What I want
I would like for the "Tap to Reveal" functionality to be expanded to support more reveal modes, for example; Revealing on Double Tap, Revealing on Long Press, Never Reveal or Revealing on Token Refresh (not my use case but just an idea)
Why I want it
I am using Aegis Authenticator on my Android mobile device through "scrcpy" (application to mirror and use android device screens even with the display off) through the network, connected via an openSSH encrypted tunnel
In this set-up, I have to disable "Screen Security" feature because otherwise the application is a black-screen to the remote mirror
Using "Tap to Reveal" I can hide my tokens from the stream but it will still reveal the one token I need to copy for at least 1 Second which is the minimum the Timeout allows
I have no use for seeing the codes myself, using "Copy tokens to clipboard" is almost perfect as these are copied directly to my Computer's clipboard virtue of scrcpy, however the token itself will still inevitably flash for a second through the Stream
Why do I think this matters
This set-up is not the default, ADB and scrcpy streams are not encrypted by default and this might just be the case for many other remote control solutions, a targeted attacker could spy and retrieve sensitive information even through just a second of unencrypted communications
Aegis could potentially protect the user from this and shoulder-surfing attacks by (optionally) never showing the Tokens and just allowing them to be copied to the clipboard
What I want
I would like for the "Tap to Reveal" functionality to be expanded to support more reveal modes, for example; Revealing on Double Tap, Revealing on Long Press, Never Reveal or Revealing on Token Refresh (not my use case but just an idea)
Why I want it
I am using Aegis Authenticator on my Android mobile device through "scrcpy" (application to mirror and use android device screens even with the display off) through the network, connected via an openSSH encrypted tunnel
In this set-up, I have to disable "Screen Security" feature because otherwise the application is a black-screen to the remote mirror
Using "Tap to Reveal" I can hide my tokens from the stream but it will still reveal the one token I need to copy for at least 1 Second which is the minimum the Timeout allows
I have no use for seeing the codes myself, using "Copy tokens to clipboard" is almost perfect as these are copied directly to my Computer's clipboard virtue of scrcpy, however the token itself will still inevitably flash for a second through the Stream
Why do I think this matters
This set-up is not the default, ADB and scrcpy streams are not encrypted by default and this might just be the case for many other remote control solutions, a targeted attacker could spy and retrieve sensitive information even through just a second of unencrypted communications
Aegis could potentially protect the user from this and shoulder-surfing attacks by (optionally) never showing the Tokens and just allowing them to be copied to the clipboard