Page MenuHomePhabricator
Create Task
Maniphest T197641

Login information doesn't get deleted when users delete the app, since they are stored by the OS
Closed, DeclinedPublic
Actions

Description

Steps to reproduce

1, Clean install 5.8.1.1403
2, Log in in the app
3, Delete the app
4, Install 5.8.2.1421

Expected result

User is logged out

Actual result

User is still logged in

Event Timeline

chelsyx created this task.Jun 19 2018, 3:44 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJun 19 2018, 3:44 AM
JMinor triaged this task as Medium priority.Jun 25 2018, 6:23 PM
JMinor subscribed.

We keep having problems really "cleaning out" after uninstall...

JMinor claimed this task.Jun 25 2018, 6:54 PM
JMinor moved this task from Tasks from Product Backlog to Needs Acceptance Criteria on the iOS-app-v6.0-Walrus-On-A-Unicycle board.Jun 25 2018, 6:57 PM
JMinor moved this task from Needs Triage to Product Backlog on the Wikipedia-iOS-App-Backlog board.Jun 25 2018, 7:46 PM
JMinor removed a project: iOS-app-v6.0-Walrus-On-A-Unicycle.

Did a bit of investigating. This is acutally sort-of intentional. Basically we are storing your credentials in the hardware encrypted OS keychain. This means when the app is reinstalled the OS finds these stored credentials and uses them to log you back in.

This is similar to how Google and other platforms work on iOS/Safari. And storing credentials in the keychain provides a level of protection we want our users to have (for example, fingerprint access requirement and potetnially sharing across Safari/iOS).

I think the issue here is that this happens silently and "just works" when the app is reinstalled. Rather than remove this functionality (and lose the advantages of Keychain storage), we should consider popping up an opt-in message "Wikipedia login information found in your keychain. Log in with stored username and password?" with options to login, ignore or delete the keychain entry.

Taking out of scope of 6.0 as there is a bit of complexity to any solution and scope on 6.0 is pretty full.

JMinor renamed this task from [Bug] Login information doesn't get deleted when users delete the app to Login information doesn't get deleted when users delete the app, since they are stored by the OS.Jun 25 2018, 7:47 PM
Vvjjkkii renamed this task from Login information doesn't get deleted when users delete the app, since they are stored by the OS to apaaaaaaaa.Jul 1 2018, 1:03 AM
Vvjjkkii removed JMinor as the assignee of this task.
Vvjjkkii raised the priority of this task from Medium to High.
Vvjjkkii added projects: CheckUser, Connected-Open-Heritage-Batch-uploads (RAÄ-KMB_1_2017-02), Tamil-Sites, Gamepress, Hashtags, Jade, KartoEditor, Language-2018-Apr-June, New-Editor-Experiences, Mail, TCB-Team (now WMDE-TechWish).
Vvjjkkii updated the task description. (Show Details)
Vvjjkkii removed a subscriber: Aklapper.
CommunityTechBot renamed this task from apaaaaaaaa to Login information doesn't get deleted when users delete the app, since they are stored by the OS.Jul 2 2018, 1:40 PM
CommunityTechBot assigned this task to JMinor.
CommunityTechBot lowered the priority of this task from High to Medium.
CommunityTechBot updated the task description. (Show Details)
CommunityTechBot removed projects: TCB-Team (now WMDE-TechWish), Mail, New-Editor-Experiences, Language-2018-Apr-June, KartoEditor, Jade, Hashtags, Gamepress, Tamil-Sites, Connected-Open-Heritage-Batch-uploads (RAÄ-KMB_1_2017-02), CheckUser.
CommunityTechBot added a subscriber: Aklapper.
chelsyx added a comment.Jul 6 2018, 2:38 PM

@JMinor Thanks for the investigation and explanation!

JMinor closed this task as Declined.May 31 2019, 6:34 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL