New Password Updated Wrong Vault

RonHeiby
RonHeiby
Community Member
in Mac

Between my wife and I, I am the technical person. So, I help her set up 1Password, make sure she does not have truly atrocious passwords, update things when Watchtower recommends, etc.

Today, I noticed that the site for the local transit card had a Watchtower alert, and since I've been updating things and moving stuff into 1Password Family, I decided that I should update the password for my wife and for me.

I did my wife's account first, selecting her personal vault that's shared via Dropbox with me. (Hmm. When she's got these moved into her 1Password Family personal vault, I guess I'll need to be helping her maintain things from her computer instead of mine.) Anyway, all went well, and the password was updated using the 1Password generator. I was invited to update the entry and I said yes. I logged off the site and closed the tab. The entry was correctly updated.

Then, I switched to my personal vault that I keep on Dropbox, used it to sign in on the site and saw that it was signed in as me. I updated the password, again using the 1Password generator and again accepting the update of the record. I guess I didn't pay attention to the question, because I was surprised that the record I'd just updated still showed the security warning.

After some investigation, I found that my password had been used to update my wife's record, even though her vault was not currently being shown. I was able to recover her password from her "previously used" set. I guess if the invitation to update the record shows the vault being used, I could have noticed and fixed it before it went wrong. But I think 1Password was in error in updating the vault not currently in view, even if it told me it was going to. I expected it to be defaulting to my current vault and the record I had used to log in on the web site where the password update was being done.

1Password Version: 6.1
Extension Version: 4.5.5.90
OS Version: OS X 10.11.3
Sync Type: Dropbox and Family

Comments

  • littlebobbytables
    littlebobbytables
    1Password Alumni
    edited March 2016

    Hi @RonHeiby,

    Sometimes it takes a fresh view to highlight where improvements can be made. We redesigned the entire 1Password Save Login window for 1Password 6 but you make a good point, two in fact.

    1. If we assume you're updating a password we could/should focus on the active vault.
    2. We need to make it clearer which vault the selected item belongs to as you can't tell until you open up the menu.

    I'll go ahead and create a couple of bug reports to cover both of these issues.

    ref: OPM-3924
    ref: OPM-3925
    ref: OPM-3926

This discussion has been closed.