I had used Brave Browser in the past but made the bad decision to continue to put my trust into Firefox. I have recently switched back to Brave Browser on both my desktop and android device.
At the moment there is no App Lock or way to protect someone who doesn’t need access to all my saved passwords not having access. I would ideally like to link it with Windows login/PIN number and on Android I would like to lock it with biometrics with a PIN number as backup way to unlock.
This has been a thing for a while now. To view passwords in password manager they would have had to input your OS password. It wouldn’t just show up. This has always been the case.
And if you’re worried about how they could use autofill to login to your accounts, the option was added to require your OS password each time.
This is lacking on Android to my knowledge. Overall just a thing of saying you would keep your phone locked and shouldn’t be giving access to it for anyone you don’t trust. But let me tag in @Mattches to see if he can perhaps find out if this is a feature they might be bringing to mobile or if it’s somewhere I’m not thinking of.
This feature is enabled by default on Android. If you have a biometric lock on your device, you can see this by simply launching Brave, going to Settings → Brave Password-manager`, selecting any of your credentials and attempting to edit, view, or copy them.
@Mattches, I might be overthinking this compared to OP, but I noticed that on Android, autofill still works without requiring biometrics or any additional security. I understand that passwords aren’t viewable in the Password Manager, but is there any plan to add something similar to Windows Hello on mobile, where autofill won’t happen without further verification like a password?
Ah I see. Yeah I’m not seeing any open issues for this right now but I do know that it’s been discussed. I’m just now signing off for the day but let me reach out to some of the Android folks tomorrow and see if we can get an update on this and whether or not we plan on exploring options for it.
@OpenSourceHero, based on the discussion so far, do you feel Mattches answered your question, or were you thinking more along the lines of what I mentioned? Or is there another angle you’re considering?
