer is locked" option means that 1Password will stay unlocked until you close the lid on your laptop. A convenient way to stay secure on the go!

    The latter is what I myself do. I only type my master password once per session (which is usually once at the start of the day). When I am done working I just close the lid and know that 1Password is secure.

    Some other options:

    1. When prompted to save a new Login simply decline to save it. 1Password will not save a [duplicate] Login unless you tell it to.
    2. Disable autosave. Many on the team here prefer to manually save Login items on their own terms using the + button in the top right corner of the extension popup. Autosave is most helpful for folks who need a bit more hand holding but can be annoying to advanced users.
    3. Use 1Password to fill your Logins. This is probably the best solution since it means you don't have to really change any settings. It is how 1Password was designed to be used. And it will also make logging in to websites a lot more convenient. Just press CTRL+\on your keyboard while viewing a login page. 1Password will log you right in, and you will never be prompted to save a Login when you already have one saved. You can also select the Login from the extension popup using your mouse, but CTRL+\ sure is a handy shortcut. :)

    Regarding option 2, many of us on the team keep autosave disabled. It's great for folks who need some more hand-holding, but advanced users like yourself often prefer to save Logins manually using the + button on an as needed basis.

    1. Visit a site's login page.
    2. Enter your credentials, but DO NOT submit the form.
    3. Click the 1Password button in your browser's toolbar, and select the "+" button in the upper right hand corner.
    4. Change the title and make any notes (if desired).
    5. Click the Save button in the upper right hand corner.

    Then you'll never be prompted by 1Password. 1Password will simply and quietly await your order. :)

    I hope that helps. Please let me know.

    Cheers!

  • bjavor
    bjavor
    Community Member

    Many thanks for the reply!

    The manual adding seems like a good idea actually!

    Also for some reason I seemed to have remembered that the stay unlocked feature only worked with IE on Windows, but after checking it seems to work fine on Chrome as well. I stand corrected. Sorry!

    It's not really that important, though I find it a bit perplexing how 1password cannot check if the site is already in the database unless it filled the login itself. One would assume that in order to save the login it would need access to the database. And if it has access to the database then it could just do a quick query before saving in order to establish if a similar login is not already saved... Though I guess I'm missing some internal technical detail here... But as I said, not that imprtant, just strange...

    Many thanks again!

  • khad
    khad
    1Password Alumni

    Great news! Thanks for letting me know that everything is working well. :)

    If we can be of further assistance, please let us know. We are always here to help!

  • svondutch
    svondutch
    1Password Alumni

    I find it a bit perplexing how 1password cannot check if the site is already in the database unless it filled the login itself

    1Password cannot check if the login is already in the database unless it is unlocked. When 1Password fills the login itself, then it is has been unlocked.

    One would assume that in order to save the login it would need access to the database.

    Correct, and that is why we ask you to unlock the 1Password database on auto-save.

This discussion has been closed.