Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

FreeOTP working but backup/restore missing password #373

Open
mihaime opened this issue Oct 31, 2023 · 15 comments
Open

FreeOTP working but backup/restore missing password #373

mihaime opened this issue Oct 31, 2023 · 15 comments

Comments

@mihaime
Copy link

mihaime commented Oct 31, 2023

I have FreeOTP running and all is good but if I try to do a backup and restore on another phone, I do not have the password.
Is there any way to make this work out?
I am having access to the app and QR codes are working.
Or is this an unsupported scenario?

@Truyn
Copy link

Truyn commented Dec 15, 2023

Likewise, complete crap, I can’t transfer the backup, I don’t remember the password and I don’t even remember entering it. Why are there no other methods? Why this insanity, someone asked me if I needed an additional password

@mariush444
Copy link

mariush444 commented Dec 25, 2023

the same to me.
I make backup - the apk doesn't ask to enter a password but during restore there is a message to enter password.
But which one ?

EDIT
it seems (based on #4 #5) that it is impossible and maybe in a future ....
Probably it works with google version only but who need google version?
5e9d85e

probably time to change the app :(

@VincentSC
Copy link

Duplicate of #367 #321 #348 #344 #283 and probably several more.

The app's "solution" is just to blame the user for not remembering ever entering a password years ago.

Assume this will not be fixed any time soon, and better put the time into replacing every OTP-code you use...

@mariush444
Copy link

So remove export/import from menu because it is missleading and your explanation is "pure non-sens"

@mihaime
Copy link
Author

mihaime commented Jan 26, 2024

I already implemented the final fix for this.
Remove the app and replace it with something else :)
One time recovering all accounts has been quite a life lesson. Never again.

@VincentSC
Copy link

Moved to Aegis. Took me on average 5 minutes per account to replace the 2FA. Most took 1-3 minutes, except three. Two microsoft-accounts were at WTF-level (same level of UX as FreeOTP), and had one webpage where I had to call for an account-reset. I left one microsoft-account to die, as it kept giving errors.

So who wants to move and has not managed to adb the "freeotp.ad" out, start with the accounts of old-fashioned corporates to see if it works. :)

For who wants to use the adb-method, a few remarks when your Android phone is encrypted:

You can recognize, when your backups are 500 to 600 bytes only, and it decrypts to an empty 1kb file.

After that it probably needs more steps, but I decided to just replace, as it was becoming a time-sink.

@mariush444
Copy link

I already implemented the final fix for this. Remove the app and replace it with something else :) One time recovering all accounts has been quite a life lesson. Never again.

Yes, it is very very good advice. It is not ironic, it is security reason. If developer can't understand if-then-else that means it is time to escape.
Over

@Stan-Green-PM
Copy link

Stan-Green-PM commented Feb 8, 2024

Yes, I did know my backup password and I was able to use it to restore to my new phone. So, the lesson learned is to know your passwords! Update: I take it back; everything seemed to import, but the codes do not work. So, something is still not right.

@VincentSC
Copy link

Maybe you can import the file into Aegis, to see if the export or the import has the bugs?

@Stan-Green-PM
Copy link

Stan-Green-PM commented Feb 12, 2024

Aegis cannot import the vault from FreeOTP:
com.beemdevelopment.aegis.importers.DatabaseImporterException: com.beemdevelopment.aegis.vault.VaultFileException: org.json.JSONException: Value ... (I cannot get a screenshot in Aegis)

@VincentSC
Copy link

Then export is broken

@Stan-Green-PM
Copy link

UPDATE: I found out that the one token that was not restored cannot be copied to a new device. (I don't know the tech details here.) I had to re-enroll the token. All the other tokens are working. So, I don't think any "bugs" exist in the backup/restore process.

@jessicachitas
Copy link

Has this issue been fixed? I got a new phone and it transferred all of my otps but they will not activate anymore. They will on my old phone still but not the new one.

@mihaime
Copy link
Author

mihaime commented Nov 28, 2024

In my case it did as I changed the app to one that has better support and developers that maintain it and reply to issues.
Having had to reset all my MFAs once has been the limit of what I could bear.

@mariush444
Copy link

confirm. I've choosen different app also. Someone here adviced Aegis app.
It is good for me too.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

6 participants