Feature Request - Tracking Recovery Codes for 2FA on Accounts / Sites
I can add an additional text section and label it recovery codes, or just copy/paste recover codes for a site into the existing notes section of the account, so this would be a nice to have.
I'd find it convenient and useful to have 1Password be able to track Recovery Codes for different accounts/sites as a feature of the product. I can manually track it, but I haven't found a way to add a default recovery codes section to all accounts yet, and it just seems like something that is so common that I'd like it to be a feature.
1Password Version: 8.1
Extension Version: 2.25.1
OS Version: Windows 10
Browser: Chrome
Comments
-
I add my recovery codes in the notes sections of the item. It supports Markdown formatting.
1 -
That's what I'm also doing for now. Thanks Tommy.
0 -
Hi @jtcp27827, thanks for letting us know that this is your current workaround! I've passed your suggestion for a method of keeping track of 2FA recovery codes along to our product team in the form of a feature request. If you have any further suggestions or questions, let us know 😄
ref: 40994355
1 -
I'd just like to +1 this feature request. Keeping recovery codes in a notes section is unwieldy:
- it makes for a big ugly block of text that looks way more prominent than it really is
- the default action on a text block is to copy the whole thing, but that's never useful for this case
- after you use a recovery code, it should be removed, or at least crossed-off.
I am using a notes block for these now and never really have to use these except that certain sign-up flows are now checking that you've saved these somewhere by requiring you to enter one of the recovery codes before they fully enable 2FA (I most recently saw this on Wave Financial). Setting this up was a pretty clunky edit/save/edit/save cycle in 1Password.
1 -
I second this request. 1Password keeps my password hidden on-screen, so even if I bring it up during a meeting where I share the screen, nobody is able to see my password.
However, the most viable option for keeping recovery codes is to put them in the notes section or a text field, both of which defaults to being visible.
The password field is not optimal since it smushes everything together as one long string, and isn't as easy to copy just a part out of. It does, however, default to hide the contents.
Ideally I would like for 1Password to accept a paste from the clipboard with delimited recovery codes (spaces, newlines, etc.), then show them as one field for Recovery Codes, which also shows how many such codes are left. Then copying such a code would copy the next code, and you would also just have an option to remove used code, possibly as part of the copy function. The field would also remind you to grab a new set from the site when you use the 1-3 last codes.
This is just a niche thing though, I have ever only used recovery codes like a handful of times, and not on the same site, so me running out of codes for a site is for future me.
However, a multiline password field would be a very good compromise, however, or the ability to configure notes to not show by default (possibly just an application option with a button or expand function to show when needed).
1
