User Journey for Changing Passwords? Particularly lots of them?
I'm struggling to understand what the best way to change passwords in 1P is? Watchtower identified a bunch of lesser used passwords that I finally got around to changing - but I've noticed that most sites these days rarely trigger a password update msg from 1P when I generate a new one?
Fine - i understand that many sites use Javascript and its tricky to get right, but when it doesn't work, understanding what password generated from the password generator is tricky. There is the password History sub-menu, but it doesn't expand - so its not so easy to go to 1P main, and paste that item into the password field for that site. Instead you have to search for the password that was generated (and its not always obvious what the name might be, particularly as browsers are less forthcoming about the site urls and page names these days). When you do find it, you can then copy the password, but then you have to search again for the name you used to store your fav. site under (which might not be the same), and paste it back in and save it.
Ultimately I ended up using 1P main, clicking on the URL to get a browser tab on the site. Find the change password option for that site (often a challenge in itself), flip back to 1P main and copy the password (you usually need that to change it), and then generate a new password (and its a shame 1P doesn't remember the formula you used for this - it just has a single global default, which is also a shame), then you flip back to the browser, paste in the old password, then flip back to 1P, copy the new password, flip back to the browser and do the update. If it works, flip back to 1P and save your changes. If something goes wrong (e.g. wrong password recipe) - at least you can then cancel your edit in 1P to get the old password back and then try again.
All in all - this is a real faff - particularly if you have 30+ passwords to update. Surely there is a better way to do this? Maybe I am missing something?
Could there be a "Manual change Password option" - that might let you put your cursor on an old password field - invoke the "fill old password" and then maybe detect the new password fields and put populate them for you (as well as putting it in the clipboard in case it didn't get it right?)
Tim
Comments
-
Hi @365nice,
The best/easiest way to change a login password is by following the steps in our User Guide here: Changing a saved password
If 1Password doesn't automatically ask to update your login, please see the steps here: Changed passwords are not updated inside 1Password
Does this help?
0 -
It doesn't really help actually - as the "Changed passwords are not updated" description is the pain in the bum I'm describing above - try following those steps for 50+ sites and you will start to see what I mean...
0 -
@365nice, the steps here should be fairly easy - you just need to copy & paste the new password from the Passwords category to your Login item. Finding the new password in the Passwords category is easy because you can sort by Date Created. Finding the login item in the Logins category should also be easy if you use the Search option at the top of the list.
Also, that should only be necessary when 1Password doesn't prompt to update your Login item after changing a password on a website. If it doesn't ask to update your Logins for any site when you change a password, open the main 1Password app and go to 1Password > Preferences > Browser, and make sure Automatically ask to save new Logins is enabled.
0 -
Drew - I find that the "prompt to update" your login is just not very reliable for quite a few sites that I use? And because it doesn't work 99% of the time, I can't trust it (that was the case when I did a big update of all my passwords. I wish I had recorded how many it failed on - but it makes me shudder to repeat the exercise).
I also quite often get the opposite, where sites where I don't want it to prompt me to update a login often do even if this setting is toggled to ignore it (e.g. those crappy banking sites that insist on asking for letter 2,7,9 or your password - see the other thread on your forum begging for you to come up with a better solution for these - but I have complained to my banks to stop doing this but they are all in denial).
I do appreciate 1P, and its a difficult problem to get right, but it does seem that there are many holes that could be improved.
0 -
Hi @365nice
You're correct, it's a tough problem due to all the many, many ways somebody can create even something as seemingly simple as a login page, let alone a change password page. We do continue to try and improve it where we can though. What can assist is if you can inform us of sites when you stumble upon them, especially if it's somewhere we can create a quick login for i.e. not financial institutes. If we know site X's change password page isn't working maybe the devs can check it out and see how we can adapt the recognition. If it's a site where we can't easily gain access we may ask if you would be willing to email us a copy of the page's source code, obviously with no personal details viewable.
In my head it's like a game of cat and mouse, just when we get 1Password to work with X and Y, Z comes along with some completely unimaginable way of doing stuff and breaks everything.
Oh and banks' websites are generally the stuff of nightmares.
0
