user12 Could you please read a bit further up this thread? It has been explained that MitId is enforcing integrity checks during activation. They are choosing to block non-rooted alternate OSs such as GrapheneOS.

    a month later

    There's a new version of MitID: 3.5.0 (version code 118). Does anyone want to try it to see if anything changed, activation-wise?

    I really doubt that they'll backtrack on the Play Integrity aspect, but it doesn't harm to double check...

      8 days later

      Grkrz I meant the activation: if it is possible to activate the app. The app has been checking the status of Play Integrity during activation, I want to double check if this is still the case.

          15 days later

          @lbschenkel My pixel 5 died and I am now on a pixel 8. Just tried to install mitID with no luck. I can go all the way through the setup proces but I get the "rooted" fault at the end. So no luck so far. I am having the error, even though I have installed GPS via the Apps app in GOS. So I guess it will not work from now on on GOS.

          I haven't fickled with settings so far, but I assume that it will make no difference, since the app otherwise functions as expected, and change in settings will nok change this

          It truly sucks, but I guess there is no option to fix this unless the developer changes their perspective, which they will not.

          lbschenkel Grkrz

          would it be possible to do anything on the phone to make it pass integrity, option/settings wise?
          Or maybe install an older version of the app instead, eg. via aurora store? Tech gods, help me out here :)

              Duckduck You could try progressively older versions of the app via Aurora store (see the version codes in my gist) but I doubt they still work; they are probably blacklisted on the server side by now. Other than that, there's nothing to be done.

              Regarding the new version, it was just a shot in the dark to see if they somehow relaxed this requirement but I had no expectations that they changed course.

                  I guess we GOS users in Denmark will now have to sport the sexy authenticator :/

                    Duckduck
                    Or a lawsuit. An official government app that requires the use of an Apple or Google account (iOS and Play Store respectively) is a potential discrimination issue.

                    You would need to talk to a lawyer in Denmark but you might have a case. And if so, you might just get to put Play Integrity on trial as the government will claim its used for security and you get to go after them and Google for that lie.

                        19 days later

                        JollyRancher could be a way to go, maybe a bit extreme. For now we keep spamming them and hope maybe a newer version will change the way the OS is verified

                          lbschenkel i tried this with no luck. Maybe it should be removed from the github with working banks app list?

                          But you can make it to the very last part of the setup. But it always fails. Will try when a new version is released.

                            7 days later

                            After latest update to GOS, changes to google play stuff have made it work worse. Now you cannot make it past the app boot screen? Others that can verify this? I hoped maybe the changes somehow to make it work

                              Duckduck what GOS build are you using?

                              I'm using the latest alpha (2025012700) and the app works, but of course I am one of the lucky ones to have it activated before they turned on Play Integrity.

                              Actually I was going to ask here if anybody is willing to install the alpha and try to activate MitID with Play Integrity blocked (new GOS feature) and report what happens.

                                  lbschenkel im on stable 2025012700 and have tried both 116 and the current one, 118.
                                  Before 2025012700 i could make it all the way to final step in setup, but now it just loads forever on the initial connecting screen

                                      Duckduck I installed MitID on a secondary profile, it does not freeze and I can attempt to do the activation flow.

                                      The flow ends up failing with an error message, as expected. Unfortunately, since this is a secondary profile, I don't get the notifications nor the settings related to Play Integrity so I cannot test what happens if I block it. I don't expect it to work, but it would be interesting to see what the error message is nonetheless...

                                      As my working MitID in the primary profile, I can't/won't mess with it to test that out.

                                          • fid02

                                            • Post #317

                                            lbschenkel Unfortunately, since this is a secondary profile, I don't get the notifications nor the settings related to Play Integrity so I cannot test what happens if I block it.

                                            I think the notification should work in secondary profiles? At least it works fine in Private Space.

                                            The settings only appear for the app if Sandboxed Google Play has detected Play Integrity API usage.

                                                fid02 I know for a fact they use Integrity (they said it themselves from the very beginning), I even see in the logs, but I only get the error from the app and no notification from GOS and the setting does not appear in GOS.

                                                But this is only during the activation flow, which I'm not going to do in the primary profile as I'll permanently lock myself out.

                                                I will test some other apps that use Integrity in this same secondary profile to see what happens.

                                                  The plot thickens. I have used the Android Integrity Checker app in the secondary profile and I can see the notification and setting. So I was too fast to assume that the secondary profile was an issue here.

                                                  But no sort of thing shows up with MitID. Therefore it is "lying" when claiming it's checking Integrity, or perhaps it's doing some other ad-hocs checks that fail before getting to the point that does an Integrity check?

                                                  I will try again and pay more attention to the logs. I have tried the "ID scan" flow but I will also try a different flow as well.

                                                  OK, so I have tried again. My problem in the 1st attempt was that I already had 3 authenticators enrolled, which is the limit, so they were not letting me enrol another one (but the error message was a generic error which had no mention of this).

                                                  I removed one of my authenticators and tried again. Now I got the Integrity popup, as expected. I got the error message from the app, as expected. I then tried to block Integrity API but I get the exact same error message. Therefore blocking Integrity does not work as a workaround, unfortunately.

                                                  I checked the logs but nothing useful there. Basically the same thing gets logged if Integrity check fails or it's blocked.

                                                  GOS users remain out of luck and will keep needing the dongle.