omz:forum

    • Register
    • Login
    • Search
    • Recent
    • Popular

    Welcome!

    This is the community forum for my apps Pythonista and Editorial.

    For individual support questions, you can also send an email. If you have a very short question or just want to say hello — I'm @olemoritz on Twitter.


    Touch ID in Pythonista 2.0

    Pythonista
    3
    5
    3973
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • gregr
      gregr last edited by

      Is there any way to restrict access to the keychain with Touch ID? I know this was mentioned a while back, but I didn't see anything definitive as to whether there's a way to enable this now...

      1 Reply Last reply Reply Quote 0
      • ccc
        ccc last edited by

        See https://forum.omz-software.com/topic/2156/share-code-touch-id-authentication-in-pythonista

        1 Reply Last reply Reply Quote 0
        • gregr
          gregr last edited by

          I saw that; however, a sophisticated user could always remove the python code that performs the check, unless I'm misunderstanding.

          What I was after was a application-level thing where the keychain could be optionally secured by Touch ID.

          1 Reply Last reply Reply Quote 0
          • JonB
            JonB last edited by

            There used to be a set_master_password() in keychain, which seems to be gone.

            I suppose you could use TouchiD to further encrypt passwords stored in the keychain? isnt it better to just secure your device with the touchid? if you are letting someone you don't trust use your device, then shame on you!

            1 Reply Last reply Reply Quote 0
            • gregr
              gregr last edited by

              Well, I do secure the whole device with Touch ID. What makes me nervous, though, is if you hand your unlocked iPad to someone you do trust (family member, etc), and they accidentally tap something they shouldn't.

              For example, I have some scripts that do somewhat destructive things, like remove production servers from load balancers. I'd rather not have to type my password every time to run the script - but if I store the password in the keychain, then someone borrowing my iPad could do it by accident.

              That said - I understand I could probably work around the "accident" case by adding my own Touch ID check in the script, as suggested earlier. But I'd feel better if there was a system-level thing...

              Seems like the ideal thing (for me, anyway!) might be to bring back the master password, but be able to use Touch ID instead of that master password.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Powered by NodeBB Forums | Contributors