Quick menu setting for default action
There are a number of threads on this but I guess not enough for 1Password to consider this worth doing. For a host of reasons, many having to do with security, I do not want my browsers able to access or interface with 3rd party tools - like 1Password.
I prefer to quickly grab a password (copy it) and paste it into a field on my own. I've no interest in getting the proper link into 1Password (which often changes BTW) nor do I want 1Password talking to my browser or filling out forms.
Please please please add a setting so that you can change the Quick window's default behavior (the behavior you get when you press ENTER on the password entry you've selected) which appears to be fixed to "Open in Browser". At least offer the additional option of "Copy password to clipboard".
This is nothing new so I'm just adding a voice to what others have already said.
Thank you for your time.
JJ
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Browser: Not Provided
Comments
-
Hello @jimmyjayp! 👋
Thank you for the feedback! Are you referring to copying a password when selecting an item from Quick Access? If you are then you can copy a password from Quick Access by pressing Command-Shift-C on your keyboard. Would that work for your needs?
Could you tell me a little more about the security concerns that you're referring to? It's generally considered to be much more secure to use 1Password in the browser or Universal Autofill to fill your passwords into browsers and other apps rather than copying those passwords to the clipboard and then pasting them into a website or app. There are a couple of reasons for this:
- When you copy a password to the system clipboard it becomes available for other apps and processes on your Mac to read and save. Passwords copied to the system clipboard exist outside of 1Password's encryption and security architecture.
- 1Password is deliberately designed to only ever fill your login credentials into websites that match the website address saved in the Login item in 1Password and into browsers/apps with a valid code signature. This provides protection from phishing since it reduces the risk of you entering a password into a malicious website or app that is pretending to be the legitimate website that you're trying to login to.
-Dave
0 -
Hi Dave. firstly, I want to thank you for responding.
My typical flow is to first bring up the quick menu (cmd-shift-space), then find the correct entry (type to partial completion and use arrows and remember NOT to hit return), then cmd-shift-c. I'd like to streamline that if possible.
WRT security, while I appreciate your reasons, I'm trying to get to a place where I no longer keep my secrets in browser stores (Google Password Mgr, Safari) and only want them in 1Password. Over time, I've found browser complexities and constant change inherent in software distribution have resulted in my not having the correct settings or inadvertently turned on something that in retrospect, I wish I hadn't.
I've received the Google email notice that my passwords may have been compromised one too many times and I simply don't have the time, nor the desire to keep up with all the automatic systems intended to keep things secure but which, again because of the complexities in a constantly changing environment, keep me from truly understanding where my data resides and who has access to it.
IMHO, knowing how things work and where my data resides trumps the conveniences and the well-intended increased security that comes from integrations which I don't fully understand.
0 -
Thanks for the reply. I've passed your request along to the team. 🙂
WRT security, while I appreciate your reasons, I'm trying to get to a place where I no longer keep my secrets in browser stores (Google Password Mgr, Safari) and only want them in 1Password. Over time, I've found browser complexities and constant change inherent in software distribution have resulted in my not having the correct settings or inadvertently turned on something that in retrospect, I wish I hadn't.
When you use the 1Password browser extension, or Universal Autofill, your passwords and other items remain protected by 1Password. They're not shared with Google Password Manager or the default password manager in Safari.
1Password in the browser uses a completely segregated browser storage space to store your encrypted passwords while Quick Access uses the same encrypted cache that the 1Password desktop app uses. Your passwords are not saved outside of 1Password. You can read more about the security of 1Password in the browser here:
-Dave
ref: PB-44052455
0 -
Will review. Thanks.
0 -
If you have any other questions then don't hesitate to let us know. Thanks again for the feedback. 🙂
-Dave
0 -
FYI, read the docs (not really feeling that I understand stuff) but I figure I'd try your suggestion. I opened a second ticket - can't get all of my vaults to work with the chrome extension. Adding here only because it helped me to codify the "why" above....why do I want this...because whenever I have to deal with browser extensions, I always want to beat my head against a wall! ;-) (I say this with sarcastic humor, not anger).
0 -
I'm replied to you over in the new thread that you created. Let's continue the conversation there. 🙂
-Dave
0