Offer to store Account Number in password manager #7737
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Rawa
requested review from
kl,
Pururun and
albin-mullvad
and removed request for
kl
Rawa
changed the title
Rawa
force-pushed
the
offer-to-store-the-account-with-credentialmanager-on-droid-1854
branch
from
0dd1e93 to
bbce20b
Compare
Pururun
requested changes
Mar 3, 2025
There was a problem hiding this comment.
I found three things while testing:
- The account number is saved as a password and not a username. I assume this intentional?
- When trying to log in to the app I do not get prompted to use my stored account number. I guess this is because the input field is not a password. IIRC we do not want it to be a password for reasons...
- When trying to log in on the homepage I also do not get prompted. I guess this is becase the account is saved under
mullvadvpn.mullvad.netis there a way to change this?
Reviewed 3 of 3 files at r1, 5 of 5 files at r2, all commit messages.
Reviewable status:complete! all files reviewed, all discussions resolved
Rawa
force-pushed
the
offer-to-store-the-account-with-credentialmanager-on-droid-1854
branch
from
bbce20b to
43663bd
Compare
Rawa
commented
Mar 3, 2025
There was a problem hiding this comment.
- Yes, this is intentional, since the account number in closer to a password than a username and a bit of a secret that you don't share. This also means that password managers won't show it w/o user explicitly revealing it like on our account page.
- That would part of another feature, with Compose 1.8.0 we can offer autofill from keyboard, then if we want to offer to store on login that would be yet another feature.
- Yes, there is nothing linking the password entry to the website at this moment, I'm a bit uncertain about the integration to make it work with the website (if it is supported at all). But there is something called digital asset links (https://developer.android.com/identity/sign-in/credential-manager#add-support-dal) that allows us to add a link to our webiste as well, if this would be forwarded to the website with the store password request I'm not sure of though.
Reviewable status: 8 of 10 files reviewed, all discussions resolved
Pururun
approved these changes
Mar 3, 2025
There was a problem hiding this comment.
- 👍
- Right, let's wait until then again.
- I think it is fine with this feature then, just maybe create a new issue if we want to explore that in the future.
Reviewable status: 3 of 10 files reviewed, all discussions resolved
Pururun
previously approved these changes
Mar 3, 2025
There was a problem hiding this comment.
Reviewed 7 of 7 files at r4, all commit messages.
Reviewable status:
There was a problem hiding this comment.
PR Overview
This PR adds a feature to prompt the password manager to store a new account number during account creation by updating dependencies and documentation.
- Added the androidx-credentials dependency in the Gradle versions file.
- Updated CHANGELOG.md to reflect the new functionality.
Reviewed Changes
| File | Description |
|---|---|
| android/gradle/libs.versions.toml | Added the androidx-credentials dependency for password manager usage |
| android/CHANGELOG.md | Added changelog entry describing the new account number storage prompt |
Copilot reviewed 10 out of 10 changed files in this pull request and generated no comments.
Rawa
force-pushed
the
offer-to-store-the-account-with-credentialmanager-on-droid-1854
branch
from
43663bd to
0b0d60e
Compare
Rawa
force-pushed
the
offer-to-store-the-account-with-credentialmanager-on-droid-1854
branch
3 times, most recently
from
6f04b15 to
f65ac5c
Compare
Pururun
approved these changes
Mar 7, 2025
There was a problem hiding this comment.
Reviewed 2 of 2 files at r5, all commit messages.
Reviewable status:
These are only required if we use passkeys or uses methods that make use DAL (Digital Asset Links).
Rawa
force-pushed
the
offer-to-store-the-account-with-credentialmanager-on-droid-1854
branch
from
f65ac5c to
1907ced
Compare
Rawa
deleted the
offer-to-store-the-account-with-credentialmanager-on-droid-1854
branch
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
When users create new account prompt their password manager, if available, to store the password.
This change is