I use a self hosted vault using keepassXC as a password manager.
I cannot prevent my Macbook from injecting UI theft into my password processes with non apple browsers.
How do I turn off this new feature completely preventing such interactions as viewable in the screenshot?
Thanks in advance,
Oclair
[Re-Titled by Moderator]
MacBook Pro 16″, macOS 15.2
FishingAddict wrote:
System Settings > General > Autofill & Passwords > AutoFill Passwords and Passkeys > DISABLED
Then make sure that you have set up KeePassXC with browser integration and disabled the built-in password tools of your browser.
Thank you, KeePassXC browser integration is setup just fine, Apple's defaults upon upgrading the OS and not adhering to system settings are a long standing problem at Apple.
FishingAddict wrote:
System Settings > General > Autofill & Passwords > AutoFill Passwords and Passkeys > DISABLED
Then make sure that you have set up KeePassXC with browser integration and disabled the built-in password tools of your browser.
Thank you, KeePassXC browser integration is setup just fine, Apple's defaults upon upgrading the OS and not adhering to system settings are a long standing problem at Apple.
System Settings > General > Autofill & Passwords > AutoFill Passwords and Passkeys > DISABLED
Then make sure that you have set up KeePassXC with browser integration and disabled the built-in password tools of your browser.
Oclair wrote:
Barney-15E wrote:
How is the OS is intercepting the content of a 3rd party web browser?
I have no idea what that question has to do with my statement & question.
The image you posted shows that you created a Passkey and asked how you wanted to manage them. Passkeys are not “3rd party web browser” items. If you didn’t want macOS to manage your Passkeys, you should not have chosen to use a macOS Passkey.
Also, the keychain framework is available to any app that would like to use it. macOS didn’t “intercept” anything. The 3rd party web browser asked the framework for help to create the Passkey you asked it to create.
Initially the customer is not provided with any choice upon upgrading the OS having new functionality enabled. As previously indicated I have turned off the settings as suggested repeatedly before making my first post, and still the OS does not (always) adhere to the settings "Privacy & Security" which disabled access to the 3rd party browser. This alone is stunning.
Overall, this is typical of rushed out software not yet fully worked out and ready for deployment in Release channels.... Not even insanely adequate
You can't disable in the OS what features the 3rd Party Browser asks to use. This use of a Passkey has absolutely nothing to do with Passwords or passwords. Passkeys are not passwords and can be managed by the Passwords app. When you logged into some website on your 3rd Party Browser, you asked it to create a passkey to access the site. You may have thought you were just creating a password, but that isn't what it created.
The dialog you posted is not the app asking for access. You created a very much macOS entity called a Passkey and the OS asked how you wish to manage that passkey.
And, even if you disable access after the first request by the browser, I would certainly expect the browser to ask you if you want to allow it access for an item you created to securely log into something within the browser. However, that is not what that dialog is asking.
I have discovered there is a software in the appstore published by Apple called "Apple Configurator" which does provide for disabling functionality in the OS. This webpage discusses how and why Stop iCloud Keychain with a profile
leroydouglas wrote:
>System Settings...(?) make some changes and compare your results.
https://discussions.apple.com/content/attachment/180803cf-0470-49bd-bfcf-d657d525b098
Thank you @leroydouglas , those settings normally should have worked, but the screenshot I took was after making those changes I already had in place both in "Privacy & Security" and "AutoFill & Passwords"
[Edited by Moderator]
How is the OS is intercepting the content of a 3rd party web browser?
I have no idea what that question has to do with my statement & question.
The image you posted shows that you created a Passkey and asked how you wanted to manage them. Passkeys are not “3rd party web browser” items. If you didn’t want macOS to manage your Passkeys, you should not have chosen to use a macOS Passkey.
Also, the keychain framework is available to any app that would like to use it. macOS didn’t “intercept” anything. The 3rd party web browser asked the framework for help to create the Passkey you asked it to create.
Oclair wrote:
I use a self hosted vault using keepassXC as a password manager.
OK.
I cannot prevent my Macbook from injecting UI theft into my password processes with non apple browsers.
How do I turn off this new feature completely preventing such interactions as viewable in the screenshot?
I'm a bit confused here. This screenshot represents the "UI theft" you are referring to?
That screenshot looks like it is asking you to setup an app for managing your passkeys. It's asking you to select keepassXC so it will use it. If you click the button and open "Autofill & passwords", you should be able to configure the system to use keepassXC instead of Apple's own Passwords.
I don't have any 3rd party password manager installed. Perhaps if you posted a screenshot from your "Autofill & passwords" we might be able to tell you what to you.
To be honest, I'm not very confident. When I try to search for information related to keepassXC support on Sequoia, I find very little information.
Barney-15E wrote:
How is the OS is intercepting the content of a 3rd party web browser?
I have no idea what that question has to do with my statement & question.
The image you posted shows that you created a Passkey and asked how you wanted to manage them. Passkeys are not “3rd party web browser” items. If you didn’t want macOS to manage your Passkeys, you should not have chosen to use a macOS Passkey.
Also, the keychain framework is available to any app that would like to use it. macOS didn’t “intercept” anything. The 3rd party web browser asked the framework for help to create the Passkey you asked it to create.
Initially the customer is not provided with any choice upon upgrading the OS having new functionality enabled. As previously indicated I have turned off the settings as suggested repeatedly before making my first post, and still the OS does not (always) adhere to the settings "Privacy & Security" which disabled access to the 3rd party browser. This alone is stunning.
Overall, this is typical of rushed out software not yet fully worked out and ready for deployment in Release channels.... Not even insanely adequate
Barney-15E wrote:
You can't disable in the OS what features the 3rd Party Browser asks to use.
3rd party browser asks the OS a question: Do you have a passkey for me
OS answers 3rd party browser: No Access, the user has explicitly indicated no Passkey access for 3rd party browser.
I am unsure why this was not previously made clear, now it is.
Oclair wrote:
Barney-15E wrote:
You can't disable in the OS what features the 3rd Party Browser asks to use.
3rd party browser asks the OS a question: Do you have a passkey for me
OS answers 3rd party browser: No Access, the user has explicitly indicated no Passkey access for 3rd party browser.
I am unsure why this was not previously made clear, now it is.
That’s not what the screenshot is showing. It is showing that a passkey was created. Now that you have created it, how do you wish to manage the passkey.
That screenshot shows that something created a passkey, not that it asked to retrieve one.
Yawn...
Oclair wrote:
I use a self hosted vault using keepassXC as a password manager.
I cannot prevent my Macbook from injecting UI theft into my password processes with non apple browsers.
How do I turn off this new feature completely preventing such interactions as viewable in the screenshot?
Thanks in advance,
Oclair
https://discussions.apple.com/content/attachment/fd553849-5962-435c-b859-aae3c6d3290a
[Re-Titled by Moderator]
>System Settings...(?) make some changes and compare your results.
no resolve—
Call Customer Support (800) MY–APPLE (800–692–7753)
or on line https://getsupport.apple.com/
Outside the USA—Contact Apple for support and service by phone
See a list of Apple phone numbers around the world.
Contact Apple for support and service - Apple Support
How is the OS is intercepting the content of a 3rd party web browser?
Barney-15E wrote:
Passkeys are not passwords.
Does your other manager handle Passkeys?
As far as I know, use of a Passkey is not required, but it looks like you created one for something.
etresoft wrote:
To be honest, I'm not very confident. When I try to search for information related to keepassXC support on Sequoia, I find very little information.
KeepassXC is working fine, its opensource, regularly updated by their community. No problem using it as long as Apple Passwords no longer invites it's self to collect your logins as it was configured to by default upon upgrading to Sequoia.
Barney-15E wrote:
That’s not what the screenshot is showing. It is showing that a passkey was created. Now that you have created it, how do you wish to manage the passkey.
That screenshot shows that something created a passkey, not that it asked to retrieve one.
I am able to login to the site without it, at this time I prefer to not use it, and expect when I disable the functionality that my choice be respected. Note: The password app was installed without my consent and begun to collect passwords, and offer to implement passkeys.
Seems working as intended disrupting a long thriving password manager marketplace...
Disabling Passwords app interference with password manager on MacBook Pro
