User-entered or randomly-generated + saved to disk Lair Password

[mattyg]

Currently the scaffolded tauri app uses an empty password for lair. Instead it should scaffold apps with a login page that requires a password, or else generate a random password and save to disk in a file readable only by that app.

• Config option for password requirement is set by the app dev. Either:

  • Require user-generated password
  • On page to create a password, give the user an option to instead use a randomly-generated password saved to disk
  • Use a randomly-generated password saved to disk

• Views

  • Create password page
  • Includes a warning that password cannot be reset
  • Enter password page

Ideally a password could be a pin code or biometric auth as well.

[guillemcordoba]

Hum I've always seen password input as an app level problem. Entering a password every time you open an app is just horrible UX, and there are numerous various ways to do it otherwise as you say, I would also add using the mobile OS keychain. How can the shipyard better support the app in these use cases while preserving good UX?

[mattyg]

My feeling is the default scaffolded app should have a secure setup. Ideally it is a user-level decision to compromise security for improved UX, but I can imagine an app developer may want to make a fixed decision for users as well.

I've briefly looked into the android keychain systems, and I'd hope that could offer better UX, but I don't know them well. Definitely worth exploring.