Protect what matters – even after you're gone. Make a plan for your digital legacy today.
Forum Discussion
Solved
How to prevent one-time code from autofilling?
I'd like to use 1password for my authenticator, but not if it autofills the 6 digit code. That completely removes the security I need. Is there a way to prevent the autofilling of this informatio...
Hi paulcola,
I'm sorry logging into the Community was so onerous! If we can be of any help, please don't hesitate to email community@1password.com and we're happy to assist. I appreciate you persevering to share what functionality you're looking for.
I agree the core issue is not just autofill itself, but the fact that all credentials, including the TOTP code, are accessible in the same environment during the period that a password manager is unlocked. That is the vulnerability I am focused on.
I do use lock timers, but as you said, the extension may stay unlocked even when the desktop app locks, depending on the settings. And if a hijack happens while the vault is open... full exposure.
Sure, there is theory vs likely. But I am trying to create a workflow where the second factor is not available in the same environment as the first. For now, keeping TOTP outside my password manager is the best way to do that, in my opinion. There are probably many other what ifs we could challenge, too!
