Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
You’d probably also want to do this for the Shortcuts app itself, to prevent someone from disabling the automation.
I don't see the Shortcuts app in the list of applications to be able to apply this same technique to it.
 
Yeah just about the only app that gets this right is 1Password. It allows biometric locking of itself and most importantly if someone adds a new fingerprint or face to the OS, 1Password locks out biometric authentication until the separate 1Password password is used. This prevents someone who has your passcode from adding their biometrics to the phone and accessing 1Password. (Shockingly, many financial institutions don’t take this step!)
I am now understanding the holes in apple’s security better having read the recent posts in MR. Now, in addition to 2fa, changing trusted number, Alfa numeric code, and adding the screen time password layer, all vital passwords (including iCloud ironically) will be removed from keychain and stored on separate encrypted password manager. I don’t see any other way around this
 
Completely useless since the Shortcuts app itself cannot be protected like this.
And don't all shortcuts and automations disappear if you delete the shortcuts app?

If someone has snatched your unlocked device or knows how to unlock your device, he can also delete the shortcuts app.

Am I right?

PS: It occurred to me that you can use the screen time passcode to set deleting apps to "don't allow," but then you will need to unlock that every time you try to delete an app yourself.
 
Last edited:
I don’t understand why they have not added a toggle in the FaceID settings yet to enable it for any 3rd party app. Why rely on the developers to implement it. Sometimes I don’t get Apples restricted implementations of features.

I guess being able to hide the „hidden“ folder in Photos and lock it was a start
Needs to be on a per app basis
 
Yeah just about the only app that gets this right is 1Password. It allows biometric locking of itself and most importantly if someone adds a new fingerprint or face to the OS, 1Password locks out biometric authentication until the separate 1Password password is used. This prevents someone who has your passcode from adding their biometrics to the phone and accessing 1Password. (Shockingly, many financial institutions don’t take this step!)
I have iCloud keychain OFF and 1Password ON. I just tried holding my finger over the camera and unlocking my phone with my password. My banking apps try FaceID, and if that fails they want a password -- a password that only 1Password can fill in. So, on that front I feel like I'm protected from PIN jacking.

HOWEVER, my iCloud settings themselves are still totally accessible with that same lock code a thief would have spied to unlock my phone in the first place. Huge security hole, and one I hope Apple addresses. At the very least, changing iCloud settings should require a different passcode than the lock code. And we should have the option of making iCloud setting trigger 2FA authentication -- same as setting up a new phone.
 
Last edited:
this is a cool add on, i can hide my porn browser now.

on a side note, i need to check out the shortcuts app, looks like a lot of cool automation there.
 
  • Haha
Reactions: SevLucas
this is great! easy to follow and works flawlessly. Thank YOU!

Pls. do more of these in the future.
 
The shortcut is a mess.
Shortcuts in general are a mess. I imagine a on device chat not that could build these would be much better received AND USED by the masses. I personally would like to do more with my iPhone, but the brain damage like the above is why I do not.
 
  • Like
Reactions: centauratlas
Why we should go through all the steps when an app-based enhanced privacy protection feature should be essential?
 
Why we should go through all the steps when an app-based enhanced privacy protection feature should be essential?
Because realistically not all apps will add that feature? Hopefully Apple implements it on an OS level.
 
In principle you should be able to set up an automation that asks the user for a specific input. Haven’t tried this though, and the input would be a plain-text input, not a password input.
I thought the same thing, but it doesn't work after trying it out.
  1. The app is still open in the background while the prompt shows in the foreground.
  2. The user is able to cancel the prompt and continue using the app. It seems that the 'Cancel' button terminates the shortcut. No other action after it runs, so we aren't able to check if it was cancelled or no input.
 
  • Like
Reactions: klasma
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.