This may be a bit of a corner case request, but here goes... There are some websites (looking at Etrade.com!) where the 2FA TOTP code needs to be silently appended to the password in the same field. There is no visual indication to remind you that a 2FA code is required, and if you forget it just tells you you entered the password wrong[1]. Another example is the login page to opnsense (and maybe pfsense?) router/firewall software. You can enable 2FA on your router, but then have to remember to concatenate the TOTP code just like on etrade. It would be nice if I could edit or otherwise flag that login item so 1Password knows to automatically concatenate the password and the 2FA code for me so I don't forget. [1] Admittedly, there's a "use security code" checkbox that reveals a 2FA field, but if you've remembered to check that box, you've remembered you need a 2FA code, so that's not really the issue 1Password Version: Not Provided Extension Version: Not Provided OS Version: Not Provided

Adding my support to this as well. I dont think this is a "special case" feature at all. I have several sites that I use daily where I find the lack of 1Password field concatenation really annoying (USAA and my OPNsense router admin page are two that immediately come to mind). Its not 1PW's fault of course, as this is a really silly hack method to not have the OTP code as a secondary input field on these login pages, but the reality is, there are sites that insist on doing it this way, and it's a real pain to not be able to auto-fill credentials this way via 1PW. I saw a 1PW team member mention (in one of the numerous previous--and now closed--threads about this feature request) that implementing this feature poses a UX challenge, which I can understand. But it seems to me that it doesnt have to be any more complicated than having a special "dynamic password" (or something better named than that!) field type where you can construct fill-in data based on existing fields in the same vault item, using a "tag" based UI. For example, here's how a theoretical "dynamic password" field could work, where I can build a single "dynamic" fill-in field by using concatenated "tags" that represent the names of existing fields in the vault item. This way, you could (at best) map the "password" form field entry to the "dynamic password" field for seamless auto-fills, or (at worst) manually copy and paste the contents of dynamic password field into the form. This way at the very least, you wouldnt have to manually copy and paste data from multiple fields every single time you want to login. You'd just have to copy a single field!

motivio I don't have any updates to share but I can share your request for this feature with the team. Are you able to provide examples of websites that you've encountered that require the password + TOTP to be entered into one field? 🙂 -Dave

My team would be a +7 looking for this feature to be implemented in all 1Password apps. The "dynamic password" mockup proposed by melorama looks perfect! We would use this for login to Sophos firewall portals and when using the VPN app. Password is a concatenation of our network password plus the one-time password (ie. Password123456). Currently we need to juggle the app to copy/paste multiple values before the OTP expires. Dave

Bhellx Thanks for following up. The feature request is still open with our product team but I don't have any news to share. Hopefully this is a use case that can be better accommodated in the future. -Dave ref: PB-43137543

Until the 1PW devs add this functionality, here's https://gist.github.com/melmatsuoka/7c8bee12c64096d462db128633b7c3da.

Accounts where TOTP code should be appended (or prepended) to the password

63 Replies

1P_Evon
1Password Team
2 years ago
DenalB,

Thank you for providing the examples. 🙂

-Evon
DenalB
Super Contributor
2 years ago
1P_Evon

Can you provide examples of websites you've encountered that require a one-time password to be entered with a password into one field?
https://1password.community/discussion/106003/special-2fa-on-mailbox-org
https://1password.community/discussion/117820/paste-totp-code-directly-behind-my-password

In short:
https://login.mailbox.org/en

The password field has to be filled with a 4 digits code (password) followed by the latest TOTP code.
1P_Dave
Moderator
2 years ago
Arno_Gramatke

Thank you for providing that example. I've passed it, and your request, along to the team internally.

Which features are implemented (and when) depends on a variety of factors that include: consideration for our existing product roadmap and planned features, urgent bug fixes that need to be prioritized over feature requests, available development resources, other customer feedback, and more.

-Dave

ref: dev/core/core#28432
ref: PB-40969463
Arno_Gramatke
New Contributor
2 years ago
1P_Evon It looks like a lot of people need this. And this request has been made in the forums for quite some time. What is the reason that this still has not been implemented? It would make my life a lot easier. ;-)
Arno_Gramatke
New Contributor
2 years ago
Yes, the OPNsense login. We are working with a lot of these appliances and policy demands using 2FA.

https://docs.opnsense.org/manual/how-tos/two_factor.html#step-7-using-the-token
1P_Evon
1Password Team
2 years ago
Arno_Gramatke,

Thank you for the report! Can you provide examples of websites you've encountered that require a one-time password to be entered with a password into one field?

-Evon

ref: pb-40960303
Arno_Gramatke
New Contributor
2 years ago
+1

This is even more important since Auto Fill again automatically submits username and password. For every website, where OTP is pre/appended I have to manually copy and paste username, password and OTP. Before the recent change in behavior, I would only have to copy and paste the OTP.

Can you please, please, please implement this?
1P_David
1Password Team
2 years ago
legowerewolf!

Thanks for sharing those details! I've submitted your request to the Product team.

-David

ref: PB-40789636
legowerewolf
New Contributor
2 years ago
Add me on this?

USAA, when configured with the "CyberCode Token" log-on method, takes a 4-digit static PIN + 6-digit TOTP token.
1P_Tommy
Moderator
2 years ago
I've added you as a requester knuggy14

ref: PB-40343498

Forum Discussion

Accounts where TOTP code should be appended (or prepended) to the password

63 Replies

Featured discussions

August at 1Password: Android filling updates, Pax8 Marketplace, and AI security insights

Recent discussions

Intermittent Passkey Failure & How to Fix

Beta Release: New MSIX Installer for 1Password for Windows

iPad OS 26 error

Doesn't work with paramount.com

Ongoing Autofill Issues on Android