1Password Mini - Autofill without entering the masterpassword

Martin Krimp El Bein · February 2014

Hi,
first of all - thanks for such a great product. Everything went fine during installation/configuration.

I only have little question - maybe i haven't find the right configuration. I'm not sure.

I like the autofill feature (CMD+#) to login. But i always have to enter the master password. That's save - but not comfortable.
I know there is a "auto lock" feature in the preferences - but setting this to "off" is also not good - because now everybody can access my data stored at 1password and is able to delete or edit this data. Lock the program every time manually is also not comfortable.

Is the following configuration or behavior possible?

1password mini will never be locked (or it is configurable) - so that i'm always able to use autofill even if 1password is locked (main window).
In this scene - logically - 1password mini could only use to use the "auto fill" feature - nothing more.
If someone want to edit/delete a data, he have to enter the master password and edit/delete the data within the 1password main window.

IMHO this is much more comfortable and also save. So everybody can use the "auto lock after 5 Minutes" (in case you forgot to lock it manually) and is also a lot faster to use the "auto fill" for login because he will never be asked to enter the master password (if its configured)

Is this already possible? If not, do you agree with my opinion and think about it?

I'm sorry - but my english isn't good - hopefully i have described it enough to understand my idea :)

Thanks in advance

Jasper · February 2014

Hi Martin,

If your 1Password database is unlocked and accessible in one place (mini), it can also be accessed in another (main app). Not allowing access from the main app would provide little to no security benefit. In addition, a future update will allow the editing of items within mini.

To protect yourself from data loss due to unwanted editing of your items, backups are important. And 1Password backs up your data automatically and you can restore an old set of data if you need to.

In terms of deleting your data, if someone had access to your computer and wanted to delete your 1Password data, it doesn't matter if 1Password is unlocked or not anyway. They could just delete your 1Password database and backups from the ~/Library/Application Support/1Password 4/ folder. To protect yourself in this case, you should have backups on another computer (if you use 1Password on another computer already, you're covered) or a cloud service.

But in my opinion, the worst security threat is simply someone getting access and looking at my 1Password data. Leaving mini unlocked at all times would leave all my data exposed at all times, therefore would kinda defeat the purpose of 1Password.

Martin Krimp El Bein · February 2014

Hey Jasper,

thanks for your reply - i understand you - but all i need is a "hybrid" function of "auto lock" :)

Do you (and others) a really happy with the actual process? i can't understand it.

Here a scene:
You set the "auto lock 1password" to 5 Minutes - so it locks every 5 minutes. so far so good.

but do you surf to all your "login - pages" within this time? No! definitely not!

to add it to propel something (hopefully the right translation for "exaggerate") ;)

Open Facebook - entering Masterpassword - press CMD+# - logged in