[feature request] set either touchID or password and visibility yes/no per vault?

Stokkie833
Stokkie833
Community Member
edited January 2016 in iOS

Hi, first i must say i have been using 1password for ages on both my iPhone and macs and i'm very happy with your work!

But i'd like to ask you to consider implementing a functionality i am missing very much to make it 100% perfect.

Case:
I have multiple people in my household who have their fingerprint set up in my iPhone's touchID.
I have two vaults setup: my main vault and a second vault. One holds all of my personal passwords, the other one holds a mix of theirs and mine.

Yes, you can set up the entire 1password application to require touchID to unlock, but when i activate that functionality, everyone in my household can access all my vaults and passwords stored! That's not what i want, so i keep touchID turned off; not practical at all.

Can you make it so that one can turn on (of off) touchID PER VAULT in the settings? So that for one vault touchID is required and the other it's not?
Futhermore, can you make it so that visibility of a vault can be turned on or off?

To be honest i'd like the situation where i can unlock 1password and only see the vault that was setup to be unlock via touchID. If i unlock it with a code, only the vault setup not to be using touchID (or both if wanted) is visible / unlocked.

That way i can keep my personal passwords invisible until i use the passcode and everyone who can access my iPhone with touchID can also open 1password but cannot see my personal vault.

I realize that needs some sort of advanced user management setup and that 1password was made differently, thinking that all information stored there is personal hence you can see everything. But that information is visible to everyone who can touchID so in this case i can't use touchID for 1password :-(

Thanks in advance for any answers,

Regards
Chris

1Password Version: iOS 6.2
_Extension Version: Not Provided
_OS Version: iOS and el capitan
_Sync Type: iCloud and previously, wifi

Comments

  • AGAlumB
    AGAlumB
    1Password Alumni

    Can you make it so that one can turn on (of off) touchID PER VAULT in the settings? So that for one vault touchID is required and the other it's not?

    @Stokkie833: Whew! First of all, thanks so much for taking the time to leave such detailed feedback, Chris! I'm not sure that there are many people with this use case, but I appreciate you describing your situation. It's certainly something we can consider adding in a future version...though I wonder if it may become unnecessary if Apple takes some of the upcoming multi-user support even farther.

    But from a technical standpoint, this would require some big changes, and I'm not sure that it's in the cards for 1Password to be one of the few multi-user iOS apps...but you never know!

    Futhermore, can you make it so that visibility of a vault can be turned on or off?

    On the other hand, this suggestion raises my "security through obscurity" alarm. But before I run out of the room screaming "NOOO" like Hayden Christensen, let me ask for some clarification: can you describe how you'd like it to work in more detail? The chief concern is that we don't want your data to have the mere illusion of security.

    I realize that needs some sort of advanced user management setup and that 1password was made differently, thinking that all information stored there is personal hence you can see everything.

    Honestly I think that's the biggest hurdle to something like this: most people won't understand it, since it's so different from iOS itself (currently at least) and also how other apps work.

    But that information is visible to everyone who can touchID so in this case i can't use touchID for 1password :-(

    Indeed. Without knowing the specifics, from my own perspective, I simply wouldn't put anyone's fingers in my Touch ID who I didn't trust with everything, because it gives the person access to the whole device. But of course that's why the Master Password is so important. If it exists only in your brain (and it should), then without it being entered (even with Touch ID it's required the first time) your 1Password data is safe.

    And I wonder if we're overlooking an obvious solution here: why not give the people in your household your iPhone passcode? Then they can unlock the device if needed, but not 1Password. And then only you can use Touch ID for 1Password. Does that help?

This discussion has been closed.