Skip to main content
December 3, 2022
Question

"QR code Detection Failed" message attempting to scan QR

  • December 3, 2022
  • 47 replies
  • 26375 views

In 1Password app, I am trying to enable MFA for a site

I select the "Scan QR Code" button and I get this message

Note that I have allowed screen recording permissions


1Password Version: 1Password for Mac 8.9.8 (80908009)
Extension Version: 2.4.1
OS Version: macOS Monterey 12.6.1
Browser:_ Safari

47 replies

February 1, 2023

I am very interested to know if this feature is functional under any circumstance. I haven't found a way to make it work as expected. My suspicion is that the mechanism expects the QR code to be an image within a web browser that has the 1Password extension enabled. If that's the case, I don't understand why permission for screen recording is required. I guess I could spend a few more hours troubleshooting this defect.

1P_Dave
1Password Employee
February 1, 2023

Hello @geekneck and @the_actual_jlamoree! 👋

I'm sorry that the QR code scanning feature isn't working on your Macs. I'd like to ask you both to create a diagnostics report from your Macs:

Sending Diagnostics Reports (Mac)

Attach the diagnostics to an email message addressed to support+forum@1password.com.

With your email please include:

The report will be in zip format. Please send the entire file.

You should receive an automated reply from our BitBot assistant with a Support ID number. Please post that number here. Thanks very much!

-Dave

February 1, 2023

Thank you @1P_Dave. The support identifier #MUG-32856-752.

1P_Tommy
1Password Employee
February 1, 2023

Thanks @"the_actual_jlamoree"

I appreciate you sending that report in. One of my colleagues will get back to you as soon as possible.

ref: MUG-32856-752

February 1, 2023

@1P_Dave I sent the email as instructed, but got no response back :-(

1P_Dave
1Password Employee
February 2, 2023

@geekneck

Hmm did you use the same email address that you used to register for the community forum? I'm not seeing anything on our end yet. Can you try to send another email to support+forum@1password.com but this time without any attachments? Once I receive this email I can send you an alternate way to send the diagnostics report.

-Dave

February 2, 2023

@1P_Dave I sent another email without the attachment and still no response. Maybe because my email address has dots in the username?

andrew_l_1P
1Password Employee
February 2, 2023

Thanks @geekneck, I can confirm we've received your email. Apologies on behalf of Bitbot 😅

We'll take a look at the diagnostic report you attached and reply to you there as soon as possible!

ref: CYR-51199-537

February 3, 2023

I received a response from 1Password Support via email after I sent the diagnostics information, which is weird, because I suspect most 1Password.Community members don't have access to my email. It offered a tip about adjusting my screen brightness, which suggests that I need to provide more context.

For background, I have been using OTP Auth for several years. It is good, but limited. I have, until recently, resisted adding TOTP secrets to 1Password because it violated my conception of separate factors. I have since given up this position, since my emergency recovery codes are already in 1Password, so the TOTP authorizer app isn't necessary when performing an attack. If somebody gets into my 1Password vault, the game is over.

To enjoy the significant benefits that come from having TOTP in 1Password, I want to transfer all 72 secrets. I have tried multiple exfiltration methods. One method is to copy the secret in Base32 out of OTP Auth for Mac. Unfortunately, the Catalyst app is buggy as hell and the context menu fails to activate and present the copy option. This is not 1Password's fault, but it does mean that I can't use the least error-prone method.

The other method for extracting secrets is to have OTP Auth for Mac show the QR code as an image. I assumed that 1Password for Mac would be able to tap into the displayed pixels and grab the currently visible image inside OTP Auth for Mac. These are the things I have tried:
* Display QR code in OTP Auth Catalyst app, then click the "Scan QR code from clipboard or screen" button in 1Password. Result: "QR code detection failed"
* Thinking that perhaps the issue was with an OS secure overlay feature, I grabbed the QR code image content and saved it as a file to display in Preview. Also fail.
* I attempted to copy the image data into the clipboard from Preview. I inspected the clipboard with Keyboard Maestro to verify the content existed. Still, no import to 1Password.
* I opened the saved QR code image in Google® Chrome® with the 1Password extension activated, thinking that perhaps the expected customer use case is to import an image from some web page leveraging the extension's ability to inspect the DOM and media. Nope.
* I opened the target website and injected an image tag into the page to load my saved QR code, thinking that perhaps 1Password would perform a document.location.origin match on the record being edited in 1Password, because, let's be honest, that's the sort of over-engineering I would subject my customers to. Still nope.

The application log is splattered with lines like this:

WARN 2023-02-03T08:08:45.492 op_executor:invocation_loop(ThreadId(17)) [1P:op-app/src/app/backend.rs:220] operation blocking event loop invoke Invocation(External(ProcessQrCode(<QrCodeProcessRequest>))) took more than 50 ms (70 ms)

I'm running macOS 13.1 22C65 on a Mac Studio. The 1Password for Mac 8.9.15 (80915001) application has been granted Privacy & Security permission for the following:
* Location Services
* Camera
* Accessibility
* Screen Recording

I will note that running 1Password on iOS and aiming my phone's camera at my ridiculous Apple Studio Display to import what OTP Auth for Mac is showing works flawlessly. It's just not the procedure I was hoping to use.

I'm on the production release channel. I am willing to switch to beta, but haven't yet.

1P_Dave
1Password Employee
February 3, 2023

@the_actual_jlamoree

Thank you for the reply. Please continue the conversation over email as I don't have access to your diagnostics report here on the public forums. My colleagues over on the email support team will be able to investigate further in the email thread open for the issue that you're running into. 🙂

-Dave